./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2701771950

<...>
forked to background, child pid 192
no interfaces have a carrier
Starting sshd: OK

syzkaller
syzkaller login: [   15.064914][   T22] kauditd_printk_skb: 60 callbacks suppressed
[   15.064922][   T22] audit: type=1400 audit(1652118822.510:71): avc:  denied  { transition } for  pid=265 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   15.070855][   T22] audit: type=1400 audit(1652118822.510:72): avc:  denied  { write } for  pid=265 comm="sh" path="pipe:[9874]" dev="pipefs" ino=9874 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '10.128.0.164' (ECDSA) to the list of known hosts.
execve("./syz-executor2701771950", ["./syz-executor2701771950"], 0x7ffd6f7af0c0 /* 10 vars */) = 0
brk(NULL)                               = 0x555556d64000
brk(0x555556d64c40)                     = 0x555556d64c40
arch_prctl(ARCH_SET_FS, 0x555556d64300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2701771950", 4096) = 28
brk(0x555556d85c40)                     = 0x555556d85c40
brk(0x555556d86000)                     = 0x555556d86000
mprotect(0x7f250dabf000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0)            = 3
ftruncate(3, 2097152)                   = 0
pwrite64(3, "\x20\x00\x00\x00\x00\x02\x00\x00\x19\x00\x00\x00\x90\x01\x00\x00\x0f\x00\x00\x00\x00\x00\x00\x00\x02\x00\x00\x00\x06\x00\x00\x00\x00\x00\x08\x00\x00\x80\x00\x00\x20\x00\x00\x00\xdb\xf4\x65\x5f\xdb\xf4\x65\x5f\x01\x00\xff\xff\x53\xef\x01\x00\x01\x00\x00\x00\xda\xf4\x65\x5f\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x0b\x00\x00\x00\x00\x04\x00\x00\x08\x00\x00\x00\xd2\xc2\x00\x00"..., 102, 1024) = 102
pwrite64(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x82\xe3\x67\x24\xc6\xf3\x4c\xaa\x84\x6e\xd2\xe5\x27\x70\x33\x78\x01\x00\x40", 31, 1248) = 31
pwrite64(3, "\x02\x00\x00\x00\x03\x00\x00\x00\x04\x00\x00\x00\x19\x00\x0f\x00\x03\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0f\x00\x2e\x69", 32, 4096) = 32
pwrite64(3, "\x7f\x00\x00\x00\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff\xff"..., 4098, 8192) = 4098
pwrite64(3, "\xed\x41\x00\x00\x10\x00\x00\x00\xda\xf4\x65\x5f\xdb\xf4\x65\x5f\xdb\xf4\x65\x5f\x00\x00\x00\x00\x00\x00\x04\x00\x80\x00\x00\x00\x00\x00\x08\x00\x05\x00\x00\x00\x0a\xf3\x01\x00\x04\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x09\x00\x00\x00\x10", 61, 17408) = 61
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
[   22.071703][   T22] audit: type=1400 audit(1652118829.520:73): avc:  denied  { execmem } for  pid=304 comm="syz-executor270" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   22.095160][   T22] audit: type=1400 audit(1652118829.540:74): avc:  denied  { read write } for  pid=304 comm="syz-executor270" name="loop0" dev="devtmpfs" ino=9364 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
ioctl(4, LOOP_SET_FD, 3)                = 0
mkdir("./file0", 0777)                  = 0
[   22.119602][   T22] audit: type=1400 audit(1652118829.540:75): avc:  denied  { open } for  pid=304 comm="syz-executor270" path="/dev/loop0" dev="devtmpfs" ino=9364 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   22.143958][   T22] audit: type=1400 audit(1652118829.570:76): avc:  denied  { ioctl } for  pid=304 comm="syz-executor270" path="/dev/loop0" dev="devtmpfs" ino=9364 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
mount("/dev/loop0", "./file0", "ext4", 0, ",errors=continue") = 0
openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 5
ioctl(4, LOOP_CLR_FD)                   = 0
close(4)                                = 0
close(3)                                = 0
chdir("./file0")                        = 0
[   22.169758][   T22] audit: type=1400 audit(1652118829.590:77): avc:  denied  { mounton } for  pid=304 comm="syz-executor270" path="/root/file0" dev="sda1" ino=1138 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   22.171548][  T304] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
creat("./bus", 000)                     = 3
open("./bus", O_RDWR|O_CREAT|O_NONBLOCK|O_SYNC|O_DIRECT|O_LARGEFILE|O_NOATIME, 000) = 4
openat(AT_FDCWD, "/proc/self/exe", O_RDONLY) = 6
sendfile(4, 6, NULL, 2147483663)        = 851968
ftruncate(3, 1)                         = 0
open("./bus", O_RDWR|O_CREAT|O_SYNC|O_NOATIME, 000) = 7
[   22.201641][   T22] audit: type=1400 audit(1652118829.650:78): avc:  denied  { mount } for  pid=304 comm="syz-executor270" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[   22.223881][   T22] audit: type=1400 audit(1652118829.670:79): avc:  denied  { write } for  pid=304 comm="syz-executor270" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   22.232843][  T304] ------------[ cut here ]------------
[   22.246239][   T22] audit: type=1400 audit(1652118829.670:80): avc:  denied  { add_name } for  pid=304 comm="syz-executor270" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   22.251084][  T304] kernel BUG at fs/ext4/inode.c:2837!
