./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor940912044

<...>
Warning: Permanently added '10.128.1.177' (ECDSA) to the list of known hosts.
execve("./syz-executor940912044", ["./syz-executor940912044"], 0x7ffd18f59e90 /* 10 vars */) = 0
brk(NULL)                               = 0x555556825000
brk(0x555556825c40)                     = 0x555556825c40
arch_prctl(ARCH_SET_FS, 0x555556825300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
set_tid_address(0x5555568255d0)         = 304
set_robust_list(0x5555568255e0, 24)     = 0
rt_sigaction(SIGRTMIN, {sa_handler=0x7f55e8fbe240, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f55e8fbe910}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=0x7f55e8fbe2e0, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f55e8fbe910}, NULL, 8) = 0
rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor940912044", 4096) = 27
brk(0x555556846c40)                     = 0x555556846c40
brk(0x555556847000)                     = 0x555556847000
mprotect(0x7f55e907f000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
unshare(CLONE_NEWPID)                   = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555568255d0) = 305
./strace-static-x86_64: Process 305 attached
[pid   305] set_robust_list(0x5555568255e0, 24) = 0
[pid   305] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy)
[pid   305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   305] setsid()                    = 1
[pid   305] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0
[pid   305] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0
[pid   305] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0
[pid   305] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0
[pid   305] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0
[pid   305] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0
[pid   305] unshare(CLONE_NEWNS)        = 0
[pid   305] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0
[pid   305] unshare(CLONE_NEWIPC)       = -1 EINVAL (Invalid argument)
[pid   305] unshare(CLONE_NEWCGROUP)    = 0
[pid   305] unshare(CLONE_NEWUTS)       = 0
[pid   305] unshare(CLONE_SYSVSEM)      = 0
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = -1 ENOENT (No such file or directory)
[pid   305] getpid()                    = 1
[pid   305] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PTRACE|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_NICE|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, inheritable=0}) = 0
[pid   305] capset({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, permitted=1<<CAP_CHOWN|1<<CAP_DAC_OVERRIDE|1<<CAP_DAC_READ_SEARCH|1<<CAP_FOWNER|1<<CAP_FSETID|1<<CAP_KILL|1<<CAP_SETGID|1<<CAP_SETUID|1<<CAP_SETPCAP|1<<CAP_LINUX_IMMUTABLE|1<<CAP_NET_BIND_SERVICE|1<<CAP_NET_BROADCAST|1<<CAP_NET_ADMIN|1<<CAP_NET_RAW|1<<CAP_IPC_LOCK|1<<CAP_IPC_OWNER|1<<CAP_SYS_MODULE|1<<CAP_SYS_RAWIO|1<<CAP_SYS_CHROOT|1<<CAP_SYS_PACCT|1<<CAP_SYS_ADMIN|1<<CAP_SYS_BOOT|1<<CAP_SYS_RESOURCE|1<<CAP_SYS_TIME|1<<CAP_SYS_TTY_CONFIG|1<<CAP_MKNOD|1<<CAP_LEASE|1<<CAP_AUDIT_WRITE|1<<CAP_AUDIT_CONTROL|1<<CAP_SETFCAP|1<<CAP_MAC_OVERRIDE|1<<CAP_MAC_ADMIN|1<<CAP_SYSLOG|1<<CAP_WAKE_ALARM|1<<CAP_BLOCK_SUSPEND|1<<CAP_AUDIT_READ, inheritable=0}) = 0
[pid   305] unshare(CLONE_NEWNET)       = 0
[pid   305] openat(AT_FDCWD, "/proc/sys/net/ipv4/ping_group_range", O_WRONLY|O_CLOEXEC) = 3
[pid   305] write(3, "0 65535", 7)      = 7
[pid   305] close(3)                    = 0
[pid   305] mkdir("/dev/binderfs", 0777) = 0
[pid   305] mount("binder", "/dev/binderfs", "binder", 0, NULL) = 0
[pid   305] symlink("/dev/binderfs", "./binderfs") = 0
[pid   305] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f55e8f8d000
[pid   305] mprotect(0x7f55e8f8e000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   305] clone(child_stack=0x7f55e8fad3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[2], tls=0x7f55e8fad700, child_tidptr=0x7f55e8fad9d0) = 2
[pid   305] futex(0x7f55e90856e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000}./strace-static-x86_64: Process 307 attached
 <unfinished ...>
[pid   307] set_robust_list(0x7f55e8fad9e0, 24) = 0
[pid   307] memfd_create("syzkaller", 0) = 3
[pid   307] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f55e0b8d000
[   19.449548][   T22] audit: type=1400 audit(1678688686.780:73): avc:  denied  { execmem } for  pid=304 comm="syz-executor940" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   19.458480][   T22] audit: type=1400 audit(1678688686.790:74): avc:  denied  { mounton } for  pid=305 comm="syz-executor940" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[   19.467461][   T22] audit: type=1400 audit(1678688686.790:75): avc:  denied  { mount } for  pid=305 comm="syz-executor940" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[pid   307] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576
[pid   307] munmap(0x7f55e0b8d000, 1048576) = 0
[pid   307] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid   307] ioctl(4, LOOP_SET_FD, 3)    = 0
[pid   307] close(3)                    = 0
[pid   307] mkdir("./file0", 0777)      = 0
[   19.485572][   T22] audit: type=1400 audit(1678688686.800:76): avc:  denied  { mounton } for  pid=305 comm="syz-executor940" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   19.507425][   T22] audit: type=1400 audit(1678688686.830:77): avc:  denied  { mounton } for  pid=305 comm="syz-executor940" path="/dev/binderfs" dev="devtmpfs" ino=10767 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[pid   307] mount("/dev/loop0", "./file0", "ext4", MS_SYNCHRONOUS|MS_DIRSYNC|MS_NOATIME|MS_LAZYTIME, ",errors=continue") = 0
