./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor872821300
<...>
Warning: Permanently added '10.128.1.92' (ED25519) to the list of known hosts.
execve("./syz-executor872821300", ["./syz-executor872821300"], 0x7ffc5ab80dc0 /* 10 vars */) = 0
brk(NULL) = 0x555577657000
brk(0x555577657d00) = 0x555577657d00
arch_prctl(ARCH_SET_FS, 0x555577657380) = 0
set_tid_address(0x555577657650) = 5088
set_robust_list(0x555577657660, 24) = 0
rseq(0x555577657ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor872821300", 4096) = 27
getrandom("\x44\x9b\xbc\xb0\x09\xf2\xc8\x0f", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555577657d00
brk(0x555577678d00) = 0x555577678d00
brk(0x555577679000) = 0x555577679000
mprotect(0x7efcd3e97000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.o2qQSV", 0700) = 0
chmod("./syzkaller.o2qQSV", 0777) = 0
chdir("./syzkaller.o2qQSV") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached
, child_tidptr=0x555577657650) = 5089
[pid 5089] set_robust_list(0x555577657660, 24) = 0
[pid 5089] chdir("./0") = 0
[pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5089] setpgid(0, 0) = 0
[pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5089] write(3, "1000", 4) = 4
[pid 5089] close(3) = 0
[pid 5089] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5089] memfd_create("syzkaller", 0) = 3
[pid 5089] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7efccb800000
[pid 5089] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid 5089] munmap(0x7efccb800000, 138412032) = 0
[pid 5089] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5089] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5089] close(3) = 0
[pid 5089] close(4) = 0
[pid 5089] mkdir("./file0", 0777) = 0
[pid 5089] mount("/dev/loop0", "./file0", "jfs", MS_NOSUID, "quota,iocharset=cp1250,nodiscard,gid=0x000000000000ee00,discard=0x0000000000000009,errors=continue,q"...) = 0
[pid 5089] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[ 109.044139][ T5089] loop0: detected capacity change from 0 to 32768
[pid 5089] chdir("./file0") = 0
[pid 5089] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy)
[pid 5089] creat("./file1", 012) = 4
[pid 5089] exit_group(0) = ?
[pid 5089] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5089, si_uid=0, si_status=0, si_utime=2 /* 0.02 s */, si_stime=31 /* 0.31 s */} ---
umount2("./0", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "./0", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
newfstatat(3, "", {st_mode=S_IFDIR|0700, st_size=4096, ...}, AT_EMPTY_PATH) = 0
getdents64(3, 0x5555776586f0 /* 4 entries */, 32768) = 112
umount2("./0/binderfs", MNT_FORCE|UMOUNT_NOFOLLOW) = -1 EINVAL (Invalid argument)
newfstatat(AT_FDCWD, "./0/binderfs", {st_mode=S_IFLNK|0777, st_size=13, ...}, AT_SYMLINK_NOFOLLOW) = 0
unlink("./0/binderfs") = 0
[ 109.181983][ T114] ------------[ cut here ]------------
[ 109.187745][ T114] WARNING: CPU: 1 PID: 114 at fs/jfs/jfs_dmap.c:2873 dbAdjTree+0x2d9/0x3d0
[ 109.196468][ T114] Modules linked in:
[ 109.200412][ T114] CPU: 1 PID: 114 Comm: jfsCommit Not tainted 6.9.0-rc6-syzkaller-00227-g3d25a941ea50 #0
