./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4126290454 <...> Warning: Permanently added '10.128.1.7' (ED25519) to the list of known hosts. execve("./syz-executor4126290454", ["./syz-executor4126290454"], 0x7ffe54521270 /* 10 vars */) = 0 brk(NULL) = 0x555567917000 brk(0x555567917d40) = 0x555567917d40 arch_prctl(ARCH_SET_FS, 0x5555679173c0) = 0 set_tid_address(0x555567917690) = 5067 set_robust_list(0x5555679176a0, 24) = 0 rseq(0x555567917ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4126290454", 4096) = 28 getrandom("\x5b\xdc\x1e\x6b\xd1\xfb\x34\x46", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555567917d40 brk(0x555567938d40) = 0x555567938d40 brk(0x555567939000) = 0x555567939000 mprotect(0x7f8054907000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555567917690) = 5068 ./strace-static-x86_64: Process 5068 attached [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5068] set_robust_list(0x5555679176a0, 24) = 0 ./strace-static-x86_64: Process 5069 attached [pid 5068] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5067] <... clone resumed>, child_tidptr=0x555567917690) = 5069 [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5069] set_robust_list(0x5555679176a0, 24./strace-static-x86_64: Process 5070 attached ) = 0 [pid 5070] set_robust_list(0x5555679176a0, 24 [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5068] <... clone resumed>, child_tidptr=0x555567917690) = 5070 [pid 5070] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5071 attached [pid 5070] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5072 attached [pid 5067] <... clone resumed>, child_tidptr=0x555567917690) = 5071 [pid 5071] set_robust_list(0x5555679176a0, 24 [pid 5070] <... prctl resumed>) = 0 [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5072] set_robust_list(0x5555679176a0, 24 [pid 5071] <... set_robust_list resumed>) = 0 [pid 5070] setpgid(0, 0 [pid 5069] <... clone resumed>, child_tidptr=0x555567917690) = 5072 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5071] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5070] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5073 attached [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5067] <... clone resumed>, child_tidptr=0x555567917690) = 5073 [pid 5072] <... prctl resumed>) = 0 [pid 5072] setpgid(0, 0) = 0 [pid 5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5073] set_robust_list(0x5555679176a0, 24 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5074 attached [pid 5073] <... set_robust_list resumed>) = 0 [pid 5072] <... openat resumed>) = 3 [pid 5074] set_robust_list(0x5555679176a0, 24) = 0 [pid 5072] write(3, "1000", 4 [pid 5074] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5072] <... write resumed>) = 4 [pid 5072] close(3 [pid 5074] <... prctl resumed>) = 0 [pid 5072] <... close resumed>) = 0 [pid 5074] setpgid(0, 0 [pid 5072] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000) = 0 ./strace-static-x86_64: Process 5075 attached [pid 5074] <... setpgid resumed>) = 0 [pid 5073] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] <... clone resumed>, child_tidptr=0x555567917690) = 5074 [pid 5070] <... openat resumed>) = 3 [pid 5074] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5072] rt_sigaction(SIGRT_1, {sa_handler=0x7f80548a9810, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f805489ae90}, [pid 5070] write(3, "1000", 4 [pid 5072] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5067] <... clone resumed>, child_tidptr=0x555567917690) = 5075 [pid 5075] set_robust_list(0x5555679176a0, 24 [pid 5074] <... openat resumed>) = 3 [pid 5072] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5070] <... write resumed>) = 4 [pid 5072] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5072] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5070] close(3 [pid 5074] write(3, "1000", 4 [pid 5072] <... mmap resumed>) = 0x7f805481e000 [pid 5075] <... set_robust_list resumed>) = 0 [pid 5070] <... close resumed>) = 0 [pid 5074] <... write resumed>) = 4 [pid 5072] mprotect(0x7f805481f000, 131072, PROT_READ|PROT_WRITE [pid 5070] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5074] close(3 [pid 5072] <... mprotect