./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3471875868
<...>
Warning: Permanently added '10.128.0.6' (ECDSA) to the list of known hosts.
execve("./syz-executor3471875868", ["./syz-executor3471875868"], 0x7fff5681fbd0 /* 10 vars */) = 0
brk(NULL) = 0x5555564ee000
brk(0x5555564eec40) = 0x5555564eec40
arch_prctl(ARCH_SET_FS, 0x5555564ee300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3471875868", 4096) = 28
brk(0x55555650fc40) = 0x55555650fc40
brk(0x555556510000) = 0x555556510000
mprotect(0x7f50002ff000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
[ 80.589945][ T26] audit: type=1400 audit(1687290767.163:83): avc: denied { write } for pid=4991 comm="strace-static-x" path="pipe:[1971]" dev="pipefs" ino=1971 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 80.618505][ T26] audit: type=1400 audit(1687290767.193:84): avc: denied { execmem } for pid=4994 comm="syz-executor347" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4ff7e45000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 4194304) = 4194304
munmap(0x7f4ff7e45000, 4194304) = 0
[ 80.618954][ T4994] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=4994 'syz-executor347'
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
mkdir("./file0", 0777) = 0
[ 80.696581][ T26] audit: type=1400 audit(1687290767.273:85): avc: denied { read write } for pid=4994 comm="syz-executor347" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 80.699795][ T4994] loop0: detected capacity change from 0 to 8192
[ 80.721673][ T26] audit: type=1400 audit(1687290767.273:86): avc: denied { open } for pid=4994 comm="syz-executor347" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 80.737986][ T4994] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 80.752044][ T26] audit: type=1400 audit(1687290767.273:87): avc: denied { ioctl } for pid=4994 comm="syz-executor347" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 80.764854][ T4994] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[ 80.765144][ T4994] REISERFS (device loop0): using ordered data mode
[ 80.790965][ T26] audit: type=1400 audit(1687290767.313:88): avc: denied { mounton } for pid=4994 comm="syz-executor347" path="/root/file0" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 80.799703][ T4994] reiserfs: using flush barriers
[ 80.806442][ T4994] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 80.850685][ T4994] REISERFS (device loop0): checking transaction log (loop0)
[ 80.901559][ T4994] REISERFS (device loop0): Using r5 hash to sort names
[ 80.909857][ T4994] ------------[ cut here ]------------
[ 80.915493][ T4994] WARNING: CPU: 0 PID: 4994 at fs/inode.c:331 drop_nlink+0xbb/0x110
[ 80.923580][ T4994] Modules linked in:
[ 80.927485][ T4994] CPU: 0 PID: 4994 Comm: syz-executor347 Not tainted 6.4.0-rc7-syzkaller-00014-g692b7dc87ca6 #0
[ 80.937957][ T4994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 80.948102][ T4994] RIP: 0010:drop_nlink+0xbb/0x110
[ 80.953225][ T4994] Code: 28 be 08 00 00 00 48 8d bb c0 07 00 00 e8 ad a1 e9 ff f0 48 ff 83 c0 07 00 00 5b 5d 41 5c 41 5d e9 7a c6 97 ff e8 75 c6 97 ff <0f> 0b 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 0f b6 04
[ 80.972933][ T4994] RSP: 0018:ffffc900034bf998 EFLAGS: 00010293
[ 80.979033][ T4994] RAX: 0000000000000000 RBX: ffff888071b54870 RCX: 0000000000000000
[ 80.987089][ T4994] RDX: ffff88807a19c040 RSI: ffffffff81eba13b RDI: 0000000000000005