[ 109.210309][ T114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 109.221378][ T114] RIP: 0010:dbAdjTree+0x2d9/0x3d0
[ 109.226593][ T114] Code: e8 8c cf 85 fe 0f b6 14 24 38 da 0f 85 a1 fe ff ff 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 ad d5 85 fe e8 a8 d5 85 fe 90 <0f> 0b 90 eb e2 e8 9d cb e1 fe e9 52 fe ff ff e8 93 cb e1 fe e9 79
[ 109.246360][ T114] RSP: 0018:ffffc90002cffa88 EFLAGS: 00010293
[ 109.252462][ T114] RAX: 0000000000000000 RBX: 0000000000000155 RCX: ffffffff83092e69
[ 109.260527][ T114] RDX: ffff88801a30da00 RSI: ffffffff830930c8 RDI: 0000000000000004
[ 109.268573][ T114] RBP: ffff88802c8d3010 R08: 0000000000000004 R09: 0000000000000155
[ 109.276625][ T114] R10: 0000000000000656 R11: 0000000000000001 R12: 0000000000000004
[ 109.284699][ T114] R13: 0000000000000656 R14: ffff88802c8d3010 R15: 0000000000000001
[ 109.292884][ T114] FS: 0000000000000000(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[ 109.301955][ T114] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 109.308663][ T114] CR2: 00007ffe74a77ff8 CR3: 0000000011644000 CR4: 0000000000350ef0
[ 109.316770][ T114] Call Trace:
[ 109.320096][ T114]
[ 109.323065][ T114] ? show_regs+0x8c/0xa0
[ 109.327416][ T114] ? __warn+0xe5/0x3c0
[ 109.331545][ T114] ? dbAdjTree+0x2d9/0x3d0
[ 109.336333][ T114] ? report_bug+0x3c0/0x580
[ 109.340917][ T114] ? handle_bug+0x3d/0x70
[ 109.345358][ T114] ? exc_invalid_op+0x17/0x50
[ 109.350117][ T114] ? asm_exc_invalid_op+0x1a/0x20
[ 109.355241][ T114] ? dbAdjTree+0x79/0x3d0
[ 109.359638][ T114] ? dbAdjTree+0x2d8/0x3d0
[ 109.364150][ T114] ? dbAdjTree+0x2d9/0x3d0
[ 109.368627][ T114] ? dbAdjTree+0x2d8/0x3d0
[ 109.373076][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.378822][ T114] dbJoin+0x24b/0x2b0
[ 109.382873][ T114] dbFreeBits+0x15c/0x8f0
[ 109.387414][ T114] ? folio_flags.constprop.0+0x56/0x150
[ 109.393019][ T114] dbFreeDmap+0x62/0x1b0
[ 109.397398][ T114] dbFree+0x266/0x550
[ 109.401460][ T114] txFreeMap+0x9a9/0xe60
[ 109.405809][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.411517][ T114] txUpdateMap+0x3f1/0xd20
[ 109.416066][ T114] ? __pfx_txUpdateMap+0x10/0x10
[ 109.421084][ T114] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 109.427015][ T114] jfs_lazycommit+0x5e6/0xb20
[ 109.431771][ T114] ? __pfx_jfs_lazycommit+0x10/0x10
[ 109.437137][ T114] ? __pfx_default_wake_function+0x10/0x10
[ 109.443124][ T114] ? lockdep_hardirqs_on+0x7c/0x110
[ 109.448467][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.454241][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.459935][ T114] ? __kthread_parkme+0x148/0x220
[ 109.465073][ T114] ? __pfx_jfs_lazycommit+0x10/0x10
[ 109.470352][ T114] kthread+0x2c4/0x3a0
[ 109.474511][ T114] ? _raw_spin_unlock_irq+0x23/0x50
[ 109.479808][ T114] ? __pfx_kthread+0x10/0x10
[ 109.484527][ T114] ret_from_fork+0x48/0x80
[ 109.488992][ T114] ? __pfx_kthread+0x10/0x10
[ 109.493676][ T114] ret_from_fork_asm+0x1a/0x30
[ 109.498518][ T114]
[ 109.501543][ T114] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 109.508824][ T114] CPU: 1 PID: 114 Comm: jfsCommit Not tainted 6.9.0-rc6-syzkaller-00227-g3d25a941ea50 #0
