./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor283993290

<...>


syzkaller
syzkaller login: [    4.974519][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   10.444433][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!!
[   10.835107][   T23] kauditd_printk_skb: 60 callbacks suppressed
[   10.835114][   T23] audit: type=1400 audit(1671912692.360:71): avc:  denied  { transition } for  pid=295 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   10.840747][   T23] audit: type=1400 audit(1671912692.360:72): avc:  denied  { write } for  pid=295 comm="sh" path="pipe:[11267]" dev="pipefs" ino=11267 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
[   12.155358][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #280!!!
Warning: Permanently added '10.128.15.204' (ECDSA) to the list of known hosts.
execve("./syz-executor283993290", ["./syz-executor283993290"], 0x7fff36e3fd20 /* 10 vars */) = 0
brk(NULL)                               = 0x555555bfd000
brk(0x555555bfdc40)                     = 0x555555bfdc40
arch_prctl(ARCH_SET_FS, 0x555555bfd300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor283993290", 4096) = 27
brk(0x555555c1ec40)                     = 0x555555c1ec40
brk(0x555555c1f000)                     = 0x555555c1f000
mprotect(0x7fef92407000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
memfd_create("syzkaller", 0)            = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fef89f4e000
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 262144) = 262144
munmap(0x7fef89f4e000, 262144)          = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
ioctl(4, LOOP_SET_FD, 3)                = 0
close(3)                                = 0
mkdir("./file0", 0777)                  = 0
[   18.853574][   T23] audit: type=1400 audit(1671912700.370:73): avc:  denied  { execmem } for  pid=376 comm="syz-executor283" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   18.858129][   T23] audit: type=1400 audit(1671912700.380:74): avc:  denied  { read write } for  pid=376 comm="syz-executor283" name="loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   18.861806][   T23] audit: type=1400 audit(1671912700.380:75): avc:  denied  { open } for  pid=376 comm="syz-executor283" path="/dev/loop0" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   18.865677][   T23] audit: type=1400 audit(1671912700.380:76): avc:  denied  { ioctl } for  pid=376 comm="syz-executor283" path="/dev/loop0" dev="devtmpfs" ino=115 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   18.867474][  T376] EXT4-fs error (device loop0): ext4_map_blocks:594: inode #2: block 2: comm syz-executor283: lblock 0 mapped to illegal pblock 2 (length 1)
[   18.871799][  T376] Kernel panic - not syncing: EXT4-fs (device loop0): panic forced after error
[   18.873050][  T376] CPU: 1 PID: 376 Comm: syz-executor283 Not tainted 5.10.160-syzkaller-01321-g003c389455eb #0
[   18.874603][   T23] audit: type=1400 audit(1671912700.380:77): avc:  denied  { mounton } for  pid=376 comm="syz-executor283" path="/root/file0" dev="sda1" ino=1138 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   18.879332][  T376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[   18.911975][  T376] Call Trace:
[   18.915240][  T376]  dump_stack_lvl+0x1e2/0x24b
[   18.920002][  T376]  ? panic+0x202/0x7d7
[   18.924065][  T376]  ? bfq_pos_tree_add_move+0x43e/0x43e
[   18.929547][  T376]  dump_stack+0x15/0x17
[   18.933676][  T376]  panic+0x2a0/0x7d7
[   18.937562][  T376]  ? submit_bh_wbc+0x660/0x740
[   18.942310][  T376]  ? ext4_handle_error+0x24d/0x310
[   18.947407][  T376]  ? asan.module_ctor+0x6/0x6
[   18.952062][  T376]  ? __kasan_check_read+0x11/0x20
[   18.957071][  T376]  ? __kasan_check_read+0x11/0x20
[   18.962073][  T376]  ext4_handle_error+0x30e/0x310
[   18.966987][  T376]  __ext4_error_inode+0x2c7/0x580
[   18.971993][  T376]  ? ext4_handle_error+0x310/0x310
[   18.977078][  T376]  ? ext4_inode_block_valid+0x2eb/0x3f0
[   18.982597][  T376]  ext4_map_blocks+0x1313/0x1ee0
[   18.987505][  T376]  ? ext4_issue_zeroout+0x1c0/0x1c0
[   18.992686][  T376]  ? is_bpf_text_address+0x1a2/0x1c0
[   18.997952][  T376]  ext4_getblk+0x19c/0x650
[   19.002349][  T376]  ? ext4_get_block_unwritten+0x40/0x40
