./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4231573891
<...>
Warning: Permanently added '10.128.1.189' (ECDSA) to the list of known hosts.
execve("./syz-executor4231573891", ["./syz-executor4231573891"], 0x7ffecf230880 /* 10 vars */) = 0
brk(NULL) = 0x555555cf4000
brk(0x555555cf4c40) = 0x555555cf4c40
arch_prctl(ARCH_SET_FS, 0x555555cf4300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor4231573891", 4096) = 28
brk(0x555555d15c40) = 0x555555d15c40
brk(0x555555d16000) = 0x555555d16000
mprotect(0x7faa46260000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/vim2m", O_RDWR) = 3
ioctl(3, VIDIOC_REQBUFS, {type=V4L2_BUF_TYPE_VIDEO_OUTPUT, memory=V4L2_MEMORY_USERPTR, count=4294967264 => 27}) = 0
syzkaller login: [ 63.607152][ T4990] ------------[ cut here ]------------
[ 63.612857][ T4990] get_vaddr_frames() cannot follow VM_IO mapping
[ 63.613117][ T4990] WARNING: CPU: 0 PID: 4990 at drivers/media/common/videobuf2/frame_vector.c:63 get_vaddr_frames+0x1fb/0x240
[ 63.631039][ T4990] Modules linked in:
[ 63.634999][ T4990] CPU: 0 PID: 4990 Comm: syz-executor423 Not tainted 6.3.0-syzkaller-13466-gfc4354c6e5c2 #0
[ 63.645281][ T4990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 63.655377][ T4990] RIP: 0010:get_vaddr_frames+0x1fb/0x240
[ 63.661013][ T4990] Code: 8c 11 ff ff ff 4c 89 ef e8 62 7f b9 fa e9 04 ff ff ff e8 f8 b0 61 fa c6 05 59 b6 17 07 01 48 c7 c7 c0 c3 9e 8b e8 b5 38 29 fa <0f> 0b e9 4b ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 1f ff
[ 63.680654][ T4990] RSP: 0018:ffffc90003b1f5c8 EFLAGS: 00010246
[ 63.686817][ T4990] RAX: 6cf1453083cba500 RBX: 1ffff11002a5c600 RCX: ffff88807c950000
[ 63.694855][ T4990] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 63.702918][ T4990] RBP: dffffc0000000000 R08: ffffffff8152f1a2 R09: ffffed1017305163
[ 63.710923][ T4990] R10: 0000000000000000 R11: dffffc0000000001 R12: 00000000fffffff2
[ 63.718941][ T4990] R13: ffff8880152e3004 R14: 0000000000000000 R15: 0000000000000000
[ 63.726950][ T4990] FS: 0000555555cf4300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 63.735916][ T4990] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 63.742533][ T4990] CR2: 00000000005fdeb8 CR3: 0000000025237000 CR4: 00000000003506f0
[ 63.750523][ T4990] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 63.758598][ T4990] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 63.766605][ T4990] Call Trace:
[ 63.769876][ T4990] <TASK>
[ 63.772848][ T4990] vb2_create_framevec+0x55/0xc0
[ 63.777845][ T4990] vb2_vmalloc_get_userptr+0x100/0x410
[ 63.783347][ T4990] ? __fill_vb2_buffer+0x455/0x4b0
[ 63.788474][ T4990] ? vb2_vmalloc_get_dmabuf+0x250/0x250
[ 63.794071][ T4990] __buf_prepare+0xc26/0x4460
[ 63.798767][ T4990] ? is_bpf_text_address+0x253/0x270
[ 63.804117][ T4990] ? vb2_core_prepare_buf+0x310/0x310
[ 63.809505][ T4990] ? mark_lock+0x9a/0x340
[ 63.813904][ T4990] ? validate_chain+0x119/0x58e0
[ 63.818868][ T4990] ? __lock_acquire+0x1295/0x2000
