./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2291585562
<...>
DUID 00:04:e3:a1:4c:5b:a4:47:39:93:9a:5d:f6:69:14:97:a9:57
forked to background, child pid 4695
[ 33.909292][ T4696] 8021q: adding VLAN 0 to HW filter on device bond0
[ 33.921553][ T4696] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
syzkaller login: [ 43.532780][ T4874] sshd (4874) used greatest stack depth: 22424 bytes left
Warning: Permanently added '10.128.10.3' (ECDSA) to the list of known hosts.
execve("./syz-executor2291585562", ["./syz-executor2291585562"], 0x7ffe86703b00 /* 10 vars */) = 0
brk(NULL) = 0x5555571ac000
brk(0x5555571acc40) = 0x5555571acc40
arch_prctl(ARCH_SET_FS, 0x5555571ac300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2291585562", 4096) = 28
brk(0x5555571cdc40) = 0x5555571cdc40
brk(0x5555571ce000) = 0x5555571ce000
mprotect(0x7f5b6e422000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdirat(AT_FDCWD, "./file0", 000) = 0
pipe2([3, 4], 0) = 0
write(4, "\x15\x00\x00\x00\x65\xff\xff\x09\x7b\x00\x00\x08\x00\x39\x50\x32\x30\x30\x30\x2e\x4c", 21) = 21
dup(4) = 5
write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
[ 59.863634][ T5026] ------------[ cut here ]------------
[ 59.869313][ T5026] WARNING: CPU: 0 PID: 5026 at mm/page_alloc.c:4489 __alloc_pages+0x3a2/0x4a0
[ 59.878326][ T5026] Modules linked in:
[ 59.882387][ T5026] CPU: 0 PID: 5026 Comm: syz-executor229 Not tainted 6.4.0-next-20230630-syzkaller #0
[ 59.892147][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 59.902386][ T5026] RIP: 0010:__alloc_pages+0x3a2/0x4a0
[ 59.907793][ T5026] Code: ff ff 00 0f 84 33 fe ff ff 80 ce 01 e9 2b fe ff ff 83 fe 0a 0f 86 3e fd ff ff 80 3d 01 31 c7 0c 00 75 09 c6 05 f8 30 c7 0c 01 <0f> 0b 45 31 f6 e9 8d fe ff ff e8 cf a8 a0 ff 84 c0 0f 85 80 fe ff
[ 59.928590][ T5026] RSP: 0018:ffffc90003a97ac0 EFLAGS: 00010246
[ 59.934835][ T5026] RAX: 0000000000000000 RBX: 1ffff92000752f59 RCX: 0000000000000000
[ 59.942881][ T5026] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 59.950965][ T5026] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 59.959182][ T5026] R10: 0000000100000000 R11: ffffffff8a2085d9 R12: 0000000000000014
[ 59.967258][ T5026] R13: 0000000000000000 R14: 0000000000040d40 R15: 0000000000000000
[ 59.975482][ T5026] FS: 00005555571ac300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 59.984519][ T5026] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 59.991159][ T5026] CR2: 00007fab74ff2308 CR3: 0000000074872000 CR4: 00000000003506f0
[ 59.999140][ T5026] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 60.007211][ T5026] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 60.015240][ T5026] Call Trace:
[ 60.018517][ T5026]
[ 60.021511][ T5026] ? __warn+0xe6/0x390
[ 60.025612][ T5026] ? __alloc_pages+0x3a2/0x4a0
[ 60.030381][ T5026] ? report_bug+0x2da/0x500
[ 60.034952][ T5026] ? handle_bug+0x3c/0x70
[ 60.039299][ T5026] ? exc_invalid_op+0x18/0x50