[pid   307] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid   307] chdir("./file0")            = 0
[pid   307] ioctl(4, LOOP_CLR_FD)       = 0
[pid   307] close(4)                    = 0
[pid   307] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   305] <... futex resumed>)        = 0
[pid   305] futex(0x7f55e90856e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   307] <... futex resumed>)        = 1
[pid   307] openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4
[pid   307] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   305] <... futex resumed>)        = 0
[pid   305] futex(0x7f55e90856e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   307] <... futex resumed>)        = 1
[pid   307] pwritev(4, [{iov_base="\xef", iov_len=1}], 1, 0) = 1
[pid   307] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   305] <... futex resumed>)        = 0
[pid   305] futex(0x7f55e90856e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   307] <... futex resumed>)        = 1
[pid   307] mmap(0x20000000, 11755520, PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 4, 0) = 0x20000000
[pid   307] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid   305] <... futex resumed>)        = 0
[pid   305] futex(0x7f55e90856e8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f55e0c6c000
[pid   305] mprotect(0x7f55e0c6d000, 131072, PROT_READ|PROT_WRITE) = 0
[pid   305] clone(child_stack=0x7f55e0c8c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3], tls=0x7f55e0c8c700, child_tidptr=0x7f55e0c8c9d0) = 3
[pid   305] futex(0x7f55e90856f8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   305] futex(0x7f55e90856fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid   307] <... futex resumed>)        = 1
[   19.530714][   T22] audit: type=1400 audit(1678688686.830:78): avc:  denied  { mount } for  pid=305 comm="syz-executor940" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   19.543559][  T307] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue
[   19.553423][   T22] audit: type=1400 audit(1678688686.840:79): avc:  denied  { read write } for  pid=305 comm="syz-executor940" name="loop0" dev="devtmpfs" ino=9279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
./strace-static-x86_64: Process 311 attached
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   311] set_robust_list(0x7f55e0c8c9e0, 24 <unfinished ...>
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   305] <... futex resumed>)        = -1 ETIMEDOUT (Connection timed out)
[pid   305] futex(0x7f55e90856fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=0}) = -1 ETIMEDOUT (Connection timed out)
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[   19.584884][  T307] EXT4-fs error (device loop0): ext4_mb_generate_buddy:747: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   19.586914][   T22] audit: type=1400 audit(1678688686.840:80): avc:  denied  { open } for  pid=305 comm="syz-executor940" path="/dev/loop0" dev="devtmpfs" ino=9279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   311] <... set_robust_list resumed>) = 0
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   307] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000040} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   311] --- SIGBUS {si_signo=SIGBUS, si_code=BUS_ADRERR, si_addr=0x20000180} ---
[pid   307] sendfile(-1, -1, 0x20000040, 0) = -1 EBADF (Bad file descriptor)
[pid   311] sendmsg(4, 0x20000180, MSG_DONTWAIT|MSG_EOR) = -1 ENOTSOCK (Socket operation on non-socket)
[pid   307] futex(0x7f55e90856ec, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   307] futex(0x7f55e90856e8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   311] futex(0x7f55e90856fc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid   311] futex(0x7f55e90856f8, FUTEX_WAIT_PRIVATE, 0, NULL <unfinished ...>
[pid   305] close(3)                    = 0
[pid   305] close(4)                    = 0
[pid   305] close(5)                    = -1 EBADF (Bad file descriptor)
[pid   305] close(6)                    = -1 EBADF (Bad file descriptor)
[pid   305] close(7)                    = -1 EBADF (Bad file descriptor)
[pid   305] close(8)                    = -1 EBADF (Bad file descriptor)
[pid   305] close(9)                    = -1 EBADF (Bad file descriptor)
[pid   305] close(10)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(11)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(12)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(13)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(14)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(15)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(16)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(17)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(18)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(19)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(20)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(21)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(22)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(23)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(24)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(25)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(26)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(27)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(28)                   = -1 EBADF (Bad file descriptor)
[pid   305] close(29)                   = -1 EBADF (Bad file descriptor)
[pid   305] exit_group(1 <unfinished ...>
[pid   311] <... futex resumed>)        = -1 (errno 18446744073709551385)
[pid   305] <... exit_group resumed>)   = ?
