./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor263123447
<...>
DUID 00:04:7b:a2:e0:73:6b:5f:a9:8e:d4:f6:53:82:b5:31:a7:5e
forked to background, child pid 4645
[ 40.352457][ T4646] 8021q: adding VLAN 0 to HW filter on device bond0
[ 40.379545][ T4646] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.1.91' (ECDSA) to the list of known hosts.
execve("./syz-executor263123447", ["./syz-executor263123447"], 0x7ffcbb386e70 /* 10 vars */) = 0
brk(NULL) = 0x555556c0d000
brk(0x555556c0dc40) = 0x555556c0dc40
arch_prctl(ARCH_SET_FS, 0x555556c0d300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor263123447", 4096) = 27
brk(0x555556c2ec40) = 0x555556c2ec40
brk(0x555556c2f000) = 0x555556c2f000
mprotect(0x7f95d5e00000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556c0d5d0) = 5071
./strace-static-x86_64: Process 5071 attached
[pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5071] setpgid(0, 0) = 0
[pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5071] write(3, "1000", 4) = 4
[pid 5071] close(3) = 0
[pid 5071] memfd_create("syzkaller", 0) = 3
[pid 5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f95cd945000
[pid 5071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
[pid 5071] munmap(0x7f95cd945000, 262144) = 0
[pid 5071] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid 5071] ioctl(4, LOOP_SET_FD, 3) = 0
[pid 5071] close(3) = 0
[pid 5071] mkdir("./bus", 0777) = 0
syzkaller login: [ 71.356370][ T5071] loop0: detected capacity change from 0 to 512
[ 71.449554][ T5071] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 71.456364][ T5071] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 71.469489][ T5071] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 71.486011][ T5071] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2197: inode #15: comm syz-executor263: corrupted in-inode xattr
[pid 5071] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "usrjquota=,abort,debug_want_extra_isize=0x000000000000002c,test_dummy_encryption,nojournal_checksum,"...) = 0
[pid 5071] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3
[pid 5071] chdir("./bus") = 0
[pid 5071] ioctl(4, LOOP_CLR_FD) = 0
[pid 5071] close(4) = 0
[pid 5071] openat(AT_FDCWD, "./file0", O_RDONLY) = 4
[ 71.499698][ T5071] EXT4-fs error (device loop0): ext4_orphan_get:1397: comm syz-executor263: couldn't read orphan inode 15 (err -117)
[ 71.512701][ T5071] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 without journal. Quota mode: none.
[pid 5071] mkdirat(4, "./bus", 000) = 0
[ 71.629962][ T5071] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[ 71.723789][ T5071] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[ 71.731971][ T5071] ------------[ cut here ]------------
[ 71.737548][ T5071] WARNING: CPU: 0 PID: 5071 at mm/page_alloc.c:5525 __alloc_pages+0x30a/0x560
[ 71.748248][ T5071] Modules linked in:
[ 71.752481][ T5071] CPU: 1 PID: 5071 Comm: syz-executor263 Not tainted 6.2.0-rc1-syzkaller #0
[ 71.761610][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 71.772162][ T5071] RIP: 0010:__alloc_pages+0x30a/0x560
