syzkaller syzkaller login: [ 5.431707][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 10.181620][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 11.185660][ T23] kauditd_printk_skb: 60 callbacks suppressed [ 11.185666][ T23] audit: type=1400 audit(1670069623.760:71): avc: denied { transition } for pid=301 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 11.191226][ T23] audit: type=1400 audit(1670069623.760:72): avc: denied { write } for pid=301 comm="sh" path="pipe:[11283]" dev="pipefs" ino=11283 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 [ 12.002153][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 12.031554][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #280!!! [ 14.971649][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! Warning: Permanently added '10.128.0.82' (ECDSA) to the list of known hosts. executing program executing program executing program executing program executing program executing program [ 30.027482][ T23] audit: type=1400 audit(1670069642.600:73): avc: denied { execmem } for pid=376 comm="syz-executor186" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 30.047230][ T23] audit: type=1400 audit(1670069642.600:74): avc: denied { read write } for pid=379 comm="syz-executor186" name="loop2" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 30.075513][ T23] audit: type=1400 audit(1670069642.600:75): avc: denied { open } for pid=379 comm="syz-executor186" path="/dev/loop2" dev="devtmpfs" ino=117 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 30.101335][ T23] audit: type=1400 audit(1670069642.600:76): avc: denied { ioctl } for pid=379 comm="syz-executor186" path="/dev/loop2" dev="devtmpfs" ino=117 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 30.127028][ T23] audit: type=1400 audit(1670069642.610:77): avc: denied { mounton } for pid=384 comm="syz-executor186" path="/root/file0" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 30.127820][ T386] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue [ 30.158958][ T23] audit: type=1400 audit(1670069642.730:78): avc: denied { mount } for pid=384 comm="syz-executor186" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 30.193314][ T23] audit: type=1400 audit(1670069642.770:79): avc: denied { write } for pid=384 comm="syz-executor186" name="/" dev="loop1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 30.194127][ T386] EXT4-fs error (device loop1): ext4_mb_generate_buddy:805: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.216442][ T394] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 30.231996][ T23] audit: type=1400 audit(1670069642.770:80): avc: denied { add_name } for pid=384 comm="syz-executor186" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 30.240744][ T394] EXT4-fs error (device loop2): ext4_mb_generate_buddy:805: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.265838][ T397] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 30.274534][ T394] EXT4-fs (loop2): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 30.283685][ T395] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 30.295465][ T394] EXT4-fs (loop2): This should not happen!! Data will be lost [ 30.295465][ T394] [ 30.304679][ T386] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 30.314308][ T394] EXT4-fs (loop2): Total free blocks count 0 [ 30.332267][ T394] EXT4-fs (loop2): Free/Dirty block details [ 30.338152][ T394] EXT4-fs (loop2): free_blocks=2415919104 [ 30.344081][ T394] EXT4-fs (loop2): dirty_blocks=16 [ 30.346664][ T396] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 30.349201][ T394] EXT4-fs (loop2): Block reservation details [ 30.358360][ T398] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue [ 30.364018][ T394] EXT4-fs (loop2): i_reserved_data_blocks=1 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.373497][ T397] EXT4-fs error (device loop0): ext4_mb_generate_buddy:805: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.378937][ T23] audit: type=1400 audit(1670069642.770:81): avc: denied { create } for pid=384 comm="syz-executor186" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 30.413766][ T23] audit: type=1400 audit(1670069642.770:82): avc: denied { read write open } for pid=384 comm="syz-executor186" path="/root/file0/bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 30.415504][ T395] EXT4-fs error (device loop3): ext4_mb_generate_buddy:805: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.437515][ T386] EXT4-fs (loop1): This should not happen!! Data will be lost [ 30.437515][ T386] [ 30.461829][ T386] EXT4-fs (loop1): Total free blocks count 0 [ 30.467830][ T386] EXT4-fs (loop1): Free/Dirty block details executing program [ 30.475487][ T396] EXT4-fs error (device loop4): ext4_mb_generate_buddy:805: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.487101][ T397] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 30.490263][ T386] EXT4-fs (loop1): free_blocks=2415919104 [ 30.502662][ T396] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 30.513867][ T386] EXT4-fs (loop1): dirty_blocks=16 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.520636][ T397] EXT4-fs (loop0): This should not happen!! Data will be lost [ 30.520636][ T397] [ 30.527233][ T386] EXT4-fs (loop1): Block reservation details [ 30.541199][ T386] EXT4-fs (loop1): i_reserved_data_blocks=1 [ 30.542076][ T395] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 30.547225][ T396] EXT4-fs (loop4): This should not happen!! Data will be lost [ 30.547225][ T396] [ 30.560154][ T397] EXT4-fs (loop0): Total free blocks count 0 executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.568974][ T396] EXT4-fs (loop4): Total free blocks count 0 [ 30.568979][ T396] EXT4-fs (loop4): Free/Dirty block details [ 30.568992][ T396] EXT4-fs (loop4): free_blocks=2415919104 [ 30.577074][ T395] EXT4-fs (loop3): This should not happen!! Data will be lost [ 30.577074][ T395] [ 30.583125][ T396] EXT4-fs (loop4): dirty_blocks=16 [ 30.594559][ T395] EXT4-fs (loop3): Total free blocks count 0 [ 30.604171][ T396] EXT4-fs (loop4): Block reservation details [ 30.604178][ T396] EXT4-fs (loop4): i_reserved_data_blocks=1 executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.604280][ T397] EXT4-fs (loop0): Free/Dirty block details [ 30.611829][ T428] EXT4-fs error (device loop5): ext4_mb_generate_buddy:805: group 0, [ 30.615565][ T397] EXT4-fs (loop0): free_blocks=2415919104 [ 30.621435][ T428] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 30.627313][ T397] EXT4-fs (loop0): dirty_blocks=16 [ 30.627324][ T397] EXT4-fs (loop0): Block reservation details [ 30.649077][ T395] EXT4-fs (loop3): Free/Dirty block details [ 30.656391][ T397] EXT4-fs (loop0): i_reserved_data_blocks=1 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program [ 30.680984][ T395] EXT4-fs (loop3): free_blocks=2415919104 [ 30.681027][ T398] ------------[ cut here ]------------ [ 30.686733][ T395] EXT4-fs (loop3): dirty_blocks=16 [ 30.686739][ T395] EXT4-fs (loop3): Block reservation details [ 30.686743][ T395] EXT4-fs (loop3): i_reserved_data_blocks=1 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.729588][ T398] kernel BUG at fs/ext4/inode.c:2767! [ 30.745034][ T398] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 30.751127][ T398] CPU: 0 PID: 398 Comm: syz-executor186 Not tainted 5.10.155-syzkaller-00790-g25af5a11f1da #0 [ 30.761348][ T398] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 30.771415][ T398] RIP: 0010:ext4_writepages+0x36f6/0x3710 