./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4163492177 <...> Warning: Permanently added '10.128.1.84' (ED25519) to the list of known hosts. execve("./syz-executor4163492177", ["./syz-executor4163492177"], 0x7ffe84124db0 /* 10 vars */) = 0 brk(NULL) = 0x55555715b000 brk(0x55555715bd00) = 0x55555715bd00 arch_prctl(ARCH_SET_FS, 0x55555715b380) = 0 set_tid_address(0x55555715b650) = 5070 set_robust_list(0x55555715b660, 24) = 0 rseq(0x55555715bca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4163492177", 4096) = 28 getrandom("\x61\x00\xc4\xcf\xbc\xe9\x1a\xe6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555715bd00 brk(0x55555717cd00) = 0x55555717cd00 brk(0x55555717d000) = 0x55555717d000 mprotect(0x7f9e91e7d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555715b650) = 5071 ./strace-static-x86_64: Process 5071 attached [pid 5071] set_robust_list(0x55555715b660, 24) = 0 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5071] setpgid(0, 0) = 0 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5071] write(3, "1000", 4) = 4 [pid 5071] close(3) = 0 [pid 5071] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 3 [pid 5071] dup(3) = 4 [pid 5071] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x58\x00\x00\x00\x02\x06\x05\x00\x00\x00\x00\x00\xff\xff\xf0\x00\x00\x00\x00\x00\x05\x00\x01\x00\x06\x00\x00\x00\x05\x00\x05\x00\x02\x00\x00\x00\x09\x00\x02\x00\x73\x79\x7a\x32\x00\x00\x00\x00\x05\x00\x04\x00\x00\x00\x00\x00\x0c\x00\x07\x80\x08\x00\x06\x40\x00\x00\x00\x00\x13\x00\x03\x00\x68\x61\x73\x68\x3a\x6e\x65\x74\x2c\x69\x66\x61\x63\x65\x00\x00", iov_len=88}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 88 [pid 5071] exit_group(0) = ? [pid 5071] +++ exited with 0 +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5071, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- restart_syscall(<... resuming interrupted clone ...>) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5072 attached [pid 5072] set_robust_list(0x55555715b660, 24) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5070] <... clone resumed>, child_tidptr=0x55555715b650) = 5072 [pid 5072] <... prctl resumed>) = 0 [pid 5072] setpgid(0, 0) = 0 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1000", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] socket(AF_NETLINK, SOCK_RAW, NETLINK_NETFILTER) = 3 [pid 5072] dup(3) = 4 [ 73.787726][ T5072] ------------[ cut here ]------------ [ 73.793670][ T5072] ODEBUG: free active (active state 0) object: ffff88801f9dd050 object type: timer_list hint: hash_netiface4_gc+0x0/0x570 [ 73.807267][ T5072] WARNING: CPU: 0 PID: 5072 at lib/debugobjects.c:517 debug_print_object+0x17a/0x1f0 [ 73.816856][ T5072] Modules linked in: [ 73.820774][ T5072] CPU: 0 PID: 5072 Comm: syz-executor416 Not tainted 6.8.0-rc2-next-20240202-syzkaller #0 [ 73.830750][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 73.840923][ T5072] RIP: 0010:debug_print_object+0x17a/0x1f0 [ 73.846827][ T5072] Code: e8 eb 8a 4c fd 4c 8b 0b 48 c7 c7 20 84 fe 8b 48 8b 74 24 08 48 89 ea 44 89 e1 4d 89 f8 ff 34 24 e8 fb 6a ad fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 2c b0 db 0a 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 [ 73.866528][ T5072] RSP: 0018:ffffc90002e2ead8 EFLAGS: 00010286 [ 73.872659][ T5072] RAX: 98ed8d549a902000 RBX: ffffffff8bac96c0 RCX: ffff88807e738000 [ 73.880689][ T5072] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 73.888743][ T5072] RBP: ffffffff8bfe85a0 R08: ffffffff8157a7d2 R09: 1ffff920005c5cac [ 73.896763][ T5072] R10: dffffc0000000000 R11: fffff520005c5cad R12: 0000000000000000 [ 