./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2184130245 <...> Warning: Permanently added '10.128.1.141' (ED25519) to the list of known hosts. execve("./syz-executor2184130245", ["./syz-executor2184130245"], 0x7ffc0ba15a40 /* 10 vars */) = 0 brk(NULL) = 0x55558980d000 brk(0x55558980dd00) = 0x55558980dd00 arch_prctl(ARCH_SET_FS, 0x55558980d380) = 0 set_tid_address(0x55558980d650) = 5061 set_robust_list(0x55558980d660, 24) = 0 rseq(0x55558980dca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2184130245", 4096) = 28 getrandom("\x55\x76\x9c\x32\x57\x43\x47\x98", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558980dd00 brk(0x55558982ed00) = 0x55558982ed00 brk(0x55558982f000) = 0x55558982f000 mprotect(0x7fd702c7f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5062 attached , child_tidptr=0x55558980d650) = 5062 [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5062] set_robust_list(0x55558980d660, 24) = 0 [pid 5062] openat(AT_FDCWD, "/dev/loop0", O_RDWR./strace-static-x86_64: Process 5063 attached [pid 5061] <... clone resumed>, child_tidptr=0x55558980d650) = 5063 [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] set_robust_list(0x55558980d660, 24 [pid 5062] <... openat resumed>) = 3 [ 76.850097][ T28] audit: type=1400 audit(1713089649.542:87): avc: denied { execmem } for pid=5061 comm="syz-executor218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 5062] ioctl(3, LOOP_CLR_FD./strace-static-x86_64: Process 5064 attached [pid 5063] <... set_robust_list resumed>) = 0 [pid 5061] <... clone resumed>, child_tidptr=0x55558980d650) = 5064 [pid 5064] set_robust_list(0x55558980d660, 24 [pid 5062] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5064] <... set_robust_list resumed>) = 0 [pid 5064] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5061] <... clone resumed>, child_tidptr=0x55558980d650) = 5065 [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5064] <... openat resumed>) = 3 [pid 5062] close(3) = 0 ./strace-static-x86_64: Process 5066 attached ./strace-static-x86_64: Process 5065 attached [pid 5064] ioctl(3, LOOP_CLR_FD [ 76.890038][ T28] audit: type=1400 audit(1713089649.582:88): avc: denied { read write } for pid=5062 comm="syz-executor218" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 76.914997][ T28] audit: type=1400 audit(1713089649.582:89): avc: denied { open } for pid=5062 comm="syz-executor218" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 5063] openat(AT_FDCWD, "/dev/loop1", O_RDWR [pid 5064] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5061] <... clone resumed>, child_tidptr=0x55558980d650) = 5066 [pid 5066] set_robust_list(0x55558980d660, 24 [pid 5065] set_robust_list(0x55558980d660, 24 [pid 5063] <... openat resumed>) = 3 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5065] <... set_robust_list resumed>) = 0 [pid 5066] <... set_robust_list resumed>) = 0 [pid 5064] close(3 [pid 5066] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5064] <... close resumed>) = 0 [pid 5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] ioctl(3, LOOP_CLR_FD [pid 5066] <... openat resumed>) = 3 [pid 5065] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5063] <... ioctl resumed>) = -1 ENXIO (No such device or address) [pid 5063] close(3) = 0 [pid 5062] <... clone resumed>, child_tidptr=0x55558980d650) = 5067 [pid 5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5066] close(3 [pid 5065] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5069 attached ./strace-static-x86_64: Process 5067 attached [pid 5066] <... close resumed>) = 0 [pid 5064] <... clone resumed>, child_tidptr=0x55558980d650) = 5069 [pid 5069] set_robust_list(0x55558980d660, 24 [pid 5067] set_robust_list(0x55558980d660, 24 [pid 5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5065] ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) [pid 5065] close(3) = 0 [pid 5063] <... clone resumed>, child_tidptr=0x55558980d650) = 5070 ./strace-static-x86_64: Process 5070 attached [pid 5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5070] set_robust_list(0x55558980d660, 24 [pid 5069] <... set_robust_list resumed>) = 0 [pid 5067] <... set_robust_list resumed>) = 0 [pid 5070] <... set_robust_list resumed>) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5067] <... prctl resumed>) = 0 [pid 5066] <... clone resumed>, child_tidptr=0x55558980d650) = 5071 ./strace-static-x86_64: Process 5071 attached [pid 5069] <... prctl resumed>) = 0 [pid 5067] setpgid(0, 0 [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5069] setpgid(0, 0 [pid 5067] <... setpgid resumed>) = 0 [pid 5071] set_robust_list(0x55558980d660, 24 [pid 5070] <... prctl resumed>) = 0 [pid 5069] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5072 attached [pid 5071] <... set_robust_list resumed>) = 0 [pid 5070] setpgid(0, 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5072] set_robust_list(0x55558980d660, 24 [pid 5070] <... setpgid resumed>) = 0 [pid 5065] <... clone resumed>, child_tidptr=0x55558980d650) = 5072 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5067] <... openat resumed>) = 3 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5067] write(3, "1000", 4 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5071] <... prctl resumed>) = 0 [pid 5070] <... openat resumed>) = 3 [pid 5069] <... openat resumed>) = 3 [pid 5067] <... write resumed>) = 4 [pid 5072] <... prctl resumed>) = 0 [pid 5071] setpgid(0, 0 [pid 5070] write(3, "1000", 4 [pid 5069] write(3, "1000", 4 [pid 5067] close(3 [pid 5072] setpgid(0, 0 [pid 5071] <... setpgid resumed>) = 0 [pid 5070] <... write resumed>) = 4 [pid 5069] <... write resumed>) = 4 [pid 5067] <... close resumed>) = 0 [pid 5072] <... setpgid resumed>) = 0 [pid 5070] close(3 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5070] <... close resumed>) = 0 [pid 5069] close(3 [pid 5067] memfd_create("syzkaller", 0 [pid 5072] <... openat resumed>) = 3 [pid 5071] <... openat resumed>) = 3 [pid 5070] memfd_create("syzkaller", 0 [pid 5069] <... close resumed>) = 0 [pid 5067] <... memfd_create resumed>) = 3 [pid 5072] write(3, "1000", 4 [pid 5070] <... memfd_create resumed>) = 3 [pid 5067] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5072] <... write resumed>) = 4 [pid 5067] <... mmap resumed>) = 0x7fd6fa600000 [pid 5072] close(3 [pid 5070] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [ 76.940548][ T28] audit: type=1400 audit(1713089649.612:90): avc: denied { ioctl } for pid=5062 comm="syz-executor218" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 5069] memfd_create("syzkaller", 0 [pid 5072] <... close resumed>) = 0 [pid 5070] <... mmap resumed>) = 0x7fd6fa600000 [pid 5072] memfd_create("syzkaller", 0 [pid 5071] write(3, "1000", 4 [pid 5070] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5069] <... memfd_create resumed>) = 3 [pid 5067] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5071] <... write resumed>) = 4 [pid 5069] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5072] <... memfd_create