./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor376058060
<...>
Warning: Permanently added '10.128.10.24' (ED25519) to the list of known hosts.
execve("./syz-executor376058060", ["./syz-executor376058060"], 0x7ffe6dd5f880 /* 10 vars */) = 0
brk(NULL) = 0x555578fc6000
brk(0x555578fc6d00) = 0x555578fc6d00
arch_prctl(ARCH_SET_FS, 0x555578fc6380) = 0
set_tid_address(0x555578fc6650) = 5083
set_robust_list(0x555578fc6660, 24) = 0
rseq(0x555578fc6ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor376058060", 4096) = 27
getrandom("\xc5\x72\x6d\x23\xd8\x2b\x9a\x16", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555578fc6d00
brk(0x555578fe7d00) = 0x555578fe7d00
brk(0x555578fe8000) = 0x555578fe8000
mprotect(0x7f9f93378000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0) = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9f8ae00000
[ 103.845373][ T28] audit: type=1400 audit(1715488209.212:87): avc: denied { execmem } for pid=5083 comm="syz-executor376" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216
munmap(0x7f9f8ae00000, 138412032) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
ioctl(4, LOOP_SET_FD, 3) = 0
close(3) = 0
[ 104.150728][ T28] audit: type=1400 audit(1715488209.522:88): avc: denied { read write } for pid=5083 comm="syz-executor376" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 104.155578][ T5083] loop0: detected capacity change from 0 to 32768
close(4) = 0
mkdir("./file0", 0777) = 0
[ 104.175725][ T28] audit: type=1400 audit(1715488209.522:89): avc: denied { open } for pid=5083 comm="syz-executor376" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 104.206957][ T28] audit: type=1400 audit(1715488209.522:90): avc: denied { ioctl } for pid=5083 comm="syz-executor376" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 104.239261][ T28] audit: type=1400 audit(1715488209.602:91): avc: denied { mounton } for pid=5083 comm="syz-executor376" path="/root/file0" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 104.244620][ T5083] ------------[ cut here ]------------
[ 104.268254][ T5083] UBSAN: shift-out-of-bounds in fs/bcachefs/replicas.c:1010:20
[ 104.276625][ T5083] shift exponent 155 is too large for 32-bit type 'int'
[ 104.284125][ T5083] CPU: 1 PID: 5083 Comm: syz-executor376 Not tainted 6.9.0-rc7-syzkaller-00183-gcf87f46fd34d #0
[ 104.294611][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 104.304743][ T5083] Call Trace:
[ 104.308036][ T5083]
[ 104.310984][ T5083] dump_stack_lvl+0x16c/0x1f0
[ 104.315708][ T5083] __ubsan_handle_shift_out_of_bounds+0x2a5/0x480
[ 104.322186][ T5083] bch2_sb_dev_has_data.cold+0x39/0x3e
[ 104.327767][ T5083] member_to_text+0xb4/0xb20
[ 104.332377][ T5083] ? bch2_sb_validate.isra.0+0x60e/0xce0
[ 104.338087][ T5083] ? bch2_fs_open+0x3e5/0x1110
[ 104.342874][ T5083] ? bch2_mount+0xdcc/0x1130
[ 104.347479][ T5083] ? legacy_get_tree+0x109/0x220
[ 104.352444][ T5083] ? __pfx_member_to_text+0x10/0x10
[ 104.357661][ T5083] ? do_syscall_64+0xcf/0x260
[ 104.362362][ T5083] ? members_v1_get+0xd6/0x120
[ 104.367145][ T5083] ? __pfx_members_v1_get+0x10/0x10
[ 104.372373][ T5083] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 104.378298][ T5083] bch2_sb_members_v1_to_text+0x178/0x230
