From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from mail-vk1-f177.google.com (mail-vk1-f177.google.com [209.85.221.177]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by smtp.subspace.kernel.org (Postfix) with ESMTPS id B9B003BF66D for ; Fri, 26 Jun 2026 21:26:25 +0000 (UTC) Authentication-Results: smtp.subspace.kernel.org; arc=none smtp.client-ip=209.85.221.177 ARC-Seal:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1782509187; cv=none; b=KAMuV29h4sWqrgM2nSgQJoXgPPdxAQUQsa09+HK7h1ZAO05uU1XF2/tiTlgEK3Of3kuw1dAAwRziqBW9G0EHJot+rYk8VzBwSKv3nwjPq7dMXAU/zA/ZF/Dvvyuf1c3E42bruDHSWusR8jd72+aiofB53BVslm4x1KuhliaU+AE= ARC-Message-Signature:i=1; a=rsa-sha256; d=subspace.kernel.org; s=arc-20240116; t=1782509187; c=relaxed/simple; bh=2qUXN5+Ys+52Sfbn8hEeKVMvbCqvPt9rCSbcVaMwJ/g=; h=Message-ID:Date:Subject:To:Cc:Content-Type:MIME-Version:From; b=SR/tBbHdzHHUgvBsOv+dFB1qgI7bJ9qZya/qiR82rFOU7nxQ2aopIjmwrGByOTUEUurXQvM2GEFuTMQNiVoIoIECMfmWH5NjHHL3HwpWzKMUXZNgLgA6TtU0UzpjUKN99STeAPrlZhxrNK/KI51u4PPyfEWjW8hwxq1m0fH8bEk= ARC-Authentication-Results:i=1; smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com; spf=pass smtp.mailfrom=gmail.com; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b=TVtPF74w; arc=none smtp.client-ip=209.85.221.177 Authentication-Results: smtp.subspace.kernel.org; dmarc=pass (p=none dis=none) header.from=gmail.com Authentication-Results: smtp.subspace.kernel.org; spf=pass smtp.mailfrom=gmail.com Authentication-Results: smtp.subspace.kernel.org; dkim=pass (2048-bit key) header.d=gmail.com header.i=@gmail.com header.b="TVtPF74w" Received: by mail-vk1-f177.google.com with SMTP id 71dfb90a1353d-5bbdf91a888so42590e0c.2 for ; Fri, 26 Jun 2026 14:26:25 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20251104; t=1782509185; x=1783113985; darn=vger.kernel.org; h=from:mime-version:content-transfer-encoding:content-type:cc:to :subject:date:message-id:from:to:cc:subject:date:message-id:reply-to :content-type; bh=/BKEUiXA7VyKoW6cZnsBj8jQqifki9JoflamFf27jF4=; b=TVtPF74wvCLehzaqfC3DITbQV1JTbE1PTxvLlpR2xEu6sDL7trDPCACWPz8PanQ8Lo gnDz8omXAO0ZWLTT+wIaYZCoqPOMcmXIjYuMxfRh7x+DpPKvVJ8F2bA60SzA0899Oz4Z D8Uif5FWuNmAm/a/XXQbsXRRLAPwp8JkJBnPQcSmUSd4mvRvz5y4McVzR1vGP9EWMHXZ 9T/bExQMQvpT+4GGbGWkiyzK0t/9T0LnEemqOdYbr9YFq2aWftcPJUHaqBVmeOuqerBX 4KxYL31AdmL4XrjGAGDVfmbOZMJY1H6vwnm1gOKddqdfTKzSS+zsY4vbv0Vu7+LLoW3V x7sw== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20251104; t=1782509185; x=1783113985; h=from:mime-version:content-transfer-encoding:content-type:cc:to :subject:date:message-id:x-gm-gg:x-gm-message-state:from:to:cc :subject:date:message-id:reply-to:content-type; bh=/BKEUiXA7VyKoW6cZnsBj8jQqifki9JoflamFf27jF4=; b=YWhC1uLFY03CI//hWsWH7ZTdqFgiwBmWx2JpmXxdYNIjtHs/5a5sIGUo1EXJDAKpTK wUt6FFLonYu5kmqsu7Ib54NkGhJwyGO8905pgwhoESOvtO81sGWFUvZisl36txsKNL8g GfCG5qDhDZGFX5DnWe+l4lClL2KC4TgqWP4aSXqgr/UObAPk5LhiQ1x+5aHYCqYeiYSS