[ 63.823976][ T4990] ? read_lock_is_recursive+0x20/0x20
[ 63.829394][ T4990] ? vb2_queue_or_prepare_buf+0x5be/0xe20
[ 63.835188][ T4990] vb2_core_prepare_buf+0xe6/0x310
[ 63.840314][ T4990] v4l2_m2m_ioctl_prepare_buf+0x19b/0x470
[ 63.846074][ T4990] ? v4l_prepare_buf+0x6c/0xc0
[ 63.850853][ T4990] __video_do_ioctl+0xa3e/0xe40
[ 63.855759][ T4990] ? video_ioctl2+0x30/0x30
[ 63.860276][ T4990] ? smack_log+0x123/0x540
[ 63.864768][ T4990] ? __might_fault+0xba/0x120
[ 63.869466][ T4990] video_usercopy+0x894/0x1170
[ 63.874283][ T4990] ? video_ioctl2+0x30/0x30
[ 63.878799][ T4990] ? v4l_printk_ioctl+0x160/0x160
[ 63.883954][ T4990] ? smack_file_ioctl+0x2ee/0x390
[ 63.888995][ T4990] ? do_notify_parent+0xf50/0xf50
[ 63.894080][ T4990] ? print_irqtrace_events+0x220/0x220
[ 63.899566][ T4990] v4l2_ioctl+0x185/0x1d0
[ 63.903953][ T4990] ? v4l2_poll+0x2b0/0x2b0
[ 63.908387][ T4990] __se_sys_ioctl+0xf1/0x160
[ 63.913025][ T4990] do_syscall_64+0x41/0xc0
[ 63.917470][ T4990] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 63.923421][ T4990] RIP: 0033:0x7faa461f3c49
[ 63.927846][ T4990] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 63.947544][ T4990] RSP: 002b:00007ffd27a3dbf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 63.956019][ T4990] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007faa461f3c49
[ 63.964070][ T4990] RDX: 0000000020000300 RSI: 00000000c058565d RDI: 0000000000000003
[ 63.972084][ T4990] RBP: 00007faa461b7df0 R08: 0000000000000000 R09: 0000000000000000
[ 63.980186][ T4990] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faa461b7e80
[ 63.988228][ T4990] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 63.996278][ T4990] </TASK>
[ 63.999332][ T4990] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 64.006618][ T4990] CPU: 0 PID: 4990 Comm: syz-executor423 Not tainted 6.3.0-syzkaller-13466-gfc4354c6e5c2 #0
[ 64.016690][ T4990] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023
[ 64.026760][ T4990] Call Trace:
[ 64.030028][ T4990] <TASK>
[ 64.032948][ T4990] dump_stack_lvl+0x1e7/0x2d0
[ 64.037622][ T4990] ? nf_tcp_handle_invalid+0x650/0x650
[ 64.043070][ T4990] ? panic+0x770/0x770
[ 64.047146][ T4990] ? vscnprintf+0x5d/0x80
[ 64.051463][ T4990] panic+0x30f/0x770
[ 64.055434][ T4990] ? __warn+0x171/0x4a0
[ 64.059583][ T4990] ? __memcpy_flushcache+0x2b0/0x2b0
[ 64.064866][ T4990] __warn+0x314/0x4a0
[ 64.068843][ T4990] ? get_vaddr_frames+0x1fb/0x240
[ 64.073893][ T4990] report_bug+0x2b3/0x500
[ 64.078220][ T4990] ? get_vaddr_frames+0x1fb/0x240
[ 64.083246][ T4990] handle_bug+0x3d/0x70
[ 64.087402][ T4990] exc_invalid_op+0x1a/0x50
[ 64.091917][ T4990] asm_exc_invalid_op+0x1a/0x20
[ 64.096764][ T4990] RIP: 0010:get_vaddr_frames+0x1fb/0x240
[ 64.102411][ T4990] Code: 8c 11 ff ff ff 4c 89 ef e8 62 7f b9 fa e9 04 ff ff ff e8 f8 b0 61 fa c6 05 59 b6 17 07 01 48 c7 c7 c0 c3 9e 8b e8 b5 38 29 fa <0f> 0b e9 4b ff ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c 1f ff