resumed>) = 0 [pid 5070] <... futex resumed>) = 0 [pid 5073] <... clone resumed>, child_tidptr=0x555567917690) = 5076 ./strace-static-x86_64: Process 5076 attached [pid 5074] <... close resumed>) = 0 [pid 5072] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5070] rt_sigaction(SIGRT_1, {sa_handler=0x7f80548a9810, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f805489ae90}, [pid 5076] set_robust_list(0x5555679176a0, 24 [pid 5074] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5072] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5070] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5076] <... set_robust_list resumed>) = 0 [pid 5074] <... futex resumed>) = 0 [pid 5072] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f805483e990, parent_tid=0x7f805483e990, exit_signal=0, stack=0x7f805481e000, stack_size=0x20300, tls=0x7f805483e6c0} [pid 5070] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5076] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5074] rt_sigaction(SIGRT_1, {sa_handler=0x7f80548a9810, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f805489ae90}, ./strace-static-x86_64: Process 5077 attached [pid 5076] <... prctl resumed>) = 0 [pid 5074] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5070] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5077] rseq(0x7f805483efe0, 0x20, 0, 0x53053053 [pid 5076] setpgid(0, 0 [pid 5070] <... mmap resumed>) = 0x7f805481e000 [pid 5077] <... rseq resumed>) = 0 [pid 5076] <... setpgid resumed>) = 0 [pid 5074] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5072] <... clone3 resumed> => {parent_tid=[5077]}, 88) = 5077 [pid 5070] mprotect(0x7f805481f000, 131072, PROT_READ|PROT_WRITE./strace-static-x86_64: Process 5078 attached [pid 5077] set_robust_list(0x7f805483e9a0, 24 [pid 5076] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5072] rt_sigprocmask(SIG_SETMASK, [], [pid 5070] <... mprotect resumed>) = 0 [pid 5078] set_robust_list(0x5555679176a0, 24 [pid 5077] <... set_robust_list resumed>) = 0 [pid 5076] <... openat resumed>) = 3 [pid 5075] <... clone resumed>, child_tidptr=0x555567917690) = 5078 [pid 5074] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5072] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5078] <... set_robust_list resumed>) = 0 [pid 5077] rt_sigprocmask(SIG_SETMASK, [], [pid 5074] <... mmap resumed>) = 0x7f805481e000 [pid 5072] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5077] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5076] write(3, "1000", 4 [pid 5074] mprotect(0x7f805481f000, 131072, PROT_READ|PROT_WRITE [pid 5072] <... futex resumed>) = 0 [pid 5070] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5078] <... prctl resumed>) = 0 [pid 5077] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5076] <... write resumed>) = 4 [pid 5074] <... mprotect resumed>) = 0 [pid 5072] futex(0x7f805490d32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5078] setpgid(0, 0 [pid 5070] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f805483e990, parent_tid=0x7f805483e990, exit_signal=0, stack=0x7f805481e000, stack_size=0x20300, tls=0x7f805483e6c0} [pid 5078] <... setpgid resumed>) = 0 [pid 5074] rt_sigprocmask(SIG_BLOCK, ~[], ./strace-static-x86_64: Process 5079 attached [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5077] <... bpf resumed>) = 3 [pid 5076] close(3 [pid 5074] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5079] rseq(0x7f805483efe0, 0x20, 0, 0x53053053 [pid 5077] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5074] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f805483e990, parent_tid=0x7f805483e990, exit_signal=0, stack=0x7f805481e000, stack_size=0x20300, tls=0x7f805483e6c0}./strace-static-x86_64: Process 5080 attached [pid 5079] <... rseq resumed>) = 0 [pid 5078] <... openat resumed>) = 3 [pid 5077] <... futex resumed>) = 1 [pid 5076] <... close resumed>) = 0 [pid 5072] <... futex resumed>) = 0 [pid 5070] <... clone3 resumed> => {parent_tid=[5079]}, 88) = 5079 [pid 5080] rseq(0x7f805483efe0, 0x20, 0, 0x53053053 [pid 5079] set_robust_list(0x7f805483e9a0, 24 [pid 5078] write(3, "1000", 4 [pid 5077] futex(0x7f805490d328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5080] <... rseq