./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1632954710 <...> Warning: Permanently added '10.128.0.178' (ED25519) to the list of known hosts. execve("./syz-executor1632954710", ["./syz-executor1632954710"], 0x7fffc8e54ac0 /* 10 vars */) = 0 brk(NULL) = 0x555573907000 brk(0x555573907d00) = 0x555573907d00 arch_prctl(ARCH_SET_FS, 0x555573907380) = 0 set_tid_address(0x555573907650) = 5070 set_robust_list(0x555573907660, 24) = 0 rseq(0x555573907ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1632954710", 4096) = 28 getrandom("\x6f\xd3\xfd\xcd\xda\x84\xf9\x16", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555573907d00 brk(0x555573928d00) = 0x555573928d00 brk(0x555573929000) = 0x555573929000 mprotect(0x7fafc702c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached [pid 5071] set_robust_list(0x555573907660, 24) = 0 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5070] <... clone resumed>, child_tidptr=0x555573907650) = 5071 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5072 attached [pid 5072] set_robust_list(0x555573907660, 24 [pid 5071] <... clone resumed>, child_tidptr=0x555573907650) = 5072 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5073 attached [pid 5070] <... clone resumed>, child_tidptr=0x555573907650) = 5073 [pid 5072] <... prctl resumed>) = 0 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] set_robust_list(0x555573907660, 24 [pid 5072] setpgid(0, 0 [pid 5073] <... set_robust_list resumed>) = 0 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5075 attached ./strace-static-x86_64: Process 5074 attached [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5074] set_robust_list(0x555573907660, 24 [pid 5073] <... clone resumed>, child_tidptr=0x555573907650) = 5075 [pid 5070] <... clone resumed>, child_tidptr=0x555573907650) = 5074 [pid 5075] set_robust_list(0x555573907660, 24 [pid 5074] <... set_robust_list resumed>) = 0 [pid 5072] <... openat resumed>) = 3 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5075] <... set_robust_list resumed>) = 0 [pid 5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] write(3, "1000", 4 [pid 5075] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5072] <... write resumed>) = 4 [pid 5072] close(3) = 0 [pid 5072] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72./strace-static-x86_64: Process 5077 attached ./strace-static-x86_64: Process 5076 attached [pid 5075] <... prctl resumed>) = 0 [pid 5072] <... bpf resumed>) = 3 [pid 5070] <... clone resumed>, child_tidptr=0x555573907650) = 5077 [pid 5077] set_robust_list(0x555573907660, 24 [pid 5076] set_robust_list(0x555573907660, 24 [pid 5075] setpgid(0, 0 [pid 5074] <... clone resumed>, child_tidptr=0x555573907650) = 5076 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5077] <... set_robust_list resumed>) = 0 [pid 5076] <... set_robust_list resumed>) = 0 [pid 5075] <... setpgid resumed>) = 0 [pid 5072] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144./strace-static-x86_64: Process 5078 attached [pid 5077] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5075] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5072] <... bpf resumed>) = 4 [pid 5070] <... clone resumed>, child_tidptr=0x555573907650) = 5078 [pid 5078] set_robust_list(0x555573907660, 24 [pid 5076] <... prctl resumed>) = 0 [pid 5078] <... set_robust_list resumed>) = 0 [pid 5076] setpgid(0, 0 [pid 5075] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5079 attached [pid 5078] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5076] <... setpgid resumed>) = 0 [pid 5072] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5079] set_robust_list(0x555573907660, 24 [pid 5077] <... clone resumed>, child_tidptr=0x555573907650) = 5079 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5075] write(3, "1000", 4 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5075] <... write resumed>) = 4 [pid 5079] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5076] <... openat resumed>) = 3 [pid 5075] close(3 [pid 5079] <... prctl resumed>) = 0 [pid 5075] <... close resumed>) = 0 [pid 