[ 104.384053][ T5083] ? __pfx_bch2_sb_members_v1_to_text+0x10/0x10
[ 104.390333][ T5083] ? bch2_printbuf_make_room+0x1f0/0x2a0
[ 104.395995][ T5083] ? bch2_prt_newline+0x39e/0x590
[ 104.401047][ T5083] ? __pfx_bch2_sb_members_v1_to_text+0x10/0x10
[ 104.407318][ T5083] ? __bch2_sb_field_to_text+0x123/0x1e0
[ 104.413004][ T5083] __bch2_sb_field_to_text+0x123/0x1e0
[ 104.418610][ T5083] bch2_sb_field_validate+0x248/0x2d0
[ 104.424069][ T5083] ? __pfx_bch2_sb_field_validate+0x10/0x10
[ 104.430007][ T5083] ? __pfx_validate_sb_layout+0x10/0x10
[ 104.435608][ T5083] ? submit_bio_wait+0x1a7/0x240
[ 104.440612][ T5083] ? bch2_opt_compression_validate+0x50/0xb0
[ 104.446639][ T5083] ? bch2_opt_from_sb+0xe4/0x120
[ 104.451891][ T5083] bch2_sb_validate.isra.0+0x60e/0xce0
[ 104.457397][ T5083] ? __pfx_bch2_sb_validate.isra.0+0x10/0x10
[ 104.463417][ T5083] ? bch2_sb_compatible+0x47b/0x660
[ 104.468681][ T5083] ? read_one_super+0x3e1/0x11e0
[ 104.473657][ T5083] ? rcu_is_watching+0x12/0xc0
[ 104.478462][ T5083] ? __pfx_read_one_super+0x10/0x10
[ 104.483700][ T5083] ? bch2_sb_realloc+0x2e3/0x5d0
[ 104.488679][ T5083] ? bdev_file_open_by_path+0x9d/0x300
[ 104.494173][ T5083] ? __pfx_bdev_file_open_by_path+0x10/0x10
[ 104.500104][ T5083] __bch2_read_super+0x93c/0x12a0
[ 104.505166][ T5083] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 104.511009][ T5083] ? __pfx___bch2_read_super+0x10/0x10
[ 104.516506][ T5083] ? kvmalloc_node+0x9d/0x1a0
[ 104.521205][ T5083] ? __bch2_darray_resize+0xd8/0x250
[ 104.526604][ T5083] ? bch2_fs_open+0x697/0x1110
[ 104.531399][ T5083] ? bch2_mount+0xdcc/0x1130
[ 104.536018][ T5083] ? legacy_get_tree+0x109/0x220
[ 104.541009][ T5083] ? kvfree+0x47/0x50
[ 104.545010][ T5083] ? __bch2_darray_resize+0x1cb/0x250
[ 104.550788][ T5083] bch2_fs_open+0x3e5/0x1110
[ 104.555407][ T5083] ? sget+0x64f/0x760
[ 104.559424][ T5083] ? kasan_save_stack+0x42/0x60
[ 104.564298][ T5083] ? kasan_save_stack+0x33/0x60
[ 104.569176][ T5083] ? kasan_save_track+0x14/0x30
[ 104.574050][ T5083] ? __pfx_bch2_fs_open+0x10/0x10
[ 104.579111][ T5083] ? sget+0x64f/0x760
[ 104.583146][ T5083] ? kasan_quarantine_put+0x10a/0x240
[ 104.588550][ T5083] ? lockdep_hardirqs_on+0x7c/0x110
[ 104.593882][ T5083] bch2_mount+0xdcc/0x1130
[ 104.598373][ T5083] ? __pfx_bch2_mount+0x10/0x10
[ 104.603257][ T5083] ? cred_has_capability.isra.0+0x192/0x2f0
[ 104.609181][ T5083] ? __pfx_cred_has_capability.isra.0+0x10/0x10
[ 104.615453][ T5083] ? rcu_is_watching+0x12/0xc0
[ 104.620260][ T5083] ? vfs_parse_fs_string+0xfb/0x150
[ 104.625492][ T5083] ? selinux_sb_eat_lsm_opts+0x594/0x700
[ 104.631154][ T5083] ? cap_capable+0x1cf/0x240
[ 104.635787][ T5083] ? __pfx_bch2_mount+0x10/0x10
[ 104.640667][ T5083] legacy_get_tree+0x109/0x220
[ 104.645467][ T5083] vfs_get_tree+0x8f/0x380
[ 104.649924][ T5083] path_mount+0x14e6/0x1f20
[ 104.654491][ T5083] ? kmem_cache_free+0x12e/0x390
[ 104.659562][ T5083] ? __pfx_path_mount+0x10/0x10
[ 104.664469][ T5083] ? putname+0x12e/0x170
[ 104.668749][ T5083] __x64_sys_mount+0x297/0x320
[ 104.673591][ T5083] ? __pfx___x64_sys_mount+0x10/0x10