ZeM7I6hdA2WYPkOt7b9cXz6yUJJBOzoY3YC2aQZMuYCM+G6bvLKnCiVu0tUihUH9xo0q KapnLRdEORL4A8sbJAvhE7jDRpbHu0kxieJcz4Tm8XjJrQvPsyDXZ2BREZTrHWCR7QSS Xnvw== X-Forwarded-Encrypted: i=1; AHgh+RolEUQAdm79ib+Jv3tCBuSR/Rx98hELJc9JKPwJI4WtaUm/KGXlgWh/s/UeM58huLLngnPMQU6sJtzILfA=@vger.kernel.org X-Gm-Message-State: AOJu0YxPi/7vo8glZVJ9Vg6glp74JeUm5c5/p5Cp0pN9OVTXOofGlCGi Xvk4VG2+fZL/IM6E3XoM9lUSAZFGozw9YMg+gYFqTbWsIpbNRivNEOJv X-Gm-Gg: AfdE7cn7p9ueapErd1bkDNJWc1MZi2vGN+bPUc9ThvdZTPelquJeI5gd4xgtZC8FByz Tql2Ynwb0BlWMLnL5+lw7CgUfK1mv8+3ndzTzC+6bQzr8NInRxmL3gkWDBuMWaIQ5/74z95Csw0 q8dxovjNxCaFHoxk1VmZbAYGWO36+YrCR3RZT/ixN9Dg+QqApXwyo0bkD2zVeQBDKMxqAHCcm04 66V7Sr3juMz+ptmYwdTRdIjrwspri+woClkUFWDsY/burOqM/SzQ1yreibit2LVGmZAGwgMUOwv Ba4gdSYkM405uEU+noILZEJ4hMakwOd0uENImO8/p0r6mzQbKU4/oE9jDoWUezTYI25fAvrAyy4 mYueYDzIksVJgn//ReqP10P42MWZZQ/w76iNnp3kERI3O7u/peeaE4ReAB4qy2KAnsSDKJfWbUT M2S+03LAQC/VI2VileJy4RVsdvylo16P9kKCItTrrHLg9V+mJoNUBAyZ15cO8aXMRRbLbOGKTtS cpWcNXh2QnL X-Received: by 2002:a05:6102:5a9a:b0:632:5db8:f656 with SMTP id ada2fe7eead31-73435c8839fmr1590983137.4.1782509184582; Fri, 26 Jun 2026 14:26:24 -0700 (PDT) Received: from [192.168.10.115] ([132.170.207.48]) by smtp.gmail.com with ESMTPSA id a1e0cc1a2514c-96917088eedsm1792769241.11.2026.06.26.14.26.23 (version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256); Fri, 26 Jun 2026 14:26:24 -0700 (PDT) Message-ID: <6a3eee80.1dc473f3.8edd6.e736@mx.google.com> Date: Fri, 26 Jun 2026 14:26:24 -0700 (PDT) Subject: invalid opcode in txEnd To: shaggy@kernel.org, mjguzik@gmail.com, ssrane_b23@ee.vjti.ac.in, brauner@kernel.org, jfs-discussion@lists.sourceforge.net, linux-kernel@vger.kernel.org Cc: syzkaller@googlegroups.com, contact@pgazz.com Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 8bit Precedence: bulk X-Mailing-List: linux-kernel@vger.kernel.org List-Id: List-Subscribe: List-Unsubscribe: MIME-Version: 1.0 From: sanan.hasanou@gmail.com Good day, dear maintainers, We found a bug using a modified version of syzkaller. Kernel Branch: 7.0-rc1 Kernel Config: Unfortunately, we don't have any reproducer for this bug yet. Thank you! Best regards, Sanan Hasanov ERROR: (device loop2): xtSearch: xt_getpage: xtree page corrupt ERROR: (device loop2): xtTruncate: xt_getpage: xtree page corrupt BUG at fs/jfs/jfs_txnmgr.c:529 assert(tblk->next == 0) Oops: invalid opcode: 0000 [#1] SMP KASAN CPU: 1 UID: 0 PID: 40842 Comm: syz.2.3616 Tainted: G L 7.0.0-rc1 #1 PREEMPT(full) Tainted: [L]=SOFTLOCKUP Hardware name: QEMU Ubuntu 24.04 PC v2 (i440FX + PIIX, arch_caps fix, 1996), BIOS 1.16.3-debian-1.16.3-2 04/01/2014 RIP: 0010:txEnd+0x51f/0x530 fs/jfs/jfs_txnmgr.c:529 Code: e9 cc fe ff ff e8 b1 a5 82 fe 48 c7 c7 a0 9f 43 a7 48 c7 c6 99 9b 43 a7 ba 11 02 00 00 48 c7 c1 e0 9f 43 a7 e8 42 39 eb fd 90 <0f> 0b 66 66 66 66 66 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 55 RSP: 0018:ffffc9000418f3a0 