./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1666041967 <...> Warning: Permanently added '10.128.1.39' (ED25519) to the list of known hosts. execve("./syz-executor1666041967", ["./syz-executor1666041967"], 0x7ffd069d8900 /* 10 vars */) = 0 brk(NULL) = 0x555555c9a000 brk(0x555555c9ad00) = 0x555555c9ad00 arch_prctl(ARCH_SET_FS, 0x555555c9a380) = 0 set_tid_address(0x555555c9a650) = 5043 set_robust_list(0x555555c9a660, 24) = 0 rseq(0x555555c9aca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1666041967", 4096) = 28 getrandom("\x29\xf3\x35\x07\xf2\xda\xdc\x61", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555c9ad00 brk(0x555555cbbd00) = 0x555555cbbd00 brk(0x555555cbc000) = 0x555555cbc000 mprotect(0x7f6eb9506000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/proc/self/net/raw", O_RDWR) = -1 EACCES (Permission denied) openat(AT_FDCWD, "/proc/self/net/raw", O_RDONLY) = 3 lseek(3, 2107354, SEEK_SET) = 2107354 [ 71.135133][ T28] audit: type=1400 audit(1705421576.740:86): avc: denied { execmem } for pid=5043 comm="syz-executor166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 read(3, "", 8224) = 0 memfd_create("syzkaller", 0) = 4 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f6eb1000000 write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072 munmap(0x7f6eb1000000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5 [ 71.166268][ T28] audit: type=1400 audit(1705421576.770:87): avc: denied { write } for pid=5043 comm="syz-executor166" name="raw" dev="proc" ino=4026532071 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_net_t tclass=file permissive=1 ioctl(5, LOOP_SET_FD, 4) = 0 close(4) = 0 close(5) = 0 [ 71.206006][ T28] audit: type=1400 audit(1705421576.810:88): avc: denied { read write } for pid=5043 comm="syz-executor166" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 71.215099][ T5043] loop0: detected capacity change from 0 to 256 mkdir("./file0", 0777) = 0 mount("/dev/loop0", "./file0", "exfat", MS_DIRSYNC|MS_POSIXACL|MS_BORN, "") = 0 [ 71.230643][ T28] audit: type=1400 audit(1705421576.810:89): avc: denied { open } for pid=5043 comm="syz-executor166" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 71.262695][ T28] audit: type=1400 audit(1705421576.820:90): avc: denied { ioctl } for pid=5043 comm="syz-executor166" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 71.287685][ T5043] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4e46b93a, utbl_chksum : 0xe619d30d) openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 4 chdir("./file0") = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [ 71.303201][ T28] audit: type=1400 audit(1705421576.880:91): avc: denied { mounton } for pid=5043 comm="syz-executor166" path="/root/file0" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 71.326754][ T28] audit: type=1400 audit(1705421576.910:92): avc: denied { mount } for pid=5043 comm="syz-executor166" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 creat("./bus", 000) = 5 open("./bus", O_RDONLY) = 6 creat("./bus", 000) = 7 io_setup(518, [0x7f6eb944b000]) = 0 io_submit(0x7f6eb944b000, 