resumed>) = 3 [pid 5072] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fd6fa600000 [pid 5072] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5071] close(3 [pid 5069] <... mmap resumed>) = 0x7fd6fa600000 [pid 5067] <... write resumed>) = 262144 [pid 5071] <... close resumed>) = 0 [pid 5071] memfd_create("syzkaller", 0 [pid 5070] <... write resumed>) = 262144 [pid 5069] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5067] munmap(0x7fd6fa600000, 138412032 [pid 5071] <... memfd_create resumed>) = 3 [pid 5071] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 [pid 5067] <... munmap resumed>) = 0 [pid 5071] <... mmap resumed>) = 0x7fd6fa600000 [pid 5072] <... write resumed>) = 262144 [pid 5071] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144 [pid 5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5070] munmap(0x7fd6fa600000, 138412032 [pid 5067] <... openat resumed>) = 4 [pid 5070] <... munmap resumed>) = 0 [pid 5067] ioctl(4, LOOP_SET_FD, 3 [pid 5070] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = 4 [pid 5070] ioctl(4, LOOP_SET_FD, 3 [pid 5072] munmap(0x7fd6fa600000, 138412032 [pid 5071] <... write resumed>) = 262144 [pid 5069] <... write resumed>) = 262144 [pid 5071] munmap(0x7fd6fa600000, 138412032 [pid 5069] munmap(0x7fd6fa600000, 138412032 [pid 5072] <... munmap resumed>) = 0 [pid 5072] openat(AT_FDCWD, "/dev/loop3", O_RDWR) = 4 [pid 5072] ioctl(4, LOOP_SET_FD, 3 [pid 5071] <... munmap resumed>) = 0 [pid 5069] <... munmap resumed>) = 0 [pid 5067] <... ioctl resumed>) = 0 [pid 5071] openat(AT_FDCWD, "/dev/loop4", O_RDWR [pid 5069] openat(AT_FDCWD, "/dev/loop2", O_RDWR [pid 5067] close(3 [pid 5071] <... openat resumed>) = 4 [pid 5069] <... openat resumed>) = 4 [pid 5067] <... close resumed>) = 0 [pid 5067] close(4 [pid 5069] ioctl(4, LOOP_SET_FD, 3 [pid 5071] ioctl(4, LOOP_SET_FD, 3 [pid 5067] <... close resumed>) = 0 [pid 5072] <... ioctl resumed>) = 0 [pid 5070] <... ioctl resumed>) = 0 [pid 5072] close(3 [pid 5070] close(3 [pid 5072] <... close resumed>) = 0 [pid 5070] <... close resumed>) = 0 [pid 5072] close(4 [pid 5070] close(4 [pid 5072] <... close resumed>) = 0 [pid 5070] <... close resumed>) = 0 [pid 5072] mkdir("./bus", 0777 [pid 5070] mkdir("./bus", 0777 [pid 5072] <... mkdir resumed>) = 0 [pid 5070] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5067] mkdir("./bus", 0777 [pid 5071] <... ioctl resumed>) = 0 [pid 5070] mount("/dev/loop1", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,q"... [pid 5069] <... ioctl resumed>) = 0 [pid 5067] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5071] close(3 [pid 5069] close(3 [pid 5067] mount("/dev/loop0", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,q"... [pid 5071] <... close resumed>) = 0 [pid 5069] <... close resumed>) = 0 [ 77.034817][ T5067] loop0: detected capacity change from 0 to 512 [ 77.036337][ T5070] loop1: detected capacity change from 0 to 512 [ 77.054712][ T5072] loop3: detected capacity change from 0 to 512 [ 77.064214][ T5069] loop2: detected capacity change from 0 to 512 [ 77.072936][ T5071] loop4: detected capacity change from 0 to 512 [pid 5072] mount("/dev/loop3", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,q"... [pid 5071] close(4 [ 77.100491][ T5067] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 77.102958][ T28] audit: type=1400 audit(1713089649.792:91): avc: denied { mounton } for pid=5067 comm="syz-executor218" path="/root/bus" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 