[ 60.044119][ T5026] ? asm_exc_invalid_op+0x1a/0x20
[ 60.049175][ T5026] ? do_syscall_64+0x39/0xb0
[ 60.053826][ T5026] ? __alloc_pages+0x3a2/0x4a0
[ 60.058621][ T5026] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 60.065462][ T5026] ? p9_client_clunk+0xc0/0x140
[ 60.070345][ T5026] ? v9fs_fid_lookup+0xf40/0xf40
[ 60.075393][ T5026] __kmalloc_large_node+0x94/0x1d0
[ 60.080635][ T5026] ? v9fs_fid_get_acl+0x78/0x120
[ 60.085603][ T5026] __kmalloc+0x104/0x190
[ 60.089868][ T5026] v9fs_fid_get_acl+0x78/0x120
[ 60.094770][ T5026] v9fs_get_acl+0x3b3/0x5f0
[ 60.099301][ T5026] v9fs_mount+0x645/0xca0
[ 60.103787][ T5026] ? v9fs_statfs+0x4d0/0x4d0
[ 60.108407][ T5026] ? apparmor_capable+0x1dc/0x460
[ 60.113492][ T5026] ? v9fs_statfs+0x4d0/0x4d0
[ 60.118114][ T5026] legacy_get_tree+0x109/0x220
[ 60.122955][ T5026] vfs_get_tree+0x8d/0x350
[ 60.127392][ T5026] path_mount+0x136e/0x1e70
[ 60.131992][ T5026] ? putname+0x102/0x140
[ 60.136251][ T5026] ? kmem_cache_free+0xf0/0x490
[ 60.141181][ T5026] ? finish_automount+0xa30/0xa30
[ 60.146663][ T5026] ? putname+0x102/0x140
[ 60.150978][ T5026] __x64_sys_mount+0x283/0x300
[ 60.155762][ T5026] ? copy_mnt_ns+0xb30/0xb30
[ 60.160347][ T5026] ? lockdep_hardirqs_on+0x7d/0x100
[ 60.165630][ T5026] ? _raw_spin_unlock_irq+0x2e/0x50
[ 60.170992][ T5026] ? ptrace_notify+0xfe/0x140
[ 60.175794][ T5026] do_syscall_64+0x39/0xb0
[ 60.180291][ T5026] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 60.186246][ T5026] RIP: 0033:0x7f5b6e3b5fa9
[ 60.190713][ T5026] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 60.210416][ T5026] RSP: 002b:00007ffeaf80dc08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 60.218924][ T5026] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5b6e3b5fa9
[ 60.227015][ T5026] RDX: 0000000020000b80 RSI: 0000000020000040 RDI: 0000000000000000
[ 60.235140][ T5026] RBP: 00007f5b6e379ec0 R08: 0000000020000140 R09: 0000000000000000
[ 60.243173][ T5026] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5b6e379f50
[ 60.251280][ T5026] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 60.259291][ T5026]
[ 60.262391][ T5026] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 60.269702][ T5026] CPU: 0 PID: 5026 Comm: syz-executor229 Not tainted 6.4.0-next-20230630-syzkaller #0
[ 60.279326][ T5026] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023
[ 60.289373][ T5026] Call Trace:
[ 60.292647][ T5026]
[ 60.295585][ T5026] dump_stack_lvl+0xd9/0x150
[ 60.300172][ T5026] panic+0x686/0x730
[ 60.304148][ T5026] ? panic_smp_self_stop+0xa0/0xa0
[ 60.309249][ T5026] ? show_trace_log_lvl+0x284/0x390
[ 60.314447][ T5026] ? __alloc_pages+0x3a2/0x4a0
[ 60.319207][ T5026] check_panic_on_warn+0xb1/0xc0
[ 60.324195][ T5026] __warn+0xf2/0x390
[ 60.328115][ T5026] ? __alloc_pages+0x3a2/0x4a0
[ 60.332989][ T5026] report_bug+0x2da/0x500
[ 60.337422][ T5026] handle_bug+0x3c/0x70
