./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3874875103

<...>
Warning: Permanently added '10.128.0.241' (ED25519) to the list of known hosts.
execve("./syz-executor3874875103", ["./syz-executor3874875103"], 0x7ffce7360010 /* 10 vars */) = 0
brk(NULL)                               = 0x5555572d5000
brk(0x5555572d5d00)                     = 0x5555572d5d00
arch_prctl(ARCH_SET_FS, 0x5555572d5380) = 0
set_tid_address(0x5555572d5650)         = 359
set_robust_list(0x5555572d5660, 24)     = 0
rseq(0x5555572d5ca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3874875103", 4096) = 28
getrandom("\x36\xdc\xcd\xac\x77\xe5\x27\xe3", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x5555572d5d00
brk(0x5555572f6d00)                     = 0x5555572f6d00
brk(0x5555572f7000)                     = 0x5555572f7000
mprotect(0x7fdc0b914000, 16384, PROT_READ) = 0
mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000
mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000
mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555572d5650) = 360
./strace-static-x86_64: Process 360 attached
[pid   360] set_robust_list(0x5555572d5660, 24) = 0
[pid   360] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid   360] setpgid(0, 0)               = 0
[pid   360] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid   360] write(3, "1000", 4)         = 4
[pid   360] close(3)                    = 0
[pid   360] write(1, "executing program\n", 18executing program
) = 18
[pid   360] openat(AT_FDCWD, "/dev/kvm", O_RDONLY) = 3
[   26.236502][   T23] audit: type=1400 audit(1742052133.170:66): avc:  denied  { execmem } for  pid=359 comm="syz-executor387" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   26.255856][   T23] audit: type=1400 audit(1742052133.190:67): avc:  denied  { read } for  pid=360 comm="syz-executor387" name="kvm" dev="devtmpfs" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   26.256686][  T360] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   26.287584][   T23] audit: type=1400 audit(1742052133.190:68): avc:  denied  { open } for  pid=360 comm="syz-executor387" path="/dev/kvm" dev="devtmpfs" ino=96 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[pid   360] ioctl(3, KVM_CREATE_VM, 0)  = 4
[pid   360] ioctl(4, KVM_CREATE_IRQCHIP, 0) = 0
[pid   360] ioctl(4, KVM_CREATE_VCPU, 0) = 5
[   26.317861][   T23] audit: type=1400 audit(1742052133.190:69): avc:  denied  { ioctl } for  pid=360 comm="syz-executor387" path="/dev/kvm" dev="devtmpfs" ino=96 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[   26.369018][  T360] BUG: kernel NULL pointer dereference, address: 0000000000000086
[   26.376647][  T360] #PF: supervisor instruction fetch in kernel mode
[   26.382983][  T360] #PF: error_code(0x0010) - not-present page
[   26.388796][  T360] PGD 0 P4D 0 
[   26.392008][  T360] Oops: 0010 [#1] PREEMPT SMP KASAN
[   26.397052][  T360] CPU: 1 PID: 360 Comm: syz-executor387 Not tainted 5.4.290-syzkaller-00017-g6b07fcd94a6a #0
[   26.407047][  T360] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   26.416963][  T360] RIP: 0010:0x86
[   26.420306][  T360] Code: Bad RIP value.
[   26.424205][  T360] RSP: 0018:ffff8881dea8f308 EFLAGS: 00010086
[   26.430111][  T360] RAX: ffff8881dea8f338 RBX: dffffc0000000000 RCX: ffff8881f32eaf40
[   26.437919][  T360] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   26.445740][  T360] RBP: 0000000000000230 R08: ffffffff8231cd01 R09: ffffffff811c8f95
[   26.453540][  T360] R10: ffff8881f32eaf40 R11: 0000000000000002 R12: ffffffff84600208
[   26.461352][  T360] R13: fffffe0000000238 R14: ffff8881ee710000 R15: fffffe000000023b
[   26.469165][  T360] FS:  00005555572d5380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   26.477928][  T360] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.484345][  T360] CR2: 000000000000005c CR3: 00000001da17d000 CR4: 00000000003426a0
[   26.492161][  T360] Call Trace:
[   26.495302][  T360]  ? __die+0xb4/0x100
[   26.499106][  T360]  ? no_context+0xac7/0xd20
[   26.503447][  T360]  ? is_prefetch+0x4b0/0x4b0
[   26.507872][  T360]  ? rcu_preempt_deferred_qs+0xa4/0x2b0
[   26.513258][  T360]  ? __do_page_fault+0xa72/0xbb0
[   26.518032][  T360]  ? vmx_spec_ctrl_restore_host+0x83/0xfd