[pid   307] <... futex resumed>)        = ?
[pid   311] +++ exited with 1 +++
[pid   307] +++ exited with 1 +++
[   19.625560][   T22] audit: type=1400 audit(1678688686.840:81): avc:  denied  { ioctl } for  pid=305 comm="syz-executor940" path="/dev/loop0" dev="devtmpfs" ino=9279 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   19.651581][   T22] audit: type=1400 audit(1678688686.850:82): avc:  denied  { mounton } for  pid=305 comm="syz-executor940" path="/root/file0" dev="sda1" ino=1139 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   19.688304][    T7] ------------[ cut here ]------------
[   19.693786][    T7] kernel BUG at fs/ext4/inode.c:2851!
[   19.699459][    T7] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[   19.705516][    T7] CPU: 1 PID: 7 Comm: kworker/u4:0 Not tainted 5.4.225-syzkaller-00007-g250ac66f1853 #0
[   19.715292][    T7] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[   19.725340][    T7] Workqueue: writeback wb_workfn (flush-7:0)
[   19.731311][    T7] RIP: 0010:ext4_writepages+0x3a16/0x3a40
[   19.737012][    T7] Code: 7a a2 ff 31 ff 89 de e8 f8 79 a2 ff 45 84 f6 75 2e e8 de 77 a2 ff 49 bd 00 00 00 00 00 fc ff df e9 6e f9 ff ff e8 ca 77 a2 ff <0f> 0b e8 c3 77 a2 ff 0f 0b e8 bc 77 a2 ff e8 77 87 3f ff eb 8f e8
[   19.756601][    T7] RSP: 0018:ffff8881f5db7100 EFLAGS: 00010293
[   19.762672][    T7] RAX: ffffffff81c0bf36 RBX: 0000010000000000 RCX: ffff8881f5d58fc0
[   19.770630][    T7] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   19.778604][    T7] RBP: ffff8881f5db74f0 R08: ffffffff81c08d1f R09: ffffed103ccefbdd
[   19.786561][    T7] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881e677df90
[   19.794519][    T7] R13: dffffc0000000000 R14: 0000010410000000 R15: ffff8881f5db73c0
[   19.802489][    T7] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   19.811414][    T7] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   19.818080][    T7] CR2: 00000000004571f0 CR3: 00000001edc63000 CR4: 00000000003406e0
[   19.826155][    T7] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   19.834113][    T7] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   19.842067][    T7] Call Trace:
[   19.845349][    T7]  ? ret_from_fork+0x1f/0x30
[   19.849932][    T7]  ? unwind_get_return_address_ptr+0xa0/0xa0
[   19.855908][    T7]  ? deref_stack_reg+0x15c/0x1f0
[   19.860872][    T7]  ? deref_stack_reg+0x15c/0x1f0
[   19.865793][    T7]  ? get_reg+0x220/0x220
[   19.870019][    T7]  ? get_reg+0x220/0x220
[   19.874245][    T7]  ? get_reg+0x220/0x220
[   19.878489][    T7]  ? unwind_next_frame+0x176a/0x1ea0
[   19.883760][    T7]  ? ext4_readpage+0x2e0/0x2e0
[   19.888518][    T7]  ? deref_stack_reg+0x15c/0x1f0
[   19.893438][    T7]  ? get_reg+0x220/0x220
[   19.897665][    T7]  ? unwind_get_return_address_ptr+0xa0/0xa0
[   19.903627][    T7]  ? preempt_count_add+0x8f/0x180
[   19.908634][    T7]  ? deref_stack_reg+0x15c/0x1f0
[   19.913558][    T7]  ? unwind_next_frame+0x176a/0x1ea0
[   19.918828][    T7]  ? deref_stack_reg+0x15c/0x1f0
[   19.923752][    T7]  ? ext4_readpage+0x2e0/0x2e0