[ 71.777589][ T5071] Code: 5c 24 04 0f 85 f3 00 00 00 44 89 e1 81 e1 7f ff ff ff a9 00 00 04 00 41 0f 44 cc 41 89 cc e9 e3 00 00 00 c6 05 d6 68 ad 0c 01 <0f> 0b 83 fb 0a 0f 86 c8 fd ff ff 31 db 48 c7 44 24 20 0e 36 e0 45
[ 71.797684][ T5071] RSP: 0018:ffffc90003c2f1c0 EFLAGS: 00010246
[ 71.804088][ T5071] RAX: ffffc90003c2f220 RBX: 0000000000000014 RCX: 0000000000000000
[ 71.812368][ T5071] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc90003c2f248
[ 71.820649][ T5071] RBP: ffffc90003c2f2d8 R08: dffffc0000000000 R09: ffffc90003c2f220
[ 71.828973][ T5071] R10: fffff52000785e49 R11: 1ffff92000785e44 R12: 0000000000040d40
[ 71.836998][ T5071] R13: 1ffff92000785e40 R14: dffffc0000000000 R15: 1ffff92000785e3c
[ 71.845216][ T5071] FS: 0000555556c0d300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 71.854422][ T5071] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 71.861229][ T5071] CR2: 00007f95d5e04138 CR3: 00000000793aa000 CR4: 00000000003506f0
[ 71.869346][ T5071] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 71.877364][ T5071] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 71.885512][ T5071] Call Trace:
[ 71.888898][ T5071]
[ 71.891877][ T5071] ? zone_statistics+0x160/0x160
[ 71.896859][ T5071] ? ext4_match+0x121/0x710
[ 71.901449][ T5071] ? xattr_find_entry+0x135/0x340
[ 71.906544][ T5071] ? xattr_find_entry+0x2d6/0x340
[ 71.911715][ T5071] __kmalloc_large_node+0x95/0x1e0
[ 71.916881][ T5071] ? ext4_update_inline_data+0x236/0x6b0
[ 71.922618][ T5071] __kmalloc+0xfe/0x190
[ 71.926813][ T5071] ext4_update_inline_data+0x236/0x6b0
[ 71.932393][ T5071] ? zero_user_segments+0x6b0/0x6b0
[ 71.937652][ T5071] ? get_max_inline_xattr_value_size+0x3f8/0x510
[ 71.944104][ T5071] ext4_try_add_inline_entry+0x328/0x990
[ 71.949872][ T5071] ? ext4_fname_setup_filename+0x1ba/0x2a0
[ 71.955746][ T5071] ? ext4_da_convert_inline_data_to_extent+0xa30/0xa30
[ 71.962814][ T5071] ? __ext4_new_inode+0x3a93/0x46f0
[ 71.968176][ T5071] ext4_add_entry+0x5a4/0xeb0
[ 71.972922][ T5071] ? ext4_inc_count+0x190/0x190
[ 71.977822][ T5071] ? d_splice_alias+0x122/0x3b0
[ 71.983543][ T5071] ext4_add_nondir+0x96/0x260
[ 71.988364][ T5071] ext4_create+0x36c/0x560
[ 71.992820][ T5071] ? ext4_lookup+0x690/0x690
[ 71.997425][ T5071] ? generic_permission+0x229/0x500
[ 72.002731][ T5071] ? inode_permission+0xf5/0x450
[ 72.007818][ T5071] ? bpf_lsm_inode_create+0x5/0x10
[ 72.013058][ T5071] ? security_inode_create+0xdd/0x120
[ 72.018537][ T5071] ? ext4_lookup+0x690/0x690
[ 72.023137][ T5071] path_openat+0x12ac/0x2dd0
[ 72.027779][ T5071] ? do_filp_open+0x4f0/0x4f0
[ 72.032606][ T5071] do_filp_open+0x264/0x4f0
[ 72.037155][ T5071] ? vfs_tmpfile+0x490/0x490
[ 72.041907][ T5071] ? do_raw_spin_unlock+0x134/0x8a0
[ 72.047164][ T5071] ? _raw_spin_unlock+0x24/0x40
[ 72.052111][ T5071] ? alloc_fd+0x5a7/0x640
[ 72.056486][ T5071] do_sys_openat2+0x124/0x4e0
[ 72.061247][ T5071] ? print_irqtrace_events+0x220/0x220
[ 72.066741][ T5071] ? ptrace_stop+0x74d/0x970
