./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2256742819 <...> Warning: Permanently added '10.128.1.60' (ED25519) to the list of known hosts. execve("./syz-executor2256742819", ["./syz-executor2256742819"], 0x7fffb6e981f0 /* 10 vars */) = 0 brk(NULL) = 0x55555614c000 brk(0x55555614cd00) = 0x55555614cd00 arch_prctl(ARCH_SET_FS, 0x55555614c380) = 0 set_tid_address(0x55555614c650) = 356 set_robust_list(0x55555614c660, 24) = 0 rseq(0x55555614cca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2256742819", 4096) = 28 getrandom("\xc2\x2d\x67\xb5\x89\x3a\x79\x03", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555614cd00 brk(0x55555616dd00) = 0x55555616dd00 brk(0x55555616e000) = 0x55555616e000 mprotect(0x7f6b3fa2c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6b3757c000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144 munmap(0x7f6b3757c000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 [ 22.982977][ T23] audit: type=1400 audit(1705131440.640:66): avc: denied { execmem } for pid=356 comm="syz-executor225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 23.002646][ T23] audit: type=1400 audit(1705131440.650:67): avc: denied { read write } for pid=356 comm="syz-executor225" name="loop0" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 close(4) = 0 mkdir("./file0", 0777) = 0 [ 23.026880][ T23] audit: type=1400 audit(1705131440.650:68): avc: denied { open } for pid=356 comm="syz-executor225" path="/dev/loop0" dev="devtmpfs" ino=1149 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 23.050914][ T23] audit: type=1400 audit(1705131440.650:69): avc: denied { ioctl } for pid=356 comm="syz-executor225" path="/dev/loop0" dev="devtmpfs" ino=1149 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 23.076616][ T23] audit: type=1400 audit(1705131440.730:70): avc: denied { mounton } for pid=356 comm="syz-executor225" path="/root/file0" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 23.148426][ T356] EXT4-fs error (device loop0): ext4_fill_super:4612: inode #2: comm syz-executor225: casefold flag without casefold feature [ 23.161295][ T356] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 23.172179][ T356] ------------[ cut here ]------------ [ 23.177433][ T356] kernel BUG at fs/ext4/extents_status.c:202! [ 23.183366][ T356] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 23.189235][ T356] CPU: 0 PID: 356 Comm: syz-executor225 Not tainted 5.4.259-syzkaller-00012-g57a39998c138 #0 [ 23.199213][ T356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 23.209112][ T356] RIP: 0010:ext4_es_cache_extent+0x4c0/0x640 [ 23.214931][ T356] Code: d0 ff e9 fe fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 78 fe ff ff 4c 89 f7 e8 3a d6 d0 ff e9 6b fe ff ff e8 70 05 a1 ff <0f> 0b 4c 89 7c 24 18 65 8b 1d fa f1 3e 7e 89 d8 c1 e8 06 48 8d 3c [ 23.234362][ T356] RSP: 0018:ffff8881dc786e00 EFLAGS: 00010293 [ 23.240265][ T356] RAX: ffffffff81c33f30 RBX: 0000000000000000 RCX: ffff8881e2990000 [ 23.248077][ T356] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 23.255893][ T356] RBP: ffff8881dc786f08 R08: ffffffff81c33c9e R09: 0000000000000003 [ 23.263787][ T356] R10: ffffffffffffffff R11: dffffc0000000001 R12: 1ffff1103d109e49 [ 23.271599][ T356] R13: dffffc0000000000 R14: ffff8881e884f24c R15: 0000000000000001 [ 23.279413][ T356] FS: 000055555614c380(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.288176][ T356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.294597][ T356] CR2: 0000560ae2d96fd0 CR3: 00000001dc66d000 CR4: 00000000003406b0 [ 23.302411][ T356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.310223][ T356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.318045][ T356] Call Trace: [ 23.321172][ T356] ? __die+0xb4/0x100 [ 23.324981][ T356] ? die+0x26/0x50 [ 23.328535][ T356] ? do_trap+0x1e7/0x340 [ 23.332615][ T356] ? ext4_es_cache_extent+0x4c0/0x640 [ 23.337829][ T356] ? ext4_es_cache_extent+0x4c0/0x640 [ 23.343032][ T356] ? do_invalid_op+0xfb/0x110 [ 23.347542][ T356] ? ext4_es_cache_extent+0x4c0/0x640 [ 23.352750][ T356] ? invalid_op+0x1e/0x30 [ 23.356942][ T356] ? ext4_es_cache_extent+0x22e/0x640 [ 23.362125][ T356] ? ext4_es_cache_extent+0x4c0/0x640 [ 23.367344][ T356] ? ext4_es_cache_extent+0x4c0/0x640 [ 23.372542][ T356] ? __es_shrink+0x860/0x860 [ 23.376972][ T356] ext4_find_extent+0x4e1/0xda0 [ 23.381659][ T356] ext4_ext_map_blocks+0x289/0x7450 [ 23.386700][ T356] ? __unwind_start+0x708/0x890 [ 23.391376][ T356] ? deref_stack_reg+0x1f0/0x1f0 [ 23.396156][ T356] ? deref_stack_reg+0x1f0/0x1f0 [ 23.400924][ T356] ? ext4_ext_release+0x10/0x10 [ 23.405617][ T356] ? stack_trace_save+0x1c0/0x1c0 [ 23.410468][ T356] ? arch_stack_walk+0x111/0x140 [ 23.415245][ T356] ? check_preemption_disabled+0x9f/0x320 [ 23.420798][ T356] ? _raw_spin_lock_irqsave+0xf9/0x210 [ 23.426093][ T356] ? debug_smp_processor_id+0x20/0x20 [ 23.431299][ T356] ? __down_read+0xf0/0x210 [ 23.435658][ T356] ? _raw_read_unlock+0x21/0x40 [ 23.440326][ T356] ? ext4_es_lookup_extent+0x559/0x9d0 [ 23.445641][ T356] ext4_map_blocks+0x3a4/0x1ba0 [ 23.450307][ T356] ? do_mount+0x688/0xe10 [ 23.454472][ T356] ? ksys_mount+0xc2/0xf0 [ 23.458639][ T356] ? __x64_sys_mount+0xb1/0xc0 [ 23.463245][ T356] ? ext4_issue_zeroout+0x150/0x150 [ 23.468278][ T356] ? __getblk_gfp+0x3a/0x720 [ 23.472700][ T356] ext4_getblk+0x112/0x540 [ 23.476957][ T356] ? ext4_data_block_valid+0xdd/0x2f0 [ 23.482160][ T356] ? __ext4_ext_check+0xb72/0x1480 [ 23.487107][ T356] ? ext4_get_block_trans+0x5b0/0x5b0 [ 23.492329][ T356] ext4_bread+0x89/0x390 [ 23.496396][ T356] ? lock_buffer+0x70/0x70 [ 23.500649][ T356] ? from_kgid_munged+0x7a0/0x7a0 [ 23.505521][ T356] ? _raw_spin_unlock+0x49/0x60 [ 23.510209][ T356] ext4_quota_read+0x180/0x280 [ 23.514800][ T356] v2_check_quota_file+0xf7/0x490 [ 23.519657][ T356] ? _raw_spin_lock+0xa4/0x1b0 [ 23.524253][ T356] ? asan.module_dtor+0x20/0x20 [ 23.528940][ T356] ? _raw_spin_lock+0xa4/0x1b0 [ 23.533538][ T356] ? _raw_spin_trylock_bh+0x190/0x190 [ 23.538749][ T356] dquot_load_quota_sb+0x6af/0xc00 [ 23.543696][ T356] vfs_load_quota_inode+0x3cf/0x660 [ 23.548733][ T356] ext4_enable_quotas+0x5a8/0x940 [ 23.553596][ T356] ? ext4_fill_flex_info+0x5e0/0x5e0 [ 23.558712][ T356] ? proc_create+0x230/0x230 [ 23.563139][ T356] ? __mutex_init+0x9e/0xf0 [ 23.567476][ T356] ? ext4_register_sysfs+0x1d9/0x210 [ 23.572603][ T356] ext4_fill_super+0x84f0/0x8d90 [ 23.577386][ T356] ? ext4_mount+0x40/0x40 [ 23.581537][ T356] ? vscnprintf+0x80/0x80 [ 23.585709][ T356] mount_bdev+0x267/0x370 [ 23.589870][ T356] ? ext4_mount+0x40/0x40 [ 23.594037][ T356] legacy_get_tree+0xdf/0x170 [ 23.598551][ T356] ? ext4_lazyinit_thread+0xc60/0xc60 [ 23.603755][ T356] vfs_get_tree+0x85/0x260 [ 23.608009][ T356] do_new_mount+0x292/0x570 [ 23.612352][ T356] ? do_move_mount_old+0x160/0x160 [ 23.617299][ T356] ? security_capable+0x86/0xb0 [ 23.621986][ T356] do_mount+0x688/0xe10 [ 23.625981][ T356] ? copy_mount_string+0x30/0x30 [ 23.630750][ T356] ? copy_mount_options+0x2d0/0x300 [ 23.635789][ T356] ksys_mount+0xc2/0xf0 [ 23.639776][ T356] __x64_sys_mount+0xb1/0xc0 [ 23.644203][ T356] do_syscall_64+0xca/0x1c0 [ 23.648542][ T356] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 23.654266][ T356] Modules linked in: [ 23.658158][ T356] ---[ end trace 810373c2a80b743b ]--- [ 23.663425][ T356] RIP: 0010:ext4_es_cache_extent+0x4c0/0x640 [ 23.669252][ T356] Code: d0 ff e9 fe fe ff ff 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 78 fe ff ff 4c 89 f7 e8 3a d6 d0 ff e9 6b fe ff ff e8 70 05 a1 ff <0f> 0b 4c 89 7c 24 18 65 8b 1d fa f1 3e 7e 89 d8 c1 e8 06 48 8d 3c [ 23.688774][ T356] RSP: 0018:ffff8881dc786e00 EFLAGS: 00010293 [ 23.694657][ T356] RAX: ffffffff81c33f30 RBX: 0000000000000000 RCX: ffff8881e2990000 [ 23.702505][ T356] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 23.710314][ T356] RBP: ffff8881dc786f08 R08: ffffffff81c33c9e R09: 0000000000000003 [ 23.718122][ T356] R10: ffffffffffffffff R11: dffffc0000000001 R12: 1ffff1103d109e49 [ 23.725911][ T356] R13: dffffc0000000000 R14: ffff8881e884f24c R15: 0000000000000001 [ 23.733749][ T356] FS: 000055555614c380(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 23.742498][ T356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.748936][ T356] CR2: 0000560ae2d96fd0 CR3: 00000001dc66d000 CR4: 00000000003406b0 [ 23.756718][ T356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.764705][ T356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.772501][ T356] Kernel panic - not syncing: Fatal exception [ 23.778767][ T356] Kernel Offset: disabled [ 23.782887][ T356] Rebooting in 86400 seconds..