resumed>) = 0 [pid 5079] <... set_robust_list resumed>) = 0 [pid 5078] <... write resumed>) = 4 [pid 5077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5076] <... futex resumed>) = 0 [pid 5074] <... clone3 resumed> => {parent_tid=[5080]}, 88) = 5080 [pid 5072] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] rt_sigprocmask(SIG_SETMASK, [], [pid 5080] set_robust_list(0x7f805483e9a0, 24 [pid 5079] rt_sigprocmask(SIG_SETMASK, [], [pid 5078] close(3 [pid 5077] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5076] rt_sigaction(SIGRT_1, {sa_handler=0x7f80548a9810, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f805489ae90}, [pid 5074] rt_sigprocmask(SIG_SETMASK, [], [pid 5072] <... futex resumed>) = 0 [pid 5070] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5079] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5078] <... close resumed>) = 0 [pid 5076] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5074] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5072] futex(0x7f805490d32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5070] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5080] rt_sigprocmask(SIG_SETMASK, [], [pid 5079] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5078] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5076] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5074] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5070] <... futex resumed>) = 0 [pid 5080] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5077] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5076] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5074] <... futex resumed>) = 0 [pid 5070] futex(0x7f805490d32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5078] <... futex resumed>) = 0 [pid 5077] <... futex resumed>) = 1 [pid 5076] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5074] futex(0x7f805490d32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5072] <... futex resumed>) = 0 [pid 5080] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5079] <... bpf resumed>) = 3 [pid 5078] rt_sigaction(SIGRT_1, {sa_handler=0x7f80548a9810, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f805489ae90}, [pid 5077] futex(0x7f805490d328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] <... mmap resumed>) = 0x7f805481e000 [pid 5072] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5076] mprotect(0x7f805481f000, 131072, PROT_READ|PROT_WRITE [pid 5072] <... futex resumed>) = 0 [pid 5080] <... bpf resumed>) = 3 [pid 5079] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5078] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5077] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5076] <... mprotect resumed>) = 0 [pid 5072] futex(0x7f805490d32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5080] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5079] <... futex resumed>) = 1 [pid 5078] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5070] <... futex resumed>) = 0 [pid 5080] <... futex resumed>) = 1 [pid 5079] futex(0x7f805490d328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5078] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5080] futex(0x7f805490d328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5078] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f805481e000 [pid 5077] <... bpf resumed>) = 4 [pid 5076] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5074] <... futex resumed>) = 0 [pid 5070] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5077] futex(0x7f805490d32c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5072] <... futex resumed>) = 0 [pid 5078] mprotect(0x7f805481f000, 131072, PROT_READ|PROT_WRITE [pid 5077] futex(0x7f805490d328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5076] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5074] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5072] futex(0x7f805490d328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5079] <... futex resumed>) = 0 [pid 5070] <... futex resumed>) = 1 [pid 5080] <... futex resumed>) = 0 [pid 5079] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5078] <... mprotect resumed>) = 0 [pid 