[ 80.995117][ T4994] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 81.003169][ T4994] R10: 0000000000000000 R11: ffffffff81d5370b R12: 00000000ffffffff
[ 81.011169][ T4994] R13: ffff888071b548b8 R14: ffffc900034bfa40 R15: ffff888071b54898
[ 81.019200][ T4994] FS: 00005555564ee300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 81.028187][ T4994] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 81.034823][ T4994] CR2: 00000000005fdeb8 CR3: 000000007d6c2000 CR4: 00000000003506f0
[ 81.042857][ T4994] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 81.050866][ T4994] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 81.058917][ T4994] Call Trace:
[ 81.062268][ T4994]
[ 81.065239][ T4994] ? __warn+0xe6/0x390
[ 81.069329][ T4994] ? drop_nlink+0xbb/0x110
[ 81.073811][ T4994] ? report_bug+0x2da/0x500
[ 81.078358][ T4994] ? handle_bug+0x3c/0x70
[ 81.082765][ T4994] ? exc_invalid_op+0x18/0x50
[ 81.087486][ T4994] ? asm_exc_invalid_op+0x1a/0x20
[ 81.092620][ T4994] ? __kasan_record_aux_stack+0x7b/0x90
[ 81.098213][ T4994] ? drop_nlink+0xbb/0x110
[ 81.102743][ T4994] ? drop_nlink+0xbb/0x110
[ 81.107205][ T4994] ? drop_nlink+0xbb/0x110
[ 81.111643][ T4994] reiserfs_mkdir+0x79a/0x990
[ 81.116413][ T4994] ? reiserfs_mknod+0x710/0x710
[ 81.121315][ T4994] ? rwsem_down_write_slowpath+0x1220/0x1220
[ 81.127372][ T4994] reiserfs_xattr_init+0x57e/0xbc0
[ 81.132562][ T4994] reiserfs_fill_super+0x2129/0x2eb0
[ 81.137871][ T4994] ? reiserfs_remount+0x1650/0x1650
[ 81.143139][ T4994] ? snprintf+0xbf/0x100
[ 81.147428][ T4994] mount_bdev+0x358/0x420
[ 81.151778][ T4994] ? reiserfs_remount+0x1650/0x1650
[ 81.157083][ T4994] ? reiserfs_kill_sb+0x1e0/0x1e0
[ 81.162150][ T4994] legacy_get_tree+0x109/0x220
[ 81.167000][ T4994] vfs_get_tree+0x8d/0x350
[ 81.171472][ T4994] path_mount+0x134b/0x1e40
[ 81.176050][ T4994] ? putname+0x102/0x140
[ 81.180332][ T4994] ? lockdep_hardirqs_on+0x7d/0x100
[ 81.185598][ T4994] ? finish_automount+0x9b0/0x9b0
[ 81.190667][ T4994] ? putname+0x102/0x140
[ 81.194988][ T4994] __x64_sys_mount+0x283/0x300
[ 81.199802][ T4994] ? copy_mnt_ns+0xb30/0xb30
[ 81.204488][ T4994] ? lockdep_hardirqs_on+0x7d/0x100
[ 81.209823][ T4994] ? _raw_spin_unlock_irq+0x2e/0x50
[ 81.215103][ T4994] ? ptrace_notify+0xfe/0x140
[ 81.219826][ T4994] do_syscall_64+0x39/0xb0
[ 81.224354][ T4994] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 81.230320][ T4994] RIP: 0033:0x7f5000292b0a
[ 81.234830][ T4994] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 81.254538][ T4994] RSP: 002b:00007ffdbb8c6288 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 81.263037][ T4994] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f5000292b0a
[ 81.271036][ T4994] RDX: 0000000020001100 RSI: 0000000020001140 RDI: 00007ffdbb8c62a0
[ 81.279096][ T4994] RBP: 00007ffdbb8c62a0 R08: 00007ffdbb8c62e0 R09: 00000000000010f4
[ 81.287142][ T4994] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000004
[ 81.295197][ T4994] R13: 00005555564ee2c0 R14: 0000000000000000 R15: 00007ffdbb8c62e0
[ 81.303234][ T4994]
[ 81.306273][ T4994] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 81.313564][ T4994] CPU: 0 PID: 4994 Comm: syz-executor347 Not tainted 6.4.0-rc7-syzkaller-00014-g692b7dc87ca6 #0
[ 81.323987][ T4994] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 81.334070][ T4994] Call Trace:
[ 81.337351][ T4994]
[ 81.340382][ T4994] dump_stack_lvl+0xd9/0x150