[ 72.071437][ T5071] ? do_sys_open+0x220/0x220
[ 72.076077][ T5071] ? lockdep_hardirqs_on+0x8d/0x130
[ 72.081364][ T5071] ? _raw_spin_unlock_irq+0x2a/0x40
[ 72.086613][ T5071] ? ptrace_notify+0x245/0x340
[ 72.091598][ T5071] __x64_sys_openat+0x243/0x290
[ 72.096501][ T5071] ? __ia32_sys_open+0x270/0x270
[ 72.101556][ T5071] ? syscall_enter_from_user_mode+0x2e/0x1d0
[ 72.107572][ T5071] ? syscall_enter_from_user_mode+0x86/0x1d0
[ 72.113655][ T5071] do_syscall_64+0x3d/0xb0
[ 72.118155][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 72.124069][ T5071] RIP: 0033:0x7f95d5d925a9
[ 72.128573][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 72.148286][ T5071] RSP: 002b:00007ffdec99f098 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 72.156730][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f95d5d925a9
[ 72.164822][ T5071] RDX: 000000000000275a RSI: 0000000020000080 RDI: 0000000000000004
[ 72.172920][ T5071] RBP: 0000000000000000 R08: 00007f95d5e00ec0 R09: 00007f95d5e00ec0
[ 72.180986][ T5071] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdec99f0c0
[ 72.189127][ T5071] R13: 0000000000000000 R14: 431bde82d7b634db R15: 0000000000000000
[ 72.197151][ T5071]
[ 72.200260][ T5071] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 72.207559][ T5071] CPU: 0 PID: 5071 Comm: syz-executor263 Not tainted 6.2.0-rc1-syzkaller #0
[ 72.216240][ T5071] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 72.226311][ T5071] Call Trace:
[ 72.229608][ T5071]
[ 72.232545][ T5071] dump_stack_lvl+0x1b1/0x290
[ 72.237255][ T5071] ? nf_tcp_handle_invalid+0x630/0x630
[ 72.242752][ T5071] ? panic+0x710/0x710
[ 72.246842][ T5071] ? vscnprintf+0x59/0x80
[ 72.251184][ T5071] ? __alloc_pages+0x300/0x560
[ 72.255979][ T5071] panic+0x2d6/0x710
[ 72.259907][ T5071] ? __warn+0x16d/0x2d0
[ 72.264086][ T5071] ? memcpy_page_flushcache+0x100/0x100
[ 72.269671][ T5071] ? __alloc_pages+0x30a/0x560
[ 72.274454][ T5071] __warn+0x284/0x2d0
[ 72.278457][ T5071] ? __alloc_pages+0x30a/0x560
[ 72.283238][ T5071] report_bug+0x1b3/0x2d0
[ 72.287596][ T5071] handle_bug+0x3d/0x70
[ 72.291800][ T5071] exc_invalid_op+0x16/0x40
[ 72.296375][ T5071] asm_exc_invalid_op+0x16/0x20
[ 72.301244][ T5071] RIP: 0010:__alloc_pages+0x30a/0x560
[ 72.306636][ T5071] Code: 5c 24 04 0f 85 f3 00 00 00 44 89 e1 81 e1 7f ff ff ff a9 00 00 04 00 41 0f 44 cc 41 89 cc e9 e3 00 00 00 c6 05 d6 68 ad 0c 01 <0f> 0b 83 fb 0a 0f 86 c8 fd ff ff 31 db 48 c7 44 24 20 0e 36 e0 45
[ 72.326250][ T5071] RSP: 0018:ffffc90003c2f1c0 EFLAGS: 00010246
[ 72.332332][ T5071] RAX: ffffc90003c2f220 RBX: 0000000000000014 RCX: 0000000000000000
[ 72.340333][ T5071] RDX: 0000000000000028 RSI: 0000000000000000 RDI: ffffc90003c2f248
[ 72.348317][ T5071] RBP: ffffc90003c2f2d8 R08: dffffc0000000000 R09: ffffc90003c2f220
[ 72.356295][ T5071] R10: fffff52000785e49 R11: 1ffff92000785e44 R12: 0000000000040d40
[ 72.364275][ T5071] R13: 1ffff92000785e40 R14: dffffc0000000000 R15: 1ffff92000785e3c
[ 72.372280][ T5071] ? zone_statistics+0x160/0x160
[ 72.377235][ T5071] ? ext4_match+0x121/0x710