[   22.251495][  T304] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   22.271780][   T22] audit: type=1400 audit(1652118829.670:81): avc:  denied  { create } for  pid=304 comm="syz-executor270" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   22.277084][  T304] CPU: 0 PID: 304 Comm: syz-executor270 Not tainted 5.4.180-syzkaller-00001-g0e9e1752f526 #0
[   22.283150][   T22] audit: type=1400 audit(1652118829.670:82): avc:  denied  { write open } for  pid=304 comm="syz-executor270" path="/root/file0/bus" dev="loop0" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[   22.303291][  T304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   22.303319][  T304] RIP: 0010:ext4_writepages+0x356c/0x3590
[   22.303331][  T304] Code: 94 c3 40 0f 94 c6 31 ff e8 51 75 a5 ff 84 db 75 2e e8 b8 72 a5 ff 49 bf 00 00 00 00 00 fc ff df e9 3d cd ff ff e8 a4 72 a5 ff <0f> 0b e8 9d 72 a5 ff 0f 0b e8 96 72 a5 ff e8 d1 75 45 ff eb 9e e8
[   22.371922][  T304] RSP: 0018:ffff8881ddcbf890 EFLAGS: 00010293
[   22.377953][  T304] RAX: ffffffff81bacc3c RBX: 0000010410000000 RCX: ffff8881de13de80
[   22.385893][  T304] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   22.393835][  T304] RBP: 0000010000000000 R08: ffffffff81ba9f34 R09: ffffed103ccd7dc6
[   22.401774][  T304] R10: ffffed103ccd7dc6 R11: 1ffff1103ccd7dc5 R12: ffff8881e66beed8
[   22.409713][  T304] R13: ffff8881ddd5b000 R14: 0000000000000001 R15: dffffc0000000000
[   22.417671][  T304] FS:  0000555556d64300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   22.426565][  T304] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   22.433116][  T304] CR2: 00000000004571f0 CR3: 00000001deef3000 CR4: 00000000003406f0
[   22.441062][  T304] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   22.449000][  T304] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   22.456939][  T304] Call Trace:
[   22.460208][  T304]  ? __ext4_handle_dirty_metadata+0x27d/0x620
[   22.466251][  T304]  ? up_write+0x6b/0x220
[   22.470462][  T304]  ? __ext4_journal_stop+0x2f/0x190
[   22.475626][  T304]  ? ext4_write_end+0x667/0xe40
[   22.480446][  T304]  ? iov_iter_advance+0x1fa/0xa20
[   22.485439][  T304]  ? ext4_readpage+0x2c0/0x2c0
[   22.490167][  T304]  do_writepages+0xda/0x1f0
[   22.494640][  T304]  ? balance_dirty_pages_ratelimited+0x363/0x520
[   22.500934][  T304]  file_write_and_wait_range+0x2cd/0x360
[   22.506536][  T304]  __generic_file_fsync+0x6e/0x190
[   22.511614][  T304]  ext4_sync_file+0x266/0xc70
[   22.516261][  T304]  ext4_file_write_iter+0x963/0x1040
[   22.521522][  T304]  ? iov_iter_init+0x83/0x160
[   22.526164][  T304]  __vfs_write+0x4f9/0x6a0
[   22.530551][  T304]  vfs_write+0x210/0x4f0
[   22.534759][  T304]  ksys_write+0x158/0x260
[   22.539058][  T304]  do_syscall_64+0xcb/0x1c0
[   22.543530][  T304]  entry_SYSCALL_64_after_hwframe+0x44/0xa9
[   22.549400][  T304] RIP: 0033:0x7f250da52069
[   22.553781][  T304] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   22.573351][  T304] RSP: 002b:00007ffea8c9fd38 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[   22.581729][  T304] RAX: ffffffffffffffda RBX: 0030656c69662f2e RCX: 00007f250da52069
[   22.589667][  T304] RDX: 0000000000000016 RSI: 0000000020002580 RDI: 0000000000000007
[   22.597605][  T304] RBP: 00007f250da11860 R08: 0000000000000000 R09: 0000000000000000
[   22.605543][  T304] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f250da118f0
[   22.613487][  T304] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   22.621427][  T304] Modules linked in:
[   22.625437][  T304] ---[ end trace 33ab7ac3c473304a ]---
[   22.630921][  T304] RIP: 0010:ext4_writepages+0x356c/0x3590
[   22.636613][  T304] Code: 94 c3 40 0f 94 c6 31 ff e8 51 75 a5 ff 84 db 75 2e e8 b8 72 a5 ff 49 bf 00 00 00 00 00 fc ff df e9 3d cd ff ff e8 a4 72 a5 ff <0f> 0b e8 9d 72 a5 ff 0f 0b e8 96 72 a5 ff e8 d1 75 45 ff eb 9e e8
[   22.656650][  T304] RSP: 0018:ffff8881ddcbf890 EFLAGS: 00010293
[   22.662713][  T304] RAX: ffffffff81bacc3c RBX: 0000010410000000 RCX: ffff8881de13de80
[   22.670673][  T304] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   22.678632][  T304] RBP: 0000010000000000 R08: ffffffff81ba9f34 R09: ffffed103ccd7dc6
[   22.686580][  T304] R10: ffffed103ccd7dc6 R11: 1ffff1103ccd7dc5 R12: ffff8881e66beed8
[   22.694546][  T304] R13: ffff8881ddd5b000 R14: 0000000000000001 R15: dffffc0000000000
[   22.702510][  T304] FS:  0000555556d64300(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   22.711430][  T304] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   22.717988][  T304] CR2: 00000000004571f0 CR3: 00000001deef3000 CR4: 00000000003406f0
[   22.725962][  T304] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   22.733925][  T304] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   22.741887][  T304] Kernel panic - not syncing: Fatal exception
[   22.748098][  T304] Kernel Offset: disabled
[   22.752410][  T304] Rebooting in 86400 seconds..