./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2853924535

<...>
Warning: Permanently added '10.128.0.141' (ED25519) to the list of known hosts.
execve("./syz-executor2853924535", ["./syz-executor2853924535"], 0x7ffd61c3ad40 /* 10 vars */) = 0
brk(NULL)                               = 0x555557464000
brk(0x555557464d00)                     = 0x555557464d00
arch_prctl(ARCH_SET_FS, 0x555557464380) = 0
set_tid_address(0x555557464650)         = 5038
set_robust_list(0x555557464660, 24)     = 0
rseq(0x555557464ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2853924535", 4096) = 28
getrandom("\xa9\x55\xe3\xfa\x89\xf5\x48\x35", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555557464d00
brk(0x555557485d00)                     = 0x555557485d00
brk(0x555557486000)                     = 0x555557486000
mprotect(0x7fe4b731a000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555557464650) = 5039
./strace-static-x86_64: Process 5039 attached
[pid  5039] set_robust_list(0x555557464660, 24) = 0
[pid  5039] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid  5039] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5039] setsid()                    = 1
[pid  5039] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid  5039] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid  5039] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid  5039] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid  5039] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid  5039] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid  5039] unshare(CLONE_NEWNS)        = 0
[pid  5039] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid  5039] unshare(CLONE_NEWIPC)       = 0
[pid  5039] unshare(CLONE_NEWCGROUP)    = 0
[pid  5039] unshare(CLONE_NEWUTS)       = 0
[pid  5039] unshare(CLONE_SYSVSEM)      = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "16777216", 8)     = 8
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "536870912", 9)    = 9
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "1024", 4)         = 4
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "8192", 4)         = 4
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "1024", 4)         = 4
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "1024", 4)         = 4
[pid  5039] close(3)                    = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "1024 1048576 500 1024", 21) = 21
[pid  5039] close(3)                    = 0
[pid  5039] getpid()                    = 1
[pid  5039] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5039] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ|1<<CAP_PERFMON|1<<CAP_BPF|1<<CAP_CHECKPOINT_RESTORE, inheritable=0}) = 0
[pid  5039] unshare(CLONE_NEWNET)       = 0
[pid  5039] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid  5039] write(3, "0 65535", 7)      = 7
[pid  5039] close(3)                    = 0
[pid  5039] mkdir("/dev/binderfs", 0777) = 0
[pid  5039] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid  5039] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5039] memfd_create("syzkaller", 0) = 3
[pid  5039] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fe4aee61000
[   69.601762][ T5039] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5039 'syz-executor285'
[pid  5039] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
[pid  5039] munmap(0x7fe4aee61000, 16777216) = 0
[pid  5039] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5039] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid  5039] close(3)                    = 0
[pid  5039] mkdir("./file0", 0777)      = 0
[pid  5039] mount("/dev/loop0", "./file0", "jfs", MS_NODIRATIME, "uid=0x0000000000000000,iocharset=koi8-ru,iocharset=cp950,integrity,errors=continue,noquota,uid=0x000"...) = 0
[pid  5039] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5039] chdir("./file0")            = 0
[pid  5039] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5039] close(4)                    = 0
[pid  5039] chdir("./file0")            = 0
[pid  5039] truncate("./file0", 257)    = 0
[pid  5039] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = -1 EIO (Input/output error)
[pid  5039] exit_group(1)               = ?
[   69.747808][ T5039] loop0: detected capacity change from 0 to 32768
[   69.770502][ T5039] find_entry called with index = 0
[   69.776116][ T5039] read_mapping_page failed!
[   69.781215][ T5039] ERROR: (device loop0): txAbort: 
[   69.781215][ T5039] 
[   69.796236][  T109] BUG at fs/jfs/jfs_txnmgr.c:931 assert(mp->nohomeok > 0)
[   69.804164][  T109] ------------[ cut here ]------------
[   69.809694][  T109] kernel BUG at fs/jfs/jfs_txnmgr.c:931!
