./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3044901336 <...> Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts. execve("./syz-executor3044901336", ["./syz-executor3044901336"], 0x7ffd61524b00 /* 10 vars */) = 0 brk(NULL) = 0x555555a2d000 brk(0x555555a2dd00) = 0x555555a2dd00 arch_prctl(ARCH_SET_FS, 0x555555a2d380) = 0 set_tid_address(0x555555a2d650) = 290 set_robust_list(0x555555a2d660, 24) = 0 rseq(0x555555a2dca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented) prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3044901336", 4096) = 28 getrandom("\xe3\x15\x17\x39\xab\xe2\x56\x4e", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555a2dd00 brk(0x555555a4ed00) = 0x555555a4ed00 brk(0x555555a4f000) = 0x555555a4f000 mprotect(0x7fcde85d8000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 write(1, "executing program\n", 18executing program ) = 18 memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fcde0128000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144 munmap(0x7fcde0128000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 [ 24.066916][ T24] audit: type=1400 audit(1723164626.330:66): avc: denied { execmem } for pid=290 comm="syz-executor304" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 24.086134][ T24] audit: type=1400 audit(1723164626.350:67): avc: denied { read write } for pid=290 comm="syz-executor304" name="loop0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 close(4) = 0 mkdir("./file1", 0777) = 0 [ 24.110193][ T24] audit: type=1400 audit(1723164626.350:68): avc: denied { open } for pid=290 comm="syz-executor304" path="/dev/loop0" dev="devtmpfs" ino=111 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 24.134175][ T24] audit: type=1400 audit(1723164626.350:69): avc: denied { ioctl } for pid=290 comm="syz-executor304" path="/dev/loop0" dev="devtmpfs" ino=111 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 24.148560][ T290] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz-executor304: casefold flag without casefold feature [ 24.159759][ T24] audit: type=1400 audit(1723164626.410:70): avc: denied { mounton } for pid=290 comm="syz-executor304" path="/root/file1" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 24.172725][ T290] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz-executor304: missing EA_INODE flag mount("/dev/loop0", "./file1", "ext4", MS_SYNCHRONOUS|MS_NOATIME|MS_REC|MS_RELATIME, ",errors=continue") = 0 openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 chdir("./file1") = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 mkdir("./bus", 000) = 0 creat("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 4 mknod("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 000) = 0 rename("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", "./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa") = 0 [ 24.207125][ T290] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor304: error while reading EA inode 2 err=-117 [ 24.219815][ T290] EXT4-fs (loop0): 1 orphan inode deleted [ 24.225328][ T290] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 24.234230][ T24] audit: type=1400 audit(1723164626.510:71): avc: denied { mount } for pid=290 comm="syz-executor304" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 24.252928][ T290] BUG: unable to handle page fault for