77.136323][ T5070] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [pid 5069] close(4 [pid 5071] <... close resumed>) = 0 [pid 5069] <... close resumed>) = 0 [pid 5071] mkdir("./bus", 0777 [pid 5069] mkdir("./bus", 0777) = -1 EEXIST (File exists) [pid 5071] <... mkdir resumed>) = -1 EEXIST (File exists) [pid 5069] mount("/dev/loop2", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,q"... [ 77.137452][ T5072] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 77.146576][ T5067] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 77.172248][ T5069] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 77.184672][ T5071] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 77.226728][ T5067] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2859: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 77.226736][ T5072] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2859: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 77.227399][ T5072] EXT4-fs (loop3): 1 truncate cleaned up [ 77.259349][ T5067] EXT4-fs (loop0): 1 truncate cleaned up [ 77.263814][ T5070] EXT4-fs (loop1): 1 truncate cleaned up [pid 5071] mount("/dev/loop4", "./bus", "ext4", MS_NOSUID|MS_NODEV|MS_NOEXEC, "noload,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,block_validity,q"... [pid 5067] <... mount resumed>) = 0 [pid 5067] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 [pid 5067] chdir("./bus") = 0 [ 77.276142][ T5067] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.288372][ T5069] EXT4-fs (loop2): 1 truncate cleaned up [ 77.294769][ T5070] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.314071][ T5071] EXT4-fs (loop4): 1 truncate cleaned up [pid 5067] openat(AT_FDCWD, "/dev/loop0", O_RDWR [pid 5072] <... mount resumed>) = 0 [pid 5070] <... mount resumed>) = 0 [pid 5067] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5072] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5070] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5067] mount("mtd0x0000000000000000", "./file0", "jffs2", 0, NULL [pid 5072] <... openat resumed>) = 3 [pid 5070] <... openat resumed>) = 3 [ 77.325760][ T5069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.335393][ T5072] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.338972][ T28] audit: type=1400 audit(1713089650.002:92): avc: denied { mount } for pid=5067 comm="syz-executor218" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [pid 5072] chdir("./bus" [pid 5070] chdir("./bus" [pid 5072] <... chdir resumed>) = 0 [pid 5070] <... chdir resumed>) = 0 [pid 5069] <... mount resumed>) = 0 [pid 5069] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 [pid 5069] chdir("./bus") = 0 [pid 5069] openat(AT_FDCWD, "/dev/loop2", O_RDWR) = -1 EBUSY (Device or resource busy) [ 77.354388][ T5071] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 77.399448][ T5067] jffs2: notice: (5067) jffs2_build_xattr_subsystem: complete building xattr subsystem, 0 of xdatum (0 unchecked, 0 orphan) and 0 of xref (0 dead, 0 orphan) found. [pid 5069] mount("mtd0x0000000000000000", "./file0", "jffs2", 0, NULL [pid 5072] openat(AT_FDCWD, "/dev/loop3", O_RDWR [pid 5070] openat(AT_FDCWD, "/dev/loop1", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5072] <... openat resumed>) = -1 EBUSY (Device or resource busy) [pid 5070] mount("mtd0x0000000000000000", "./file0", "jffs2", 0, NULL [pid 5072] mount("mtd0x0000000000000000", "./file0", "jffs2", 0, NULL [pid 5070] <... mount resumed>) = 0 [pid 