./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2288000488

<...>
Warning: Permanently added '10.128.1.106' (ECDSA) to the list of known hosts.
execve("./syz-executor2288000488", ["./syz-executor2288000488"], 0x7ffc899f58d0 /* 10 vars */) = 0
brk(NULL)                               = 0x555557083000
brk(0x555557083c40)                     = 0x555557083c40
arch_prctl(ARCH_SET_FS, 0x555557083300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2288000488", 4096) = 28
brk(0x5555570a4c40)                     = 0x5555570a4c40
brk(0x5555570a5000)                     = 0x5555570a5000
mprotect(0x7f29d77cc000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0)            = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f29cf30d000
syzkaller login: [   41.064278][ T5000] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5000 'syz-executor228'
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
munmap(0x7f29cf30d000, 16777216)        = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
ioctl(4, LOOP_SET_FD, 3)                = 0
close(3)                                = 0
mkdir("./file0", 0777)                  = 0
mount("/dev/loop0", "./file0", "jfs", MS_REC, "") = 0
openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
chdir("./file0")                        = 0
ioctl(4, LOOP_CLR_FD)                   = 0
close(4)                                = 0
[   41.160778][ T5000] loop0: detected capacity change from 0 to 32768
[   41.186435][ T5000] ==================================================================
[   41.194508][ T5000] BUG: KASAN: slab-out-of-bounds in dbAllocBits+0x623/0x630
[   41.201798][ T5000] Read of size 8 at addr ffff8880209d5eb8 by task syz-executor228/5000
[   41.210048][ T5000] 
[   41.212352][ T5000] CPU: 0 PID: 5000 Comm: syz-executor228 Not tainted 6.4.0-rc7-syzkaller-00204-g61dabacdad4e #0
[   41.222911][ T5000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   41.232949][ T5000] Call Trace:
[   41.236209][ T5000]  <TASK>
[   41.239204][ T5000]  dump_stack_lvl+0xd9/0x150
[   41.243870][ T5000]  print_address_description.constprop.0+0x2c/0x3c0
[   41.250443][ T5000]  ? dbAllocBits+0x623/0x630
[   41.255015][ T5000]  kasan_report+0x11c/0x130
[   41.259593][ T5000]  ? dbAllocBits+0x623/0x630
[   41.264165][ T5000]  dbAllocBits+0x623/0x630
[   41.268570][ T5000]  dbAllocDmap+0x61/0x110
[   41.272891][ T5000]  dbAlloc+0x78e/0xab0
[   41.276937][ T5000]  ea_get+0xc18/0x12e0
[   41.280987][ T5000]  ? ea_release+0x220/0x220
[   41.285468][ T5000]  ? rwsem_down_write_slowpath+0x1220/0x1220
[   41.291433][ T5000]  ? find_held_lock+0x2d/0x110
[   41.296191][ T5000]  __jfs_setxattr+0x1b5/0x1010
[   41.301034][ T5000]  ? ea_write+0xca0/0xca0
[   41.305352][ T5000]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   41.311238][ T5000]  ? posix_acl_to_xattr+0x31a/0x3e0
[   41.316442][ T5000]  __jfs_set_acl+0x87/0x190
[   41.320946][ T5000]  jfs_set_acl+0x1fc/0x3a0
[   41.325351][ T5000]  ? jfs_get_acl+0x1a0/0x1a0
[   41.329930][ T5000]  ? evm_inode_set_acl+0x9d/0x380
[   41.334963][ T5000]  ? make_vfsuid+0x113/0x170
[   41.339629][ T5000]  ? kernel_read_file_from_fd+0x110/0x110
[   41.345343][ T5000]  ? posix_acl_valid+0x208/0x330
[   41.350297][ T5000]  set_posix_acl+0x25b/0x320
[   41.354971][ T5000]  vfs_set_acl+0x5ad/0x8f0
[   41.359385][ T5000]  do_set_acl+0xda/0x1b0
[   41.363619][ T5000]  do_setxattr+0xc6/0x190
[   41.367945][ T5000]  setxattr+0x146/0x160
[   41.372090][ T5000]  ? do_setxattr+0x190/0x190
[   41.376671][ T5000]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   41.382642][ T5000]  ? find_held_lock+0x2d/0x110
[   41.387396][ T5000]  ? __mnt_want_write+0x3f/0x2e0
[   41.392412][ T5000]  ? lock_downgrade+0x690/0x690
[   41.397253][ T5000]  ? lock_sync+0x190/0x190
[   41.401687][ T5000]  ? __mnt_want_write+0x1fe/0x2e0
[   41.406701][ T5000]  path_setxattr+0x197/0x1c0
[   41.411284][ T5000]  ? setxattr+0x160/0x160
[   41.415689][ T5000]  ? lockdep_hardirqs_on+0x7d/0x100
