./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1531389269 <...> Warning: Permanently added '10.128.1.20' (ECDSA) to the list of known hosts. execve("./syz-executor1531389269", ["./syz-executor1531389269"], 0x7fffbdd7f5a0 /* 10 vars */) = 0 brk(NULL) = 0x55555588c000 brk(0x55555588cc40) = 0x55555588cc40 arch_prctl(ARCH_SET_FS, 0x55555588c300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1531389269", 4096) = 28 brk(0x5555558adc40) = 0x5555558adc40 brk(0x5555558ae000) = 0x5555558ae000 mprotect(0x7fca03dee000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fc9fb934000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 munmap(0x7fc9fb934000, 1048576) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 mount("/dev/loop0", "./file0", "nilfs2", MS_NOEXEC|MS_NODIRATIME, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 creat("./file2", 040) = 4 [ 55.997996][ T5066] loop0: detected capacity change from 0 to 2048 [ 56.016454][ T5067] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 56.035774][ T5066] general protection fault, probably for non-canonical address 0xdffffc0000000005: 0000 [#1] PREEMPT SMP KASAN [ 56.047524][ T5066] KASAN: null-ptr-deref in range [0x0000000000000028-0x000000000000002f] [ 56.055932][ T5066] CPU: 1 PID: 5066 Comm: syz-executor153 Not tainted 6.1.0-syzkaller-14587-g51094a24b85e #0 [ 56.065978][ T5066] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 56.076021][ T5066] RIP: 0010:nilfs_btree_insert+0x6d3/0x1c10 [ 56.081926][ T5066] Code: bc 24 80 00 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 4b 02 92 fe 4d 8b 3f 49 83 c7 28 4c 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 ff e8 2e 02 92 fe 4d 8b 3f 49 83 c7 02 [ 56.101536][ T5066] RSP: 0018:ffffc90003bcf4a0 EFLAGS: 00010206 [ 56.107614][ T5066] RAX: 0000000000000005 RBX: 0000000000000001 RCX: 0000000000000000 [ 56.115583][ T5066] RDX: ffff88807eba3a80 RSI: 0000000000000002 RDI: 0000000000000001 [ 56.123544][ T5066] RBP: ffffc90003bcf630 R08: ffffffff834f80d8 R09: ffffed100571ff9b [ 56.131503][ T5066] R10: ffffed100571ff9b R11: 1ffff1100571ff9a R12: ffff888021d03480 [ 56.139465][ T5066] R13: dffffc0000000000 R14: 0000000000000002 R15: 0000000000000028 [ 56.147426][ T5066] FS: 000055555588c300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 56.156344][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.162928][ T5066] CR2: 00007f4614ff5a70 CR3: 000000007eb7c000 CR4: 00000000003506e0 [ 56.170910][ T5066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.178879][ T5066] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.186930][ T5066] Call Trace: [ 56.190200][ T5066] [ 56.193123][ T5066] ? __might_sleep+0xc0/0xc0 [ 56.197716][ T5066] ? nilfs_btree_lookup_contig+0xec0/0xec0 [ 56.203514][ T5066] ? down_write+0x1a5/0x270 [ 56.208010][ T5066] ? down_read_killable+0x80/0x80 [ 56.213026][ T5066] ? nilfs_get_block+0x28d/0x8d0 [ 56.217958][ T5066] nilfs_bmap_insert+0x20d/0x360 [ 56.222887][ T5066] ? nilfs_bmap_lookup_contig+0x150/0x150 [ 56.228597][ T5066] ? __up_read+0x251/0x690 [ 56.233002][ T5066] ? trace_nilfs2_transaction_transition+0xec/0x2e0 [ 56.239604][ T5066] ? nilfs_transaction_begin+0x545/0x770 [ 56.245260][ T5066] nilfs_get_block+0x414/0x8d0 [ 56.250031][ T5066] ? create_page_buffers+0x1c8/0x4b0 [ 56.255320][ T5066] ? nilfs_inode_sub_blocks+0xe0/0xe0 [ 56.260684][ T5066] ? folio_alloc+0x47/0x50 [ 56.265096][ T5066] ? create_page_buffers+0x244/0x4b0 [ 56.270378][ T5066] __block_write_begin_int+0x54c/0x1a80 [ 56.275922][ T5066] ? nilfs_inode_sub_blocks+0xe0/0xe0 [ 56.281286][ T5066] ? page_zero_new_buffers+0x940/0x940 [ 56.286736][ T5066] ? PageHeadHuge+0x8a/0x1d0 [ 56.291334][ T5066] ? nilfs_inode_sub_blocks+0xe0/0xe0 [ 56.296718][ T5066] block_write_begin+0x93/0x1e0 [ 56.301582][ T5066] nilfs_write_begin+0x9c/0x110 [ 56.306436][ T5066] generic_perform_write+0x2e4/0x5e0 [ 56.311725][ T5066] ? generic_file_direct_write+0x610/0x610 [ 56.317526][ T5066] ? __file_remove_privs+0x610/0x610 [ 56.322800][ T5066] ? generic_write_checks+0x15c/0x1c0 [ 56.328166][ T5066] __generic_file_write_iter+0x176/0x400 [ 56.333820][ T5066] generic_file_write_iter+0xab/0x310 [ 56.339199][ T5066] vfs_write+0x7dc/0xc50 [ 56.343451][ T5066] ? file_end_write+0x230/0x230 [ 56.348301][ T5066] ? ptrace_stop+0x74d/0x970 [ 56.352891][ T5066] ? _raw_spin_unlock_irq+0x2a/0x40 [ 56.358088][ T5066] ? __fdget_pos+0x252/0x2e0 [ 56.362673][ T5066] ksys_write+0x177/0x2a0 [ 56.367001][ T5066] ? __ia32_sys_read+0x80/0x80 [ 56.371760][ T5066] ? syscall_enter_from_user_mode+0x2e/0x1d0 [ 56.377728][ T5066] ? syscall_enter_from_user_mode+0x86/0x1d0 [ 56.383712][ T5066] do_syscall_64+0x3d/0xb0 [ 56.388130][ T5066] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 56.394026][ T5066] RIP: 0033:0x7fca03d80b59 [ 56.398437][ T5066] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 56.418081][ T5066] RSP: 002b:00007ffdd1df8c28 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 56.426513][ T5066] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fca03d80b59 [ 56.434481][ T5066] RDX: 000000000000002f RSI: 0000000020000040 RDI: 0000000000000004 [ 56.442457][ T5066] RBP: 00007fca03d40160 R08: 0000000000000014 R09: 0000000000000000 [ 56.450422][ T5066] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fca03d401f0 [ 56.458390][ T5066] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 56.466799][ T5066] [ 56.469810][ T5066] Modules linked in: [ 56.473846][ T5066] ---[ end trace 0000000000000000 ]--- [ 56.479421][ T5066] RIP: 0010:nilfs_btree_insert+0x6d3/0x1c10 [ 56.485369][ T5066] Code: bc 24 80 00 00 00 4c 89 f8 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 ff e8 4b 02 92 fe 4d 8b 3f 49 83 c7 28 4c 89 f8 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 ff e8 2e 02 92 fe 4d 8b 3f 49 83 c7 02 [ 56.505176][ T5066] RSP: 0018:ffffc90003bcf4a0 EFLAGS: 00010206 [ 56.511243][ T5066] RAX: 0000000000000005 RBX: 0000000000000001 RCX: 0000000000000000 [ 56.519233][ T5066] RDX: ffff88807eba3a80 RSI: 0000000000000002 RDI: 0000000000000001 [ 56.527224][ T5066] RBP: ffffc90003bcf630 R08: ffffffff834f80d8 R09: ffffed100571ff9b [ 56.535215][ T5066] R10: ffffed100571ff9b R11: 1ffff1100571ff9a R12: ffff888021d03480 [ 56.543185][ T5066] R13: dffffc0000000000 R14: 0000000000000002 R15: 0000000000000028 [ 56.551175][ T5066] FS: 000055555588c300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 56.560125][ T5066] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.566725][ T5066] CR2: 000055a236e64fe0 CR3: 000000007eb7c000 CR4: 00000000003506f0 [ 56.574715][ T5066] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.582671][ T5066] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.590660][ T5066] Kernel panic - not syncing: Fatal exception [ 56.596867][ T5066] Kernel Offset: disabled [ 56.601178][ T5066] Rebooting in 86400 seconds..