[ OK ] Started Getty on tty1. [ OK ] Started Getty on tty3. [ OK ] Started Getty on tty2. [ OK ] Started System Logging Service. [ OK ] Started getty on tty2-tty6 if dbus and logind are not available. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.1.19' (ECDSA) to the list of known hosts. 2020/10/31 18:21:14 fuzzer started 2020/10/31 18:21:15 dialing manager at 10.128.0.26:33885 2020/10/31 18:21:15 syscalls: 3433 2020/10/31 18:21:15 code coverage: enabled 2020/10/31 18:21:15 comparison tracing: enabled 2020/10/31 18:21:15 extra coverage: enabled 2020/10/31 18:21:15 setuid sandbox: enabled 2020/10/31 18:21:15 namespace sandbox: enabled 2020/10/31 18:21:15 Android sandbox: /sys/fs/selinux/policy does not exist 2020/10/31 18:21:15 fault injection: enabled 2020/10/31 18:21:15 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/10/31 18:21:15 net packet injection: enabled 2020/10/31 18:21:15 net device setup: enabled 2020/10/31 18:21:15 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/10/31 18:21:15 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/10/31 18:21:15 USB emulation: enabled 2020/10/31 18:21:15 hci packet injection: enabled 2020/10/31 18:21:15 wifi device emulation: enabled 18:23:57 executing program 0: syz_mount_image$reiserfs(&(0x7f0000000000)='reiserfs\x00', &(0x7f0000000100)='./file0\x00', 0x4000000, 0x7, &(0x7f0000000200)=[{&(0x7f0000010000)="00400000ec1f00001320000012000000000000000020000000040000611cad49840300001e000000000000000010cc030200010052654973457232467300000002000000020001000200000000000000010000001231231212331233123112341341241273797a6b616c6c65720000000000000001001e003ac1655f004eed00", 0x80, 0x10000}, {&(0x7f0000010100)="000000000000000000000000010000000300"/32, 0x20, 0x100c0}, {&(0x7f0000010200)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff0f00"/1056, 0x420, 0x11000}, {&(0x7f0000010700)="ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x800, 0x11800}, {&(0x7f0000010f00)="00000000000000000000000012000000000000000020000000040000611cad49840300001e00"/64, 0x40, 0x2012000}, {&(0x7f0000011000)="010002005c0f0000000000000000000000000000000000000100000002000000000000000000000000002c00d40f0100010000000200000001000000f401000002003000a40f00"/96, 0x60, 0x2013000}, {&(0x7f0000011100)="0000000001000000010000000200000028000400020000000000000001000000200004002e2e0000000000002e00000000000000ed4100000300000030000000000000005cf90100535f01003ac1655f3ac1655f3ac1655f0100000000000000", 0x60, 0x2013fa0}], 0x0, &(0x7f0000011200)) syzkaller login: [ 312.411528][ T8260] IPVS: ftp: loaded support on port[0] = 21 [ 312.898544][ T8260] chnl_net:caif_netlink_parms(): no params data found [ 313.056243][ T8260] bridge0: port 1(bridge_slave_0) entered blocking state [ 313.063743][ T8260] bridge0: port 1(bridge_slave_0) entered disabled state [ 313.073482][ T8260] device bridge_slave_0 entered promiscuous mode [ 313.087137][ T8260] bridge0: port 2(bridge_slave_1) entered blocking state [ 313.094387][ T8260] bridge0: port 2(bridge_slave_1) entered disabled state [ 313.104579][ T8260] device bridge_slave_1 entered promiscuous mode [ 313.151511][ T8260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 313.167928][ T8260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 313.214169][ T8260] team0: Port device team_slave_0 added [ 313.227068][ T8260] team0: Port device team_slave_1 added [ 313.269840][ T8260] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 313.277435][ T8260] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.304185][ T8260] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 313.320218][ T8260] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 313.327805][ T8260] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 313.355614][ T8260] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 313.418626][ T8260] device hsr_slave_0 entered promiscuous mode [ 313.428401][ T8260] device hsr_slave_1 entered promiscuous mode [ 313.686465][ T8260] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 313.705187][ T8260] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 313.729266][ T8260] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 313.769014][ T8260] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 314.088007][ T8260] 8021q: adding VLAN 0 to HW filter on device bond0 [ 314.120990][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 314.130057][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 314.151346][ T8260] 8021q: adding VLAN 0 to HW filter on device team0 [ 314.172299][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 314.182344][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 314.192580][ T4711] bridge0: port 1(bridge_slave_0) entered blocking state [ 314.199960][ T4711] bridge0: port 1(bridge_slave_0) entered forwarding state [ 314.214585][ T4711] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 314.229283][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 314.239131][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 314.248641][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 314.259383][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 314.319510][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 314.330190][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 314.338044][ T4711] Bluetooth: hci0: command 0x0409 tx timeout [ 314.340771][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 314.354276][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 314.366573][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 314.395285][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 314.405889][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 314.441006][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 314.450616][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 314.477354][ T8260] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 314.490872][ T8260] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 314.504722][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 314.514476][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 314.576072][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 314.584174][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 314.617805][ T8260] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 314.680275][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 314.691115][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 314.749497][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 314.760563][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 314.777922][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 314.787472][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 314.806245][ T8260] device veth0_vlan entered promiscuous mode [ 314.850453][ T8260] device veth1_vlan entered promiscuous mode [ 314.869223][ T16] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 314.936992][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 314.948104][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 314.968665][ T8260] device veth0_macvtap entered promiscuous mode [ 314.991653][ T8260] device veth1_macvtap entered promiscuous mode [ 315.040418][ T8260] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 315.048395][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 315.058627][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 315.068103][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 315.078243][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 315.103278][ T8260] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 315.117711][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 315.128310][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 315.143769][ T8260] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.152801][ T8260] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.162682][ T8260] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.171620][ T8260] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 315.493813][ T994] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 315.502359][ T994] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 315.575770][ T2975] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 315.648815][ T1050] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 315.657300][ T1050] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 315.666479][ T2975] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 315.935134][ T8500] REISERFS (device loop0): found reiserfs format "3.6" with standard journal [ 315.954483][ T8500] REISERFS (device loop0): using ordered data mode [ 315.961621][ T8500] reiserfs: using flush barriers [ 315.976220][ T8500] REISERFS (device loop0): journal params: device loop0, size 8192, journal first block 18, max trans len 1024, max batch 900, max commit age 30, max trans age 30 [ 316.006245][ T8500] REISERFS (device loop0): checking transaction log (loop0) [ 316.430469][ T2975] Bluetooth: hci0: command 0x041b tx timeout [ 318.496788][ T8479] Bluetooth: hci0: command 0x040f tx timeout [ 319.075676][ T8500] ===================================================== [ 319.082768][ T8500] BUG: KMSAN: uninit-value in search_by_key+0x301e/0x67f0 [ 319.089882][ T8500] CPU: 0 PID: 8500 Comm: syz-executor.0 Not tainted 5.9.0-rc8-syzkaller #0 [ 319.098438][ T8500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.108470][ T8500] Call Trace: [ 319.111790][ T8500] dump_stack+0x21c/0x280 [ 319.116165][ T8500] kmsan_report+0xf7/0x1e0 [ 319.120619][ T8500] __msan_warning+0x5f/0xa0 [ 319.125204][ T8500] search_by_key+0x301e/0x67f0 [ 319.129964][ T8500] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 319.136098][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.141364][ T8500] ? kmsan_internal_set_origin+0x85/0xc0 [ 319.146986][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.152212][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.159210][ T8500] reiserfs_read_locked_inode+0x1fc/0x30b0 [ 319.164999][ T8500] ? reiserfs_update_sd_size+0x1340/0x1340 [ 319.170784][ T8500] ? reiserfs_read_locked_inode+0x30b0/0x30b0 [ 319.176826][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.182027][ T8500] ? kmsan_internal_set_origin+0x85/0xc0 [ 319.187654][ T8500] reiserfs_fill_super+0x2ad7/0x6160 [ 319.192989][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.198176][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.203956][ T8500] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 319.210083][ T8500] ? set_blocksize+0x464/0x780 [ 319.214823][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.220008][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.225807][ T8500] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 319.231939][ T8500] ? sb_set_blocksize+0x1c5/0x230 [ 319.237016][ T8500] mount_bdev+0x619/0x900 [ 319.241321][ T8500] ? reiserfs_kill_sb+0x260/0x260 [ 319.246321][ T8500] get_super_block+0xc9/0xe0 [ 319.250902][ T8500] legacy_get_tree+0x163/0x2e0 [ 319.255641][ T8500] ? remove_save_link+0x600/0x600 [ 319.260640][ T8500] ? legacy_parse_monolithic+0x310/0x310 [ 319.266246][ T8500] vfs_get_tree+0xd8/0x5d0 [ 319.270685][ T8500] path_mount+0x3dde/0x5db0 [ 319.275166][ T8500] do_mount+0x1c6/0x220 [ 319.279332][ T8500] __se_compat_sys_mount+0x7bb/0xaa0 [ 319.284596][ T8500] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 319.290640][ T8500] __ia32_compat_sys_mount+0x62/0x80 [ 319.295979][ T8500] __do_fast_syscall_32+0x129/0x180 [ 319.301172][ T8500] do_fast_syscall_32+0x6a/0xc0 [ 319.305999][ T8500] do_SYSENTER_32+0x73/0x90 [ 319.310544][ T8500] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 319.316863][ T8500] RIP: 0023:0xf7f45549 [ 319.320923][ T8500] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 319.340507][ T8500] RSP: 002b:00000000f553ef20 EFLAGS: 00000292 ORIG_RAX: 0000000000000015 [ 319.348895][ T8500] RAX: ffffffffffffffda RBX: 00000000f553ef7c RCX: 0000000020000100 [ 319.356846][ T8500] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000f553efbc [ 319.364797][ T8500] RBP: 00000000f553ef7c R08: 0000000000000000 R09: 0000000000000000 [ 319.372744][ T8500] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 319.380695][ T8500] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 319.388649][ T8500] [ 319.390950][ T8500] Local variable ----key@reiserfs_read_locked_inode created at: [ 319.398557][ T8500] reiserfs_read_locked_inode+0xb4/0x30b0 [ 319.404262][ T8500] reiserfs_read_locked_inode+0xb4/0x30b0 [ 319.409966][ T8500] ===================================================== [ 319.416871][ T8500] Disabling lock debugging due to kernel taint [ 319.422995][ T8500] Kernel panic - not syncing: panic_on_warn set ... [ 319.429560][ T8500] CPU: 0 PID: 8500 Comm: syz-executor.0 Tainted: G B 5.9.0-rc8-syzkaller #0 [ 319.439518][ T8500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 319.449551][ T8500] Call Trace: [ 319.452822][ T8500] dump_stack+0x21c/0x280 [ 319.457145][ T8500] panic+0x4c8/0xea7 [ 319.461020][ T8500] ? add_taint+0x17c/0x210 [ 319.465414][ T8500] kmsan_report+0x1da/0x1e0 [ 319.469900][ T8500] __msan_warning+0x5f/0xa0 [ 319.475509][ T8500] search_by_key+0x301e/0x67f0 [ 319.480256][ T8500] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 319.486382][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.491567][ T8500] ? kmsan_internal_set_origin+0x85/0xc0 [ 319.497194][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.502378][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.508171][ T8500] reiserfs_read_locked_inode+0x1fc/0x30b0 [ 319.513951][ T8500] ? reiserfs_update_sd_size+0x1340/0x1340 [ 319.519822][ T8500] ? reiserfs_read_locked_inode+0x30b0/0x30b0 [ 319.525868][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.531044][ T8500] ? kmsan_internal_set_origin+0x85/0xc0 [ 319.536663][ T8500] reiserfs_fill_super+0x2ad7/0x6160 [ 319.541937][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.547122][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.553000][ T8500] ? __msan_metadata_ptr_for_load_1+0x10/0x20 [ 319.559045][ T8500] ? set_blocksize+0x464/0x780 [ 319.563783][ T8500] ? kmsan_get_metadata+0x116/0x180 [ 319.568957][ T8500] ? kmsan_get_shadow_origin_ptr+0x84/0xb0 [ 319.574753][ T8500] ? __msan_metadata_ptr_for_store_1+0x13/0x20 [ 319.580936][ T8500] ? sb_set_blocksize+0x1c5/0x230 [ 319.585945][ T8500] mount_bdev+0x619/0x900 [ 319.590310][ T8500] ? reiserfs_kill_sb+0x260/0x260 [ 319.595399][ T8500] get_super_block+0xc9/0xe0 [ 319.600009][ T8500] legacy_get_tree+0x163/0x2e0 [ 319.604747][ T8500] ? remove_save_link+0x600/0x600 [ 319.609748][ T8500] ? legacy_parse_monolithic+0x310/0x310 [ 319.615352][ T8500] vfs_get_tree+0xd8/0x5d0 [ 319.619750][ T8500] path_mount+0x3dde/0x5db0 [ 319.624231][ T8500] do_mount+0x1c6/0x220 [ 319.628382][ T8500] __se_compat_sys_mount+0x7bb/0xaa0 [ 319.633663][ T8500] ? __msan_metadata_ptr_for_load_8+0x10/0x20 [ 319.639795][ T8500] __ia32_compat_sys_mount+0x62/0x80 [ 319.645057][ T8500] __do_fast_syscall_32+0x129/0x180 [ 319.650235][ T8500] do_fast_syscall_32+0x6a/0xc0 [ 319.655059][ T8500] do_SYSENTER_32+0x73/0x90 [ 319.659544][ T8500] entry_SYSENTER_compat_after_hwframe+0x4d/0x5c [ 319.665843][ T8500] RIP: 0023:0xf7f45549 [ 319.669888][ T8500] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90 [ 319.689471][ T8500] RSP: 002b:00000000f553ef20 EFLAGS: 00000292 ORIG_RAX: 0000000000000015 [ 319.697871][ T8500] RAX: ffffffffffffffda RBX: 00000000f553ef7c RCX: 0000000020000100 [ 319.705831][ T8500] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000f553efbc [ 319.713779][ T8500] RBP: 00000000f553ef7c R08: 0000000000000000 R09: 0000000000000000 [ 319.721748][ T8500] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 319.729696][ T8500] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 319.738304][ T8500] Kernel Offset: disabled [ 319.742614][ T8500] Rebooting in 86400 seconds..