EFLAGS: 00010246 RAX: 0000000000000036 RBX: ffff88803781c000 RCX: 41e5ad7fd48dbb00 RDX: ffffc90011c06000 RSI: 000000000007ffff RDI: 0000000000080000 RBP: ffffc90000c12982 R08: ffff88806af2c8d3 R09: 1ffff1100d5e591a R10: dffffc0000000000 R11: ffffed100d5e591b R12: 1ffff92000182535 R13: dffffc0000000000 R14: ffffc90000c129a8 R15: 0000000000000002 FS: 00007fc7348b16c0(0000) GS:ffff8880be5b6000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f0d2e1ff000 CR3: 000000001ea67000 CR4: 00000000000006f0 Call Trace: jfs_truncate_nolock+0x2b6/0x340 fs/jfs/inode.c:399 jfs_truncate+0xce/0x140 fs/jfs/inode.c:420 jfs_direct_IO+0x1ef/0x220 fs/jfs/inode.c:350 generic_file_direct_write+0x1d5/0x3e0 mm/filemap.c:4248 __generic_file_write_iter+0x118/0x230 mm/filemap.c:4417 generic_file_write_iter+0x117/0x540 mm/filemap.c:4457 iter_file_splice_write+0x9c2/0x1090 fs/splice.c:736 do_splice_from fs/splice.c:936 [inline] direct_splice_actor+0xfb/0x150 fs/splice.c:1159 splice_direct_to_actor+0x52d/0xbd0 fs/splice.c:1103 do_splice_direct_actor fs/splice.c:1202 [inline] do_splice_direct+0x181/0x270 fs/splice.c:1228 do_sendfile+0x4bb/0x7b0 fs/read_write.c:1372 __do_sys_sendfile64 fs/read_write.c:1433 [inline] __se_sys_sendfile64+0x13e/0x190 fs/read_write.c:1419 do_syscall_x64 arch/x86/entry/syscall_64.c:63 [inline] do_syscall_64+0x11c/0x800 arch/x86/entry/syscall_64.c:94 entry_SYSCALL_64_after_hwframe+0x4b/0x53 RIP: 0033:0x7fc7339a3b6d Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 90 f3 0f 1e fa 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 RSP: 002b:00007fc7348b1018 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 RAX: ffffffffffffffda RBX: 00007fc733c16090 RCX: 00007fc7339a3b6d RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 RBP: 00007fc733a47c3e R08: 0000000000000000 R09: 0000000000000000 R10: 0000000020fffe85 R11: 0000000000000246 R12: 0000000000000000 R13: 00007fc733c16128 R14: 00007fc733c16090 R15: 00007ffebd1495c0 Modules linked in: ---[ end trace 0000000000000000 ]--- RIP: 0010:txEnd+0x51f/0x530 fs/jfs/jfs_txnmgr.c:529 Code: e9 cc fe ff ff e8 b1 a5 82 fe 48 c7 c7 a0 9f 43 a7 48 c7 c6 99 9b 43 a7 ba 11 02 00 00 48 c7 c1 e0 9f 43 a7 e8 42 39 eb fd 90 <0f> 0b 66 66 66 66 66 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 55 RSP: 0018:ffffc9000418f3a0 EFLAGS: 00010246 RAX: 0000000000000036 RBX: ffff88803781c000 RCX: 41e5ad7fd48dbb00 RDX: ffffc90011c06000 RSI: 000000000007ffff RDI: 0000000000080000 RBP: ffffc90000c12982 R08: ffff88806af2c8d3 R09: 1ffff1100d5e591a R10: dffffc0000000000 R11: ffffed100d5e591b R12: 1ffff92000182535 R13: dffffc0000000000 R14: ffffc90000c129a8 R15: 0000000000000002 FS: 00007fc7348b16c0(0000) GS:ffff8880be5b6000(0000) knlGS:0000000000000000 CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 CR2: 00007f0d2e1ff000 CR3: 000000001ea67000 CR4: 00000000000006f0 <<<<<<<<<<<<<<< tail report >>>>>>>>>>>>>>>