5069] <... mount resumed>) = 0 [pid 5067] <... mount resumed>) = 0 [pid 5071] <... mount resumed>) = 0 [pid 5069] mkdir(NULL, 000 [pid 5072] <... mount resumed>) = -1 EBUSY (Device or resource busy) [pid 5071] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY [pid 5070] mkdir(NULL, 000 [pid 5069] <... mkdir resumed>) = -1 EFAULT (Bad address) [pid 5067] mkdir(NULL, 000 [pid 5072] mkdir(NULL, 000 [pid 5071] <... openat resumed>) = 3 [pid 5070] <... mkdir resumed>) = -1 EFAULT (Bad address) [pid 5069] setxattr("./file0", "trusted.overlay.upper", "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x78\x9c\xec\xdb\xcf\x6b\x1c\x55\x1c\x00\xf0\xef\xcc\x26\xad\xfd\x65\x62\xa9\x3f\x9a\x56\x8d\x56\x31\xf8\x23\x69\xd2\x5a\x7b\xf0\xa2\x28\x78\x50"..., 65259, 0 [pid 5067] <... mkdir resumed>) = -1 EFAULT (Bad address) [pid 5072] <... mkdir resumed>) = -1 EFAULT (Bad address) [pid 5071] chdir("./bus" [pid 5070] setxattr("./file0", "trusted.overlay.upper", "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x78\x9c\xec\xdb\xcf\x6b\x1c\x55\x1c\x00\xf0\xef\xcc\x26\xad\xfd\x65\x62\xa9\x3f\x9a\x56\x8d\x56\x31\xf8\x23\x69\xd2\x5a\x7b\xf0\xa2\x28\x78\x50"..., 65259, 0 [pid 5067] setxattr("./file0", "trusted.overlay.upper", "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x78\x9c\xec\xdb\xcf\x6b\x1c\x55\x1c\x00\xf0\xef\xcc\x26\xad\xfd\x65\x62\xa9\x3f\x9a\x56\x8d\x56\x31\xf8\x23\x69\xd2\x5a\x7b\xf0\xa2\x28\x78\x50"..., 65259, 0 [pid 5072] setxattr("./file0", "trusted.overlay.upper", "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x78\x9c\xec\xdb\xcf\x6b\x1c\x55\x1c\x00\xf0\xef\xcc\x26\xad\xfd\x65\x62\xa9\x3f\x9a\x56\x8d\x56\x31\xf8\x23\x69\xd2\x5a\x7b\xf0\xa2\x28\x78\x50"..., 65259, 0 [pid 5071] <... chdir resumed>) = 0 [pid 5071] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5071] mount("mtd0x0000000000000000", "./file0", "jffs2", 0, NULL) = 0 [pid 5071] mkdir(NULL, 000) = -1 EFAULT (Bad address) [ 77.406219][ T28] audit: type=1400 audit(1713089650.092:93): avc: denied { mounton } for pid=5067 comm="syz-executor218" path="/root/bus/file0" dev="loop0" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 77.463870][ T5069] jffs2: warning: (5069) save_xattr_datum: jffs2_flash_writev()=-22, req=65305, wrote=32, at 0x01e00c [pid 5071] setxattr("./file0", "trusted.overlay.upper", "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x78\x9c\xec\xdb\xcf\x6b\x1c\x55\x1c\x00\xf0\xef\xcc\x26\xad\xfd\x65\x62\xa9\x3f\x9a\x56\x8d\x56\x31\xf8\x23\x69\xd2\x5a\x7b\xf0\xa2\x28\x78\x50"..., 65259, 0 [pid 5069] <... setxattr resumed>) = -1 EINVAL (Invalid argument) [ 77.499673][ T28] audit: type=1400 audit(1713089650.152:94): avc: denied { setattr } for pid=5069 comm="syz-executor218" name="/" dev="jffs2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 77.515274][ T5070] ================================================================== [ 77.529827][ T5070] BUG: KASAN: slab-out-of-bounds in jffs2_sum_add_kvec+0x125a/0x15d0 [ 77.537907][ T5070] Read of size 4 at addr ffff88807afc4cbc by task syz-executor218/5070 [ 77.546129][ T5070] [ 77.548435][ T5070] CPU: 1 PID: 5070 Comm: syz-executor218 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 77.558489][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 77.568540][ T5070] Call Trace: [ 77.571841][ T5070] [ 77.574777][ T5070] dump_stack_lvl+0x116/0x1f0 [ 77.579480][ T5070] print_report+0xc3/0x620 [ 77.583908][ T5070] ? __virt_addr_valid+0x5e/0x580 [ 77.588931][ T5070] ? __phys_addr+0xc6/0x150 [ 