5079] setpgid(0, 0 [pid 5076] write(3, "1000", 4 [pid 5075] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72./strace-static-x86_64: Process 5080 attached [pid 5079] <... setpgid resumed>) = 0 [pid 5072] <... bpf resumed>) = 5 [pid 5080] set_robust_list(0x555573907660, 24 [pid 5079] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5078] <... clone resumed>, child_tidptr=0x555573907650) = 5080 [pid 5076] <... write resumed>) = 4 [pid 5075] <... bpf resumed>) = 3 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] <... openat resumed>) = 3 [pid 5076] close(3 [pid 5075] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5072] exit_group(0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5079] write(3, "1000", 4 [pid 5076] <... close resumed>) = 0 [pid 5072] <... exit_group resumed>) = ? [pid 5080] <... prctl resumed>) = 0 [pid 5079] <... write resumed>) = 4 [pid 5076] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5075] <... bpf resumed>) = 4 [pid 5080] setpgid(0, 0 [pid 5079] close(3 [pid 5080] <... setpgid resumed>) = 0 [pid 5079] <... close resumed>) = 0 [pid 5076] <... bpf resumed>) = 3 [pid 5075] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5079] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5076] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5072] +++ exited with 0 +++ [pid 5080] <... openat resumed>) = 3 [pid 5079] <... bpf resumed>) = 3 [pid 5080] write(3, "1000", 4 [pid 5079] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5080] <... write resumed>) = 4 [pid 5071] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5072, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5071] restart_syscall(<... resuming interrupted clone ...> [pid 5080] close(3 [pid 5079] <... bpf resumed>) = 4 [pid 5071] <... restart_syscall resumed>) = 0 [pid 5080] <... close resumed>) = 0 [pid 5080] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5076] <... bpf resumed>) = 4 [pid 5079] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5076] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5080] <... bpf resumed>) = 3 [pid 5080] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5080] <... bpf resumed>) = 4 ./strace-static-x86_64: Process 5081 attached [pid 5080] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5081] set_robust_list(0x555573907660, 24 [pid 5071] <... clone resumed>, child_tidptr=0x555573907650) = 5081 [pid 5081] <... set_robust_list resumed>) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5080] <... bpf resumed>) = 5 [pid 5079] <... bpf resumed>) = 5 [pid 5076] <... bpf resumed>) = 5 [pid 5075] <... bpf resumed>) = 5 [pid 5081] write(3, "1000", 4 [pid 5080] exit_group(0 [pid 5079] exit_group(0 [pid 5076] exit_group(0 [pid 5075] exit_group(0 [pid 5081] <... write resumed>) = 4 [pid 5080] <... exit_group resumed>) = ? [pid 5079] <... exit_group resumed>) = ? [pid 5076] <... exit_group resumed>) = ? [pid 5075] <... exit_group resumed>) = ? [pid 5081] close(3) = 0 [pid 5081] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5080] +++ exited with 0 +++ [pid 5081] <... bpf resumed>) = 3 [pid 5081] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT_WRITABLE, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4 [pid 5079] +++ exited with 0 +++ [pid 5077] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5079, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [ 72.291152][ T5078] ------------[ cut here ]------------ [ 72.296904][ T5078] WARNING: CPU: 1 PID: 5078 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 72.306400][ T5078] Modules linked in: [ 72.310304][ T5078] CPU: 1 PID: 5078 Comm: syz-executor163 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 72.320376][ T5078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.330434][ T5078] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 72.336428][ T5078] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 72.356040][ T5078] RSP: 0018:ffffc90003adf8c0 EFLAGS: 00010046 [ 72.362113][ T5078] RAX: 0000000000000000 RBX: 1ffff9200075bf1c RCX: 0000000000000001 [ 72.370088][ T5078] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa5ea [ 72.378064][ T5078] RBP: ffffc90003adf980 R08: ffff8880212401eb R09: 1ffff1100424803d [ 72.386039][ T5078] R10: dffffc0000000000 R11: ffffed100424803e R12: dffffc0000000000 [ 72.394171][ T5078] R13: ffff88801fe6ae00 R14: ffffc90003adf900 R15: 0000000000000201 [ 72.402173][ T5078] FS: 0000555573907380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 72.411121][ T5078] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 72.417710][ T5078] CR2: 00007fafc7033130 CR3: 000000004396e000 CR4: 00000000003506f0 [ 72.425691][ T5078] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 72.433666][ T5078] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 72.441638][ T5078] Call Trace: [ 72.444922][ T5078] [ 72.447860][ T5078] ? __warn+0x163/0x4b0 [ 72.452033][ T5078] ? __local_bh_enable_ip+0x1be/0x200 [ 72.457411][ T5078] ? report_bug+0x2b3/0x500 [ 72.461935][ T5078] ? __local_bh_enable_ip+0x1be/0x200 [ 72.467320][ T5078] ? handle_bug+0x3e/0x70 [ 72.471661][ T5078] ? exc_invalid_op+0x1a/0x50 [ 72.476348][ T5078] ? asm_exc_invalid_op+0x1a/0x20 [ 72.481391][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.486694][ T5078] ? __local_bh_enable_ip+0x1be/0x200 [ 72.492094][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.497384][ T5078] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.503117][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.508407][ T5078] ? do_raw_spin_unlock+0x13c/0x8b0 [ 72.513621][ T5078] ? __pfx___cant_migrate+0x10/0x10 [ 72.518831][ T5078] ? sock_map_delete_elem+0x97/0x140 [ 72.524130][ T5078] sock_map_delete_elem+0xca/0x140 [ 72.529256][ T5078] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 72.534746][ T5078] bpf_trace_run3+0x238/0x460 [ 72.539432][ T5078] ? bpf_trace_run3+0x14a/0x460 [ 72.544291][ T5078] ? __pfx_bpf_trace_run3+0x10/0x10 [ 72.549494][ T5078] ? _atomic_dec_and_lock_irqsave+0xa9/0x190 [ 72.555491][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 72.560533][ T5078] ? put_ucounts+0x155/0x280 [ 72.565132][ T5078] ? __pfx_put_ucounts+0x10/0x10 [ 72.570079][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 72.575126][ T5078] __traceiter_kmem_cache_free+0x33/0x50 [ 72.580778][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 72.585836][ T5078] kmem_cache_free+0x23c/0x2a0 [ 72.590673][ T5078] __dequeue_signal+0x4ac/0x5c0 [ 72.595566][ T5078] dequeue_signal+0x169/0x5a0 [ 72.600264][ T5078] ? __pfx_dequeue_signal+0x10/0x10 [ 72.605479][ T5078] ? uprobe_deny_signal+0x79/0x230 [ 72.610609][ T5078] get_signal+0x5f7/0x1850 [ 72.615057][ T5078] ? __pfx_get_signal+0x10/0x10 [ 72.619935][ T5078] arch_do_signal_or_restart+0x96/0x860 [ 72.625528][ T5078] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 72.631695][ T5078] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 72.637696][ T5078] ? syscall_exit_to_user_mode+0xa3/0x360 [ 72.643433][ T5078] syscall_exit_to_user_mode+0xc9/0x360 [ 72.648994][ T5078] do_syscall_64+0x10a/0x240 [ 72.653606][ T5078] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 72.659513][ T5078] RIP: 0033:0x7fafc6fe0443 [ 72.663933][ T5078] Code: 00 00 00 00 00 66 90 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 3e 0c 05 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 [ 72.683546][ T5078] RSP: 002b:00007ffd23b2ee88 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6 [ 72.691973][ T5078] RAX: 0000000000000000 RBX: 00000000000013d8 RCX: 00007fafc6fe0443 [ 72.699952][ T5078] RDX: 00007ffd23b2eea0 RSI: 0000000000000000 RDI: 0000000000000000 [ 72.708063][ T5078] RBP: 00000000000f4240 R08: 0000000000000010 R09: 00007fafc6f780b0 [ 72.716073][ T5078] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000011a0b [ 72.724063][ T5078] R13: 00007ffd23b2eedc R14: 00007ffd23b2eef0 R15: 00007ffd23b2eee0 [ 72.732062][ T5078] [ 72.735087][ T5078] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 72.742369][ T5078] CPU: 1 PID: 5078 Comm: syz-executor163 Not tainted 6.8.0-syzkaller-05271-gf99c5f563c17 #0 [ 72.752432][ T5078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 