[   41.420879][ T5000]  __x64_sys_lsetxattr+0xc1/0x160
[   41.425918][ T5000]  do_syscall_64+0x39/0xb0
[   41.430333][ T5000]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   41.436227][ T5000] RIP: 0033:0x7f29d7759829
[   41.440629][ T5000] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   41.460311][ T5000] RSP: 002b:00007fff9d37de18 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   41.468719][ T5000] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f29d7759829
[   41.476764][ T5000] RDX: 0000000020000180 RSI: 0000000020000040 RDI: 0000000020000000
[   41.484720][ T5000] RBP: 00007f29d77190c0 R08: 0000000000000000 R09: 0000000000000000
[   41.492680][ T5000] R10: 0000000000000024 R11: 0000000000000246 R12: 00007f29d7719150
[   41.500638][ T5000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   41.508599][ T5000]  </TASK>
[   41.511603][ T5000] 
[   41.513905][ T5000] Allocated by task 4670:
[   41.518214][ T5000]  kasan_save_stack+0x22/0x40
[   41.522887][ T5000]  kasan_set_track+0x25/0x30
[   41.527472][ T5000]  __kasan_kmalloc+0xa2/0xb0
[   41.532050][ T5000]  rtnl_newlink+0x4a/0xa0
[   41.536362][ T5000]  rtnetlink_rcv_msg+0x43d/0xd50
[   41.541371][ T5000]  netlink_rcv_skb+0x165/0x440
[   41.546118][ T5000]  netlink_unicast+0x547/0x7f0
[   41.550867][ T5000]  netlink_sendmsg+0x925/0xe30
[   41.555615][ T5000]  sock_sendmsg+0xde/0x190
[   41.560091][ T5000]  ____sys_sendmsg+0x71c/0x900
[   41.564836][ T5000]  ___sys_sendmsg+0x110/0x1b0
[   41.569506][ T5000]  __sys_sendmsg+0xf7/0x1c0
[   41.573997][ T5000]  do_syscall_64+0x39/0xb0
[   41.578399][ T5000]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   41.584371][ T5000] 
[   41.586675][ T5000] The buggy address belongs to the object at ffff8880209d5000
[   41.586675][ T5000]  which belongs to the cache kmalloc-2k of size 2048
[   41.600715][ T5000] The buggy address is located 1720 bytes to the right of
[   41.600715][ T5000]  allocated 2048-byte region [ffff8880209d5000, ffff8880209d5800)
[   41.615535][ T5000] 
[   41.617846][ T5000] The buggy address belongs to the physical page:
[   41.624234][ T5000] page:ffffea0000827400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x209d0
[   41.634365][ T5000] head:ffffea0000827400 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   41.643297][ T5000] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[   41.651257][ T5000] page_type: 0xffffffff()
[   41.655573][ T5000] raw: 00fff00000010200 ffff888012442000 ffffea000057a200 dead000000000002
[   41.664142][ T5000] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000
[   41.672702][ T5000] page dumped because: kasan: bad access detected
[   41.679180][ T5000] page_owner tracks the page as allocated
[   41.684872][ T5000] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 12, tgid 12 (kworker/u4:1), ts 5555005616, free_ts 0
[   41.704911][ T5000]  post_alloc_hook+0x2db/0x350
[   41.709669][ T5000]  get_page_from_freelist+0xf41/0x2c00
[   41.715119][ T5000]  __alloc_pages+0x1cb/0x4a0
[   41.719791][ T5000]  alloc_pages+0x1aa/0x270
[   41.724196][ T5000]  allocate_slab+0x25f/0x390
[   41.728775][ T5000]  ___slab_alloc+0xa91/0x1400
[   41.733441][ T5000]  __slab_alloc.constprop.0+0x56/0xa0
[   41.738804][ T5000]  __kmem_cache_alloc_node+0x136/0x320
[   41.744248][ T5000]  __kmalloc+0x4e/0x190
[   41.748386][ T5000]  scsi_alloc_target+0x132/0xc90
[   41.753322][ T5000]  __scsi_scan_target+0x152/0xe50
[   41.758430][ T5000]  scsi_scan_channel+0x148/0x1e0
[   41.763364][ T5000]  scsi_scan_host_selected+0x2e3/0x3f0
[   41.768810][ T5000]  do_scsi_scan_host+0x1e8/0x260
[   41.773729][ T5000]  do_scan_async+0x42/0x530
[   41.778213][ T5000]  async_run_entry_fn+0x9c/0x530
[   41.783138][ T5000] page_owner free stack trace missing
[   41.788487][ T5000] 
[   41.790794][ T5000] Memory state around the buggy address:
