./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1035327627 <...> Warning: Permanently added '10.128.0.118' (ED25519) to the list of known hosts. execve("./syz-executor1035327627", ["./syz-executor1035327627"], 0x7ffdcca52440 /* 10 vars */) = 0 brk(NULL) = 0x5555629fd000 brk(0x5555629fdd00) = 0x5555629fdd00 arch_prctl(ARCH_SET_FS, 0x5555629fd380) = 0 set_tid_address(0x5555629fd650) = 5062 set_robust_list(0x5555629fd660, 24) = 0 rseq(0x5555629fdca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1035327627", 4096) = 28 getrandom("\x2e\x2f\x93\xf5\x32\x0e\x56\xbd", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555629fdd00 brk(0x555562a1ed00) = 0x555562a1ed00 brk(0x555562a1f000) = 0x555562a1f000 mprotect(0x7f8ef4f4f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555629fd650) = 5063 ./strace-static-x86_64: Process 5063 attached [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] set_robust_list(0x5555629fd660, 24) = 0 ./strace-static-x86_64: Process 5064 attached [pid 5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5062] <... clone resumed>, child_tidptr=0x5555629fd650) = 5064 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5064] set_robust_list(0x5555629fd660, 24) = 0 [pid 5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5065 attached [pid 5063] <... clone resumed>, child_tidptr=0x5555629fd650) = 5065 ./strace-static-x86_64: Process 5067 attached [pid 5065] set_robust_list(0x5555629fd660, 24) = 0 ./strace-static-x86_64: Process 5066 attached [pid 5062] <... clone resumed>, child_tidptr=0x5555629fd650) = 5067 [pid 5067] set_robust_list(0x5555629fd660, 24 [pid 5065] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5064] <... clone resumed>, child_tidptr=0x5555629fd650) = 5066 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] set_robust_list(0x5555629fd660, 24 [pid 5067] <... set_robust_list resumed>) = 0 [pid 5066] <... set_robust_list resumed>) = 0 [pid 5065] <... prctl resumed>) = 0 [pid 5066] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5065] setpgid(0, 0./strace-static-x86_64: Process 5068 attached [pid 5066] <... prctl resumed>) = 0 [pid 5067] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5065] <... setpgid resumed>) = 0 [pid 5062] <... clone resumed>, child_tidptr=0x5555629fd650) = 5068 [pid 5066] setpgid(0, 0 [pid 5065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5068] set_robust_list(0x5555629fd660, 24) = 0 [pid 5066] <... setpgid resumed>) = 0 [pid 5068] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5065] <... openat resumed>) = 3 [pid 5066] <... openat resumed>) = 3 [pid 5066] write(3, "1000", 4 [pid 5065] write(3, "1000", 4 [pid 5066] <... write resumed>) = 4 [pid 5065] <... write resumed>) = 4 [pid 5066] close(3 [pid 5065] close(3 [pid 5062] <... clone resumed>, child_tidptr=0x5555629fd650) = 5070 [pid 5066] <... close resumed>) = 0 [pid 5065] <... close resumed>) = 0 [pid 5066] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5065] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72./strace-static-x86_64: Process 5071 attached ./strace-static-x86_64: Process 5070 attached ./strace-static-x86_64: Process 5069 attached [pid 5066] <... bpf resumed>) = 3 [pid 5067] <... clone resumed>, child_tidptr=0x5555629fd650) = 5069 [pid 5065] <... bpf resumed>) = 3 [pid 5070] set_robust_list(0x5555629fd660, 24) = 0 [pid 5071] set_robust_list(0x5555629fd660, 24 [pid 5069] set_robust_list(0x5555629fd660, 24 [pid 5068] <... clone resumed>, child_tidptr=0x5555629fd650) = 5071 [pid 5066] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5065] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5071] <... set_robust_list resumed>) = 0 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5069] <... set_robust_list resumed>) = 0 [pid 5065] <... bpf resumed>) = 4 [pid 5066] <... bpf resumed>) = 4 [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5065] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16./strace-static-x86_64: Process 5072 attached [pid 5071] <... prctl resumed>) = 0 [pid 5069] <... prctl resumed>) = 0 [pid 5066] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kmem_cache_free", prog_fd=4}}, 16 [pid 5072] set_robust_list(0x5555629fd660, 24 [pid 5071] setpgid(0, 0 [pid 5070] <... clone resumed>, child_tidptr=0x5555629fd650) = 5072 [pid 5069] setpgid(0, 0 [pid 5066] <... bpf resumed>) = 5 [pid 5065] <... bpf resumed>) = 5 [pid 5071] <... setpgid