73.904787][ T5072] R13: ffffffff8bfe84b8 R14: dffffc0000000000 R15: ffff88801f9dd050 [ 73.912844][ T5072] FS: 000055555715b380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 73.921947][ T5072] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.928549][ T5072] CR2: 0000000020000104 CR3: 000000007aca2000 CR4: 00000000003506f0 [ 73.936589][ T5072] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.944610][ T5072] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.952843][ T5072] Call Trace: [ 73.956164][ T5072] [ 73.959122][ T5072] ? __warn+0x163/0x4b0 [ 73.963352][ T5072] ? debug_print_object+0x17a/0x1f0 [ 73.968566][ T5072] ? report_bug+0x2b3/0x500 [ 73.973148][ T5072] ? debug_print_object+0x17a/0x1f0 [ 73.978427][ T5072] ? handle_bug+0x3e/0x70 [ 73.982833][ T5072] ? exc_invalid_op+0x1a/0x50 [ 73.987650][ T5072] ? asm_exc_invalid_op+0x1a/0x20 [ 73.992762][ T5072] ? __warn_printk+0x292/0x360 [ 73.997573][ T5072] ? debug_print_object+0x17a/0x1f0 [ 74.002856][ T5072] ? __pfx_hash_netiface4_gc+0x10/0x10 [ 74.008350][ T5072] ? __pfx_hash_netiface4_gc+0x10/0x10 [ 74.013878][ T5072] debug_check_no_obj_freed+0x45b/0x580 [ 74.019471][ T5072] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 74.025617][ T5072] ? hash_netiface4_destroy+0x297/0x2c0 [ 74.031231][ T5072] kfree+0x110/0x380 [ 74.035146][ T5072] hash_netiface4_destroy+0x297/0x2c0 [ 74.040532][ T5072] ? hash_netiface6_add+0x5f/0x2a20 [ 74.045845][ T5072] ? hash_netiface4_same_set+0x148/0x220 [ 74.051564][ T5072] ip_set_create+0x13b4/0x1780 [ 74.056359][ T5072] ? ip_set_create+0x45e/0x1780 [ 74.061322][ T5072] ? __pfx_ip_set_create+0x10/0x10 [ 74.066487][ T5072] ? trace_contention_end+0x3c/0x100 [ 74.071890][ T5072] ? nfnetlink_rcv_msg+0x225/0x1190 [ 74.077128][ T5072] nfnetlink_rcv_msg+0xbec/0x1190 [ 74.082255][ T5072] ? nfnetlink_rcv_msg+0x225/0x1190 [ 74.087499][ T5072] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 74.093091][ T5072] netlink_rcv_skb+0x1e3/0x430 [ 74.097982][ T5072] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 74.103511][ T5072] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 74.108837][ T5072] ? apparmor_capable+0x138/0x1b0 [ 74.113960][ T5072] ? bpf_lsm_capable+0x9/0x10 [ 74.118799][ T5072] ? security_capable+0x90/0xb0 [ 74.123768][ T5072] nfnetlink_rcv+0x294/0x2650 [ 74.128508][ T5072] ? __pfx_validate_chain+0x10/0x10 [ 74.133808][ T5072] ? mark_lock+0x9a/0x350 [ 74.138262][ T5072] ? __pfx_validate_chain+0x10/0x10 [ 74.143530][ T5072] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 74.148671][ T5072] ? mark_lock+0x9a/0x350 [ 74.153090][ T5072] ? __lock_acquire+0x1346/0x1fd0 [ 74.158166][ T5072] ? netlink_deliver_tap+0x2e/0x1b0 [ 74.163420][ T5072] ? __pfx_lock_release+0x10/0x10 [ 74.168477][ T5072] ? netlink_deliver_tap+0x2e/0x1b0 [ 74.173755][ T5072] netlink_unicast+0x7ea/0x980 [ 74.179001][ T5072] ? __pfx_netlink_unicast+0x10/0x10 [ 74.184386][ T5072] ? __virt_addr_valid+0x44e/0x520 [ 74.189540][ T5072] ? __phys_addr_symbol+0x2f/0x70 [ 74.194819][ T5072] ? __check_object_size+0x4bc/0xa00 [ 74.200149][ T5072] ? bpf_lsm_netlink_send+0x9/0x10 [ 74.205434][ T5072] netlink_sendmsg+0xa3c/0xd70 [ 74.210236][ T5072] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.215590][ T5072] ? __import_iovec+0x552/0x890 [ 74.220473][ T5072] ? aa_sock_msg_perm+0x91/0x160 [ 74.225507][ T5072] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 74.230837][ T5072] ? security_socket_sendmsg+0x87/0xb0 [ 74.236390][ T5072] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.241769][ T5072] __sock_sendmsg+0x221/0x270 [ 74.246468][ T5072] ____sys_sendmsg+0x525/0x7d0 [ 74.251313][ T5072] ? __pfx_____sys_sendmsg+0x10/0x10 [ 74.256723][ T5072] ? do_raw_spin_lock+0x14f/0x370 [ 74.261829][ T5072] __sys_sendmsg+0x2b0/0x3a0 [ 74.266464][ T5072] ? __pfx___sys_sendmsg+0x10/0x10 [ 74.271650][ T5072] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.278022][ T5072] ? _raw_spin_unlock_irq+0x2e/0x50 [ 74.283275][ T5072] ? ptrace_notify+0x279/0x380 [ 74.288084][ T5072] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.294579][ T5072] ? exc_page_fault+0x585/0x890 [ 74.299469][ T5072] ? syscall_trace_enter+0x5f/0x150 [ 74.304732][ T5072] do_syscall_64+0xfb/0x240 [ 74.309295][ T5072] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 74.315285][ T5072] RIP: 0033:0x7f9e91e0abb9 [ 74.319730][ T5072] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.339414][ T5072] RSP: 002b:00007fff59129bd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.347948][ T5072] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9e91e0abb9 [ 74.355996][ T5072] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 74.364158][ T5072] RBP: 0000000000011f8f R08: 0000000000000006 R09: 0000000000000006 [ 74.372195][ T5072] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff59129bec [ 74.380192][ T5072] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 74.388470][ T5072] [ 74.391547][ T5072] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 74.398829][ T5072] CPU: 0 PID: 5072 Comm: syz-executor416 Not tainted 6.8.0-rc2-next-20240202-syzkaller #0 [ 74.408725][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 74.418785][ T5072] Call Trace: [ 74.422074][ T5072] [ 74.425011][ T5072] dump_stack_lvl+0x1e7/0x2e0 [ 74.429712][ T5072] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.434925][ T5072] ? __pfx__printk+0x10/0x10 [ 74.439557][ T5072] ? _printk+0xd5/0x120 [ 74.443756][ T5072] ? vscnprintf+0x5d/0x90 [ 74.448097][ T5072] panic+0x349/0x860 [ 74.452020][ T5072] ? __warn+0x172/0x4b0 [ 74.456188][ T5072] ? __pfx_panic+0x10/0x10 [ 74.460626][ T5072] ? show_trace_log_lvl+0x4e6/0x520 [ 74.465875][ T5072] __warn+0x31e/0x4b0 [ 74.469877][ T5072] ? debug_print_object+0x17a/0x1f0 [ 74.475090][ T5072] report_bug+0x2b3/0x500 [ 74.479437][ T5072] ? debug_print_object+0x17a/0x1f0 [ 74.484651][ T5072] handle_bug+0x3e/0x70 [ 74.488822][ T5072] exc_invalid_op+0x1a/0x50 [ 74.493334][ T5072] asm_exc_invalid_op+0x1a/0x20 [ 74.498193][ T5072] RIP: 0010:debug_print_object+0x17a/0x1f0 [ 74.504015][ T5072] Code: e8 eb 8a 4c fd 4c 8b 0b 48 c7 c7 20 84 fe 8b 48 8b 74 24 08 48 89 ea 44 89 e1 4d 89 f8 ff 34 24 e8 fb 6a ad fc 48 83 c4 08 90 <0f> 0b 90 90 ff 05 2c b0 db 0a 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 [ 74.523716][ T5072] RSP: 0018:ffffc90002e2ead8 EFLAGS: 00010286 [ 74.529796][ T5072] RAX: 98ed8d549a902000 RBX: ffffffff8bac96c0 RCX: ffff88807e738000 [ 74.537774][ T5072] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 74.545931][ T5072] RBP: ffffffff8bfe85a0 R08: ffffffff8157a7d2 R09: 1ffff920005c5cac [ 74.553911][ T5072] R10: dffffc0000000000 R11: fffff520005c5cad R12: 0000000000000000 [ 74.561976][ T5072] R13: ffffffff8bfe84b8 R14: dffffc0000000000 R15: ffff88801f9dd050 [ 74.569959][ T5072] ? __warn_printk+0x292/0x360 [ 74.574750][ T5072] ? __pfx_hash_netiface4_gc+0x10/0x10 [ 74.580226][ T5072] ? __pfx_hash_netiface4_gc+0x10/0x10 [ 74.585705][ T5072] debug_check_no_obj_freed+0x45b/0x580 [ 74.591277][ T5072] ? __pfx_debug_check_no_obj_freed+0x10/0x10 [ 74.597370][ T5072] ? hash_netiface4_destroy+0x297/0x2c0 [ 74.602940][ T5072] kfree+0x110/0x380 [ 74.606853][ T5072] hash_netiface4_destroy+0x297/0x2c0 [ 