[   69.815354][  T109] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   69.821422][  T109] CPU: 0 PID: 109 Comm: jfsCommit Not tainted 6.5.0-rc5-next-20230809-syzkaller #0
[   69.830689][  T109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[   69.840734][  T109] RIP: 0010:txUnlock+0xcb4/0xd10
[   69.845667][  T109] Code: fe e9 89 f6 ff ff e8 6b 77 8d fe 48 c7 c1 80 bd aa 8a ba a3 03 00 00 48 c7 c6 00 bd aa 8a 48 c7 c7 40 bd aa 8a e8 3c ab 70 fe <0f> 0b e8 25 b4 e2 fe e9 e0 f5 ff ff e8 3b 77 8d fe 48 c7 c1 c0 bc
[   69.865262][  T109] RSP: 0018:ffffc90002c4fd50 EFLAGS: 00010286
[   69.871316][  T109] RAX: 0000000000000037 RBX: ffffc900027c2120 RCX: 0000000000000000
[   69.879274][  T109] RDX: 0000000000000000 RSI: ffffffff816b97f2 RDI: 0000000000000005
[   69.887232][  T109] RBP: ffff888073a65d90 R08: 0000000000000005 R09: 0000000000000000
[   69.895185][  T109] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000000
[   69.903140][  T109] R13: 0000000000000000 R14: 0000000000000004 R15: dffffc0000000000
[   69.911098][  T109] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   69.920018][  T109] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   69.926589][  T109] CR2: 00007f83ad395ed8 CR3: 000000002902a000 CR4: 00000000003506f0
[   69.934573][  T109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   69.942620][  T109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   69.950579][  T109] Call Trace:
[   69.953855][  T109]  <TASK>
[   69.956771][  T109]  ? show_regs+0x8f/0xa0
[   69.961004][  T109]  ? die+0x36/0xa0
[   69.964727][  T109]  ? do_trap+0x22b/0x420
[   69.968977][  T109]  ? txUnlock+0xcb4/0xd10
[   69.974265][  T109]  ? txUnlock+0xcb4/0xd10
[   69.978587][  T109]  ? do_error_trap+0xf4/0x230
[   69.983255][  T109]  ? txUnlock+0xcb4/0xd10
[   69.987577][  T109]  ? handle_invalid_op+0x34/0x40
[   69.992507][  T109]  ? txUnlock+0xcb4/0xd10
[   69.996831][  T109]  ? exc_invalid_op+0x2d/0x40
[   70.001494][  T109]  ? asm_exc_invalid_op+0x1a/0x20
[   70.006519][  T109]  ? vprintk+0x82/0x90
[   70.010590][  T109]  ? txUnlock+0xcb4/0xd10
[   70.014914][  T109]  jfs_lazycommit+0x726/0xb20
[   70.019592][  T109]  ? txCommit+0x4fc0/0x4fc0
[   70.024141][  T109]  ? wake_up_state+0x10/0x10
[   70.028721][  T109]  ? __kthread_parkme+0x152/0x220
[   70.033731][  T109]  ? txCommit+0x4fc0/0x4fc0
[   70.038230][  T109]  kthread+0x33a/0x430
[   70.042286][  T109]  ? kthread_complete_and_exit+0x40/0x40
[   70.047905][  T109]  ret_from_fork+0x45/0x80
[   70.052317][  T109]  ? kthread_complete_and_exit+0x40/0x40
[   70.057938][  T109]  ret_from_fork_asm+0x11/0x20
[   70.062704][  T109]  </TASK>
[   70.065706][  T109] Modules linked in:
[   70.069738][  T109] ---[ end trace 0000000000000000 ]---
[   70.075211][  T109] RIP: 0010:txUnlock+0xcb4/0xd10
[   70.080231][  T109] Code: fe e9 89 f6 ff ff e8 6b 77 8d fe 48 c7 c1 80 bd aa 8a ba a3 03 00 00 48 c7 c6 00 bd aa 8a 48 c7 c7 40 bd aa 8a e8 3c ab 70 fe <0f> 0b e8 25 b4 e2 fe e9 e0 f5 ff ff e8 3b 77 8d fe 48 c7 c1 c0 bc
[   70.100394][  T109] RSP: 0018:ffffc90002c4fd50 EFLAGS: 00010286
[   70.106530][  T109] RAX: 0000000000000037 RBX: ffffc900027c2120 RCX: 0000000000000000
[   70.114529][  T109] RDX: 0000000000000000 RSI: ffffffff816b97f2 RDI: 0000000000000005
[   70.122567][  T109] RBP: ffff888073a65d90 R08: 0000000000000005 R09: 0000000000000000
[   70.130589][  T109] R10: 0000000080000000 R11: 0000000000000001 R12: 0000000000000000
[   70.138608][  T109] R13: 0000000000000000 R14: 0000000000000004 R15: dffffc0000000000
[   70.146605][  T109] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[   70.155523][  T109] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   70.162147][  T109] CR2: 00007f83ad395ed8 CR3: 000000002902a000 CR4: 00000000003506f0
[   70.170186][  T109] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   70.178207][  T109] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   70.186188][  T109] Kernel panic - not syncing: Fatal exception
[   70.192442][  T109] Kernel Offset: disabled
[   70.196755][  T109] Rebooting in 86400 seconds..