77.593434][ T5070] kasan_report+0xd9/0x110 [ 77.597857][ T5070] ? jffs2_sum_add_kvec+0x125a/0x15d0 [ 77.603234][ T5070] ? jffs2_sum_add_kvec+0x125a/0x15d0 [ 77.608618][ T5070] jffs2_sum_add_kvec+0x125a/0x15d0 [ 77.613837][ T5070] jffs2_flash_direct_writev+0xa8/0xd0 [ 77.619336][ T5070] jffs2_flash_writev+0x9d5/0xf00 [ 77.624370][ T5070] ? hlock_class+0x4e/0x130 [ 77.628880][ T5070] ? mark_lock+0xb5/0xc60 [ 77.633218][ T5070] ? __pfx_mark_lock+0x10/0x10 [ 77.637987][ T5070] ? __pfx_jffs2_flash_writev+0x10/0x10 [ 77.643531][ T5070] ? rcu_read_unlock+0x1c/0x60 [ 77.648291][ T5070] save_xattr_datum+0x44b/0x780 [ 77.653143][ T5070] ? __pfx_save_xattr_datum+0x10/0x10 [ 77.658514][ T5070] ? mark_held_locks+0x9f/0xe0 [ 77.663299][ T5070] ? __kmalloc_large_node+0x127/0x1a0 [ 77.668688][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 77.673916][ T5070] ? rcu_is_watching+0x12/0xc0 [ 77.678696][ T5070] ? crc32_body+0x34f/0x610 [ 77.683215][ T5070] ? do_jffs2_setxattr+0xa54/0x1640 [ 77.688414][ T5070] do_jffs2_setxattr+0xa54/0x1640 [ 77.693443][ T5070] ? __pfx_do_jffs2_setxattr+0x10/0x10 [ 77.698903][ T5070] ? evm_protected_xattr_common+0x183/0x1f0 [ 77.704808][ T5070] ? xattr_resolve_name+0x27b/0x3f0 [ 77.710016][ T5070] ? __pfx_jffs2_trusted_setxattr+0x10/0x10 [ 77.715910][ T5070] __vfs_setxattr+0x173/0x1e0 [ 77.720588][ T5070] ? __pfx___vfs_setxattr+0x10/0x10 [ 77.725782][ T5070] __vfs_setxattr_noperm+0x127/0x5e0 [ 77.731085][ T5070] __vfs_setxattr_locked+0x182/0x260 [ 77.736368][ T5070] vfs_setxattr+0x146/0x350 [ 77.740869][ T5070] ? __pfx_vfs_setxattr+0x10/0x10 [ 77.745906][ T5070] ? rep_movs_alternative+0x4a/0x70 [ 77.751136][ T5070] do_setxattr+0x146/0x170 [ 77.755564][ T5070] setxattr+0x15d/0x180 [ 77.759722][ T5070] ? __pfx_setxattr+0x10/0x10 [ 77.764404][ T5070] ? mnt_get_write_access+0x20c/0x300 [ 77.769782][ T5070] path_setxattr+0x179/0x1e0 [ 77.774370][ T5070] ? __pfx_path_setxattr+0x10/0x10 [ 77.779479][ T5070] ? _raw_spin_unlock_irq+0x23/0x50 [ 77.784679][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 77.789884][ T5070] __x64_sys_setxattr+0xc4/0x160 [ 77.794822][ T5070] do_syscall_64+0xd2/0x260 [ 77.799332][ T5070] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 77.805231][ T5070] RIP: 0033:0x7fd702c0af89 [ 77.809645][ T5070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.829251][ T5070] RSP: 002b:00007ffd49084988 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 77.837665][ T5070] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd702c0af89 [ 77.845643][ T5070] RDX: 0000000020000900 RSI: 0000000020000100 RDI: 00000000200000c0 [ 77.853616][ T5070] RBP: 00000000000f4240 R08: 0000000000000000 R09: 000055558980e378 [ 77.861587][ T5070] R10: 000000000000feeb R11: 0000000000000246 R12: 0000000000000001 [ 77.869560][ T5070] R13: 00007ffd490849c0 R14: 00007ffd490849ac R15: 00007fd702c5403b [ 77.877532][ T5070] [ 77.880543][ T5070] [ 77.882855][ T5070] Allocated by task 5067: [ 77.887172][ T5070] kasan_save_stack+0x33/0x60 [ 77.891855][ T5070] kasan_save_track+0x14/0x30 [ 77.896533][ T5070] __kasan_kmalloc+0xaa/0xb0 [ 77.901129][ T5070] __kmalloc+0x1f9/0x440 [ 77.905373][ T5070] jffs2_do_mount_fs+0x84b/0x2460 [ 77.910399][ T5070] jffs2_do_fill_super+0x3d4/0xa60 [ 77.915512][ T5070] jffs2_fill_super+0x283/0x370 [ 77.920366][ T5070] mtd_get_sb+0x2ce/0x490 [ 77.924689][ T5070] get_tree_mtd+0x6ce/0x860 [ 77.929187][ T5070] vfs_get_tree+0x8f/0x380 [ 77.933601][ T5070] path_mount+0x14e6/0x1f20 [ 77.938109][ T5070] __x64_sys_mount+0x297/0x320 [ 77.942877][ T5070] do_syscall_64+0xd2/0x260 [ 77.947385][ T5070] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 77.953288][ T5070] [ 77.955613][ T5070] The buggy address belongs to the object at ffff88807afc4000 [ 77.955613][ T5070] which belongs to the cache kmalloc-4k of size 4096 [ 77.969665][ T5070] The buggy address is located 956 bytes to the right of [ 77.969665][ T5070] allocated 2304-byte region [ffff88807afc4000, ffff88807afc4900) [ 77.984411][ T5070] [ 77.986725][ T5070] The buggy address belongs to the physical page: [ 77.993128][ T5070] page:ffffea0001ebf000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7afc0 [ 78.003274][ T5070] head:ffffea0001ebf000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 78.012200][ T5070] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 78.020179][ T5070] page_type: 0xffffffff() [ 78.024504][ T5070] raw: 00fff00000000840 ffff888015042140 dead000000000122 0000000000000000 [ 78.033084][ T5070] raw: 0000000000000000 0000000000040004 00000001ffffffff 0000000000000000 [ 78.041663][ T5070] page dumped because: kasan: bad access detected [ 78.048065][ T5070] page_owner tracks the page as allocated [ 78.053852][ T5070] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5067, tgid 5067 (syz-executor218), ts 77397646236, free_ts 77385475543 [ 78.075470][ T5070] post_alloc_hook+0x2d4/0x350 [ 78.080236][ T5070] get_page_from_freelist+0xa28/0x3780 [ 78.085695][ T5070] __alloc_pages+0x22b/0x2410 [ 78.090368][ T5070] new_slab+0xcc/0x3a0 [ 78.094435][ T5070] ___slab_alloc+0x66d/0x1790 [ 78.099119][ T5070] __slab_alloc.constprop.0+0x56/0xb0 [ 78.104494][ T5070] kmalloc_trace+0x2fb/0x330 [ 78.109089][ T5070] jffs2_init_fs_context+0x3f/0xd0 [ 78.114206][ T5070] alloc_fs_context+0x54a/0x9c0 [ 78.119052][ T5070] path_mount+0xb08/0x1f20 [ 78.123470][ T5070] __x64_sys_mount+0x297/0x320 [ 78.128243][ T5070] do_syscall_64+0xd2/0x260 [ 78.132751][ T5070] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 78.138648][ T5070] page last free pid 784 tgid 784 stack trace: [ 78.144787][ T5070] free_unref_page_prepare+0x527/0xb10 [ 78.150242][ T5070] free_unref_page+0x33/0x3c0 [ 78.154913][ T5070] __folio_put+0xeb/0x110 [ 78.159237][ T5070] put_page+0x21e/0x280 [ 78.163393][ T5070] page_to_skb+0x848/0xb00 [ 78.167809][ T5070] receive_buf+0x118d/0x51f0 [ 78.172397][ T5070] virtnet_poll+0xa0b/0x1840 [ 78.176988][ T5070] __napi_poll.constprop.0+0xb7/0x550 [ 78.182367][ T5070] net_rx_action+0x9ad/0xf10 [ 78.186961][ T5070] __do_softirq+0x218/0x8de [ 78.191465][ T5070] [ 78.193787][ T5070] Memory state around the buggy address: [ 78.199407][ T5070] ffff88807afc4b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 78.207461][ T5070] ffff88807afc4c00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 78.215952][ T5070] >ffff88807afc4c80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 78.224005][ T5070] ^ [ 78.229885][ T5070] ffff88807afc4d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 78.237939][ T5070] ffff88807afc4d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [pid 5069] exit_group(0) = ? [ 78.245990][ T5070] ================================================================== [ 78.264594][ T5070] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 78.271820][ T5070] CPU: 1 PID: 5070 Comm: syz-executor218 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 78.281900][ T5070] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 78.291952][ T5070] Call Trace: [ 