./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4042116861 <...> Warning: Permanently added '10.128.0.126' (ED25519) to the list of known hosts. execve("./syz-executor4042116861", ["./syz-executor4042116861"], 0x7ffe29311970 /* 10 vars */) = 0 brk(NULL) = 0x555574e86000 brk(0x555574e86d00) = 0x555574e86d00 arch_prctl(ARCH_SET_FS, 0x555574e86380) = 0 set_tid_address(0x555574e86650) = 5015 set_robust_list(0x555574e86660, 24) = 0 rseq(0x555574e86ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4042116861", 4096) = 28 getrandom("\x4d\xf0\x32\xb8\x3e\xbf\x8d\x1a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555574e86d00 brk(0x555574ea7d00) = 0x555574ea7d00 brk(0x555574ea8000) = 0x555574ea8000 mprotect(0x7fc99a9b1000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5016 attached , child_tidptr=0x555574e86650) = 5016 [pid 5016] set_robust_list(0x555574e86660, 24) = 0 [pid 5016] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5016] setpgid(0, 0) = 0 [pid 5016] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5016] write(3, "1000", 4) = 4 [pid 5016] close(3) = 0 [pid 5016] memfd_create("syzkaller", 0) = 3 [pid 5016] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fc992400000 [pid 5016] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 1048576) = 1048576 [pid 5016] munmap(0x7fc992400000, 138412032) = 0 [pid 5016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5016] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5016] close(3) = 0 [pid 5016] close(4) = 0 [pid 5016] mkdir("./file1", 0777) = 0 [ 158.940040][ T5016] loop0: detected capacity change from 0 to 2048 [pid 5016] mount("/dev/loop0", "./file1", "udf", MS_REC, "lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,sho"...) = 0 [pid 5016] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5016] chdir("./file1") = 0 [pid 5016] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5016] openat(AT_FDCWD, ".", O_RDONLY) = 4 [pid 5016] mkdirat(4, "./bus", 000) = 0 [ 158.988608][ T5016] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 159.028528][ T5016] ===================================================== [ 159.035827][ T5016] BUG: KMSAN: uninit-value in crc_itu_t+0x287/0x2e0 [ 159.043654][ T5016] crc_itu_t+0x287/0x2e0 [ 159.048362][ T5016] udf_update_tag+0x5c/0x2a0 [ 159.053380][ T5016] udf_rename+0x1202/0x16d0 [ 159.058455][ T5016] vfs_rename+0x1d9a/0x2280 [ 159.063348][ T5016] do_renameat2+0x18cc/0x1d50 [ 159.068357][ T5016] __x64_sys_renameat2+0x153/0x200 [ 159.073814][ T5016] do_syscall_64+0xd5/0x1f0 [ 159.078603][ T5016] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 159.084897][ T5016] [ 159.087466][ T5016] Local variable diriter created at: [ 159.092879][ T5016] udf_rename+0xbe/0x16d0 [ 159.097763][ T5016] vfs_rename+0x1d9a/0x2280 [ 159.102606][ T5016] [ 159.105069][ T5016] CPU: 1 PID: 5016 Comm: syz-executor404 Not tainted 6.9.0-rc2-syzkaller-00207-ge8b0ccb2a787 #0 [ 159.115920][ T5016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 159.126202][ T5016] ===================================================== [ 159.133757][ T5016] Disabling lock debugging due to kernel taint [ 159.140399][ T5016] Kernel panic - not syncing: kmsan.panic set ... [ 159.146944][ T5016] CPU: 1 PID: 5016 Comm: syz-executor404 Tainted: G B 