[ 109.518644][ T114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 109.528719][ T114] Call Trace:
[ 109.532007][ T114]
[ 109.534942][ T114] dump_stack_lvl+0x3d/0x1f0
[ 109.539749][ T114] panic+0x6f5/0x7a0
[ 109.543673][ T114] ? __pfx_panic+0x10/0x10
[ 109.548108][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.553762][ T114] ? show_trace_log_lvl+0x363/0x500
[ 109.559094][ T114] ? check_panic_on_warn+0x1f/0xb0
[ 109.564229][ T114] ? dbAdjTree+0x2d9/0x3d0
[ 109.568668][ T114] check_panic_on_warn+0xab/0xb0
[ 109.573626][ T114] __warn+0xf1/0x3c0
[ 109.577537][ T114] ? dbAdjTree+0x2d9/0x3d0
[ 109.581976][ T114] report_bug+0x3c0/0x580
[ 109.586427][ T114] handle_bug+0x3d/0x70
[ 109.590599][ T114] exc_invalid_op+0x17/0x50
[ 109.595125][ T114] asm_exc_invalid_op+0x1a/0x20
[ 109.599993][ T114] RIP: 0010:dbAdjTree+0x2d9/0x3d0
[ 109.605061][ T114] Code: e8 8c cf 85 fe 0f b6 14 24 38 da 0f 85 a1 fe ff ff 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e 41 5f e9 ad d5 85 fe e8 a8 d5 85 fe 90 <0f> 0b 90 eb e2 e8 9d cb e1 fe e9 52 fe ff ff e8 93 cb e1 fe e9 79
[ 109.624717][ T114] RSP: 0018:ffffc90002cffa88 EFLAGS: 00010293
[ 109.630819][ T114] RAX: 0000000000000000 RBX: 0000000000000155 RCX: ffffffff83092e69
[ 109.638818][ T114] RDX: ffff88801a30da00 RSI: ffffffff830930c8 RDI: 0000000000000004
[ 109.646818][ T114] RBP: ffff88802c8d3010 R08: 0000000000000004 R09: 0000000000000155
[ 109.654815][ T114] R10: 0000000000000656 R11: 0000000000000001 R12: 0000000000000004
[ 109.662806][ T114] R13: 0000000000000656 R14: ffff88802c8d3010 R15: 0000000000000001
[ 109.670830][ T114] ? dbAdjTree+0x79/0x3d0
[ 109.675218][ T114] ? dbAdjTree+0x2d8/0x3d0
[ 109.679691][ T114] ? dbAdjTree+0x2d8/0x3d0
[ 109.684158][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.689835][ T114] dbJoin+0x24b/0x2b0
[ 109.693874][ T114] dbFreeBits+0x15c/0x8f0
[ 109.698257][ T114] ? folio_flags.constprop.0+0x56/0x150
[ 109.703938][ T114] dbFreeDmap+0x62/0x1b0
[ 109.708243][ T114] dbFree+0x266/0x550
[ 109.712380][ T114] txFreeMap+0x9a9/0xe60
[ 109.716675][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.722357][ T114] txUpdateMap+0x3f1/0xd20
[ 109.726830][ T114] ? __pfx_txUpdateMap+0x10/0x10
[ 109.731817][ T114] ? _raw_spin_unlock_irqrestore+0x52/0x80
[ 109.737672][ T114] jfs_lazycommit+0x5e6/0xb20
[ 109.742413][ T114] ? __pfx_jfs_lazycommit+0x10/0x10
[ 109.747660][ T114] ? __pfx_default_wake_function+0x10/0x10
[ 109.753520][ T114] ? lockdep_hardirqs_on+0x7c/0x110
[ 109.758771][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.764458][ T114] ? srso_alias_return_thunk+0x5/0xfbef5
[ 109.770162][ T114] ? __kthread_parkme+0x148/0x220
[ 109.775249][ T114] ? __pfx_jfs_lazycommit+0x10/0x10
[ 109.780511][ T114] kthread+0x2c4/0x3a0
[ 109.784626][ T114] ? _raw_spin_unlock_irq+0x23/0x50
[ 109.790218][ T114] ? __pfx_kthread+0x10/0x10
[ 109.794853][ T114] ret_from_fork+0x48/0x80
[ 109.799326][ T114] ? __pfx_kthread+0x10/0x10
[ 109.803955][ T114] ret_from_fork_asm+0x1a/0x30
[ 109.808798][ T114]
[ 109.812057][ T114] Kernel Offset: disabled
[ 109.816440][ T114] Rebooting in 86400 seconds..