./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2088946378

<...>
Warning: Permanently added '10.128.1.142' (ED25519) to the list of known hosts.
execve("./syz-executor2088946378", ["./syz-executor2088946378"], 0x7fff21a1b140 /* 10 vars */) = 0
brk(NULL)                               = 0x55558e19b000
brk(0x55558e19bd00)                     = 0x55558e19bd00
arch_prctl(ARCH_SET_FS, 0x55558e19b380) = 0
set_tid_address(0x55558e19b650)         = 279
set_robust_list(0x55558e19b660, 24)     = 0
rseq(0x55558e19bca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2088946378", 4096) = 28
getrandom("\x05\xe0\x99\xa5\xac\x43\x29\xb2", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55558e19bd00
brk(0x55558e1bcd00)                     = 0x55558e1bcd00
brk(0x55558e1bd000)                     = 0x55558e1bd000
mprotect(0x7f16b4f55000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0executing program
) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
write(1, "executing program\n", 18)     = 18
memfd_create("syzkaller", 0)            = 3
mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f16acaa0000
[   23.683420][   T28] audit: type=1400 audit(1746432756.309:80): avc:  denied  { execmem } for  pid=279 comm="syz-executor208" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 20699119) = 20699119
munmap(0x7f16acaa0000, 138412032)       = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 4
ioctl(4, LOOP_SET_FD, 3)                = 0
close(3)                                = 0
close(4)                                = 0
mkdir("./bus", 0777)                    = 0
[   23.795939][   T28] audit: type=1400 audit(1746432756.429:81): avc:  denied  { read write } for  pid=279 comm="syz-executor208" name="loop0" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   23.797063][  T279] loop0: detected capacity change from 0 to 40427
[   23.824737][   T28] audit: type=1400 audit(1746432756.429:82): avc:  denied  { open } for  pid=279 comm="syz-executor208" path="/dev/loop0" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   23.842285][  T279] F2FS-fs (loop0): heap/no_heap options were deprecated
[   23.866600][   T28] audit: type=1400 audit(1746432756.429:83): avc:  denied  { ioctl } for  pid=279 comm="syz-executor208" path="/dev/loop0" dev="devtmpfs" ino=118 ioctlcmd=0x4c00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   23.871019][  T279] F2FS-fs (loop0): heap/no_heap options were deprecated
[   23.904566][   T28] audit: type=1400 audit(1746432756.459:84): avc:  denied  { mounton } for  pid=279 comm="syz-executor208" path="/root/bus" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   23.913903][  T279] ================================================================================
[   23.951748][  T279] UBSAN: shift-out-of-bounds in fs/f2fs/super.c:919:5
[   23.959289][  T279] shift exponent 149 is too large for 64-bit type 'unsigned long'
[   23.970630][  T279] CPU: 0 PID: 279 Comm: syz-executor208 Not tainted 6.1.134-syzkaller-00033-g0c1a07d9c284 #0
[   23.981564][  T279] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025
[   23.992745][  T279] Call Trace:
[   23.996425][  T279]  <TASK>
[   24.000139][  T279]  __dump_stack+0x21/0x24
[   24.005046][  T279]  dump_stack_lvl+0xee/0x150
[   24.010006][  T279]  ? __cfi_dump_stack_lvl+0x8/0x8
[   24.015684][  T279]  ? __kasan_slab_free+0x11/0x20
[   24.020938][  T279]  dump_stack+0x15/0x24
[   24.025565][  T279]  ubsan_epilogue+0xe/0x40
[   24.030275][  T279]  __ubsan_handle_shift_out_of_bounds+0x37c/0x400
[   24.037745][  T279]  ? match_int+0x13c/0x190
[   24.042343][  T279]  parse_options+0x4829/0x4830
[   24.047909][  T279]  ? do_new_mount+0x25a/0xa20
[   24.053919][  T279]  ? default_options+0xd90/0xd90
[   24.059060][  T279]  ? f2fs_fill_super+0x2245/0x6c70
[   24.065074][  T279]  ? memcpy+0x56/0x70
[   24.069345][  T279]  f2fs_fill_super+0x2281/0x6c70
[   24.074484][  T279]  ? __cfi_f2fs_fill_super+0x10/0x10
[   24.079991][  T279]  ? mutex_unlock+0x89/0x220
[   24.084640][  T279]  ? set_blocksize+0x1df/0x360
[   24.089600][  T279]  ? sb_set_blocksize+0xaa/0xf0
[   24.094721][  T279]  ? __cfi_f2fs_fill_super+0x10/0x10
[   24.100276][  T279]  mount_bdev+0x2bc/0x3f0
[   24.106011][  T279]  ? __cfi_f2fs_fill_super+0x10/0x10
[   24.111757][  T279]  f2fs_mount+0x34/0x40
[   24.116379][  T279]  legacy_get_tree+0xfe/0x1a0
[   24.121073][  T279]  ? __cfi_f2fs_mount+0x10/0x10
[   24.126297][  T279]  vfs_get_tree+0x9a/0x270
[   24.131347][  T279]  do_new_mount+0x25a/0xa20
[   24.136287][  T279]  path_mount+0x675/0x1010
[   24.140809][  T279]  ? user_path_at_empty+0x161/0x1c0
[   24.146298][  T279]  __se_sys_mount+0x318/0x380
[   24.150995][  T279]  ? __x64_sys_mount+0xd0/0xd0
[   24.156035][  T279]  ? fpregs_restore_userregs+0x128/0x260
[   24.162350][  T279]  __x64_sys_mount+0xbf/0xd0
[   24.166954][  T279]  x64_sys_call+0x65d/0x9a0
[   24.172253][  T279]  do_syscall_64+0x4c/0xa0
[   24.178634][  T279]  ? clear_bhb_loop+0x15/0x70
[   24.183863][  T279]  ? clear_bhb_loop+0x15/0x70
[   24.189605][  T279]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[   24.196215][  T279] RIP: 0033:0x7f16b4edecfa
[   24.201330][  T279] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 5e 04 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   24.222102][  T279] RSP: 002b:00007ffdd9d29898 EFLAGS: 00000286 ORIG_RAX: 00000000000000a5
[   24.230961][  T279] RAX: ffffffffffffffda RBX: 00007ffdd9d298b0 RCX: 00007f16b4edecfa
[   24.241652][  T279] RDX: 0000200000000140 RSI: 0000200000000200 RDI: 00007ffdd9d298b0
[   24.251320][  T279] RBP: 0000200000000200 R08: 00007ffdd9d298f0 R09: 00000000000054ff
[   24.264951][  T279] R10: 0000000000000000 R11: 0000000000000286 R12: 0000200000000140
[   24.274542][  T279] R13: 00007ffdd9d298f0 R14: 0000000000000003 R15: 0000000000000000
[   24.282927][  T279]  </TASK>
mount("/dev/loop0", "./bus", "f2fs", 0, "fastboot,background_gc=sync,no_heap,grpjquota=-s.,noquota,disable_roll_forward,noacl,nouser_xattr,ch"...) = -1 EINVAL (Invalid argument)
openat(AT_FDCWD, "/dev/loop0", O_RDWR)  = 3
[   24.286982][  T279] ================================================================================
[   24.300007][  T279] F2FS-fs (loop0): Not support 2097152, larger than 256
ioctl(3, LOOP_CLR_FD)                   = 0
close(3)                                = 0
exit_group(0)                           = ?
+++ exited with 0 +++