./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3937287140 <...> forked to background, child pid 3184 no interfaces have a carrier [ 24.005490][ T3185] 8021q: adding VLAN 0 to HW filter on device bond0 [ 24.015681][ T3185] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.111' (ECDSA) to the list of known hosts. execve("./syz-executor3937287140", ["./syz-executor3937287140"], 0x7fffd55a9350 /* 10 vars */) = 0 brk(NULL) = 0x555556c4c000 brk(0x555556c4cc40) = 0x555556c4cc40 arch_prctl(ARCH_SET_FS, 0x555556c4c300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3937287140", 4096) = 28 brk(0x555556c6dc40) = 0x555556c6dc40 brk(0x555556c6e000) = 0x555556c6e000 mprotect(0x7f72b3cb2000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3614 attached , child_tidptr=0x555556c4c5d0) = 3614 [pid 3614] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 3614] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3614] setsid() = 1 [pid 3614] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 3614] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 3614] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 3614] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 3614] prlimit64(0, RLIMIT_CORE, {rlim_cur=0, rlim_max=0}, NULL) = 0 [pid 3614] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 3614] unshare(CLONE_NEWNS) = 0 [pid 3614] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 3614] unshare(CLONE_NEWIPC) = 0 [pid 3614] unshare(CLONE_NEWCGROUP) = 0 [pid 3614] unshare(CLONE_NEWUTS) = 0 [pid 3614] unshare(CLONE_SYSVSEM) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "16777216", 8) = 8 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "536870912", 9) = 9 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1024", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "8192", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1024", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1024", 4) = 4 [pid 3614] close(3) = 0 [pid 3614] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 3614] write(3, "1024 1048576 500 1024", 21) = 21 [pid 3614] close(3) = 0 [pid 3614] getpid() = 1 [pid 3614] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [ 43.995761][ T3614] dump_stack_lvl+0xcd/0x134 [ 44.000367][ T3614] ubsan_epilogue+0xb/0x50 [ 44.004775][ T3614] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187 [ 44.011536][ T3614] diFree.cold+0x17/0x68 [ 44.015772][ T3614] ? truncate_inode_pages_range+0x5d9/0x1510 [ 44.021751][ T3614] ? truncate_inode_partial_folio+0xdf0/0xdf0 [ 44.028083][ T3614] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 44.034058][ T3614] ? diWrite+0x1550/0x1550 [ 44.038463][ T3614] ? __dquot_initialize+0x295/0xbe0 [ 44.043661][ T3614] ? find_held_lock+0x2d/0x110 [ 44.048423][ T3614] ? jfs_free_zero_link+0x214/0x4a0 [ 44.053609][ T3614] ? jfs_mkdir+0xab0/0xab0 [ 44.058008][ T3614] ? lock_downgrade+0x6e0/0x6e0 [ 44.062929][ T3614] ? cpuacct_css_alloc+0x160/0x160 [ 44.068052][ T3614] ? rwlock_bug.part.0+0x90/0x90 [ 44.072991][ T3614] jfs_evict_inode+0x3c1/0x4a0 [ 44.077756][ T3614] ? jfs_write_inode+0x230/0x230 [ 44.082685][ T3614] evict+0x2ed/0x6b0 [ 44.086764][ T3614] iput.part.0+0x55d/0x810 [ 44.091178][ T3614] iput+0x58/0x70 [ 44.094982][ T3614] dentry_unlink_inode+0x2b1/0x460 [ 44.100341][ T3614] __dentry_kill+0x3c0/0x640 [ 44.104927][ T3614] shrink_dentry_list+0x23c/0x800 [ 44.109940][ T3614] ? find_held_lock+0x2d/0x110 [ 44.114691][ T3614] shrink_dcache_parent+0x1fe/0x3c0 [ 44.119878][ T3614] ? shrink_dcache_sb+0x360/0x360 [ 44.124902][ T3614] shrink_dcache_for_umount+0x71/0x330 [ 44.130526][ T3614] ? up_write+0x148/0x470 [ 44.135047][ T3614] generic_shutdown_super+0x68/0x400 [ 44.140419][ T3614] kill_block_super+0x97/0xf0 [ 44.145183][ T3614] deactivate_locked_super+0x94/0x160 [ 44.150634][ T3614] deactivate_super+0xad/0xd0 [ 44.155314][ T3614] cleanup_mnt+0x2ae/0x3d0 [ 44.159725][ T3614] task_work_run+0xdd/0x1a0 [ 44.164315][ T3614] do_exit+0xad5/0x29b0 [ 44.168462][ T3614] ? mm_update_next_owner+0x7a0/0x7a0 [ 44.173842][ T3614] ? _raw_spin_unlock_irq+0x1f/0x40 [ 44.179108][ T3614] ? _raw_spin_unlock_irq+0x1f/0x40 [ 44.184298][ T3614] do_group_exit+0xd2/0x2f0 [ 44.189146][ T3614] __x64_sys_exit_group+0x3a/0x50 [ 