[ 104.678915][ T5083] ? _raw_spin_unlock_irq+0x2e/0x50
[ 104.684157][ T5083] ? ptrace_notify+0xf1/0x130
[ 104.688867][ T5083] do_syscall_64+0xcf/0x260
[ 104.693404][ T5083] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 104.699336][ T5083] RIP: 0033:0x7f9f932f48ba
[ 104.703874][ T5083] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 104.723507][ T5083] RSP: 002b:00007ffdf63c92d8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 104.731948][ T5083] RAX: ffffffffffffffda RBX: 00007ffdf63c92f0 RCX: 00007f9f932f48ba
[ 104.739950][ T5083] RDX: 0000000020011a00 RSI: 0000000020011a40 RDI: 00007ffdf63c92f0
[ 104.747946][ T5083] RBP: 0000000000000004 R08: 00007ffdf63c9330 R09: 00000000000119f3
[ 104.755966][ T5083] R10: 0000000001200014 R11: 0000000000000282 R12: 0000000001200014
[ 104.763965][ T5083] R13: 00007ffdf63c9330 R14: 0000000000000003 R15: 0000000001000000
[ 104.771965][ T5083]
[ 104.775547][ T5083] ---[ end trace ]---
[ 104.780078][ T5083] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[ 104.787317][ T5083] CPU: 0 PID: 5083 Comm: syz-executor376 Not tainted 6.9.0-rc7-syzkaller-00183-gcf87f46fd34d #0
[ 104.797768][ T5083] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 104.807858][ T5083] Call Trace:
[ 104.811147][ T5083]
[ 104.814082][ T5083] dump_stack_lvl+0x3d/0x1f0
[ 104.818707][ T5083] panic+0x6f5/0x7a0
[ 104.822633][ T5083] ? __pfx_panic+0x10/0x10
[ 104.827079][ T5083] ? __pfx__printk+0x10/0x10
[ 104.831701][ T5083] ? check_panic_on_warn+0x1f/0xb0
[ 104.836827][ T5083] check_panic_on_warn+0xab/0xb0
[ 104.841831][ T5083] __ubsan_handle_shift_out_of_bounds+0x2cc/0x480
[ 104.848278][ T5083] bch2_sb_dev_has_data.cold+0x39/0x3e
[ 104.853763][ T5083] member_to_text+0xb4/0xb20
[ 104.858377][ T5083] ? bch2_sb_validate.isra.0+0x60e/0xce0
[ 104.864048][ T5083] ? bch2_fs_open+0x3e5/0x1110
[ 104.868830][ T5083] ? bch2_mount+0xdcc/0x1130
[ 104.873443][ T5083] ? legacy_get_tree+0x109/0x220
[ 104.878422][ T5083] ? __pfx_member_to_text+0x10/0x10
[ 104.883637][ T5083] ? do_syscall_64+0xcf/0x260
[ 104.888332][ T5083] ? members_v1_get+0xd6/0x120
[ 104.893110][ T5083] ? __pfx_members_v1_get+0x10/0x10
[ 104.898324][ T5083] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 104.904246][ T5083] bch2_sb_members_v1_to_text+0x178/0x230
[ 104.910081][ T5083] ? __pfx_bch2_sb_members_v1_to_text+0x10/0x10
[ 104.916345][ T5083] ? bch2_printbuf_make_room+0x1f0/0x2a0
[ 104.922009][ T5083] ? bch2_prt_newline+0x39e/0x590
[ 104.927067][ T5083] ? __pfx_bch2_sb_members_v1_to_text+0x10/0x10
[ 104.933337][ T5083] ? __bch2_sb_field_to_text+0x123/0x1e0
[ 104.939004][ T5083] __bch2_sb_field_to_text+0x123/0x1e0
[ 104.944494][ T5083] bch2_sb_field_validate+0x248/0x2d0
[ 104.949897][ T5083] ? __pfx_bch2_sb_field_validate+0x10/0x10
[ 104.955860][ T5083] ? __pfx_validate_sb_layout+0x10/0x10
[ 104.961445][ T5083] ? submit_bio_wait+0x1a7/0x240
[ 104.966422][ T5083] ? bch2_opt_compression_validate+0x50/0xb0
[ 104.972434][ T5083] ? bch2_opt_from_sb+0xe4/0x120
[ 104.977430][ T5083] bch2_sb_validate.isra.0+0x60e/0xce0
[ 104.982924][ T5083] ? __pfx_bch2_sb_validate.isra.0+0x10/0x10
[ 104.988937][ T5083] ? bch2_sb_compatible+0x47b/0x660
[ 104.994243][ T5083] ? read_one_super+0x3e1/0x11e0