[   26.523586][  T360]  ? __bad_area_nosemaphore+0xc0/0x470
[   26.528879][  T360]  ? page_fault+0x2f/0x40
[   26.533043][  T360]  ? irq_entries_start+0x18/0x660
[   26.537908][  T360]  ? vmx_handle_exit_irqoff+0x45/0x220
[   26.543213][  T360]  ? check_preemption_disabled+0x91/0x320
[   26.548758][  T360]  ? handle_external_interrupt_irqoff+0x148/0x2f0
[   26.555007][  T360]  ? handle_external_interrupt_irqoff+0x12a/0x2f0
[   26.561511][  T360]  ? irq_entries_start+0x18/0x660
[   26.566371][  T360]  ? vcpu_enter_guest+0x2d06/0x9f70
[   26.571404][  T360]  ? check_preemption_disabled+0x9f/0x320
[   26.576958][  T360]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   26.582515][  T360]  ? check_preemption_disabled+0x9f/0x320
[   26.588068][  T360]  ? _raw_spin_lock+0x1b0/0x1b0
[   26.592844][  T360]  ? debug_smp_processor_id+0x20/0x20
[   26.598055][  T360]  ? local_bh_enable+0x20/0x20
[   26.602648][  T360]  ? internal_add_timer+0x34b/0x430
[   26.607685][  T360]  ? _raw_spin_unlock_irqrestore+0x57/0x80
[   26.613323][  T360]  ? __mod_timer+0x72b/0x13e0
[   26.617840][  T360]  ? mod_timer_pending+0x20/0x20
[   26.622618][  T360]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   26.627913][  T360]  ? read_msr+0x40/0x40
[   26.631899][  T360]  ? check_preemption_disabled+0x9f/0x320
[   26.637459][  T360]  ? __fd_install+0x119/0x230
[   26.641968][  T360]  ? update_load_avg+0x40f/0x1210
[   26.646825][  T360]  ? cpuacct_charge+0xe2/0x170
[   26.651427][  T360]  ? enqueue_task_fair+0xaac/0x1e40
[   26.656461][  T360]  ? check_preempt_wakeup+0x41a/0x9f0
[   26.661673][  T360]  ? vmx_vcpu_load_vmcs+0x655/0x8b0
[   26.666705][  T360]  ? try_to_wake_up+0x7c5/0x14f0
[   26.671473][  T360]  ? read_msr+0x40/0x40
[   26.675469][  T360]  ? check_preemption_disabled+0x9f/0x320
[   26.681025][  T360]  ? check_preemption_disabled+0x9f/0x320
[   26.686578][  T360]  ? debug_smp_processor_id+0x20/0x20
[   26.691793][  T360]  ? kvm_arch_vcpu_ioctl_run+0x748/0x18d0
[   26.697347][  T360]  ? kvm_vcpu_ioctl+0x7f9/0xd10
[   26.702029][  T360]  ? create_vcpu_fd+0x120/0x120
[   26.706714][  T360]  ? _raw_spin_lock_irq+0xa5/0x1b0
[   26.711661][  T360]  ? _raw_spin_lock_irqsave+0x210/0x210
[   26.717042][  T360]  ? cgroup_update_frozen+0x157/0xab0
[   26.722250][  T360]  ? cgroup_update_frozen+0x157/0xab0
[   26.727460][  T360]  ? cgroup_leave_frozen+0x13c/0x290
[   26.732612][  T360]  ? ptrace_stop+0x6ee/0xa30
[   26.737003][  T360]  ? create_vcpu_fd+0x120/0x120
[   26.741691][  T360]  ? do_vfs_ioctl+0x742/0x1720
[   26.746292][  T360]  ? ioctl_preallocate+0x250/0x250
[   26.751238][  T360]  ? check_preemption_disabled+0x153/0x320
[   26.756879][  T360]  ? syscall_trace_enter+0x650/0x940
[   26.761999][  T360]  ? do_syscall_64+0x1c0/0x1c0
[   26.766601][  T360]  ? switch_fpu_return+0x1d4/0x410
[   26.771547][  T360]  ? security_file_ioctl+0x7d/0xa0
[   26.776496][  T360]  ? __x64_sys_ioctl+0xd4/0x110
[   26.781184][  T360]  ? do_syscall_64+0xca/0x1c0
[   26.785701][  T360]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   26.791590][  T360] Modules linked in:
[   26.795424][  T360] CR2: 0000000000000086
[   26.799409][  T360] ---[ end trace cf6f84a7dba4bb8d ]---
[   26.804699][  T360] RIP: 0010:0x86
[   26.808084][  T360] Code: Bad RIP value.
[   26.811983][  T360] RSP: 0018:ffff8881dea8f308 EFLAGS: 00010086
[   26.817898][  T360] RAX: ffff8881dea8f338 RBX: dffffc0000000000 RCX: ffff8881f32eaf40
[   26.825700][  T360] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[   26.833510][  T360] RBP: 0000000000000230 R08: ffffffff8231cd01 R09: ffffffff811c8f95
[   26.841330][  T360] R10: ffff8881f32eaf40 R11: 0000000000000002 R12: ffffffff84600208
[   26.849135][  T360] R13: fffffe0000000238 R14: ffff8881ee710000 R15: fffffe000000023b
[   26.857040][  T360] FS:  00005555572d5380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   26.865798][  T360] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.872218][  T360] CR2: 000000000000005c CR3: 00000001da17d000 CR4: 00000000003426a0
[   26.880031][  T360] Kernel panic - not syncing: Fatal exception
[   26.886041][  T360] Kernel Offset: disabled
[   26.890105][  T360] Rebooting in 86400 seconds..