74.612241][ T5072] ? hash_netiface6_add+0x5f/0x2a20 [ 74.617451][ T5072] ? hash_netiface4_same_set+0x148/0x220 [ 74.623097][ T5072] ip_set_create+0x13b4/0x1780 [ 74.627878][ T5072] ? ip_set_create+0x45e/0x1780 [ 74.632759][ T5072] ? __pfx_ip_set_create+0x10/0x10 [ 74.637888][ T5072] ? trace_contention_end+0x3c/0x100 [ 74.643211][ T5072] ? nfnetlink_rcv_msg+0x225/0x1190 [ 74.648504][ T5072] nfnetlink_rcv_msg+0xbec/0x1190 [ 74.653540][ T5072] ? nfnetlink_rcv_msg+0x225/0x1190 [ 74.658766][ T5072] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 74.664287][ T5072] netlink_rcv_skb+0x1e3/0x430 [ 74.669061][ T5072] ? __pfx_nfnetlink_rcv_msg+0x10/0x10 [ 74.674529][ T5072] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 74.679921][ T5072] ? apparmor_capable+0x138/0x1b0 [ 74.684963][ T5072] ? bpf_lsm_capable+0x9/0x10 [ 74.689653][ T5072] ? security_capable+0x90/0xb0 [ 74.694528][ T5072] nfnetlink_rcv+0x294/0x2650 [ 74.699212][ T5072] ? __pfx_validate_chain+0x10/0x10 [ 74.704436][ T5072] ? mark_lock+0x9a/0x350 [ 74.708776][ T5072] ? __pfx_validate_chain+0x10/0x10 [ 74.713993][ T5072] ? __pfx_nfnetlink_rcv+0x10/0x10 [ 74.719117][ T5072] ? mark_lock+0x9a/0x350 [ 74.723462][ T5072] ? __lock_acquire+0x1346/0x1fd0 [ 74.728523][ T5072] ? netlink_deliver_tap+0x2e/0x1b0 [ 74.733732][ T5072] ? __pfx_lock_release+0x10/0x10 [ 74.738779][ T5072] ? netlink_deliver_tap+0x2e/0x1b0 [ 74.744002][ T5072] netlink_unicast+0x7ea/0x980 [ 74.748790][ T5072] ? __pfx_netlink_unicast+0x10/0x10 [ 74.754087][ T5072] ? __virt_addr_valid+0x44e/0x520 [ 74.759216][ T5072] ? __phys_addr_symbol+0x2f/0x70 [ 74.764346][ T5072] ? __check_object_size+0x4bc/0xa00 [ 74.769644][ T5072] ? bpf_lsm_netlink_send+0x9/0x10 [ 74.774781][ T5072] netlink_sendmsg+0xa3c/0xd70 [ 74.779577][ T5072] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.784871][ T5072] ? __import_iovec+0x552/0x890 [ 74.789734][ T5072] ? aa_sock_msg_perm+0x91/0x160 [ 74.794690][ T5072] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 74.799980][ T5072] ? security_socket_sendmsg+0x87/0xb0 [ 74.805449][ T5072] ? __pfx_netlink_sendmsg+0x10/0x10 [ 74.810749][ T5072] __sock_sendmsg+0x221/0x270 [ 74.815465][ T5072] ____sys_sendmsg+0x525/0x7d0 [ 74.820438][ T5072] ? __pfx_____sys_sendmsg+0x10/0x10 [ 74.825754][ T5072] ? do_raw_spin_lock+0x14f/0x370 [ 74.830815][ T5072] __sys_sendmsg+0x2b0/0x3a0 [ 74.835431][ T5072] ? __pfx___sys_sendmsg+0x10/0x10 [ 74.840566][ T5072] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.846924][ T5072] ? _raw_spin_unlock_irq+0x2e/0x50 [ 74.852137][ T5072] ? ptrace_notify+0x279/0x380 [ 74.856939][ T5072] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.863285][ T5072] ? exc_page_fault+0x585/0x890 [ 74.868155][ T5072] ? syscall_trace_enter+0x5f/0x150 [ 74.873364][ T5072] do_syscall_64+0xfb/0x240 [ 74.877909][ T5072] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 74.883837][ T5072] RIP: 0033:0x7f9e91e0abb9 [ 74.888273][ T5072] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 74.909459][ T5072] RSP: 002b:00007fff59129bd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 74.917893][ T5072] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9e91e0abb9 [ 74.925868][ T5072] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004 [ 74.933858][ T5072] RBP: 0000000000011f8f R08: 0000000000000006 R09: 0000000000000006 [ 74.941836][ T5072] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff59129bec [ 74.949815][ T5072] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 74.957805][ T5072] [ 74.961069][ T5072] Kernel Offset: disabled [ 74.965489][ T5072] Rebooting in 86400 seconds..