resumed>) = 0 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5069] <... setpgid resumed>) = 0 [ 77.512245][ T5063] ------------[ cut here ]------------ [ 77.518002][ T5063] WARNING: CPU: 0 PID: 5063 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 77.527628][ T5063] Modules linked in: [ 77.531564][ T5063] CPU: 0 PID: 5063 Comm: syz-executor103 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 77.541641][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 77.551711][ T5063] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 77.557711][ T5063] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 8c 33 86 8f 80 e1 07 80 c1 03 38 [ 77.577332][ T5063] RSP: 0018:ffffc9000443f8e0 EFLAGS: 00010046 [ 77.583421][ T5063] RAX: 0000000000000000 RBX: 1ffff92000887f20 RCX: 0000000000000000 [ 77.591574][ T5063] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895b387a [ 77.599556][ T5063] RBP: ffffc9000443f9a0 R08: ffff888020a859eb R09: 1ffff11004150b3d [ 77.607633][ T5063] R10: dffffc0000000000 R11: ffffed1004150b3e R12: dffffc0000000000 [ 77.615707][ T5063] R13: ffff88802e29ba00 R14: ffffc9000443f920 R15: 0000000000000201 [ 77.623714][ T5063] FS: 00005555629fd380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 77.632663][ T5063] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.639269][ T5063] CR2: 00007f8ef4f2501d CR3: 000000007ef10000 CR4: 00000000003506f0 [ 77.647253][ T5063] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.655348][ T5063] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.663418][ T5063] Call Trace: [ 77.666710][ T5063] [ 77.669650][ T5063] ? __warn+0x163/0x4b0 [ 77.673850][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 77.679260][ T5063] ? report_bug+0x2b3/0x500 [ 77.683788][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 77.690073][ T5063] ? handle_bug+0x3e/0x70 [ 77.694550][ T5063] ? exc_invalid_op+0x1a/0x50 [ 77.699252][ T5063] ? asm_exc_invalid_op+0x1a/0x20 [ 77.704316][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 77.709631][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 77.715026][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 77.720331][ T5063] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 77.726059][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 77.731368][ T5063] ? do_raw_spin_unlock+0x13c/0x8b0 [ 77.737283][ T5063] ? __pfx___cant_migrate+0x10/0x10 [ 77.742496][ T5063] ? sock_map_delete_elem+0x97/0x140 [ 77.747804][ T5063] sock_map_delete_elem+0xca/0x140 [ 77.752939][ T5063] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 77.758446][ T5063] bpf_trace_run3+0x238/0x460 [ 77.763143][ T5063] ? bpf_trace_run3+0x14a/0x460 [ 77.768006][ T5063] ? _atomic_dec_and_lock_irqsave+0xa9/0x190 [ 77.776433][ T5063] ? __pfx_bpf_trace_run3+0x10/0x10 [ 77.781651][ T5063] ? __dequeue_signal+0x4ac/0x5c0 [ 77.786693][ T5063] ? put_ucounts+0x155/0x280 [ 77.791296][ T5063] ? __pfx_put_ucounts+0x10/0x10 [ 77.796263][ T5063] ? __dequeue_signal+0x4ac/0x5c0 [ 77.801478][ T5063] kmem_cache_free+0x23c/0x2b0 [ 77.806469][ T5063] __dequeue_signal+0x4ac/0x5c0 [ 77.811379][ T5063] dequeue_signal+0x169/0x5a0 [ 77.816093][ T5063] ? __pfx_dequeue_signal+0x10/0x10 [ 77.821340][ T5063] ? uprobe_deny_signal+0x79/0x230 [ 77.826752][ T5063] get_signal+0x5f7/0x1850 [ 77.831386][ T5063] ? __pfx_get_signal+0x10/0x10 [ 77.836283][ T5063] arch_do_signal_or_restart+0x96/0x860 [ 77.841877][ T5063] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 77.848054][ T5063] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 77.854154][ T5063] ? syscall_exit_to_user_mode+0xa3/0x360 [ 77.859901][ T5063] syscall_exit_to_user_mode+0xc9/0x360 [ 77.865472][ T5063] do_syscall_64+0x10a/0x240 [ 77.870178][ T5063] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 77.876097][ T5063] RIP: 0033:0x7f8ef4f03443 [ 77.880555][ T5063] Code: 00 00 00 00 00 66 90 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 3e 0c 05 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 [ 77.900453][ T5063] RSP: 002b:00007ffdd3126958 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6 [ 77.908893][ T5063] RAX: fffffffffffffdfc RBX: 00000000000013c9 RCX: 00007f8ef4f03443 [ 77.917008][ T5063] RDX: 00007ffdd3126970 RSI: 0000000000000000 RDI: 0000000000000000 [ 77.925006][ T5063] RBP: 00000000000f4240 R08: 0000000000000010 R09: 00007f8ef4e9b0b0 [ 77.932995][ T5063] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000012e67 [ 77.940979][ T5063] R13: 00007ffdd31269ac R14: 00007ffdd31269c0 R15: 00007ffdd31269b0 [ 77.948980][ T5063] [ 77.952015][ T5063] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 77.959305][ T5063] CPU: 0 PID: 5063 Comm: syz-executor103 Not tainted 6.8.0-syzkaller-08073-g480e035fc4c7 #0 [ 77.969468][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 77.979625][ T5063] Call Trace: [ 77.982916][ T5063] [ 77.985880][ T5063] dump_stack_lvl+0x241/0x360 [ 77.990601][ T5063] ? __pfx_dump_stack_lvl+0x10/0x10 [ 77.995920][ T5063] ? __pfx__printk+0x10/0x10 [ 78.000560][ T5063] ? vscnprintf+0x5d/0x90 [ 78.004905][ T5063] panic+0x349/0x860 [ 78.008824][ T5063] ? __warn+0x172/0x4b0 [ 78.012999][ T5063] ? __pfx_panic+0x10/0x10 [ 78.017536][ T5063] __warn+0x31e/0x4b0 [ 78.021537][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 78.026926][ T5063] report_bug+0x2b3/0x500 [ 78.031268][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 78.036833][ T5063] handle_bug+0x3e/0x70 [ 78.041115][ T5063] exc_invalid_op+0x1a/0x50 [ 78.045634][ T5063] asm_exc_invalid_op+0x1a/0x20 [ 78.050500][ T5063] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 78.056534][ T5063] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 8c 33 86 8f 80 e1 07 80 c1 03 38 [ 78.076181][ T5063] RSP: 0018:ffffc9000443f8e0 EFLAGS: 00010046 [ 78.082351][ T5063] RAX: 0000000000000000 RBX: 1ffff92000887f20 RCX: 0000000000000000 [ 78.090352][ T5063] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895b387a [ 78.098344][ T5063] RBP: ffffc9000443f9a0 R08: ffff888020a859eb R09: 1ffff11004150b3d [ 78.106417][ T5063] R10: dffffc0000000000 R11: ffffed1004150b3e R12: dffffc0000000000 [ 78.114435][ T5063] R13: ffff88802e29ba00 R14: ffffc9000443f920 R15: 0000000000000201 [ 78.122452][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 78.127806][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 78.133123][ T5063] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 78.139379][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 78.144683][ T5063] ? do_raw_spin_unlock+0x13c/0x8b0 [ 78.149914][ T5063] ? __pfx___cant_migrate+0x10/0x10 [ 78.155128][ T5063] ? sock_map_delete_elem+0x97/0x140 [ 78.160437][ T5063] sock_map_delete_elem+0xca/0x140 [ 78.165571][ T5063] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 78.171058][ T5063] bpf_trace_run3+0x238/0x460 [ 78.175753][ T5063] ? bpf_trace_run3+0x14a/0x460 [ 78.180619][ T5063] ? _atomic_dec_and_lock_irqsave+0xa9/0x190 [ 78.186616][ T5063] ? __pfx_bpf_trace_run3+0x10/0x10 [ 78.191830][ T5063] ? __dequeue_signal+0x4ac/0x5c0 [ 78.196875][ T5063] ? put_ucounts+0x155/0x280 [ 78.201481][ T5063] ? __pfx_put_ucounts+0x10/0x10 [ 78.206449][ T5063] ? __dequeue_signal+0x4ac/0x5c0 [ 78.211491][ T5063] kmem_cache_free+0x23c/0x2b0 [ 78.216304][ T5063] __dequeue_signal+0x4ac/0x5c0 [ 78.221195][ T5063] dequeue_signal+0x169/0x5a0 [ 78.225919][ T5063] ? __pfx_dequeue_signal+0x10/0x10 [ 78.231139][ T5063] ? uprobe_deny_signal+0x79/0x230 [ 78.236359][ T5063] get_signal+0x5f7/0x1850 [ 78.240816][ T5063] ? __pfx_get_signal+0x10/0x10 [ 78.245700][ T5063] arch_do_signal_or_restart+0x96/0x860 [ 78.251271][ T5063] ? __pfx_arch_do_signal_or_restart+0x10/0x10 [ 78.257531][ T5063] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 78.263539][ T5063] ? syscall_exit_to_user_mode+0xa3/0x360 [ 78.269284][ T5063] syscall_exit_to_user_mode+0xc9/0x360 [ 78.274881][ T5063] do_syscall_64+0x10a/0x240 [ 78.284674][ T5063] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 78.290697][ T5063] RIP: 0033:0x7f8ef4f03443 [ 78.295158][ T5063] Code: 00 00 00 00 00 66 90 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d 3e 0c 05 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10 [ 78.319561][ T5063] RSP: 002b:00007ffdd3126958 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6 [ 78.328042][ T5063] RAX: fffffffffffffdfc RBX: 00000000000013c9 RCX: 00007f8ef4f03443 [ 78.336048][ T5063] RDX: 00007ffdd3126970 RSI: 0000000000000000 RDI: 0000000000000000 [ 78.344037][ T5063] RBP: 00000000000f4240 R08: 0000000000000010 R09: 00007f8ef4e9b0b0 [ 78.352030][ T5063] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000012e67 [ 78.360017][ T5063] R13: 00007ffdd31269ac R14: 00007ffdd31269c0 R15: 00007ffdd31269b0 [ 78.368202][ T5063] [ 78.371418][ T5063] Kernel Offset: disabled [ 78.375795][ T5063] Rebooting in 86400 seconds..