44.194198][ T3614] do_syscall_64+0x35/0xb0 [ 44.198615][ T3614] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 44.204501][ T3614] RIP: 0033:0x7f72b3c35579 [ 44.208902][ T3614] Code: Unable to access opcode bytes at RIP 0x7f72b3c3554f. [ 44.216345][ T3614] RSP: 002b:00007fff12fe7c88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 44.224749][ T3614] RAX: ffffffffffffffda RBX: 00007f72b3cb8330 RCX: 00007f72b3c35579 [ 44.232712][ T3614] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 44.240943][ T3614] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000 [ 44.249003][ T3614] R10: 0000555556c4c2c0 R11: 0000000000000246 R12: 00007f72b3cb8330 [ 44.256973][ T3614] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 44.264945][ T3614] [ 44.270913][ T3614] ================================================================================ [ 44.280415][ T3614] Kernel panic - not syncing: panic_on_warn set ... [ 44.287015][ T3614] CPU: 1 PID: 3614 Comm: syz-executor393 Not tainted 6.0.0-rc7-syzkaller-00068-g49c13ed0316d #0 [ 44.297434][ T3614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 44.307928][ T3614] Call Trace: [ 44.311205][ T3614] [ 44.314304][ T3614] dump_stack_lvl+0xcd/0x134 [ 44.318906][ T3614] panic+0x2c8/0x627 [ 44.322889][ T3614] ? panic_print_sys_info.part.0+0x10b/0x10b [ 44.328887][ T3614] ? ubsan_epilogue+0x3e/0x50 [ 44.333579][ T3614] ubsan_epilogue+0x4a/0x50 [ 44.338101][ T3614] __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x187 [ 44.344883][ T3614] diFree.cold+0x17/0x68 [ 44.349130][ T3614] ? truncate_inode_pages_range+0x5d9/0x1510 [ 44.355117][ T3614] ? truncate_inode_partial_folio+0xdf0/0xdf0 [ 44.361188][ T3614] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 44.367182][ T3614] ? diWrite+0x1550/0x1550 [ 44.371596][ T3614] ? __dquot_initialize+0x295/0xbe0 [ 44.376978][ T3614] ? find_held_lock+0x2d/0x110 [ 44.381748][ T3614] ? jfs_free_zero_link+0x214/0x4a0 [ 44.386950][ T3614] ? jfs_mkdir+0xab0/0xab0 [ 44.391538][ T3614] ? lock_downgrade+0x6e0/0x6e0 [ 44.396387][ T3614] ? cpuacct_css_alloc+0x160/0x160 [ 44.401502][ T3614] ? rwlock_bug.part.0+0x90/0x90 [ 44.406445][ T3614] jfs_evict_inode+0x3c1/0x4a0 [ 44.411306][ T3614] ? jfs_write_inode+0x230/0x230 [ 44.416246][ T3614] evict+0x2ed/0x6b0 [ 44.420147][ T3614] iput.part.0+0x55d/0x810 [ 44.424572][ T3614] iput+0x58/0x70 [ 44.428212][ T3614] dentry_unlink_inode+0x2b1/0x460 [ 44.433328][ T3614] __dentry_kill+0x3c0/0x640 [ 44.437929][ T3614] shrink_dentry_list+0x23c/0x800 [ 44.443135][ T3614] ? find_held_lock+0x2d/0x110 [ 44.447909][ T3614] shrink_dcache_parent+0x1fe/0x3c0 [ 44.453117][ T3614] ? shrink_dcache_sb+0x360/0x360 [ 44.458158][ T3614] shrink_dcache_for_umount+0x71/0x330 [ 44.463622][ T3614] ? up_write+0x148/0x470 [ 44.467962][ T3614] generic_shutdown_super+0x68/0x400 [ 44.473433][ T3614] kill_block_super+0x97/0xf0 [ 44.478117][ T3614] deactivate_locked_super+0x94/0x160 [ 44.483533][ T3614] deactivate_super+0xad/0xd0 [ 44.488221][ T3614] cleanup_mnt+0x2ae/0x3d0 [ 44.492646][ T3614] task_work_run+0xdd/0x1a0 [ 44.497247][ T3614] do_exit+0xad5/0x29b0 [ 44.501410][ T3614] ? mm_update_next_owner+0x7a0/0x7a0 [ 44.506795][ T3614] ? _raw_spin_unlock_irq+0x1f/0x40 [ 44.512004][ T3614] ? _raw_spin_unlock_irq+0x1f/0x40 [ 44.517216][ T3614] do_group_exit+0xd2/0x2f0 [ 44.521727][ T3614] __x64_sys_exit_group+0x3a/0x50 [ 44.526760][ T3614] do_syscall_64+0x35/0xb0 [ 44.531184][ T3614] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 44.537096][ T3614] RIP: 0033:0x7f72b3c35579 [ 44.541523][ T3614] Code: Unable to access opcode bytes at RIP 0x7f72b3c3554f. [ 44.548894][ T3614] RSP: 002b:00007fff12fe7c88 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 44.557313][ T3614] RAX: ffffffffffffffda RBX: 00007f72b3cb8330 RCX: 00007f72b3c35579 [ 44.565286][ T3614] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000001 [ 44.573257][ T3614] RBP: 0000000000000001 R08: ffffffffffffffc0 R09: 0000000000000000 [ 44.581248][ T3614] R10: 0000555556c4c2c0 R11: 0000000000000246 R12: 00007f72b3cb8330 [ 44.589245][ T3614] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 44.597332][ T3614] [ 44.600558][ T3614] Kernel Offset: disabled [ 44.604967][ T3614] Rebooting in 86400 seconds..