8, [{aio_data=0x15, aio_lio_opcode=IOCB_CMD_PWRITE, aio_fildes=7, aio_buf="\x6e\x65\x74\x2f\x72\x61\x77\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x30\x78\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\x30\xd0\xc7\xcc\x14\x48\x95\xf6\x9c\x99\xcf\xda\xb5\x0c\xac\xba\x75"..., aio_nbytes=436207642, aio_offset=0, aio_resfd=0xffffffff}, NULL, NULL, NULL, NULL, NULL, NULL, NULL]) = 1 fcntl(6, F_SETFL, O_RDONLY|O_APPEND|O_DIRECT) = 0 dup3(6, 5, 0) = 5 [ 71.349630][ T28] audit: type=1400 audit(1705421576.940:93): avc: denied { write } for pid=5043 comm="syz-executor166" name="/" dev="loop0" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 71.372601][ T28] audit: type=1400 audit(1705421576.940:94): avc: denied { add_name } for pid=5043 comm="syz-executor166" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 io_setup(6, [0x7f6eb944a000]) = 0 [ 71.393765][ T28] audit: type=1400 audit(1705421576.940:95): avc: denied { create } for pid=5043 comm="syz-executor166" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 71.434447][ T5043] ------------[ cut here ]------------ [ 71.439919][ T5043] kernel BUG at lib/iov_iter.c:582! [ 71.445484][ T5043] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 71.451554][ T5043] CPU: 1 PID: 5043 Comm: syz-executor166 Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 71.461611][ T5043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 71.471686][ T5043] RIP: 0010:iov_iter_revert+0x328/0x360 [ 71.477260][ T5043] Code: 8e 94 78 fd e9 8f fd ff ff e8 e4 94 78 fd e9 de fe ff ff e8 ba 94 78 fd eb a2 e8 d3 94 78 fd e9 12 fe ff ff e8 b9 8c 21 fd 90 <0f> 0b e8 c1 94 78 fd e9 23 fe ff ff e8 b7 94 78 fd e9 64 fe ff ff [ 71.496857][ T5043] RSP: 0018:ffffc9000337f9e0 EFLAGS: 00010293 [ 71.502906][ T5043] RAX: 0000000000000000 RBX: 00000000001bca00 RCX: ffffffff84656a77 [ 71.510908][ T5043] RDX: ffff888019313b80 RSI: ffffffff84656c97 RDI: 0000000000000001 [ 71.518961][ T5043] RBP: ffffc9000337fb30 R08: 0000000000000001 R09: 0000000000000000 [ 71.526925][ T5043] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 71.534891][ T5043] R13: fffffffffffffdef R14: 0000000000000000 R15: ffff888047da8740 [ 71.542859][ T5043] FS: 0000555555c9a380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 71.551788][ T5043] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.558358][ T5043] CR2: 000056518e8170a8 CR3: 0000000048309000 CR4: 00000000003506f0 [ 71.566316][ T5043] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.574284][ T5043] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.582237][ T5043] Call Trace: [ 71.585501][ T5043] [ 71.588416][ T5043] ? show_regs+0x8f/0xa0 [ 71.592644][ T5043] ? die+0x36/0xa0 [ 71.596368][ T5043] ? do_trap+0x22b/0x420 [ 71.600599][ T5043] ? iov_iter_revert+0x328/0x360 [ 71.605523][ T5043] ? iov_iter_revert+0x328/0x360 [ 71.610448][ T5043] ? do_error_trap+0xf4/0x230 [ 71.615112][ T5043] ? iov_iter_revert+0x328/0x360 [ 71.620037][ T5043] ? handle_invalid_op+0x34/0x40 [ 71.624965][ T5043] ? iov_iter_revert+0x328/0x360 [ 71.629882][ T5043] ? exc_invalid_op+0x2e/0x40 [ 71.634543][ T5043] ? asm_exc_invalid_op+0x1a/0x20 [ 71.639556][ T5043] ? iov_iter_revert+0x107/0x360 [ 71.644490][ T5043] ? iov_iter_revert+0x327/0x360 [ 71.649412][ T5043] ? iov_iter_revert+0x328/0x360 [ 71.654337][ T5043] exfat_direct_IO+0x320/0x510 [ 71.659114][ T5043] generic_file_read_iter+0x1dd/0x450 [ 71.664496][ T5043] aio_read+0x318/0x4d0 [ 71.668652][ T5043] ? aio_fsync+0x3a0/0x3a0 [ 71.673053][ T5043] ? rcu_is_watching+0x12/0xb0 [ 71.677806][ T5043] ? rcu_is_watching+0x12/0xb0 [ 71.682566][ T5043] ? preempt_count_sub+0x160/0x160 [ 71.687660][ T5043] ? io_submit_one+0x1480/0x1de0 [ 71.692596][ T5043] io_submit_one+0x1480/0x1de0 [ 71.697346][ T5043] ? do_io_getevents+0x170/0x170 [ 71.702281][ T5043] ? rcu_is_watching+0x12/0xb0 [ 71.707033][ T5043] ? lock_release+0x4bf/0x690 [ 71.711699][ T5043] ? lookup_ioctx+0x181/0x820 [ 71.716359][ T5043] ? __might_fault+0x13f/0x1a0 [ 71.721105][ T5043] ? reacquire_held_locks+0x4c0/0x4c0 [ 71.726469][ T5043] ? lock_release+0xa5/0x690 [ 71.731050][ T5043] ? __might_fault+0xe6/0x1a0 [ 71.735710][ T5043] ? __x64_sys_io_submit+0x1c3/0x350 [ 71.740982][ T5043] __x64_sys_io_submit+0x1c3/0x350 [ 71.746082][ T5043] ? __ia32_sys_io_destroy+0x1d0/0x1d0 [ 71.751617][ T5043] ? _raw_spin_unlock_irq+0x2e/0x50 [ 71.756799][ T5043] ? ptrace_notify+0xf4/0x130 [ 71.761459][ T5043] do_syscall_64+0xd3/0x250 [ 71.765959][ T5043] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 71.771844][ T5043] RIP: 0033:0x7f6eb9491c79 [ 71.776251][ T5043] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 71.795840][ T5043] RSP: 002b:00007ffdb9c8bf78 EFLAGS: 00000246 ORIG_RAX: 00000000000000d1 [ 71.804320][ T5043] RAX: ffffffffffffffda RBX: 00007ffdb9c8bf80 RCX: 00007f6eb9491c79 [ 71.812286][ T5043] RDX: 0000000020000540 RSI: 0000000000003f0a RDI: 00007f6eb944a000 [ 71.820243][ T5043] RBP: 00007f6eb9506610 R08: 65732f636f72702f R09: 65732f636f72702f [ 71.828206][ T5043] R10: 65732f636f72702f R11: 0000000000000246 R12: 0000000000000001 [ 71.836165][ T5043] R13: 00007ffdb9c8c1b8 R14: 0000000000000001 R15: 0000000000000001 [ 71.844123][ T5043] [ 71.847131][ T5043] Modules linked in: [ 71.851329][ T5043] ---[ end trace 0000000000000000 ]--- [ 71.864120][ T5043] RIP: 0010:iov_iter_revert+0x328/0x360 [ 71.869723][ T5043] Code: 8e 94 78 fd e9 8f fd ff ff e8 e4 94 78 fd e9 de fe ff ff e8 ba 94 78 fd eb a2 e8 d3 94 78 fd e9 12 fe ff ff e8 b9 8c 21 fd 90 <0f> 0b e8 c1 94 78 fd e9 23 fe ff ff e8 b7 94 78 fd e9 64 fe ff ff [ 71.889380][ T5043] RSP: 0018:ffffc9000337f9e0 EFLAGS: 00010293 [ 71.895504][ T5043] RAX: 0000000000000000 RBX: 00000000001bca00 RCX: ffffffff84656a77 [ 71.903514][ T5043] RDX: ffff888019313b80 RSI: ffffffff84656c97 RDI: 0000000000000001 [ 71.911501][ T5043] RBP: ffffc9000337fb30 R08: 0000000000000001 R09: 0000000000000000 [ 71.919601][ T5043] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 71.927617][ T5043] R13: fffffffffffffdef R14: 0000000000000000 R15: ffff888047da8740 [ 71.935606][ T5043] FS: 0000555555c9a380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 71.944584][ T5043] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 71.951176][ T5043] CR2: 00007f6eb944a000 CR3: 0000000048309000 CR4: 00000000003506f0 [ 71.959198][ T5043] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 71.967195][ T5043] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 71.975194][ T5043] Kernel panic - not syncing: Fatal exception [ 71.981448][ T5043] Kernel Offset: disabled [ 71.985756][ T5043] Rebooting in 86400 seconds..