[ 60.341591][ T5026] exc_invalid_op+0x18/0x50
[ 60.346194][ T5026] asm_exc_invalid_op+0x1a/0x20
[ 60.351070][ T5026] RIP: 0010:__alloc_pages+0x3a2/0x4a0
[ 60.356479][ T5026] Code: ff ff 00 0f 84 33 fe ff ff 80 ce 01 e9 2b fe ff ff 83 fe 0a 0f 86 3e fd ff ff 80 3d 01 31 c7 0c 00 75 09 c6 05 f8 30 c7 0c 01 <0f> 0b 45 31 f6 e9 8d fe ff ff e8 cf a8 a0 ff 84 c0 0f 85 80 fe ff
[ 60.376282][ T5026] RSP: 0018:ffffc90003a97ac0 EFLAGS: 00010246
[ 60.382365][ T5026] RAX: 0000000000000000 RBX: 1ffff92000752f59 RCX: 0000000000000000
[ 60.390513][ T5026] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 60.398490][ T5026] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 60.406461][ T5026] R10: 0000000100000000 R11: ffffffff8a2085d9 R12: 0000000000000014
[ 60.414699][ T5026] R13: 0000000000000000 R14: 0000000000040d40 R15: 0000000000000000
[ 60.422769][ T5026] ? do_syscall_64+0x39/0xb0
[ 60.427392][ T5026] ? __alloc_pages_slowpath.constprop.0+0x2130/0x2130
[ 60.434446][ T5026] ? p9_client_clunk+0xc0/0x140
[ 60.439318][ T5026] ? v9fs_fid_lookup+0xf40/0xf40
[ 60.444280][ T5026] __kmalloc_large_node+0x94/0x1d0
[ 60.449432][ T5026] ? v9fs_fid_get_acl+0x78/0x120
[ 60.454404][ T5026] __kmalloc+0x104/0x190
[ 60.458709][ T5026] v9fs_fid_get_acl+0x78/0x120
[ 60.463495][ T5026] v9fs_get_acl+0x3b3/0x5f0
[ 60.468099][ T5026] v9fs_mount+0x645/0xca0
[ 60.472612][ T5026] ? v9fs_statfs+0x4d0/0x4d0
[ 60.477388][ T5026] ? apparmor_capable+0x1dc/0x460
[ 60.482520][ T5026] ? v9fs_statfs+0x4d0/0x4d0
[ 60.487203][ T5026] legacy_get_tree+0x109/0x220
[ 60.491990][ T5026] vfs_get_tree+0x8d/0x350
[ 60.496421][ T5026] path_mount+0x136e/0x1e70
[ 60.500943][ T5026] ? putname+0x102/0x140
[ 60.505192][ T5026] ? kmem_cache_free+0xf0/0x490
[ 60.510106][ T5026] ? finish_automount+0xa30/0xa30
[ 60.515163][ T5026] ? putname+0x102/0x140
[ 60.519590][ T5026] __x64_sys_mount+0x283/0x300
[ 60.524650][ T5026] ? copy_mnt_ns+0xb30/0xb30
[ 60.529269][ T5026] ? lockdep_hardirqs_on+0x7d/0x100
[ 60.534601][ T5026] ? _raw_spin_unlock_irq+0x2e/0x50
[ 60.539914][ T5026] ? ptrace_notify+0xfe/0x140
[ 60.544613][ T5026] do_syscall_64+0x39/0xb0
[ 60.549225][ T5026] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 60.555159][ T5026] RIP: 0033:0x7f5b6e3b5fa9
[ 60.559617][ T5026] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 60.579332][ T5026] RSP: 002b:00007ffeaf80dc08 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 60.587758][ T5026] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5b6e3b5fa9
[ 60.595739][ T5026] RDX: 0000000020000b80 RSI: 0000000020000040 RDI: 0000000000000000
[ 60.606976][ T5026] RBP: 00007f5b6e379ec0 R08: 0000000020000140 R09: 0000000000000000
[ 60.615240][ T5026] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5b6e379f50
[ 60.623240][ T5026] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 60.631255][ T5026]
[ 60.634511][ T5026] Kernel Offset: disabled
[ 60.638919][ T5026] Rebooting in 86400 seconds..