72.764142][ T5078] Call Trace: [ 72.767430][ T5078] [ 72.770366][ T5078] dump_stack_lvl+0x1e7/0x2e0 [ 72.775080][ T5078] ? __pfx_dump_stack_lvl+0x10/0x10 [ 72.780294][ T5078] ? __pfx__printk+0x10/0x10 [ 72.784901][ T5078] ? vscnprintf+0x5d/0x90 [ 72.789277][ T5078] panic+0x349/0x860 [ 72.793188][ T5078] ? __warn+0x172/0x4b0 [ 72.797359][ T5078] ? __pfx_panic+0x10/0x10 [ 72.801801][ T5078] __warn+0x31e/0x4b0 [ 72.805811][ T5078] ? __local_bh_enable_ip+0x1be/0x200 [ 72.811212][ T5078] report_bug+0x2b3/0x500 [ 72.815560][ T5078] ? __local_bh_enable_ip+0x1be/0x200 [ 72.820943][ T5078] handle_bug+0x3e/0x70 [ 72.825115][ T5078] exc_invalid_op+0x1a/0x50 [ 72.829630][ T5078] asm_exc_invalid_op+0x1a/0x20 [ 72.834502][ T5078] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 72.840492][ T5078] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 72.860106][ T5078] RSP: 0018:ffffc90003adf8c0 EFLAGS: 00010046 [ 72.866181][ T5078] RAX: 0000000000000000 RBX: 1ffff9200075bf1c RCX: 0000000000000001 [ 72.874162][ T5078] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa5ea [ 72.882139][ T5078] RBP: ffffc90003adf980 R08: ffff8880212401eb R09: 1ffff1100424803d [ 72.890113][ T5078] R10: dffffc0000000000 R11: ffffed100424803e R12: dffffc0000000000 [ 72.898093][ T5078] R13: ffff88801fe6ae00 R14: ffffc90003adf900 R15: 0000000000000201 [ 72.906085][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.911386][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.916679][ T5078] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 72.922402][ T5078] ? sock_map_delete_elem+0xca/0x140 [ 72.927690][ T5078] ? do_raw_spin_unlock+0x13c/0x8b0 [ 72.932920][ T5078] ? __pfx___cant_migrate+0x10/0x10 [ 72.938134][ T5078] ? sock_map_delete_elem+0x97/0x140 [ 72.943430][ T5078] sock_map_delete_elem+0xca/0x140 [ 72.948554][ T5078] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 72.954282][ T5078] bpf_trace_run3+0x238/0x460 [ 72.958966][ T5078] ? bpf_trace_run3+0x14a/0x460 [ 72.963829][ T5078] ? __pfx_bpf_trace_run3+0x10/0x10 [ 72.969036][ T5078] ? _atomic_dec_and_lock_irqsave+0xa9/0x190 [ 72.975036][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 72.980072][ T5078] ? put_ucounts+0x155/0x280 [ 72.984672][ T5078] ? __pfx_put_ucounts+0x10/0x10 [ 72.989620][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 72.994657][ T5078] __traceiter_kmem_cache_free+0x33/0x50 [ 73.000303][ T5078] ? __dequeue_signal+0x4ac/0x5c0 [ 73.005344][ T5078] kmem_cache_free+0x23c/0x2a0 [ 73.010128][ T5078] __dequeue_signal+0x4ac/0x5c0 [ 73.014997][ T5078] dequeue_signal+0x169/0x5a0 [ 73.019695][ T5078] ? __pfx_dequeue_signal+0x10/0x10 [ 73.024909][ T5078] ? uprobe_deny_signal+0x79/0x230 [ 73.030039][ T5078] get_signal+0x5f7/0x1850 [ 73.034485][ T5078] ? __pfx_get_signal+0x10/0x10 [ 73.039363][ T5078] arch_do_signal_or_restart+0x96/0x860 [ 73.044924][ T5078] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 73.051095][ T5078] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.057098][ T5078] ? syscall_exit_to_user_mode+0xa3/0x360 [ 73.062835][ T5078] syscall_exit_to_user_mode+0xc9/0x360 [ 73.068393][ T5078] do_syscall_64+0x10a/0x240 [ 73.073022][ T5078] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 73.078934][ T5078] RIP: 0033:0x7fafc6fe0443 [ 73.083357][ T5078] Code: 00 00 00 00 00 66 90 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 3e 0c 05 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 [ 73.102968][ T5078] RSP: 002b:00007ffd23b2ee88 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6 [ 73.111390][ T5078] RAX: 0000000000000000 RBX: 00000000000013d8 RCX: 00007fafc6fe0443 [ 73.119369][ T5078] RDX: 00007ffd23b2eea0 RSI: 0000000000000000 RDI: 0000000000000000 [ 73.127344][ T5078] RBP: 00000000000f4240 R08: 0000000000000010 R09: 00007fafc6f780b0 [ 73.135324][ T5078] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000011a0b [ 73.143300][ T5078] R13: 00007ffd23b2eedc R14: 00007ffd23b2eef0 R15: 00007ffd23b2eee0 [ 73.151292][ T5078] [ 73.154609][ T5078] Kernel Offset: disabled [ 73.159019][ T5078] Rebooting in 86400 seconds..