[   19.928499][    T7]  do_writepages+0x12b/0x270
[   19.933073][    T7]  ? __writepage+0x110/0x110
[   19.937909][    T7]  ? _raw_spin_lock+0xa4/0x1b0
[   19.942676][    T7]  ? _raw_spin_trylock_bh+0x190/0x190
[   19.948033][    T7]  ? _raw_spin_lock+0xa4/0x1b0
[   19.952811][    T7]  __writeback_single_inode+0xd9/0xcc0
[   19.958274][    T7]  ? unwind_get_return_address_ptr+0xa0/0xa0
[   19.964242][    T7]  writeback_sb_inodes+0xa2c/0x1990
[   19.969425][    T7]  ? set_next_entity+0xae/0x4e0
[   19.974267][    T7]  ? queue_io+0x500/0x500
[   19.978601][    T7]  ? queue_io+0x358/0x500
[   19.982914][    T7]  wb_writeback+0x403/0xd70
[   19.987405][    T7]  ? wb_io_lists_depopulated+0x170/0x170
[   19.993025][    T7]  ? set_worker_desc+0x158/0x1c0
[   19.997967][    T7]  ? check_preemption_disabled+0x9f/0x320
[   20.003696][    T7]  ? kthread_data+0x4e/0xc0
[   20.008205][    T7]  wb_workfn+0x3a9/0x10c0
[   20.012545][    T7]  ? inode_wait_for_writeback+0x280/0x280
[   20.018250][    T7]  ? set_next_entity+0xae/0x4e0
[   20.023089][    T7]  ? _raw_spin_unlock_irq+0x4a/0x60
[   20.028273][    T7]  ? finish_task_switch+0x127/0x560
[   20.033480][    T7]  ? __schedule+0xb03/0x12a0
[   20.038078][    T7]  ? _raw_spin_lock_irqsave+0x210/0x210
[   20.043638][    T7]  ? read_word_at_a_time+0xe/0x20
[   20.048645][    T7]  ? strscpy+0x89/0x220
[   20.052783][    T7]  process_one_work+0x765/0xd20
[   20.057625][    T7]  worker_thread+0xaef/0x1470
[   20.062291][    T7]  kthread+0x2da/0x360
[   20.066345][    T7]  ? worker_clr_flags+0x170/0x170
[   20.071354][    T7]  ? kthread_destroy_worker+0x200/0x200
[   20.076891][    T7]  ret_from_fork+0x1f/0x30
[   20.081293][    T7] Modules linked in:
[   20.085269][    T7] ---[ end trace fa7dce45792349dd ]---
[   20.090744][    T7] RIP: 0010:ext4_writepages+0x3a16/0x3a40
[   20.096444][    T7] Code: 7a a2 ff 31 ff 89 de e8 f8 79 a2 ff 45 84 f6 75 2e e8 de 77 a2 ff 49 bd 00 00 00 00 00 fc ff df e9 6e f9 ff ff e8 ca 77 a2 ff <0f> 0b e8 c3 77 a2 ff 0f 0b e8 bc 77 a2 ff e8 77 87 3f ff eb 8f e8
[   20.116118][    T7] RSP: 0018:ffff8881f5db7100 EFLAGS: 00010293
[   20.122235][    T7] RAX: ffffffff81c0bf36 RBX: 0000010000000000 RCX: ffff8881f5d58fc0
[   20.130193][    T7] RDX: 0000000000000000 RSI: 0000010000000000 RDI: 0000000000000000
[   20.138191][    T7] RBP: ffff8881f5db74f0 R08: ffffffff81c08d1f R09: ffffed103ccefbdd
[   20.146226][    T7] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881e677df90
[   20.154240][    T7] R13: dffffc0000000000 R14: 0000010410000000 R15: ffff8881f5db73c0
[   20.162374][    T7] FS:  0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   20.171353][    T7] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   20.177933][    T7] CR2: 00000000004571f0 CR3: 00000001edc63000 CR4: 00000000003406e0
[   20.185948][    T7] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   20.194023][    T7] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   20.202012][    T7] Kernel panic - not syncing: Fatal exception
[   20.208403][    T7] Kernel Offset: disabled
[   20.212723][    T7] Rebooting in 86400 seconds..