./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4279294650 <...> Warning: Permanently added '10.128.0.195' (ED25519) to the list of known hosts. execve("./syz-executor4279294650", ["./syz-executor4279294650"], 0x7ffd231237e0 /* 10 vars */) = 0 brk(NULL) = 0x555562c4d000 brk(0x555562c4dd00) = 0x555562c4dd00 arch_prctl(ARCH_SET_FS, 0x555562c4d380) = 0 set_tid_address(0x555562c4d650) = 5827 set_robust_list(0x555562c4d660, 24) = 0 rseq(0x555562c4dca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4279294650", 4096) = 28 getrandom("\x99\x85\x5d\x45\x16\x58\x63\xb7", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555562c4dd00 brk(0x555562c6ed00) = 0x555562c6ed00 brk(0x555562c6f000) = 0x555562c6f000 mprotect(0x7fe8ebb18000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5828 attached [pid 5828] set_robust_list(0x555562c4d660, 24 [pid 5827] <... clone resumed>, child_tidptr=0x555562c4d650) = 5828 [pid 5828] <... set_robust_list resumed>) = 0 [pid 5828] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5828] getppid() = 0 [pid 5828] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5828] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5828] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5828] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5828] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5828] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5828] unshare(CLONE_NEWNS) = 0 [pid 5828] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5828] unshare(CLONE_NEWIPC) = 0 [pid 5828] unshare(CLONE_NEWCGROUP) = 0 [pid 5828] unshare(CLONE_NEWUTS) = 0 [pid 5828] unshare(CLONE_SYSVSEM) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "16777216", 8) = 8 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "536870912", 9) = 9 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "1024", 4) = 4 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "8192", 4) = 4 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "1024", 4) = 4 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "1024", 4) = 4 [pid 5828] close(3) = 0 [pid 5828] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5828] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5828] close(3) = 0 [pid 5828] getpid() = 1 [pid 5828] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 0b 90 e9 70 fb ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 35 [ 93.193286][ T5828] RSP: 0018:ffffc90003f1f028 EFLAGS: 00010293 [ 93.199440][ T5828] RAX: ffffffff87001b77 RBX: 0000000000000002 RCX: ffff88802b67bc00 [ 93.207512][ T5828] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 93.215679][ T5828] RBP: dffffc0000000000 R08: ffff88807b56382f R09: 1ffff1100f6ac705 [ 93.223671][ T5828] R10: dffffc0000000000 R11: ffffed100f6ac706 R12: ffff888078211000 [ 93.231689][ T5828] R13: ffffc90003f1f1a0 R14: 0000000000000001 R15: ffffc90003f1f1b8 [ 93.239683][ T5828] FS: 0000555562c4d380(0000) GS:ffff8881260c4000(0000) knlGS:0000000000000000 [ 93.248656][ T5828] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.255276][ T5828] CR2: 0000000000000000 CR3: 000000007b9b2000 CR4: 00000000003526f0 [ 93.263256][ T5828] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 93.271272][ T5828] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 93.279287][ T5828] Call Trace: [ 93.282569][ T5828] [ 93.285607][ T5828] notifier_call_chain+0x1b3/0x3e0 [ 93.290844][ T5828] ? atomic_notifier_call_chain+0x26/0x180 [ 93.296787][ T5828] atomic_notifier_call_chain+0xda/0x180 [ 93.302441][ T5828] call_fib_notifiers+0x31/0x60 [ 93.307371][ T5828] call_fib6_multipath_entry_notifiers+0xe6/0x150 [ 93.313820][ T5828] ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10 [ 93.320956][ T5828] ? inet6_rtm_newroute+0x77f/0x1c70 [ 93.326319][ T5828] inet6_rtm_newroute+0x1a0c/0x1c70 [ 93.331550][ T5828] ? inet6_rtm_newroute+0x77f/0x1c70 [ 93.336918][ T5828] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.342152][ T5828] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 93.347803][ T5828] ? kmem_cache_free+0x192/0x3f0 [ 93.352852][ T5828] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 93.358492][ T5828] rtnetlink_rcv_msg+0x7cc/0xb70 [ 93.363469][ T5828] ? rtnetlink_rcv_msg+0x1ab/0xb70 [ 93.368692][ T5828] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 93.374194][ T5828] ? ref_tracker_free+0x63a/0x7d0 [ 93.379360][ T5828] ? __copy_skb_header+0xa7/0x550 [ 93.384431][ T5828] netlink_rcv_skb+0x219/0x490 [ 93.389287][ T5828] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 93.394777][ T5828] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 93.400241][ T5828] ? netlink_deliver_tap+0x2e/0x1b0 [ 93.405514][ T5828] ? netlink_deliver_tap+0x2e/0x1b0 [ 93.410742][ T5828] netlink_unicast+0x758/0x8d0 [ 93.415716][ T5828] netlink_sendmsg+0x805/0xb30 [ 93.420527][ T5828] ? __pfx_netlink_sendmsg+0x10/0x10 [ 93.425925][ T5828] ? aa_sock_msg_perm+0x94/0x160 [ 93.430892][ T5828] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 93.436226][ T5828] ? __pfx_netlink_sendmsg+0x10/0x10 [ 93.441530][ T5828] __sock_sendmsg+0x219/0x270 [ 93.446287][ T5828] ____sys_sendmsg+0x505/0x830 [ 93.451083][ T5828] ? __pfx_____sys_sendmsg+0x10/0x10 [ 93.456551][ T5828] ? import_iovec+0x74/0xa0 [ 93.461098][ T5828] ___sys_sendmsg+0x21f/0x2a0 [ 93.465857][ T5828] ? __pfx____sys_sendmsg+0x10/0x10 [ 93.471075][ T5828] ? do_raw_spin_lock+0x121/0x290 [ 93.476226][ T5828] ? _raw_spin_lock_irq+0xae/0xf0 [ 93.481308][ T5828] __x64_sys_sendmsg+0x19b/0x260 [ 93.486335][ T5828] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 93.491846][ T5828] do_syscall_64+0xf6/0x210 [ 93.496451][ T5828] ? clear_bhb_loop+0x45/0xa0 [ 93.501166][ T5828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.507139][ T5828] RIP: 0033:0x7fe8eba9f999 [ 93.511582][ T5828] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.531347][ T5828] RSP: 002b:00007ffcfd0f7628 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 93.540049][ T5828] RAX: ffffffffffffffda RBX: 0000200000000300 RCX: 00007fe8eba9f999 [ 93.548128][ T5828] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003 [ 93.556169][ T5828] RBP: 0000000000000000 R08: 0000555500000000 R09: 0000555500000000 [ 93.564179][ T5828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 93.572215][ T5828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 93.580245][ T5828] [ 93.583285][ T5828] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 93.590575][ T5828] CPU: 0 UID: 0 PID: 5828 Comm: syz-executor427 Not tainted 6.15.0-rc3-syzkaller-00644-gdeeed351e982 #0 PREEMPT(full) [ 93.602984][ T5828] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/19/2025 [ 93.613067][ T5828] Call Trace: [ 93.616348][ T5828] [ 93.619288][ T5828] dump_stack_lvl+0x99/0x250 [ 93.623909][ T5828] ? __asan_memcpy+0x40/0x70 [ 93.628500][ T5828] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.633707][ T5828] ? __pfx__printk+0x10/0x10 [ 93.638310][ T5828] panic+0x2db/0x790 [ 93.642217][ T5828] ? __pfx_panic+0x10/0x10 [ 93.646632][ T5828] ? show_trace_log_lvl+0x4fb/0x550 [ 93.651845][ T5828] __warn+0x31b/0x4b0 [ 93.655886][ T5828] ? nsim_fib_event_nb+0xed8/0x1080 [ 93.661085][ T5828] ? nsim_fib_event_nb+0xed8/0x1080 [ 93.666287][ T5828] report_bug+0x2be/0x4f0 [ 93.670622][ T5828] ? nsim_fib_event_nb+0xed8/0x1080 [ 93.675824][ T5828] ? nsim_fib_event_nb+0xed8/0x1080 [ 93.681029][ T5828] ? nsim_fib_event_nb+0xeda/0x1080 [ 93.686229][ T5828] handle_bug+0x84/0x160 [ 93.690466][ T5828] exc_invalid_op+0x1a/0x50 [ 93.694973][ T5828] asm_exc_invalid_op+0x1a/0x20 [ 93.699815][ T5828] RIP: 0010:nsim_fib_event_nb+0xed8/0x1080 [ 93.705616][ T5828] Code: fa be 02 00 00 00 eb 0a e8 25 a2 bf fa be 01 00 