address: ffffed1121b3d6fe [ 24.255943][ T24] audit: type=1400 audit(1723164626.510:72): avc: denied { write } for pid=290 comm="syz-executor304" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 24.263433][ T290] #PF: supervisor read access in kernel mode [ 24.263438][ T290] #PF: error_code(0x0000) - not-present page [ 24.263448][ T290] PGD 23fff2067 P4D 23fff2067 [ 24.285085][ T24] audit: type=1400 audit(1723164626.510:73): avc: denied { add_name } for pid=290 comm="syz-executor304" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 24.290860][ T290] PUD 0 [ 24.290872][ T290] Oops: 0000 [#1] PREEMPT SMP KASAN [ 24.290882][ T290] CPU: 0 PID: 290 Comm: syz-executor304 Not tainted 5.10.222-syzkaller-01494-gfd58936f3c1f #0 [ 24.290886][ T290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024 [ 24.290924][ T290] RIP: 0010:do_split+0x1454/0x2310 [ 24.296709][ T24] audit: type=1400 audit(1723164626.510:74): avc: denied { create } for pid=290 comm="syz-executor304" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 24.301280][ T290] Code: f8 48 c1 e8 03 0f b6 04 10 84 c0 48 89 74 24 10 0f 85 7c 0c 00 00 46 8b 34 e6 41 8d 44 24 ff 48 8d 1c c6 48 89 d8 48 c1 e8 03 <0f> b6 04 10 84 c0 0f 85 85 0c 00 00 8b 1b 44 89 f7 89 de e8 64 06 [ 24.301287][ T290] RSP: 0018:ffffc90000b372e0 EFLAGS: 00010a02 [ 24.301303][ T290] RAX: 1ffff11121b3d6fe RBX: ffff88890d9eb7f0 RCX: ffff8881200962c0 [ 24.322167][ T24] audit: type=1400 audit(1723164626.510:75): avc: denied { create } for pid=290 comm="syz-executor304" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 24.324543][ T290] RDX: dffffc0000000000 RSI: ffff88810d9eb7f8 RDI: ffff88810d9eb7f8 [ 24.456998][ T290] RBP: ffffc90000b374d0 R08: ffffffff81e4a331 R09: ffffffff81da0931 [ 24.464800][ T290] R10: 0000000000000007 R11: ffff8881200962c0 R12: 0000000000000000 [ 24.472606][ T290] R13: 0000000000000400 R14: 000000002b74e18c R15: 0000000000000000 [ 24.480419][ T290] FS: 0000555555a2d380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.489358][ T290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.495778][ T290] CR2: ffffed1121b3d6fe CR3: 0000000117d34000 CR4: 00000000003506b0 [ 24.503595][ T290] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.511403][ T290] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.519648][ T290] Call Trace: [ 24.522779][ T290] ? __die_body+0x62/0xb0 [ 24.526942][ T290] ? __die+0x7e/0x90 [ 24.530673][ T290] ? no_context+0x9f9/0xd20 [ 24.535013][ T290] ? is_prefetch+0x5c0/0x5c0 [ 24.539442][ T290] ? __ext4fs_dirhash+0x1123/0x1440 [ 24.544476][ T290] ? __bad_area_nosemaphore+0xc4/0x430 [ 24.549796][ T290] ? __ext4fs_dirhash+0x1440/0x1440 [ 24.554814][ T290] ? bad_area_nosemaphore+0x2d/0x40 [ 24.559837][ T290] ? do_kern_addr_fault+0x69/0x80 [ 24.564698][ T290] ? exc_page_fault+0x38e/0x5b0 [ 24.569385][ T290] ? asm_exc_page_fault+0x1e/0x30 [ 24.574244][ T290] ? __ext4fs_dirhash+0x291/0x1440 [ 24.579202][ T290] ? do_split+0x1381/0x2310 [ 24.583529][ T290] ? do_split+0x1454/0x2310 [ 24.587875][ T290] ? __ext4_handle_dirty_metadata+0x36e/0x810 [ 24.593776][ T290] ? __kasan_check_read+0x11/0x20 [ 24.598634][ T290] ? ext4_handle_dirty_dx_node+0x580/0x580 [ 24.604279][ T290] ? ext4_has_metadata_csum+0x1f0/0x1f0 [ 24.609654][ T290] ? ext4_handle_dirty_dx_node+0x41c/0x580 [ 24.615296][ T290] make_indexed_dir+0xd7d/0x1340 [ 24.620073][ T290] ? add_dirent_to_buf+0x780/0x780 [ 24.625017][ T290] ? add_dirent_to_buf+0x36f/0x780 [ 24.630054][ T290] ? ext4_dx_add_entry+0x1600/0x1600 [ 24.635171][ T290] ext4_add_entry+0xdcf/0x1280 [ 24.639778][ T290] ? ext4_inc_count+0x190/0x190 [ 24.644459][ T290] ? dquot_initialize+0x20/0x20 [ 24.649143][ T290] ? ext4_match+0x219/0x720 [ 24.653486][ T290] ext4_rename2+0x2663/0x4070 [ 24.657999][ T290] ? memcpy+0x56/0x70 [ 24.661820][ T290] ? ext4_mknod+0x530/0x530 [ 24.666156][ T290] ? avc_denied+0x1b0/0x1b0 [ 24.670499][ T290] ? __kasan_check_write+0x14/0x20 [ 24.675444][ T290] ? down_write+0xd7/0x150 [ 24.679698][ T290] ? down_read_killable+0x220/0x220 [ 24.684727][ T290] ? from_kgid+0x1a3/0x730 [ 24.688984][ T290] ? take_dentry_name_snapshot+0x3f/0x100 [ 24.694562][ T290] ? try_break_deleg+0x7c/0x120 [ 24.699227][ T290] vfs_rename+0x9fb/0xeb0 [ 24.703392][ T290] ? __ia32_sys_link+0x70/0x70 [ 24.707993][ T290] ? __lookup_hash+0x151/0x290 [ 24.712593][ T290] do_renameat2+0xa56/0x1240 [ 24.717191][ T290] ? fsnotify_move+0x290/0x290 [ 24.721794][ T290] ? getname_flags+0x1fd/0x520 [ 24.726566][ T290] __x64_sys_rename+0x86/0x90 [ 24.731076][ T290] do_syscall_64+0x34/0x70 [ 24.735331][ T290] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 24.741060][ T290] RIP: 0033:0x7fcde8565979 [ 24.745311][ T290] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 24.764851][ T290] RSP: 002b:00007fffcfe17db8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 24.773085][ T290] RAX: ffffffffffffffda RBX: 00007fffcfe17f98 RCX: 00007fcde8565979 [ 24.780902][ T290] RDX: 00007fcde8565979 RSI: 0000000020000f40 RDI: 00000000200003c0 [ 24.788707][ T290] RBP: 00007fcde85d8610 R08: 0000000000000000 R09: 0000000000000000 [ 24.796515][ T290] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 24.804420][ T290] R13: 00007fffcfe17f88 R14: 0000000000000001 R15: 0000000000000001 [ 24.812226][ T290] Modules linked in: [ 24.815976][ T290] CR2: ffffed1121b3d6fe [ 24.819967][ T290] ---[ end trace 4734256b309655f4 ]--- [ 24.825250][ T290] RIP: 0010:do_split+0x1454/0x2310 [ 24.830194][ T290] Code: f8 48 c1 e8 03 0f b6 04 10 84 c0 48 89 74 24 10 0f 85 7c 0c 00 00 46 8b 34 e6 41 8d 44 24 ff 48 8d 1c c6 48 89 d8 48 c1 e8 03 <0f> b6 04 10 84 c0 0f 85 85 0c 00 00 8b 1b 44 89 f7 89 de e8 64 06 [ 24.849737][ T290] RSP: 0018:ffffc90000b372e0 EFLAGS: 00010a02 [ 24.855624][ T290] RAX: 1ffff11121b3d6fe RBX: ffff88890d9eb7f0 RCX: ffff8881200962c0 [ 24.863719][ T290] RDX: dffffc0000000000 RSI: ffff88810d9eb7f8 RDI: ffff88810d9eb7f8 [ 24.871548][ T290] RBP: ffffc90000b374d0 R08: ffffffff81e4a331 R09: ffffffff81da0931 [ 24.879343][ T290] R10: 0000000000000007 R11: ffff8881200962c0 R12: 0000000000000000 [ 24.887154][ T290] R13: 0000000000000400 R14: 000000002b74e18c R15: 0000000000000000 [ 24.894963][ T290] FS: 0000555555a2d380(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.903740][ T290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.910156][ T290] CR2: ffffed1121b3d6fe CR3: 0000000117d34000 CR4: 00000000003506b0 [ 24.917965][ T290] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.925774][ T290] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.933695][ T290] Kernel panic - not syncing: Fatal exception [ 24.939805][ T290] Kernel Offset: disabled [ 24.943927][ T290] Rebooting in 86400 seconds..