[   41.796403][ T5000]  ffff8880209d5d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   41.804444][ T5000]  ffff8880209d5e00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   41.812492][ T5000] >ffff8880209d5e80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   41.820965][ T5000]                                         ^
[   41.826838][ T5000]  ffff8880209d5f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   41.834881][ T5000]  ffff8880209d5f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   41.842921][ T5000] ==================================================================
[   41.851885][ T5000] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   41.859087][ T5000] CPU: 1 PID: 5000 Comm: syz-executor228 Not tainted 6.4.0-rc7-syzkaller-00204-g61dabacdad4e #0
[   41.869473][ T5000] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[   41.879507][ T5000] Call Trace:
[   41.882761][ T5000]  <TASK>
[   41.885670][ T5000]  dump_stack_lvl+0xd9/0x150
[   41.890265][ T5000]  panic+0x686/0x730
[   41.894144][ T5000]  ? panic_smp_self_stop+0xa0/0xa0
[   41.899322][ T5000]  ? preempt_schedule_thunk+0x1a/0x20
[   41.904696][ T5000]  ? preempt_schedule_common+0x45/0xb0
[   41.910131][ T5000]  check_panic_on_warn+0xb1/0xc0
[   41.915053][ T5000]  end_report+0xe9/0x120
[   41.919276][ T5000]  ? dbAllocBits+0x623/0x630
[   41.923859][ T5000]  kasan_report+0xf9/0x130
[   41.928257][ T5000]  ? dbAllocBits+0x623/0x630
[   41.932830][ T5000]  dbAllocBits+0x623/0x630
[   41.937243][ T5000]  dbAllocDmap+0x61/0x110
[   41.941544][ T5000]  dbAlloc+0x78e/0xab0
[   41.945592][ T5000]  ea_get+0xc18/0x12e0
[   41.949650][ T5000]  ? ea_release+0x220/0x220
[   41.954127][ T5000]  ? rwsem_down_write_slowpath+0x1220/0x1220
[   41.960087][ T5000]  ? find_held_lock+0x2d/0x110
[   41.964827][ T5000]  __jfs_setxattr+0x1b5/0x1010
[   41.969569][ T5000]  ? ea_write+0xca0/0xca0
[   41.973874][ T5000]  ? __sanitizer_cov_trace_switch+0x54/0x90
[   41.979747][ T5000]  ? posix_acl_to_xattr+0x31a/0x3e0
[   41.984931][ T5000]  __jfs_set_acl+0x87/0x190
[   41.989436][ T5000]  jfs_set_acl+0x1fc/0x3a0
[   41.993830][ T5000]  ? jfs_get_acl+0x1a0/0x1a0
[   41.998488][ T5000]  ? evm_inode_set_acl+0x9d/0x380
[   42.003487][ T5000]  ? make_vfsuid+0x113/0x170
[   42.008056][ T5000]  ? kernel_read_file_from_fd+0x110/0x110
[   42.013758][ T5000]  ? posix_acl_valid+0x208/0x330
[   42.018677][ T5000]  set_posix_acl+0x25b/0x320
[   42.023250][ T5000]  vfs_set_acl+0x5ad/0x8f0
[   42.027646][ T5000]  do_set_acl+0xda/0x1b0
[   42.031870][ T5000]  do_setxattr+0xc6/0x190
[   42.036176][ T5000]  setxattr+0x146/0x160
[   42.040309][ T5000]  ? do_setxattr+0x190/0x190
[   42.044875][ T5000]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[   42.050837][ T5000]  ? find_held_lock+0x2d/0x110
[   42.055585][ T5000]  ? __mnt_want_write+0x3f/0x2e0
[   42.060679][ T5000]  ? lock_downgrade+0x690/0x690
[   42.065525][ T5000]  ? lock_sync+0x190/0x190
[   42.069921][ T5000]  ? __mnt_want_write+0x1fe/0x2e0
[   42.074923][ T5000]  path_setxattr+0x197/0x1c0
[   42.079581][ T5000]  ? setxattr+0x160/0x160
[   42.083885][ T5000]  ? lockdep_hardirqs_on+0x7d/0x100
[   42.089058][ T5000]  __x64_sys_lsetxattr+0xc1/0x160
[   42.094060][ T5000]  do_syscall_64+0x39/0xb0
[   42.098537][ T5000]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   42.104409][ T5000] RIP: 0033:0x7f29d7759829
[   42.108800][ T5000] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   42.128470][ T5000] RSP: 002b:00007fff9d37de18 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[   42.136852][ T5000] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f29d7759829
[   42.144882][ T5000] RDX: 0000000020000180 RSI: 0000000020000040 RDI: 0000000020000000
[   42.152829][ T5000] RBP: 00007f29d77190c0 R08: 0000000000000000 R09: 0000000000000000
[   42.160872][ T5000] R10: 0000000000000024 R11: 0000000000000246 R12: 00007f29d7719150
[   42.168827][ T5000] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   42.176775][ T5000]  </TASK>
[   42.180778][ T5000] Kernel Offset: disabled
[   42.185081][ T5000] Rebooting in 86400 seconds..