[ 104.999310][ T5083] ? rcu_is_watching+0x12/0xc0
[ 105.004122][ T5083] ? __pfx_read_one_super+0x10/0x10
[ 105.009364][ T5083] ? bch2_sb_realloc+0x2e3/0x5d0
[ 105.014327][ T5083] ? bdev_file_open_by_path+0x9d/0x300
[ 105.019837][ T5083] ? __pfx_bdev_file_open_by_path+0x10/0x10
[ 105.025759][ T5083] __bch2_read_super+0x93c/0x12a0
[ 105.030813][ T5083] ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 105.036676][ T5083] ? __pfx___bch2_read_super+0x10/0x10
[ 105.042246][ T5083] ? kvmalloc_node+0x9d/0x1a0
[ 105.046954][ T5083] ? __bch2_darray_resize+0xd8/0x250
[ 105.052279][ T5083] ? bch2_fs_open+0x697/0x1110
[ 105.057064][ T5083] ? bch2_mount+0xdcc/0x1130
[ 105.061671][ T5083] ? legacy_get_tree+0x109/0x220
[ 105.066641][ T5083] ? kvfree+0x47/0x50
[ 105.070654][ T5083] ? __bch2_darray_resize+0x1cb/0x250
[ 105.076066][ T5083] bch2_fs_open+0x3e5/0x1110
[ 105.080702][ T5083] ? sget+0x64f/0x760
[ 105.084737][ T5083] ? kasan_save_stack+0x42/0x60
[ 105.089613][ T5083] ? kasan_save_stack+0x33/0x60
[ 105.094481][ T5083] ? kasan_save_track+0x14/0x30
[ 105.099346][ T5083] ? __pfx_bch2_fs_open+0x10/0x10
[ 105.104414][ T5083] ? sget+0x64f/0x760
[ 105.108459][ T5083] ? kasan_quarantine_put+0x10a/0x240
[ 105.113857][ T5083] ? lockdep_hardirqs_on+0x7c/0x110
[ 105.119104][ T5083] bch2_mount+0xdcc/0x1130
[ 105.123645][ T5083] ? __pfx_bch2_mount+0x10/0x10
[ 105.128529][ T5083] ? cred_has_capability.isra.0+0x192/0x2f0
[ 105.134444][ T5083] ? __pfx_cred_has_capability.isra.0+0x10/0x10
[ 105.140728][ T5083] ? rcu_is_watching+0x12/0xc0
[ 105.145525][ T5083] ? vfs_parse_fs_string+0xfb/0x150
[ 105.150739][ T5083] ? selinux_sb_eat_lsm_opts+0x594/0x700
[ 105.156471][ T5083] ? cap_capable+0x1cf/0x240
[ 105.161089][ T5083] ? __pfx_bch2_mount+0x10/0x10
[ 105.165956][ T5083] legacy_get_tree+0x109/0x220
[ 105.170756][ T5083] vfs_get_tree+0x8f/0x380
[ 105.175217][ T5083] path_mount+0x14e6/0x1f20
[ 105.179777][ T5083] ? kmem_cache_free+0x12e/0x390
[ 105.184737][ T5083] ? __pfx_path_mount+0x10/0x10
[ 105.189621][ T5083] ? putname+0x12e/0x170
[ 105.193881][ T5083] __x64_sys_mount+0x297/0x320
[ 105.198672][ T5083] ? __pfx___x64_sys_mount+0x10/0x10
[ 105.203986][ T5083] ? _raw_spin_unlock_irq+0x2e/0x50
[ 105.209211][ T5083] ? ptrace_notify+0xf1/0x130
[ 105.213910][ T5083] do_syscall_64+0xcf/0x260
[ 105.218431][ T5083] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 105.224338][ T5083] RIP: 0033:0x7f9f932f48ba
[ 105.228766][ T5083] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 105.248399][ T5083] RSP: 002b:00007ffdf63c92d8 EFLAGS: 00000282 ORIG_RAX: 00000000000000a5
[ 105.256847][ T5083] RAX: ffffffffffffffda RBX: 00007ffdf63c92f0 RCX: 00007f9f932f48ba
[ 105.264827][ T5083] RDX: 0000000020011a00 RSI: 0000000020011a40 RDI: 00007ffdf63c92f0
[ 105.272807][ T5083] RBP: 0000000000000004 R08: 00007ffdf63c9330 R09: 00000000000119f3
[ 105.280795][ T5083] R10: 0000000001200014 R11: 0000000000000282 R12: 0000000001200014
[ 105.288775][ T5083] R13: 00007ffdf63c9330 R14: 0000000000000003 R15: 0000000001000000
[ 105.296778][ T5083]
[ 105.299955][ T5083] Kernel Offset: disabled
[ 105.304331][ T5083] Rebooting in 86400 seconds..