./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor933851742

<...>
DUID 00:04:d9:3a:76:1c:b4:63:be:bc:0b:c2:08:9c:83:36:98:31
forked to background, child pid 3185
[   26.017169][ T3186] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.028517][ T3186] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.0.142' (ECDSA) to the list of known hosts.
execve("./syz-executor933851742", ["./syz-executor933851742"], 0x7ffc4957c750 /* 10 vars */) = 0
brk(NULL)                               = 0x55555717a000
brk(0x55555717ad00)                     = 0x55555717ad00
arch_prctl(ARCH_SET_FS, 0x55555717a3c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor933851742", 4096) = 27
brk(0x55555719bd00)                     = 0x55555719bd00
brk(0x55555719c000)                     = 0x55555719c000
mprotect(0x7f43beb22000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f43bea73ae0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f43bea73dd0}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f43bea73ae0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f43bea73dd0}, NULL, 8) = 0
mkdir("./file0", 0777)                  = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} ---
pipe2([3, 4], 0)                        = 0
write(4, "\x15\x00\x00\x00\x65\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 21) = 21
dup(4)                                  = 5
mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,") = -1 EREMOTEIO (Remote I/O error)
write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
write(5, "\xb0\x00\x00\x00\x00\x00\x00\x6b\x2e\x7f\xb3\xf3\x73\x25\xda\x31\x44\x1d\xb4\x8c\xe3\x66\xa2\x33\xa6\x5b\x0f\xf5\x73\x17\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 176) = 176
write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000004,") = 0
syzkaller login: [   48.557969][ T3608] ------------[ cut here ]------------
[   48.563977][ T3608] WARNING: CPU: 0 PID: 3608 at fs/inode.c:388 inc_nlink+0x11e/0x130
[   48.572196][ T3608] Modules linked in:
[   48.576119][ T3608] CPU: 0 PID: 3608 Comm: syz-executor933 Not tainted 5.19.0-rc7-syzkaller-00005-gca85855bdcae #0
[   48.587092][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   48.597306][ T3608] RIP: 0010:inc_nlink+0x11e/0x130
[   48.602427][ T3608] Code: ea ff e9 38 ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 49 ff ff ff 4c 89 ef e8 cc 62 ea ff e9 3c ff ff ff e8 72 a8 97 ff <0f> 0b eb 80 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 41 57 41 56
[   48.622217][ T3608] RSP: 0018:ffffc90002fffc08 EFLAGS: 00010293
[   48.628277][ T3608] RAX: ffffffff81efed3e RBX: 1ffff1100e747009 RCX: ffff888022c50000
[   48.636299][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   48.644310][ T3608] RBP: 0000000000000000 R08: ffffffff81efecb8 R09: ffffed100e7470cd
[   48.652324][ T3608] R10: ffffed100e7470cd R11: 1ffff1100e7470cc R12: dffffc0000000000
[   48.660441][ T3608] R13: ffff888073a38048 R14: ffff888073a38000 R15: 0000000000000000
[   48.668721][ T3608] FS:  000055555717a3c0(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   48.677898][ T3608] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.684554][ T3608] CR2: 0000000020001000 CR3: 0000000079269000 CR4: 00000000003506f0
[   48.692721][ T3608] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.700766][ T3608] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.708853][ T3608] Call Trace:
[   48.712230][ T3608]  <TASK>
[   48.715177][ T3608]  v9fs_vfs_mkdir_dotl+0x6bc/0x860
[   48.720295][ T3608]  ? v9fs_vfs_symlink_dotl+0x580/0x580
[   48.725852][ T3608]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   48.730959][ T3608]  ? security_inode_mkdir+0xdd/0x120
[   48.736345][ T3608]  vfs_mkdir+0x2f6/0x4d0
[   48.740650][ T3608]  do_mkdirat+0x267/0x510
[   48.745001][ T3608]  ? __check_object_size+0x15a/0x210
[   48.750307][ T3608]  ? vfs_mkdir+0x4d0/0x4d0
[   48.754814][ T3608]  ? getname_flags+0x1ea/0x4e0
[   48.759601][ T3608]  __x64_sys_mkdir+0x6a/0x80
[   48.764463][ T3608]  do_syscall_64+0x2b/0x70
[   48.768927][ T3608]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   48.775056][ T3608] RIP: 0033:0x7f43beab5819
[   48.779505][ T3608] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   48.799212][ T3608] RSP: 002b:00007ffdc349ff08 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   48.807705][ T3608] RAX: ffffffffffffffda RBX: 00007ffdc349ff18 RCX: 00007f43beab5819
[   48.815742][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   48.823766][ T3608] RBP: 00007ffdc349ff10 R08: 00007f43bea73ae0 R09: 00007f43bea73ae0
[   48.831800][ T3608] R10: 0000000020000340 R11: 0000000000000246 R12: 0000000000000000
[   48.839800][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.847832][ T3608]  </TASK>
[   48.850883][ T3608] Kernel panic - not syncing: panic_on_warn set ...