[   19.007875][  T376]  ? _raw_spin_lock_irqsave+0xf8/0x210
[   19.013307][  T376]  ? _raw_spin_lock+0x1b0/0x1b0
[   19.018127][  T376]  ext4_bread+0x2f/0x1b0
[   19.022362][  T376]  __ext4_read_dirblock+0xa0/0x8e0
[   19.027448][  T376]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[   19.033221][  T376]  dx_probe+0xcd/0x15a0
[   19.037347][  T376]  ? __kasan_slab_alloc+0xc9/0xe0
[   19.042338][  T376]  ? __kasan_slab_alloc+0xb2/0xe0
[   19.047331][  T376]  ? kmem_cache_alloc+0x16c/0x300
[   19.052323][  T376]  ? __d_alloc+0x2d/0x6b0
[   19.056624][  T376]  ? d_alloc_parallel+0xe6/0x1330
[   19.061616][  T376]  ? __lookup_slow+0x14e/0x400
[   19.066345][  T376]  ? lookup_one_len_unlocked+0x458/0x680
[   19.071942][  T376]  ? lookup_positive_unlocked+0x25/0xb0
[   19.077456][  T376]  ? dquot_quota_on_mount+0x5a/0xe0
[   19.082622][  T376]  ? ext4_orphan_cleanup+0x3f2/0xdb0
[   19.087875][  T376]  ? ext4_fill_super+0x8880/0x9150
[   19.092952][  T376]  ? htree_dirblock_to_tree+0x10b0/0x10b0
[   19.098636][  T376]  ? vfs_get_tree+0x88/0x290
[   19.103193][  T376]  ? __se_sys_mount+0x2d2/0x3c0
[   19.108125][  T376]  ? __x64_sys_mount+0xbf/0xd0
[   19.112858][  T376]  __ext4_find_entry+0x5b9/0x1b90
[   19.117851][  T376]  ? ext4_ci_compare+0x650/0x650
[   19.122769][  T376]  ? __d_lookup_rcu+0x5f9/0x640
[   19.127588][  T376]  ? __kasan_check_write+0x14/0x20
[   19.132691][  T376]  ? ext4_fname_setup_ci_filename+0x6b/0x490
[   19.138638][  T376]  ? __kasan_check_write+0x14/0x20
[   19.143724][  T376]  ? generic_set_encrypted_ci_d_ops+0x90/0xf0
[   19.149758][  T376]  ext4_lookup+0x3e1/0xb20
[   19.154142][  T376]  ? ext4_add_entry+0x12e0/0x12e0
[   19.159133][  T376]  ? xas_find_marked+0xab5/0xb60
[   19.164038][  T376]  ? selinux_inode_permission+0x439/0x670
[   19.169724][  T376]  ? __kasan_check_write+0x14/0x20
[   19.174802][  T376]  ? rwsem_set_reader_owned+0x65/0x120
[   19.180225][  T376]  __lookup_slow+0x2b3/0x400
[   19.184780][  T376]  ? lookup_one_len+0x6a0/0x6a0
[   19.189599][  T376]  lookup_one_len_unlocked+0x458/0x680
[   19.195023][  T376]  ? __lookup_slow+0x400/0x400
[   19.199756][  T376]  lookup_positive_unlocked+0x25/0xb0
[   19.205097][  T376]  dquot_quota_on_mount+0x5a/0xe0
[   19.210088][  T376]  ext4_orphan_cleanup+0x3f2/0xdb0
[   19.215166][  T376]  ext4_fill_super+0x8880/0x9150
[   19.220072][  T376]  ? ext4_mount+0x40/0x40
[   19.224377][  T376]  ? vscnprintf+0x80/0x80
[   19.228679][  T376]  ? set_blocksize+0x208/0x3e0
[   19.233412][  T376]  ? sb_set_blocksize+0xb7/0xf0
[   19.238231][  T376]  mount_bdev+0x25f/0x370
[   19.242528][  T376]  ? ext4_mount+0x40/0x40
[   19.246824][  T376]  ext4_mount+0x34/0x40
[   19.250947][  T376]  legacy_get_tree+0xf0/0x190
[   19.255591][  T376]  ? ext4_chksum+0x210/0x210
[   19.260148][  T376]  vfs_get_tree+0x88/0x290
[   19.264531][  T376]  do_new_mount+0x289/0xad0
[   19.269001][  T376]  ? do_move_mount_old+0x160/0x160
[   19.274085][  T376]  ? security_capable+0xb2/0xd0
[   19.278905][  T376]  ? ns_capable+0x8a/0xf0
[   19.283207][  T376]  path_mount+0x58d/0xce0
[   19.287502][  T376]  ? user_path_at_empty+0x40/0x50
[   19.292492][  T376]  __se_sys_mount+0x2d2/0x3c0
[   19.297135][  T376]  ? __x64_sys_mount+0xd0/0xd0
[   19.301866][  T376]  ? do_mknodat+0x430/0x430
[   19.306336][  T376]  __x64_sys_mount+0xbf/0xd0
[   19.310896][  T376]  do_syscall_64+0x34/0x70
[   19.315280][  T376]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[   19.321144][  T376] RIP: 0033:0x7fef9239bbca
[   19.325528][  T376] Code: 83 c4 08 5b 5d c3 66 2e 0f 1f 84 00 00 00 00 00 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   19.345098][  T376] RSP: 002b:00007ffff0a3d988 EFLAGS: 00000206 ORIG_RAX: 00000000000000a5
[   19.353479][  T376] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007fef9239bbca
[   19.361424][  T376] RDX: 0000000020000440 RSI: 0000000020000480 RDI: 00007ffff0a3d9a0
[   19.369363][  T376] RBP: 00007ffff0a3d9a0 R08: 00007ffff0a3d9e0 R09: 0000000000000474
[   19.377303][  T376] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000004
[   19.385247][  T376] R13: 0000555555bfd2c0 R14: 0000000000000000 R15: 00007ffff0a3d9e0
[   19.393283][  T376] Kernel Offset: disabled
[   19.397586][  T376] Rebooting in 86400 seconds..