[ 72.381766][ T5071] ? xattr_find_entry+0x135/0x340
[ 72.386810][ T5071] ? xattr_find_entry+0x2d6/0x340
[ 72.391860][ T5071] __kmalloc_large_node+0x95/0x1e0
[ 72.396988][ T5071] ? ext4_update_inline_data+0x236/0x6b0
[ 72.402663][ T5071] __kmalloc+0xfe/0x190
[ 72.406862][ T5071] ext4_update_inline_data+0x236/0x6b0
[ 72.412379][ T5071] ? zero_user_segments+0x6b0/0x6b0
[ 72.417622][ T5071] ? get_max_inline_xattr_value_size+0x3f8/0x510
[ 72.423981][ T5071] ext4_try_add_inline_entry+0x328/0x990
[ 72.429633][ T5071] ? ext4_fname_setup_filename+0x1ba/0x2a0
[ 72.435467][ T5071] ? ext4_da_convert_inline_data_to_extent+0xa30/0xa30
[ 72.442344][ T5071] ? __ext4_new_inode+0x3a93/0x46f0
[ 72.447568][ T5071] ext4_add_entry+0x5a4/0xeb0
[ 72.452264][ T5071] ? ext4_inc_count+0x190/0x190
[ 72.457144][ T5071] ? d_splice_alias+0x122/0x3b0
[ 72.462019][ T5071] ext4_add_nondir+0x96/0x260
[ 72.466714][ T5071] ext4_create+0x36c/0x560
[ 72.471145][ T5071] ? ext4_lookup+0x690/0x690
[ 72.475744][ T5071] ? generic_permission+0x229/0x500
[ 72.480968][ T5071] ? inode_permission+0xf5/0x450
[ 72.485920][ T5071] ? bpf_lsm_inode_create+0x5/0x10
[ 72.491047][ T5071] ? security_inode_create+0xdd/0x120
[ 72.496440][ T5071] ? ext4_lookup+0x690/0x690
[ 72.501038][ T5071] path_openat+0x12ac/0x2dd0
[ 72.505704][ T5071] ? do_filp_open+0x4f0/0x4f0
[ 72.510450][ T5071] do_filp_open+0x264/0x4f0
[ 72.514990][ T5071] ? vfs_tmpfile+0x490/0x490
[ 72.519622][ T5071] ? do_raw_spin_unlock+0x134/0x8a0
[ 72.524897][ T5071] ? _raw_spin_unlock+0x24/0x40
[ 72.529772][ T5071] ? alloc_fd+0x5a7/0x640
[ 72.534128][ T5071] do_sys_openat2+0x124/0x4e0
[ 72.538818][ T5071] ? print_irqtrace_events+0x220/0x220
[ 72.544296][ T5071] ? ptrace_stop+0x74d/0x970
[ 72.548907][ T5071] ? do_sys_open+0x220/0x220
[ 72.553510][ T5071] ? lockdep_hardirqs_on+0x8d/0x130
[ 72.558724][ T5071] ? _raw_spin_unlock_irq+0x2a/0x40
[ 72.563940][ T5071] ? ptrace_notify+0x245/0x340
[ 72.568719][ T5071] __x64_sys_openat+0x243/0x290
[ 72.573611][ T5071] ? __ia32_sys_open+0x270/0x270
[ 72.578568][ T5071] ? syscall_enter_from_user_mode+0x2e/0x1d0
[ 72.584561][ T5071] ? syscall_enter_from_user_mode+0x86/0x1d0
[ 72.590560][ T5071] do_syscall_64+0x3d/0xb0
[ 72.595006][ T5071] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 72.600918][ T5071] RIP: 0033:0x7f95d5d925a9
[ 72.605344][ T5071] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 72.624981][ T5071] RSP: 002b:00007ffdec99f098 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 72.633428][ T5071] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f95d5d925a9
[ 72.641442][ T5071] RDX: 000000000000275a RSI: 0000000020000080 RDI: 0000000000000004
[ 72.649433][ T5071] RBP: 0000000000000000 R08: 00007f95d5e00ec0 R09: 00007f95d5e00ec0
[ 72.657415][ T5071] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdec99f0c0
[ 72.665429][ T5071] R13: 0000000000000000 R14: 431bde82d7b634db R15: 0000000000000000
[ 72.673446][ T5071]
[ 72.676704][ T5071] Kernel Offset: disabled
[ 72.681115][ T5071] Rebooting in 86400 seconds..