[ 81.344989][ T4994] panic+0x686/0x730
[ 81.348906][ T4994] ? panic_smp_self_stop+0xa0/0xa0
[ 81.354054][ T4994] ? show_trace_log_lvl+0x284/0x390
[ 81.359277][ T4994] ? drop_nlink+0xbb/0x110
[ 81.363717][ T4994] check_panic_on_warn+0xb1/0xc0
[ 81.368702][ T4994] __warn+0xf2/0x390
[ 81.372639][ T4994] ? drop_nlink+0xbb/0x110
[ 81.377104][ T4994] report_bug+0x2da/0x500
[ 81.381476][ T4994] handle_bug+0x3c/0x70
[ 81.385656][ T4994] exc_invalid_op+0x18/0x50
[ 81.390184][ T4994] asm_exc_invalid_op+0x1a/0x20
[ 81.395074][ T4994] RIP: 0010:drop_nlink+0xbb/0x110
[ 81.400150][ T4994] Code: 28 be 08 00 00 00 48 8d bb c0 07 00 00 e8 ad a1 e9 ff f0 48 ff 83 c0 07 00 00 5b 5d 41 5c 41 5d e9 7a c6 97 ff e8 75 c6 97 ff <0f> 0b 48 b8 00 00 00 00 00 fc ff df 4c 89 ea 48 c1 ea 03 0f b6 04
[ 81.419788][ T4994] RSP: 0018:ffffc900034bf998 EFLAGS: 00010293
[ 81.425885][ T4994] RAX: 0000000000000000 RBX: ffff888071b54870 RCX: 0000000000000000
[ 81.433984][ T4994] RDX: ffff88807a19c040 RSI: ffffffff81eba13b RDI: 0000000000000005
[ 81.441974][ T4994] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000
[ 81.449960][ T4994] R10: 0000000000000000 R11: ffffffff81d5370b R12: 00000000ffffffff
[ 81.458044][ T4994] R13: ffff888071b548b8 R14: ffffc900034bfa40 R15: ffff888071b54898
[ 81.466039][ T4994] ? __kasan_record_aux_stack+0x7b/0x90
[ 81.471617][ T4994] ? drop_nlink+0xbb/0x110
[ 81.476068][ T4994] ? drop_nlink+0xbb/0x110
[ 81.480517][ T4994] reiserfs_mkdir+0x79a/0x990
[ 81.485306][ T4994] ? reiserfs_mknod+0x710/0x710
[ 81.490182][ T4994] ? rwsem_down_write_slowpath+0x1220/0x1220
[ 81.496198][ T4994] reiserfs_xattr_init+0x57e/0xbc0
[ 81.501339][ T4994] reiserfs_fill_super+0x2129/0x2eb0
[ 81.506748][ T4994] ? reiserfs_remount+0x1650/0x1650
[ 81.511986][ T4994] ? snprintf+0xbf/0x100
[ 81.516265][ T4994] mount_bdev+0x358/0x420
[ 81.520623][ T4994] ? reiserfs_remount+0x1650/0x1650
[ 81.525850][ T4994] ? reiserfs_kill_sb+0x1e0/0x1e0
[ 81.530904][ T4994] legacy_get_tree+0x109/0x220
[ 81.535701][ T4994] vfs_get_tree+0x8d/0x350
[ 81.540146][ T4994] path_mount+0x134b/0x1e40
[ 81.544678][ T4994] ? putname+0x102/0x140
[ 81.548946][ T4994] ? lockdep_hardirqs_on+0x7d/0x100
[ 81.554169][ T4994] ? finish_automount+0x9b0/0x9b0
[ 81.559229][ T4994] ? putname+0x102/0x140
[ 81.563502][ T4994] __x64_sys_mount+0x283/0x300
[ 81.568299][ T4994] ? copy_mnt_ns+0xb30/0xb30
[ 81.572923][ T4994] ? lockdep_hardirqs_on+0x7d/0x100
[ 81.578153][ T4994] ? _raw_spin_unlock_irq+0x2e/0x50
[ 81.583388][ T4994] ? ptrace_notify+0xfe/0x140
[ 81.588092][ T4994] do_syscall_64+0x39/0xb0
[ 81.592530][ T4994] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 81.598459][ T4994] RIP: 0033:0x7f5000292b0a
[ 81.602887][ T4994] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 81.622514][ T4994] RSP: 002b:00007ffdbb8c6288 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[ 81.630969][ T4994] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f5000292b0a
[ 81.638963][ T4994] RDX: 0000000020001100 RSI: 0000000020001140 RDI: 00007ffdbb8c62a0
[ 81.646950][ T4994] RBP: 00007ffdbb8c62a0 R08: 00007ffdbb8c62e0 R09: 00000000000010f4
[ 81.654941][ T4994] R10: 0000000000000000 R11: 0000000000000286 R12: 0000000000000004
[ 81.662929][ T4994] R13: 00005555564ee2c0 R14: 0000000000000000 R15: 00007ffdbb8c62e0
[ 81.670919][ T4994]
[ 81.674199][ T4994] Kernel Offset: disabled
[ 81.678631][ T4994] Rebooting in 86400 seconds..