[   48.857470][ T3608] CPU: 0 PID: 3608 Comm: syz-executor933 Not tainted 5.19.0-rc7-syzkaller-00005-gca85855bdcae #0
[   48.868046][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   48.878094][ T3608] Call Trace:
[   48.881363][ T3608]  <TASK>
[   48.884289][ T3608]  dump_stack_lvl+0x1e3/0x2cb
[   48.888967][ T3608]  ? bfq_pos_tree_add_move+0x436/0x436
[   48.894420][ T3608]  ? panic+0x76e/0x76e
[   48.898488][ T3608]  ? vscnprintf+0x59/0x80
[   48.902809][ T3608]  ? inc_nlink+0xe0/0x130
[   48.907127][ T3608]  panic+0x312/0x76e
[   48.911015][ T3608]  ? __warn+0x131/0x220
[   48.915161][ T3608]  ? fb_is_primary_device+0xcc/0xcc
[   48.920354][ T3608]  ? inc_nlink+0x11e/0x130
[   48.924759][ T3608]  __warn+0x1fa/0x220
[   48.928728][ T3608]  ? inc_nlink+0x11e/0x130
[   48.933143][ T3608]  report_bug+0x1b3/0x2d0
[   48.937476][ T3608]  handle_bug+0x3d/0x70
[   48.941624][ T3608]  exc_invalid_op+0x16/0x40
[   48.946123][ T3608]  asm_exc_invalid_op+0x16/0x20
[   48.950974][ T3608] RIP: 0010:inc_nlink+0x11e/0x130
[   48.955995][ T3608] Code: ea ff e9 38 ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 49 ff ff ff 4c 89 ef e8 cc 62 ea ff e9 3c ff ff ff e8 72 a8 97 ff <0f> 0b eb 80 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 41 57 41 56
[   48.975592][ T3608] RSP: 0018:ffffc90002fffc08 EFLAGS: 00010293
[   48.981654][ T3608] RAX: ffffffff81efed3e RBX: 1ffff1100e747009 RCX: ffff888022c50000
[   48.989723][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   48.997685][ T3608] RBP: 0000000000000000 R08: ffffffff81efecb8 R09: ffffed100e7470cd
[   49.005653][ T3608] R10: ffffed100e7470cd R11: 1ffff1100e7470cc R12: dffffc0000000000
[   49.013617][ T3608] R13: ffff888073a38048 R14: ffff888073a38000 R15: 0000000000000000
[   49.021588][ T3608]  ? inc_nlink+0x98/0x130
[   49.025917][ T3608]  ? inc_nlink+0x11e/0x130
[   49.030337][ T3608]  ? inc_nlink+0x11e/0x130
[   49.034748][ T3608]  v9fs_vfs_mkdir_dotl+0x6bc/0x860
[   49.039863][ T3608]  ? v9fs_vfs_symlink_dotl+0x580/0x580
[   49.045436][ T3608]  ? bpf_lsm_inode_mkdir+0x5/0x10
[   49.050549][ T3608]  ? security_inode_mkdir+0xdd/0x120
[   49.055847][ T3608]  vfs_mkdir+0x2f6/0x4d0
[   49.060104][ T3608]  do_mkdirat+0x267/0x510
[   49.064450][ T3608]  ? __check_object_size+0x15a/0x210
[   49.069732][ T3608]  ? vfs_mkdir+0x4d0/0x4d0
[   49.074172][ T3608]  ? getname_flags+0x1ea/0x4e0
[   49.079135][ T3608]  __x64_sys_mkdir+0x6a/0x80
[   49.083808][ T3608]  do_syscall_64+0x2b/0x70
[   49.088222][ T3608]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   49.094109][ T3608] RIP: 0033:0x7f43beab5819
[   49.098526][ T3608] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   49.118129][ T3608] RSP: 002b:00007ffdc349ff08 EFLAGS: 00000246 ORIG_RAX: 0000000000000053
[   49.126545][ T3608] RAX: ffffffffffffffda RBX: 00007ffdc349ff18 RCX: 00007f43beab5819
[   49.134524][ T3608] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00000000200002c0
[   49.142500][ T3608] RBP: 00007ffdc349ff10 R08: 00007f43bea73ae0 R09: 00007f43bea73ae0
[   49.150550][ T3608] R10: 0000000020000340 R11: 0000000000000246 R12: 0000000000000000
[   49.158513][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   49.166581][ T3608]  </TASK>
[   49.169906][ T3608] Kernel Offset: disabled
[   49.174294][ T3608] Rebooting in 86400 seconds..