[ 64.122010][ T4990] RSP: 0018:ffffc90003b1f5c8 EFLAGS: 00010246
[ 64.128070][ T4990] RAX: 6cf1453083cba500 RBX: 1ffff11002a5c600 RCX: ffff88807c950000
[ 64.136034][ T4990] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 64.143996][ T4990] RBP: dffffc0000000000 R08: ffffffff8152f1a2 R09: ffffed1017305163
[ 64.151958][ T4990] R10: 0000000000000000 R11: dffffc0000000001 R12: 00000000fffffff2
[ 64.159941][ T4990] R13: ffff8880152e3004 R14: 0000000000000000 R15: 0000000000000000
[ 64.167912][ T4990] ? __warn_printk+0x292/0x360
[ 64.172682][ T4990] ? get_vaddr_frames+0x1fb/0x240
[ 64.177705][ T4990] vb2_create_framevec+0x55/0xc0
[ 64.182635][ T4990] vb2_vmalloc_get_userptr+0x100/0x410
[ 64.188086][ T4990] ? __fill_vb2_buffer+0x455/0x4b0
[ 64.193203][ T4990] ? vb2_vmalloc_get_dmabuf+0x250/0x250
[ 64.198753][ T4990] __buf_prepare+0xc26/0x4460
[ 64.203433][ T4990] ? is_bpf_text_address+0x253/0x270
[ 64.208733][ T4990] ? vb2_core_prepare_buf+0x310/0x310
[ 64.214104][ T4990] ? mark_lock+0x9a/0x340
[ 64.218432][ T4990] ? validate_chain+0x119/0x58e0
[ 64.223369][ T4990] ? __lock_acquire+0x1295/0x2000
[ 64.228425][ T4990] ? read_lock_is_recursive+0x20/0x20
[ 64.233831][ T4990] ? vb2_queue_or_prepare_buf+0x5be/0xe20
[ 64.239575][ T4990] vb2_core_prepare_buf+0xe6/0x310
[ 64.244693][ T4990] v4l2_m2m_ioctl_prepare_buf+0x19b/0x470
[ 64.250404][ T4990] ? v4l_prepare_buf+0x6c/0xc0
[ 64.255170][ T4990] __video_do_ioctl+0xa3e/0xe40
[ 64.260022][ T4990] ? video_ioctl2+0x30/0x30
[ 64.264515][ T4990] ? smack_log+0x123/0x540
[ 64.268928][ T4990] ? __might_fault+0xba/0x120
[ 64.273603][ T4990] video_usercopy+0x894/0x1170
[ 64.278368][ T4990] ? video_ioctl2+0x30/0x30
[ 64.282885][ T4990] ? v4l_printk_ioctl+0x160/0x160
[ 64.287903][ T4990] ? smack_file_ioctl+0x2ee/0x390
[ 64.292928][ T4990] ? do_notify_parent+0xf50/0xf50
[ 64.297946][ T4990] ? print_irqtrace_events+0x220/0x220
[ 64.303415][ T4990] v4l2_ioctl+0x185/0x1d0
[ 64.307753][ T4990] ? v4l2_poll+0x2b0/0x2b0
[ 64.312165][ T4990] __se_sys_ioctl+0xf1/0x160
[ 64.316756][ T4990] do_syscall_64+0x41/0xc0
[ 64.321176][ T4990] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 64.327061][ T4990] RIP: 0033:0x7faa461f3c49
[ 64.331469][ T4990] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 64.351081][ T4990] RSP: 002b:00007ffd27a3dbf8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 64.359491][ T4990] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007faa461f3c49
[ 64.367467][ T4990] RDX: 0000000020000300 RSI: 00000000c058565d RDI: 0000000000000003
[ 64.375453][ T4990] RBP: 00007faa461b7df0 R08: 0000000000000000 R09: 0000000000000000
[ 64.383416][ T4990] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faa461b7e80
[ 64.391381][ T4990] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 64.399360][ T4990] </TASK>
[ 64.402518][ T4990] Kernel Offset: disabled
[ 64.406914][ T4990] Rebooting in 86400 seconds..