5077] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5076] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f805483e990, parent_tid=0x7f805483e990, exit_signal=0, stack=0x7f805481e000, stack_size=0x20300, tls=0x7f805483e6c0} [pid 5074] <... futex resumed>) = 1 [pid 5072] <... futex resumed>) = 0 [ 74.006633][ T5077] ------------[ cut here ]------------ [ 74.012363][ T5077] WARNING: CPU: 1 PID: 5077 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 74.021858][ T5077] Modules linked in: [ 74.025761][ T5077] CPU: 1 PID: 5077 Comm: syz-executor412 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 74.035914][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 74.045977][ T5077] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 74.051971][ T5077] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 74.071596][ T5077] RSP: 0018:ffffc90003b37900 EFLAGS: 00010046 [ 74.077666][ T5077] RAX: 0000000000000000 RBX: 1ffff92000766f24 RCX: 0000000000000001 [ 74.085636][ T5077] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 74.093710][ T5077] RBP: ffffc90003b379c0 R08: ffff8880230ca9eb R09: 1ffff1100461953d [ 74.101695][ T5077] R10: dffffc0000000000 R11: ffffed100461953e R12: dffffc0000000000 [ 74.109685][ T5077] R13: ffff88802e090080 R14: ffffc90003b37940 R15: 0000000000000201 [ 74.117655][ T5077] FS: 00007f805483e6c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 74.126577][ T5077] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.133152][ T5077] CR2: 00007f805483f080 CR3: 0000000079d86000 CR4: 00000000003506f0 [ 74.141121][ T5077] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.149087][ T5077] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.157072][ T5077] Call Trace: [ 74.160887][ T5077] [ 74.163848][ T5077] ? __warn+0x163/0x4b0 [ 74.168018][ T5077] ? __local_bh_enable_ip+0x1be/0x200 [ 74.173401][ T5077] ? report_bug+0x2b3/0x500 [ 74.177929][ T5077] ? __local_bh_enable_ip+0x1be/0x200 [ 74.183328][ T5077] ? handle_bug+0x3e/0x70 [ 74.187660][ T5077] ? exc_invalid_op+0x1a/0x50 [ 74.192358][ T5077] ? asm_exc_invalid_op+0x1a/0x20 [ 74.197434][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.202753][ T5077] ? __local_bh_enable_ip+0x1be/0x200 [ 74.208138][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.213430][ T5077] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 74.219261][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.224573][ T5077] ? do_raw_spin_unlock+0x13c/0x8b0 [ 74.229785][ T5077] ? __pfx___cant_migrate+0x10/0x10 [ 74.235008][ T5077] ? sock_map_delete_elem+0x97/0x140 [ 74.240300][ T5077] sock_map_delete_elem+0xca/0x140 [ 74.245438][ T5077] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 74.250909][ T5077] ? bpf_trace_run5+0x197/0x4a0 [ 74.255762][ T5077] bpf_trace_run5+0x282/0x4a0 [ 74.260453][ T5077] ? __pfx_bpf_trace_run5+0x10/0x10 [ 74.265652][ T5077] ? prepare_signal+0x99a/0xc80 [ 74.270514][ T5077] ? __pfx_prepare_signal+0x10/0x10 [ 74.275720][ T5077] ? __bpf_trace_signal_generate+0x24/0x50 [ 74.281528][ T5077] trace_signal_generate+0x194/0x200 [ 74.286819][ T5077] __send_signal_locked+0xb44/0xdc0 [ 74.292020][ T5077] ? send_signal_locked+0x1cb/0x920 [ 74.297225][ T5077] do_notify_parent_cldstop+0x97e/0xb50 [ 74.302780][ T5077] ? __pfx_do_notify_parent_cldstop+0x10/0x10 [ 74.308867][ T5077] ptrace_stop+0x465/0x940 [ 74.313295][ T5077] ptrace_notify+0x255/0x380 [ 74.317892][ T5077] ? __pfx_ptrace_notify+0x10/0x10 [ 74.323015][ T5077] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.329363][ T5077] syscall_exit_work+0xbd/0x170 [ 74.334236][ T5077] syscall_exit_to_user_mode+0x273/0x360 [ 74.339983][ T5077] do_syscall_64+0x10a/0x240 [ 74.344583][ T5077] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 74.350486][ T5077] RIP: 0033:0x7f80548838d9 [ 74.354902][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 74.374529][ T5077] RSP: 002b:00007f805483e238 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 74.382959][ T5077] RAX: 0000000000000005 RBX: 00007f805490d328 RCX: 00007f80548838d9 [ 74.390932][ T5077] RDX: 0000000000000010 RSI: 00000000200002c0 RDI: 0000000000000011 [ 74.398897][ T5077] RBP: 00007f805490d320 R08: 00007f805483e6c0 R09: 00007f805483e6c0 [ 74.406881][ T5077] R10: 00007f805483e6c0 R11: 0000000000000246 R12: 656c6c616b7a7973 [ 74.415037][ T5077] R13: 0000000000000000 R14: 00007ffc89caa680 R15: 00007ffc89caa768 [ 74.423037][ T5077] [ 74.426058][ T5077] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 74.433341][ T5077] CPU: 1 PID: 5077 Comm: syz-executor412 Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 74.443414][ T5077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 74.453468][ T5077] Call Trace: [ 74.456745][ T5077] [ 74.459674][ T5077] dump_stack_lvl+0x1e7/0x2e0 [ 74.464360][ T5077] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.469562][ T5077] ? __pfx__printk+0x10/0x10 [ 74.474159][ T5077] ? vscnprintf+0x5d/0x90 [ 74.478492][ T5077] panic+0x349/0x860 [ 74.482391][ T5077] ? __warn+0x172/0x4b0 [ 74.486554][ T5077] ? __pfx_panic+0x10/0x10 [ 74.490987][ T5077] __warn+0x31e/0x4b0 [ 74.494970][ T5077] ? __local_bh_enable_ip+0x1be/0x200 [ 74.500345][ T5077] report_bug+0x2b3/0x500 [ 74.504681][ T5077] ? __local_bh_enable_ip+0x1be/0x200 [ 74.510055][ T5077] handle_bug+0x3e/0x70 [ 74.514214][ T5077] exc_invalid_op+0x1a/0x50 [ 74.518725][ T5077] asm_exc_invalid_op+0x1a/0x20 [ 74.523601][ T5077] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 74.529604][ T5077] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 74.549245][ T5077] RSP: 0018:ffffc90003b37900 EFLAGS: 00010046 [ 74.555323][ T5077] RAX: 0000000000000000 RBX: 1ffff92000766f24 RCX: 0000000000000001 [ 74.563300][ T5077] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 74.571292][ T5077] RBP: ffffc90003b379c0 R08: ffff8880230ca9eb R09: 1ffff1100461953d [ 74.579280][ T5077] R10: dffffc0000000000 R11: ffffed100461953e R12: dffffc0000000000 [ 74.587252][ T5077] R13: ffff88802e090080 R14: ffffc90003b37940 R15: 0000000000000201 [ 74.595237][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.600540][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.605824][ T5077] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 74.611542][ T5077] ? sock_map_delete_elem+0xca/0x140 [ 74.616827][ T5077] ? do_raw_spin_unlock+0x13c/0x8b0 [ 74.622032][ T5077] ? __pfx___cant_migrate+0x10/0x10 [ 74.627231][ T5077] ? sock_map_delete_elem+0x97/0x140 [ 74.632521][ T5077] sock_map_delete_elem+0xca/0x140 [ 74.637635][ T5077] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 74.643092][ T5077] ? bpf_trace_run5+0x197/0x4a0 [ 74.647941][ T5077] bpf_trace_run5+0x282/0x4a0 [ 74.652621][ T5077] ? __pfx_bpf_trace_run5+0x10/0x10 [ 74.657817][ T5077] ? prepare_signal+0x99a/0xc80 [ 74.662693][ T5077] ? __pfx_prepare_signal+0x10/0x10 [ 74.667913][ T5077] ? __bpf_trace_signal_generate+0x24/0x50 [ 74.673723][ T5077] trace_signal_generate+0x194/0x200 [ 74.679017][ T5077] __send_signal_locked+0xb44/0xdc0 [ 74.684218][ T5077] ? send_signal_locked+0x1cb/0x920 [ 74.689425][ T5077] do_notify_parent_cldstop+0x97e/0xb50 [ 74.694999][ T5077] ? __pfx_do_notify_parent_cldstop+0x10/0x10 [ 74.701093][ T5077] ptrace_stop+0x465/0x940 [ 74.705522][ T5077] ptrace_notify+0x255/0x380 [ 74.710139][ T5077] ? __pfx_ptrace_notify+0x10/0x10 [ 74.715266][ T5077] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.721595][ T5077] syscall_exit_work+0xbd/0x170 [ 74.726451][ T5077] syscall_exit_to_user_mode+0x273/0x360 [ 74.732087][ T5077] do_syscall_64+0x10a/0x240 [ 74.736686][ T5077] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 74.742584][ T5077] RIP: 0033:0x7f80548838d9 [ 74.746996][ T5077] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 74.766599][ T5077] RSP: 002b:00007f805483e238 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 74.775031][ T5077] RAX: 0000000000000005 RBX: 00007f805490d328 RCX: 00007f80548838d9 [ 74.783011][ T5077] RDX: 0000000000000010 RSI: 00000000200002c0 RDI: 0000000000000011 [ 74.790987][ T5077] RBP: 00007f805490d320 R08: 00007f805483e6c0 R09: 00007f805483e6c0 [ 74.798955][ T5077] R10: 00007f805483e6c0 R11: 0000000000000246 R12: 656c6c616b7a7973 [ 74.806926][ T5077] R13: 0000000000000000 R14: 00007ffc89caa680 R15: 00007ffc89caa768 [ 74.814911][ T5077] [ 75.932159][ T5077] Shutting down cpus with NMI [ 75.937175][ T5077] Kernel Offset: disabled [ 75.941615][ T5077] Rebooting in 86400 seconds..