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.778002][ T398] Code: c6 31 ff e8 3c 17 90 ff 84 db 75 2c e8 23 14 90 ff 48 bb 00 00 00 00 00 fc ff df 4c 8b 64 24 40 e9 28 f7 ff ff e8 0a 14 90 ff <0f> 0b e8 03 14 90 ff e8 8d 7a 23 ff eb a0 e8 f7 13 90 ff e8 81 7a [ 30.797652][ T398] RSP: 0018:ffffc90000c66ce0 EFLAGS: 00010293 [ 30.803715][ T398] RAX: ffffffff81dd07b6 RBX: 0000008000000000 RCX: ffff888106584f00 [ 30.811676][ T398] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 30.819802][ T398] RBP: ffffc90000c670d0 R08: ffffffff81dcd79a R09: ffffed102344c185 [ 30.827764][ T398] R10: ffffed102344c185 R11: 1ffff1102344c184 R12: ffff88810639b000 [ 30.835724][ T398] R13: ffffc90000c66fa0 R14: 0000008410000000 R15: ffffc90000c67240 [ 30.843686][ T398] FS: 00007f74c0a93700(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 30.852695][ T398] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 30.859436][ T398] CR2: 00007f74b8772000 CR3: 000000011d9a5000 CR4: 00000000003506b0 [ 30.867405][ T398] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 30.875355][ T398] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 30.883298][ T398] Call Trace: [ 30.886576][ T398] ? __ext4_get_inode_loc+0x44c/0xd20 [ 30.891926][ T398] ? errseq_check+0x40/0x70 [ 30.896412][ T398] ? __kasan_check_read+0x11/0x20 [ 30.901512][ T398] ? mark_buffer_dirty+0x1eb/0x310 [ 30.907564][ T398] ? __ext4_handle_dirty_metadata+0x2d0/0x800 [ 30.913612][ T398] ? ext4_readpage+0x220/0x220 [ 30.918355][ T398] ? __kasan_check_write+0x14/0x20 [ 30.923445][ T398] ? ext4_mark_iloc_dirty+0x2183/0x3350 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 30.928972][ T398] ? __ext4_expand_extra_isize+0x3d0/0x3d0 [ 30.935543][ T398] ? ext4_readpage+0x220/0x220 [ 30.940295][ T398] do_writepages+0x13a/0x280 [ 30.944866][ T398] ? __kasan_check_read+0x11/0x20 [ 30.949868][ T398] ? __writepage+0x130/0x130 [ 30.954433][ T398] ? __kasan_check_write+0x14/0x20 [ 30.960051][ T398] ? _raw_spin_unlock+0x4d/0x70 [ 30.964886][ T398] __filemap_fdatawrite_range+0x354/0x420 [ 30.970685][ T398] ? filemap_check_errors+0x120/0x120 [ 30.976299][ T398] ? generic_perform_write+0x51c/0x5b0 [ 30.981740][ T398] file_write_and_wait_range+0x89/0x120 [ 30.987260][ T398] ext4_sync_file+0x19e/0x9d0 [ 30.992868][ T398] vfs_fsync_range+0x17b/0x190 [ 30.997616][ T398] ext4_buffered_write_iter+0x565/0x610 [ 31.003136][ T398] ext4_file_write_iter+0x192/0x1c70 [ 31.008393][ T398] ? stack_trace_save+0x12d/0x1f0 [ 31.013386][ T398] ? stack_trace_snprint+0x100/0x100 [ 31.018642][ T398] ? __kasan_check_read+0x11/0x20 [ 31.023637][ T398] ? iter_file_splice_write+0x288/0x10c0 [ 31.029236][ T398] ? ext4_file_read_iter+0x4d0/0x4d0 [ 31.034491][ T398] ? __kasan_kmalloc+0x9/0x10 [ 31.039136][ T398] ? __kmalloc+0x1f7/0x360 [ 31.043957][ T398] ? iter_file_splice_write+0x288/0x10c0 [ 31.049558][ T398] ? direct_splice_actor+0xfe/0x130 [ 31.054725][ T398] ? splice_direct_to_actor+0x4f4/0xbd0 [ 31.060239][ T398] ? do_splice_direct+0x2a0/0x3f0 [ 31.065233][ T398] ? do_sendfile+0x9c7/0x1150 [ 31.069883][ T398] ? __x64_sys_sendfile64+0x1ce/0x230 [ 31.075222][ T398] ? do_syscall_64+0x34/0x70 [ 31.079780][ T398] do_iter_readv_writev+0x52a/0x720 [ 31.084963][ T398] ? fsnotify_file+0x220/0x220 [ 31.089697][ T398] ? security_file_permission+0x9d/0xc0 [ 31.095210][ T398] ? security_file_permission+0xa8/0xc0 [ 31.100812][ T398] ? rw_verify_area+0x1c2/0x360 [ 31.105661][ T398] do_iter_write+0x182/0x660 [ 31.110218][ T398] ? __kasan_check_read+0x11/0x20 [ 31.115220][ T398] ? splice_from_pipe_next+0x588/0x5d0 [ 31.120646][ T398] vfs_iter_write+0x7c/0xa0 [ 31.125126][ T398] iter_file_splice_write+0x8a1/0x10c0 [ 31.130560][ T398] ? splice_from_pipe+0x220/0x220 [ 31.135566][ T398] ? generic_file_splice_read+0x51f/0x760 [ 31.141255][ T398] ? splice_shrink_spd+0xb0/0xb0 [ 31.146178][ T398] ? fsnotify_perm+0x3cc/0x4e0 [ 31.150910][ T398] ? security_file_permission+0x9d/0xc0 [ 31.156425][ T398] ? splice_from_pipe+0x220/0x220 [ 31.161434][ T398] direct_splice_actor+0xfe/0x130 [ 31.166429][ T398] splice_direct_to_actor+0x4f4/0xbd0 [ 31.171770][ T398] ? do_splice_direct+0x3f0/0x3f0 [ 31.176763][ T398] ? pipe_to_sendpage+0x340/0x340 [ 31.181757][ T398] ? security_file_permission+0xa8/0xc0 [ 31.187271][ T398] ? rw_verify_area+0x1c2/0x360 [ 31.192097][ T398] do_splice_direct+0x2a0/0x3f0 [ 31.196918][ T398] ? do_splice_to+0x170/0x170 [ 31.203567][ T398] ? fsnotify_perm+0x67/0x4e0 [ 31.208212][ T398] ? security_file_permission+0x9d/0xc0 [ 31.213726][ T398] ? security_file_permission+0xa8/0xc0 [ 31.219241][ T398] do_sendfile+0x9c7/0x1150 [ 31.223718][ T398] ? do_pwritev+0x6d0/0x6d0 [ 31.228191][ T398] ? __kasan_check_write+0x14/0x20 [ 31.233271][ T398] ? __fpregs_load_activate+0x1e7/0x370 [ 31.238786][ T398] __x64_sys_sendfile64+0x1ce/0x230 [ 31.243954][ T398] ? __ia32_sys_sendfile+0x250/0x250 [ 31.249295][ T398] do_syscall_64+0x34/0x70 [ 31.255019][ T398] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 31.260883][ T398] RIP: 0033:0x7f74c0aeeeb9 [ 31.265272][ T398] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 31 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 31.285453][ T398] RSP: 002b:00007f74c0a93208 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 31.293836][ T398] RAX: ffffffffffffffda RBX: 00007f74c0b6c6c8 RCX: 00007f74c0aeeeb9 [ 31.301830][ T398] RDX: 0000000000000000 RSI: 0000000000000005 RDI: 0000000000000004 [ 31.309774][ T398] RBP: 00007f74c0b6c6c0 R08: 0000000000000000 R09: 0000000000000000 [ 31.317715][ T398] R10: 0000000080000041 R11: 0000000000000246 R12: 00007f74c0b6c6cc [ 31.325657][ T398] R13: 00007fff0dd3726f R14: 00007f74c0a93300 R15: 0000000000022000 executing program executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program [ 31.333692][ T398] Modules linked in: [ 31.342969][ T398] ---[ end trace 0a402b1df1b63834 ]--- [ 31.354614][ T398] RIP: 0010:ext4_writepages+0x36f6/0x3710 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 31.365316][ T398] Code: c6 31 ff e8 3c 17 90 ff 84 db 75 2c e8 23 14 90 ff 48 bb 00 00 00 00 00 fc ff df 4c 8b 64 24 40 e9 28 f7 ff ff e8 0a 14 90 ff <0f> 0b e8 03 14 90 ff e8 8d 7a 23 ff eb a0 e8 f7 13 90 ff e8 81 7a write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program [ 31.409921][ T398] RSP: 0018:ffffc90000c66ce0 EFLAGS: 00010293 [ 31.419382][ T398] RAX: ffffffff81dd07b6 RBX: 0000008000000000 RCX: ffff888106584f00 [ 31.435979][ T398] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program executing program executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory [ 31.454058][ T398] RBP: ffffc90000c670d0 R08: ffffffff81dcd79a R09: ffffed102344c185 [ 31.466188][ T398] R10: ffffed102344c185 R11: 1ffff1102344c184 R12: ffff88810639b000 [ 31.486387][ T398] R13: ffffc90000c66fa0 R14: 0000008410000000 R15: ffffc90000c67240 [ 31.500585][ T398] FS: 00007f74c0a93700(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 executing program write to /proc/sys/kernel/softlockup_all_cpu_backtrace failed: No such file or directory executing program [ 31.520123][ T398] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 31.529837][ T398] CR2: 00007fff0ddd37c0 CR3: 000000011d9a5000 CR4: 00000000003506b0 [ 31.546474][ T398] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 31.555920][ T398] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 31.566294][ T398] Kernel panic - not syncing: Fatal exception [ 31.572773][ T398] Kernel Offset: disabled [ 31.577082][ T398] Rebooting in 86400 seconds..