6.9.0-rc2-syzkaller-00207-ge8b0ccb2a787 #0 [ 159.159333][ T5016] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 159.169605][ T5016] Call Trace: [ 159.173002][ T5016] [ 159.176203][ T5016] dump_stack_lvl+0x216/0x2d0 [ 159.181291][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.187350][ T5016] dump_stack+0x1e/0x30 [ 159.191886][ T5016] panic+0x4e2/0xcd0 [ 159.196053][ T5016] ? kmsan_get_metadata+0xe1/0x1d0 [ 159.201473][ T5016] kmsan_report+0x2d5/0x2e0 [ 159.206103][ T5016] ? kmsan_internal_poison_memory+0x7d/0x90 [ 159.212525][ T5016] ? kmsan_internal_poison_memory+0x49/0x90 [ 159.218948][ T5016] ? kmsan_slab_free+0xd6/0x140 [ 159.223977][ T5016] ? kfree+0x20c/0xa30 [ 159.228181][ T5016] ? udf_fiiter_release+0x115/0x160 [ 159.233602][ T5016] ? udf_rename+0xedf/0x16d0 [ 159.238660][ T5016] ? vfs_rename+0x1d9a/0x2280 [ 159.243648][ T5016] ? __msan_warning+0x95/0x120 [ 159.248649][ T5016] ? crc_itu_t+0x287/0x2e0 [ 159.253244][ T5016] ? udf_update_tag+0x5c/0x2a0 [ 159.258230][ T5016] ? udf_rename+0x1202/0x16d0 [ 159.263060][ T5016] ? vfs_rename+0x1d9a/0x2280 [ 159.267978][ T5016] ? do_renameat2+0x18cc/0x1d50 [ 159.273034][ T5016] ? __x64_sys_renameat2+0x153/0x200 [ 159.278725][ T5016] ? do_syscall_64+0xd5/0x1f0 [ 159.283701][ T5016] ? entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 159.290107][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.296361][ T5016] ? current_time+0x44/0x550 [ 159.301235][ T5016] ? filter_irq_stacks+0x60/0x1a0 [ 159.306462][ T5016] ? kmsan_get_metadata+0x146/0x1d0 [ 159.311808][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.318341][ T5016] ? kmsan_get_metadata+0x146/0x1d0 [ 159.323950][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.330617][ T5016] ? kmsan_get_metadata+0x146/0x1d0 [ 159.336118][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.342129][ T5016] __msan_warning+0x95/0x120 [ 159.346977][ T5016] crc_itu_t+0x287/0x2e0 [ 159.351466][ T5016] udf_update_tag+0x5c/0x2a0 [ 159.356253][ T5016] udf_rename+0x1202/0x16d0 [ 159.361125][ T5016] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 159.367600][ T5016] ? kmsan_get_metadata+0x146/0x1d0 [ 159.373017][ T5016] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 159.379192][ T5016] ? __pfx_udf_rename+0x10/0x10 [ 159.384195][ T5016] vfs_rename+0x1d9a/0x2280 [ 159.388867][ T5016] do_renameat2+0x18cc/0x1d50 [ 159.393736][ T5016] __x64_sys_renameat2+0x153/0x200 [ 159.399050][ T5016] do_syscall_64+0xd5/0x1f0 [ 159.403807][ T5016] entry_SYSCALL_64_after_hwframe+0x72/0x7a [ 159.410098][ T5016] RIP: 0033:0x7fc99a93cfd9 [ 159.414823][ T5016] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 159.434719][ T5016] RSP: 002b:00007ffd0dafa9d8 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 159.443337][ T5016] RAX: ffffffffffffffda RBX: 00007fc99a98608a RCX: 00007fc99a93cfd9 [ 159.451737][ T5016] RDX: 0000000000000004 RSI: 00000000200001c0 RDI: 0000000000000004 [ 159.459840][ T5016] RBP: 00007fc99a986082 R08: 0000000000000000 R09: 0000555574e874c0 [ 159.467956][ T5016] R10: 0000000020000200 R11: 0000000000000246 R12: 00007ffd0dafaa00 [ 159.476243][ T5016] R13: 00007ffd0dafac28 R14: 431bde82d7b634db R15: 00007fc99a98603b [ 159.484856][ T5016] [ 159.488226][ T5016] Kernel Offset: disabled [ 159.492855][ T5016] Rebooting in 86400 seconds..