78.295228][ T5070] [ 78.298157][ T5070] dump_stack_lvl+0x3d/0x1f0 [ 78.302754][ T5070] panic+0x6f5/0x7a0 [ 78.306656][ T5070] ? __pfx_panic+0x10/0x10 [ 78.311077][ T5070] ? irqentry_exit+0x3b/0x90 [ 78.315673][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 78.320877][ T5070] ? preempt_schedule_thunk+0x1a/0x30 [ 78.326246][ T5070] ? preempt_schedule_common+0x44/0xc0 [ 78.331715][ T5070] ? check_panic_on_warn+0x1f/0xb0 [ 78.336837][ T5070] check_panic_on_warn+0xab/0xb0 [ 78.341783][ T5070] end_report+0x117/0x160 [ 78.346128][ T5070] kasan_report+0xe9/0x110 [ 78.350550][ T5070] ? jffs2_sum_add_kvec+0x125a/0x15d0 [ 78.355932][ T5070] ? jffs2_sum_add_kvec+0x125a/0x15d0 [ 78.361381][ T5070] jffs2_sum_add_kvec+0x125a/0x15d0 [ 78.366731][ T5070] jffs2_flash_direct_writev+0xa8/0xd0 [ 78.372197][ T5070] jffs2_flash_writev+0x9d5/0xf00 [ 78.377223][ T5070] ? hlock_class+0x4e/0x130 [ 78.381726][ T5070] ? mark_lock+0xb5/0xc60 [ 78.386060][ T5070] ? __pfx_mark_lock+0x10/0x10 [ 78.390829][ T5070] ? __pfx_jffs2_flash_writev+0x10/0x10 [ 78.396372][ T5070] ? rcu_read_unlock+0x1c/0x60 [ 78.401135][ T5070] save_xattr_datum+0x44b/0x780 [ 78.405986][ T5070] ? __pfx_save_xattr_datum+0x10/0x10 [ 78.411355][ T5070] ? mark_held_locks+0x9f/0xe0 [ 78.416128][ T5070] ? __kmalloc_large_node+0x127/0x1a0 [ 78.421500][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 78.426703][ T5070] ? rcu_is_watching+0x12/0xc0 [ 78.431527][ T5070] ? crc32_body+0x34f/0x610 [ 78.436052][ T5070] ? do_jffs2_setxattr+0xa54/0x1640 [ 78.441262][ T5070] do_jffs2_setxattr+0xa54/0x1640 [ 78.446298][ T5070] ? __pfx_do_jffs2_setxattr+0x10/0x10 [ 78.451758][ T5070] ? evm_protected_xattr_common+0x183/0x1f0 [ 78.457678][ T5070] ? xattr_resolve_name+0x27b/0x3f0 [ 78.462904][ T5070] ? __pfx_jffs2_trusted_setxattr+0x10/0x10 [ 78.468808][ T5070] __vfs_setxattr+0x173/0x1e0 [ 78.473489][ T5070] ? __pfx___vfs_setxattr+0x10/0x10 [ 78.478691][ T5070] __vfs_setxattr_noperm+0x127/0x5e0 [ 78.483978][ T5070] __vfs_setxattr_locked+0x182/0x260 [ 78.489266][ T5070] vfs_setxattr+0x146/0x350 [ 78.493768][ T5070] ? __pfx_vfs_setxattr+0x10/0x10 [ 78.498843][ T5070] ? rep_movs_alternative+0x4a/0x70 [ 78.504052][ T5070] do_setxattr+0x146/0x170 [ 78.508484][ T5070] setxattr+0x15d/0x180 [ 78.512640][ T5070] ? __pfx_setxattr+0x10/0x10 [ 78.517322][ T5070] ? mnt_get_write_access+0x20c/0x300 [ 78.522699][ T5070] path_setxattr+0x179/0x1e0 [ 78.527295][ T5070] ? __pfx_path_setxattr+0x10/0x10 [ 78.532408][ T5070] ? _raw_spin_unlock_irq+0x23/0x50 [ 78.537608][ T5070] ? lockdep_hardirqs_on+0x7c/0x110 [ 78.542807][ T5070] __x64_sys_setxattr+0xc4/0x160 [ 78.547744][ T5070] do_syscall_64+0xd2/0x260 [ 78.552255][ T5070] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 78.558158][ T5070] RIP: 0033:0x7fd702c0af89 [ 78.562571][ T5070] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.582178][ T5070] RSP: 002b:00007ffd49084988 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 78.590594][ T5070] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007fd702c0af89 [ 78.598564][ T5070] RDX: 0000000020000900 RSI: 0000000020000100 RDI: 00000000200000c0 [ 78.606532][ T5070] RBP: 00000000000f4240 R08: 0000000000000000 R09: 000055558980e378 [ 78.614504][ T5070] R10: 000000000000feeb R11: 0000000000000246 R12: 0000000000000001 [ 78.622472][ T5070] R13: 00007ffd490849c0 R14: 00007ffd490849ac R15: 00007fd702c5403b [ 78.630470][ T5070] [ 78.633720][ T5070] Kernel Offset: disabled [ 78.638038][ T5070] Rebooting in 86400 seconds..