./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2445956345

<...>
DUID 00:04:06:88:74:a7:04:75:62:cb:55:93:34:09:94:90:e1:fe
forked to background, child pid 4812
[   28.577779][ T4813] 8021q: adding VLAN 0 to HW filter on device bond0
[   28.588695][ T4813] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.86' (ECDSA) to the list of known hosts.
execve("./syz-executor2445956345", ["./syz-executor2445956345"], 0x7ffe11f6d340 /* 10 vars */) = 0
brk(NULL)                               = 0x555555b7c000
brk(0x555555b7cc40)                     = 0x555555b7cc40
arch_prctl(ARCH_SET_FS, 0x555555b7c300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2445956345", 4096) = 28
brk(0x555555b9dc40)                     = 0x555555b9dc40
brk(0x555555b9e000)                     = 0x555555b9e000
mprotect(0x7f653ccdc000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./file0", 000)                   = 0
mkdir("./bus", 000)                     = 0
mkdir("./file1", 000)                   = 0
mount(NULL, "./bus", "overlay", 0, "upperdir=./bus,workdir=./file1,lowerdir=.") = 0
syzkaller login: [   51.639687][ T5240] BUG: unable to handle page fault for address: ffffffffffffffc3
[   51.647415][ T5240] #PF: supervisor write access in kernel mode
[   51.653458][ T5240] #PF: error_code(0x0002) - not-present page
[   51.659413][ T5240] PGD bc8f067 P4D bc8f067 PUD bc91067 PMD 0 
[   51.665384][ T5240] Oops: 0002 [#1] PREEMPT SMP KASAN
[   51.670562][ T5240] CPU: 1 PID: 5240 Comm: syz-executor244 Not tainted 6.1.0-rc3-next-20221102-syzkaller #0
[   51.680429][ T5240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022
[   51.690462][ T5240] RIP: 0010:ovl_set_acl+0x730/0x910
[   51.695652][ T5240] Code: a3 24 ff 4c 89 ff 49 89 c4 e8 cc 2f 81 fe 4d 85 e4 74 7f e8 52 e9 ac fe be 04 00 00 00 4c 89 e7 bb ff ff ff ff e8 60 7a f9 fe <f0> 41 0f c1 1c 24 bf 01 00 00 00 89 de e8 fe e5 ac fe 83 fb 01 0f
[   51.715242][ T5240] RSP: 0018:ffffc90003c0fad8 EFLAGS: 00010246
[   51.721288][ T5240] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff82cff810
[   51.729238][ T5240] RDX: fffffbfffffffff9 RSI: 0000000000000004 RDI: ffffffffffffffc3
[   51.737190][ T5240] RBP: ffff888078a5ca48 R08: 0000000000000001 R09: ffffffffffffffc6
[   51.745146][ T5240] R10: fffffbfffffffff8 R11: 0000000000000001 R12: ffffffffffffffc3
[   51.753099][ T5240] R13: ffff8880764ba330 R14: 1ffff92000781f60 R15: ffff888024e04f00
[   51.761050][ T5240] FS:  0000555555b7c300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   51.769963][ T5240] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   51.776530][ T5240] CR2: ffffffffffffffc3 CR3: 0000000026941000 CR4: 00000000003506e0
[   51.784486][ T5240] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   51.792439][ T5240] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   51.800391][ T5240] Call Trace:
[   51.803654][ T5240]  <TASK>
[   51.806570][ T5240]  ? ovl_set_acl+0x0/0x910
[   51.810978][ T5240]  ? evm_inode_set_acl+0x99/0x380
[   51.816003][ T5240]  ? evm_inode_set_acl+0x0/0x380
[   51.820927][ T5240]  ? down_write+0x153/0x220
[   51.825412][ T5240]  set_posix_acl+0x257/0x320
[   51.829989][ T5240]  vfs_remove_acl+0x272/0x630
[   51.834652][ T5240]  removexattr+0x12a/0x1b0
[   51.839063][ T5240]  ? removexattr+0x0/0x1b0
[   51.843466][ T5240]  ? find_held_lock+0x2d/0x110
[   51.848213][ T5240]  ? __mnt_want_write+0x3b/0x2e0
[   51.853135][ T5240]  ? lock_release+0x0/0x810
[   51.857638][ T5240]  ? lock_acquire+0x0/0x630
[   51.862133][ T5240]  ? __mnt_want_write+0x1fa/0x2e0
[   51.867146][ T5240]  path_removexattr+0x174/0x1a0
[   51.871983][ T5240]  ? path_removexattr+0x0/0x1a0
[   51.876826][ T5240]  ? lockdep_hardirqs_on+0x79/0x100
[   51.882010][ T5240]  ? _raw_spin_unlock_irq+0x2a/0x40
[   51.887193][ T5240]  __x64_sys_removexattr+0x55/0x80
[   51.892292][ T5240]  do_syscall_64+0x35/0xb0
[   51.896695][ T5240]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   51.902581][ T5240] RIP: 0033:0x7f653cc6fbf9
[   51.906978][ T5240] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   51.926567][ T5240] RSP: 002b:00007ffffec22658 EFLAGS: 00000246 ORIG_RAX: 00000000000000c5
[   51.934957][ T5240] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f653cc6fbf9
[   51.942909][ T5240] RDX: 00007f653cc6fbf9 RSI: 0000000020000040 RDI: 0000000020000000
[   51.950861][ T5240] RBP: 00007f653cc33da0 R08: 0000000000000000 R09: 0000000000000000
[   51.958812][ T5240] R10: 0000000020000280 R11: 0000000000000246 R12: 00007f653cc33e30
[   51.966766][ T5240] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   51.974732][ T5240]  </TASK>
[   51.977736][ T5240] Modules linked in:
[   51.981608][ T5240] CR2: ffffffffffffffc3
[   51.985740][ T5240] ---[ end trace 0000000000000000 ]---
[   51.991170][ T5240] RIP: 0010:ovl_set_acl+0x730/0x910
[   51.996360][ T5240] Code: a3 24 ff 4c 89 ff 49 89 c4 e8 cc 2f 81 fe 4d 85 e4 74 7f e8 52 e9 ac fe be 04 00 00 00 4c 89 e7 bb ff ff ff ff e8 60 7a f9 fe <f0> 41 0f c1 1c 24 bf 01 00 00 00 89 de e8 fe e5 ac fe 83 fb 01 0f
[   52.015950][ T5240] RSP: 0018:ffffc90003c0fad8 EFLAGS: 00010246
[   52.021995][ T5240] RAX: 0000000000000001 RBX: 00000000ffffffff RCX: ffffffff82cff810
[   52.029947][ T5240] RDX: fffffbfffffffff9 RSI: 0000000000000004 RDI: ffffffffffffffc3
[   52.037897][ T5240] RBP: ffff888078a5ca48 R08: 0000000000000001 R09: ffffffffffffffc6
[   52.045855][ T5240] R10: fffffbfffffffff8 R11: 0000000000000001 R12: ffffffffffffffc3
[   52.053810][ T5240] R13: ffff8880764ba330 R14: 1ffff92000781f60 R15: ffff888024e04f00
[   52.061770][ T5240] FS:  0000555555b7c300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[   52.070688][ T5240] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   52.077255][ T5240] CR2: ffffffffffffffc3 CR3: 0000000026941000 CR4: 00000000003506e0
[   52.085215][ T5240] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   52.093168][ T5240] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   52.101125][ T5240] Kernel panic - not syncing: Fatal exception
[   52.107400][ T5240] Kernel Offset: disabled
[   52.111717][ T5240] Rebooting in 86400 seconds..