00 00 4c 89 f7 e8 38 e6 b7 fd 4c 8b 64 24 08 e9 91 f4 ff ff e8 09 a2 bf fa 90 <0f> 0b 90 e9 70 fb ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 35 [ 93.725304][ T5828] RSP: 0018:ffffc90003f1f028 EFLAGS: 00010293 [ 93.731371][ T5828] RAX: ffffffff87001b77 RBX: 0000000000000002 RCX: ffff88802b67bc00 [ 93.739352][ T5828] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000001 [ 93.747326][ T5828] RBP: dffffc0000000000 R08: ffff88807b56382f R09: 1ffff1100f6ac705 [ 93.755290][ T5828] R10: dffffc0000000000 R11: ffffed100f6ac706 R12: ffff888078211000 [ 93.763260][ T5828] R13: ffffc90003f1f1a0 R14: 0000000000000001 R15: ffffc90003f1f1b8 [ 93.771244][ T5828] ? nsim_fib_event_nb+0xed7/0x1080 [ 93.776447][ T5828] ? nsim_fib_event_nb+0xed7/0x1080 [ 93.781648][ T5828] notifier_call_chain+0x1b3/0x3e0 [ 93.786759][ T5828] ? atomic_notifier_call_chain+0x26/0x180 [ 93.792656][ T5828] atomic_notifier_call_chain+0xda/0x180 [ 93.798311][ T5828] call_fib_notifiers+0x31/0x60 [ 93.803195][ T5828] call_fib6_multipath_entry_notifiers+0xe6/0x150 [ 93.809612][ T5828] ? __pfx_call_fib6_multipath_entry_notifiers+0x10/0x10 [ 93.816630][ T5828] ? inet6_rtm_newroute+0x77f/0x1c70 [ 93.821916][ T5828] inet6_rtm_newroute+0x1a0c/0x1c70 [ 93.827117][ T5828] ? inet6_rtm_newroute+0x77f/0x1c70 [ 93.832400][ T5828] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.837599][ T5828] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 93.843146][ T5828] ? kmem_cache_free+0x192/0x3f0 [ 93.848124][ T5828] ? __pfx_inet6_rtm_newroute+0x10/0x10 [ 93.853670][ T5828] rtnetlink_rcv_msg+0x7cc/0xb70 [ 93.858617][ T5828] ? rtnetlink_rcv_msg+0x1ab/0xb70 [ 93.863728][ T5828] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 93.869190][ T5828] ? ref_tracker_free+0x63a/0x7d0 [ 93.874208][ T5828] ? __copy_skb_header+0xa7/0x550 [ 93.879238][ T5828] netlink_rcv_skb+0x219/0x490 [ 93.884008][ T5828] ? __pfx_rtnetlink_rcv_msg+0x10/0x10 [ 93.889478][ T5828] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 93.894774][ T5828] ? netlink_deliver_tap+0x2e/0x1b0 [ 93.899966][ T5828] ? netlink_deliver_tap+0x2e/0x1b0 [ 93.905159][ T5828] netlink_unicast+0x758/0x8d0 [ 93.909926][ T5828] netlink_sendmsg+0x805/0xb30 [ 93.914691][ T5828] ? __pfx_netlink_sendmsg+0x10/0x10 [ 93.919978][ T5828] ? aa_sock_msg_perm+0x94/0x160 [ 93.924918][ T5828] ? bpf_lsm_socket_sendmsg+0x9/0x20 [ 93.930209][ T5828] ? __pfx_netlink_sendmsg+0x10/0x10 [ 93.935510][ T5828] __sock_sendmsg+0x219/0x270 [ 93.940217][ T5828] ____sys_sendmsg+0x505/0x830 [ 93.944991][ T5828] ? __pfx_____sys_sendmsg+0x10/0x10 [ 93.950287][ T5828] ? import_iovec+0x74/0xa0 [ 93.954792][ T5828] ___sys_sendmsg+0x21f/0x2a0 [ 93.959468][ T5828] ? __pfx____sys_sendmsg+0x10/0x10 [ 93.964673][ T5828] ? do_raw_spin_lock+0x121/0x290 [ 93.969707][ T5828] ? _raw_spin_lock_irq+0xae/0xf0 [ 93.974749][ T5828] __x64_sys_sendmsg+0x19b/0x260 [ 93.979691][ T5828] ? __pfx___x64_sys_sendmsg+0x10/0x10 [ 93.985170][ T5828] do_syscall_64+0xf6/0x210 [ 93.989677][ T5828] ? clear_bhb_loop+0x45/0xa0 [ 93.994349][ T5828] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 94.000234][ T5828] RIP: 0033:0x7fe8eba9f999 [ 94.004643][ T5828] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 94.024240][ T5828] RSP: 002b:00007ffcfd0f7628 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 94.032648][ T5828] RAX: ffffffffffffffda RBX: 0000200000000300 RCX: 00007fe8eba9f999 [ 94.040614][ T5828] RDX: 0000000000000000 RSI: 0000200000000100 RDI: 0000000000000003 [ 94.048583][ T5828] RBP: 0000000000000000 R08: 0000555500000000 R09: 0000555500000000 [ 94.056559][ T5828] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 94.064520][ T5828] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 94.072497][ T5828] [ 94.075804][ T5828] Kernel Offset: disabled [ 94.080129][ T5828] Rebooting in 86400 seconds..