./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1129890746 <...> Warning: Permanently added '10.128.0.191' (ED25519) to the list of known hosts. execve("./syz-executor1129890746", ["./syz-executor1129890746"], 0x7ffdd74cf4c0 /* 10 vars */) = 0 brk(NULL) = 0x5555572c4000 brk(0x5555572c4d00) = 0x5555572c4d00 arch_prctl(ARCH_SET_FS, 0x5555572c4380) = 0 set_tid_address(0x5555572c4650) = 5033 set_robust_list(0x5555572c4660, 24) = 0 rseq(0x5555572c4ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1129890746", 4096) = 28 getrandom("\xf3\xc0\x06\xbd\x21\xa0\xf1\x9d", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555572c4d00 brk(0x5555572e5d00) = 0x5555572e5d00 brk(0x5555572e6000) = 0x5555572e6000 mprotect(0x7f2ab02c8000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address) open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address) ftruncate(-1, 33587199) = -1 EBADF (Bad file descriptor) write(-1, NULL, 34136651) = -1 EBADF (Bad file descriptor) read(-1, NULL, 0) = -1 EBADF (Bad file descriptor) memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2aa7dd5000 write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072 munmap(0x7f2aa7dd5000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = 0 mount("/dev/loop0", "./file0", "exfat", MS_NODIRATIME, "dmask=00000000000000000000007,utf8,iocharset=iso8859-1,allow_utime=00000000000000000002001,fmask=000"...) = -1 EINVAL (Invalid argument) [ 75.997584][ T5033] syz-executor112[5033]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 76.014649][ T5033] loop0: detected capacity change from 0 to 256 [ 76.025218][ T5033] exfat: Deprecated parameter 'utf8' [ 76.030717][ T5033] exfat: Bad value for 'gid' ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_SYNC|O_DIRECT|O_NOATIME, 000) = -1 EFAULT (Bad address) sendfile(-1, -1, NULL, 281474978811909) = -1 EBADF (Bad file descriptor) mmap(0x2010c000, 16384, PROT_WRITE|PROT_EXEC, MAP_FILE|MAP_FIXED|MAP_SYNC, -1, 0x34744000) = -1 EBADF (Bad file descriptor) memfd_create("syzkaller", 0) = 3 mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f2aa7dd5000 write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 munmap(0x7f2aa7dd5000, 138412032) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 ioctl(4, LOOP_SET_FD, 3) = 0 close(3) = 0 mkdir("./file0", 0777) = -1 EEXIST (File exists) mount("/dev/loop0", "./file0", "udf", MS_NODEV|MS_SYNCHRONOUS|MS_NOATIME|MS_I_VERSION, "") = 0 openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 chdir("./file0") = 0 ioctl(4, LOOP_CLR_FD) = 0 close(4) = 0 open(NULL, O_RDWR|O_CREAT|O_NOCTTY|O_APPEND|O_SYNC|O_LARGEFILE|O_NOATIME|0x3c, 000) = -1 EFAULT (Bad address) open(NULL, O_RDWR|O_CREAT|O_SYNC|O_DIRECT|O_NOATIME|FASYNC, 000) = -1 EFAULT (Bad address) ftruncate(-1, 33587199) = -1 EBADF (Bad file descriptor) mmap(0x20000000, 6291456, PROT_WRITE|PROT_GROWSUP|0x8088e3ad102bc190, MAP_SHARED|MAP_FIXED|MAP_LOCKED|1< 0b e9 10 ff ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c fa e3 ff [ 76.414352][ T5033] RSP: 0018:ffffc9000395f5c0 EFLAGS: 00010293 [ 76.420481][ T5033] RAX: ffffffff8306378a RBX: 0000000070d0c345 RCX: ffff88807e139dc0 [ 76.428521][ T5033] RDX: 0000000000000000 RSI: 0000000070d0c345 RDI: 0000000000000000 [ 76.436514][ T5033] RBP: ffffc9000395f810 R08: ffffffff83063694 R09: 1ffff1100ee3b7d0 [ 76.445599][ T5033] R10: dffffc0000000000 R11: ffffed100ee3b7d1 R12: 000000000000003e [ 76.453662][ T5033] R13: dffffc0000000000 R14: ffff88807e23401c R15: 00000000000000fe [ 76.461713][ T5033] FS: 00005555572c4380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 76.470716][ T5033] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 76.477334][ T5033] CR2: 00007f2aa7df4000 CR3: 0000000075d20000 CR4: 00000000003506e0 [ 76.485386][ T5033] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 76.493419][ T5033] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 76.501451][ T5033] Call Trace: [ 76.504768][ T5033] [ 76.507767][ T5033] ? __warn+0x162/0x4a0 [ 76.511953][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.516903][ T5033] ? report_bug+0x2b3/0x500 [ 76.521465][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.526441][ T5033] ? handle_bug+0x3d/0x70 [ 76.530856][ T5033] ? exc_invalid_op+0x1a/0x50 [ 76.535577][ T5033] ? asm_exc_invalid_op+0x1a/0x20 [ 76.540674][ T5033] ? udf_new_block+0x1cf4/0x2130 [ 76.545648][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.550686][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.555661][ T5033] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 76.561818][ T5033] ? udf_prealloc_blocks+0x1310/0x1310 [ 76.567327][ T5033] ? udf_new_inode+0x2e7/0xcf0 [ 76.572176][ T5033] ? rcu_is_watching+0x15/0xb0 [ 76.576977][ T5033] ? __kmalloc+0xe6/0x230 [ 76.581392][ T5033] udf_new_inode+0x389/0xcf0 [ 76.586050][ T5033] ? udf_free_inode+0x50/0x50 [ 76.590805][ T5033] udf_create+0x21/0xe0 [ 76.594964][ T5033] ? udf_lookup+0x2d0/0x2d0 [ 76.599526][ T5033] path_openat+0x13e7/0x3180 [ 76.604173][ T5033] ? do_filp_open+0x490/0x490 [ 76.609002][ T5033] do_filp_open+0x234/0x490 [ 76.613576][ T5033] ? vfs_tmpfile+0x4b0/0x4b0 [ 76.618289][ T5033] ? _raw_spin_unlock+0x28/0x40 [ 76.623180][ T5033] ? alloc_fd+0x59c/0x640 [ 76.627705][ T5033] do_sys_openat2+0x13e/0x1d0 [ 76.632422][ T5033] ? do_sys_open+0x230/0x230 [ 76.637052][ T5033] ? _raw_spin_unlock_irq+0x2e/0x50 [ 76.642310][ T5033] ? ptrace_notify+0x278/0x380 [ 76.647118][ T5033] __x64_sys_creat+0x123/0x160 [ 76.651994][ T5033] ? __x64_compat_sys_openat+0x290/0x290 [ 76.657711][ T5033] ? syscall_enter_from_user_mode+0x32/0x230 [ 76.663707][ T5033] ? syscall_enter_from_user_mode+0x8c/0x230 [ 76.669768][ T5033] do_syscall_64+0x41/0xc0 [ 76.674214][ T5033] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 76.680249][ T5033] RIP: 0033:0x7f2ab0213579 [ 76.684689][ T5033] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 76.704386][ T5033] RSP: 002b:00007ffc0fb25858 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 76.712863][ T5033] RAX: ffffffffffffffda RBX: 00007f2ab025c04b RCX: 00007f2ab0213579 [ 76.720920][ T5033] RDX: 00007f2ab0212870 RSI: 0000000000000000 RDI: 0000000020000440 [ 76.728958][ T5033] RBP: 00007f2ab025c060 R08: 000000000001f21e R09: 00000000200012c0 [ 76.737002][ T5033] R10: 000000000001f222 R11: 0000000000000246 R12: 00007f2ab025e158 [ 76.745117][ T5033] R13: 000000000000ba30 R14: 0000000000000001 R15: 0000000000000001 [ 76.753172][ T5033] [ 76.756213][ T5033] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 76.763489][ T5033] CPU: 1 PID: 5033 Comm: syz-executor112 Not tainted 6.6.0-rc5-syzkaller-00192-g10a6e5feccb8 #0 [ 76.773904][ T5033] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 76.783967][ T5033] Call Trace: [ 76.787246][ T5033] [ 76.790188][ T5033] dump_stack_lvl+0x1e7/0x2d0 [ 76.794882][ T5033] ? nf_tcp_handle_invalid+0x650/0x650 [ 76.800359][ T5033] ? panic+0x770/0x770 [ 76.804447][ T5033] ? vscnprintf+0x5d/0x80 [ 76.808793][ T5033] panic+0x30f/0x770 [ 76.812709][ T5033] ? __warn+0x171/0x4a0 [ 76.816887][ T5033] ? __memcpy_flushcache+0x2b0/0x2b0 [ 76.822205][ T5033] __warn+0x314/0x4a0 [ 76.826278][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.831237][ T5033] report_bug+0x2b3/0x500 [ 76.835588][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.840554][ T5033] handle_bug+0x3d/0x70 [ 76.844896][ T5033] exc_invalid_op+0x1a/0x50 [ 76.849411][ T5033] asm_exc_invalid_op+0x1a/0x20 [ 76.854275][ T5033] RIP: 0010:udf_new_block+0x1dea/0x2130 [ 76.859838][ T5033] Code: 87 fe 0f 0b e9 64 fc ff ff 89 d9 80 e1 07 fe c1 38 c1 0f 8c 7d e3 ff ff 48 89 df e8 60 53 e2 fe e9 70 e3 ff ff e8 56 d4 87 fe <0f> 0b e9 10 ff ff ff 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c fa e3 ff [ 76.879450][ T5033] RSP: 0018:ffffc9000395f5c0 EFLAGS: 00010293 [ 76.885531][ T5033] RAX: ffffffff8306378a RBX: 0000000070d0c345 RCX: ffff88807e139dc0 [ 76.893511][ T5033] RDX: 0000000000000000 RSI: 0000000070d0c345 RDI: 0000000000000000 [ 76.901515][ T5033] RBP: ffffc9000395f810 R08: ffffffff83063694 R09: 1ffff1100ee3b7d0 [ 76.909500][ T5033] R10: dffffc0000000000 R11: ffffed100ee3b7d1 R12: 000000000000003e [ 76.917486][ T5033] R13: dffffc0000000000 R14: ffff88807e23401c R15: 00000000000000fe [ 76.925565][ T5033] ? udf_new_block+0x1cf4/0x2130 [ 76.930524][ T5033] ? udf_new_block+0x1dea/0x2130 [ 76.935490][ T5033] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 76.941681][ T5033] ? udf_prealloc_blocks+0x1310/0x1310 [ 76.947174][ T5033] ? udf_new_inode+0x2e7/0xcf0 [ 76.951955][ T5033] ? rcu_is_watching+0x15/0xb0 [ 76.956741][ T5033] ? __kmalloc+0xe6/0x230 [ 76.961086][ T5033] udf_new_inode+0x389/0xcf0 [ 76.965704][ T5033] ? udf_free_inode+0x50/0x50 [ 76.970405][ T5033] udf_create+0x21/0xe0 [ 76.974566][ T5033] ? udf_lookup+0x2d0/0x2d0 [ 76.979090][ T5033] path_openat+0x13e7/0x3180 [ 76.983717][ T5033] ? do_filp_open+0x490/0x490 [ 76.988421][ T5033] do_filp_open+0x234/0x490 [ 76.993024][ T5033] ? vfs_tmpfile+0x4b0/0x4b0 [ 76.997651][ T5033] ? _raw_spin_unlock+0x28/0x40 [ 77.002521][ T5033] ? alloc_fd+0x59c/0x640 [ 77.006876][ T5033] do_sys_openat2+0x13e/0x1d0 [ 77.011572][ T5033] ? do_sys_open+0x230/0x230 [ 77.016182][ T5033] ? _raw_spin_unlock_irq+0x2e/0x50 [ 77.021396][ T5033] ? ptrace_notify+0x278/0x380 [ 77.026181][ T5033] __x64_sys_creat+0x123/0x160 [ 77.030961][ T5033] ? __x64_compat_sys_openat+0x290/0x290 [ 77.036617][ T5033] ? syscall_enter_from_user_mode+0x32/0x230 [ 77.042618][ T5033] ? syscall_enter_from_user_mode+0x8c/0x230 [ 77.048615][ T5033] do_syscall_64+0x41/0xc0 [ 77.053041][ T5033] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 77.058942][ T5033] RIP: 0033:0x7f2ab0213579 [ 77.063364][ T5033] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.082978][ T5033] RSP: 002b:00007ffc0fb25858 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 77.091404][ T5033] RAX: ffffffffffffffda RBX: 00007f2ab025c04b RCX: 00007f2ab0213579 [ 77.099384][ T5033] RDX: 00007f2ab0212870 RSI: 0000000000000000 RDI: 0000000020000440 [ 77.107361][ T5033] RBP: 00007f2ab025c060 R08: 000000000001f21e R09: 00000000200012c0 [ 77.115337][ T5033] R10: 000000000001f222 R11: 0000000000000246 R12: 00007f2ab025e158 [ 77.123346][ T5033] R13: 000000000000ba30 R14: 0000000000000001 R15: 0000000000000001 [ 77.131371][ T5033] [ 77.134696][ T5033] Kernel Offset: disabled [ 77.139096][ T5033] Rebooting in 86400 seconds..