./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4070828172 <...> Warning: Permanently added '10.128.0.80' (ED25519) to the list of known hosts. execve("./syz-executor4070828172", ["./syz-executor4070828172"], 0x7ffcc8e828f0 /* 10 vars */) = 0 brk(NULL) = 0x55555bd8c000 brk(0x55555bd8cd00) = 0x55555bd8cd00 arch_prctl(ARCH_SET_FS, 0x55555bd8c380) = 0 set_tid_address(0x55555bd8c650) = 5830 set_robust_list(0x55555bd8c660, 24) = 0 rseq(0x55555bd8cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4070828172", 4096) = 28 getrandom("\xd2\x65\x13\xe5\x68\x6e\x21\x32", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555bd8cd00 brk(0x55555bdadd00) = 0x55555bdadd00 brk(0x55555bdae000) = 0x55555bdae000 mprotect(0x7f7d47f29000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5831 attached , child_tidptr=0x55555bd8c650) = 5831 [pid 5831] set_robust_list(0x55555bd8c660, 24) = 0 [pid 5831] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5831] setpgid(0, 0) = 0 [pid 5831] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5831] write(3, "1000", 4) = 4 [pid 5831] close(3) = 0 executing program [pid 5831] write(1, "executing program\n", 18) = 18 [pid 5831] openat(AT_FDCWD, "/proc/self/task", O_RDWR) = -1 EISDIR (Is a directory) [pid 5831] openat(AT_FDCWD, "/proc/self/task", O_RDONLY) = 3 [pid 5831] fchdir(3) = 0 [pid 5831] mount(NULL, ".", "proc", MS_RDONLY|MS_NODIRATIME, NULL) = 0 [pid 5831] clone(child_stack=0x30, flags=0./strace-static-x86_64: Process 5832 attached ) = 5832 [pid 5832] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x30} --- [pid 5831] openat(AT_FDCWD, "/proc/self/task/5832/pagemap", O_RDWR) = -1 EROFS (Read-only file system) [pid 5831] openat(AT_FDCWD, "/proc/self/task/5832/pagemap", O_RDONLY [pid 5832] +++ killed by SIGSEGV +++ [pid 5831] <... openat resumed>) = 4 [ 77.276390][ T5831] Oops: general protection fault, probably for non-canonical address 0xdffffc000000003c: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 77.289219][ T5831] KASAN: null-ptr-deref in range [0x00000000000001e0-0x00000000000001e7] [ 77.297622][ T5831] CPU: 1 UID: 0 PID: 5831 Comm: syz-executor407 Not tainted 6.14.0-rc6-syzkaller-00205-g3571e8b091f4 #0 [ 77.308722][ T5831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 77.318770][ T5831] RIP: 0010:__lock_acquire+0x6a/0x2100 [ 77.324253][ T5831] Code: b6 04 30 84 c0 0f 85 f8 16 00 00 45 31 f6 83 3d 4b 53 a0 0e 00 0f 84 c8 13 00 00 89 54 24 60 89 5c 24 38 4c 89 f8 48 c1 e8 03 <80> 3c 30 00 74 12 4c 89 ff e8 a8 4b 8c 00 48 be 00 00 00 00 00 fc [ 77.343856][ T5831] RSP: 0018:ffffc90003f27850 EFLAGS: 00010016 [ 77.349920][ T5831] RAX: 000000000000003c RBX: 0000000000000001 RCX: 0000000000000001 [ 77.357876][ T5831] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 00000000000001e0 [ 77.365835][ T5831] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 77.373792][ T5831] R10: dffffc0000000000 R11: fffffbfff2079f4f R12: ffff88803044da00 [ 77.381754][ T5831] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000000001e0 [ 77.389716][ T5831] FS: 000055555bd8c380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 77.398650][ T5831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.405229][ T5831] CR2: 00000000005fdeb8 CR3: 0000000012158000 CR4: 0000000000350ef0 [ 77.413191][ T5831] Call Trace: [ 77.416456][ T5831] [ 77.419374][ T5831] ? __die_body+0x5f/0xb0 [ 77.423711][ T5831] ? die_addr+0xb0/0xe0 [ 77.427871][ T5831] ? exc_general_protection+0x3dd/0x5d0 [ 77.433439][ T5831] ? asm_exc_general_protection+0x26/0x30 [ 77.439164][ T5831] ? __lock_acquire+0x6a/0x2100 [ 77.444018][ T5831] ? __pfx_stack_trace_save+0x10/0x10 [ 77.449392][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.455029][ T5831] ? stack_depot_save_flags+0x37/0x940 [ 77.460512][ T5831] lock_acquire+0x1ed/0x550 [ 77.465016][ T5831] ? do_pagemap_cmd+0x82e/0x1240 [ 77.469953][ T5831] ? __pfx_lock_acquire+0x10/0x10 [ 77.474979][ T5831] ? __pfx___might_resched+0x10/0x10 [ 77.480263][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.485904][ T5831] down_read_killable+0xca/0xd30 [ 77.490841][ T5831] ? do_pagemap_cmd+0x82e/0x1240 [ 77.495786][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.501431][ T5831] ? __pfx___might_resched+0x10/0x10 [ 77.506711][ T5831] ? do_pagemap_cmd+0x82e/0x1240 [ 77.511644][ T5831] ? __might_fault+0xaa/0x120 [ 77.516309][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.521946][ T5831] ? __pfx_down_read_killable+0x10/0x10 [ 77.527495][ T5831] ? tomoyo_path_number_perm+0x5dd/0x770 [ 77.533135][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.538776][ T5831] ? __might_fault+0xaa/0x120 [ 77.543447][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.549089][ T5831] do_pagemap_cmd+0x82e/0x1240 [ 77.553859][ T5831] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.560189][ T5831] ? __pfx_do_pagemap_cmd+0x10/0x10 [ 77.565392][ T5831] ? __pfx_ptrace_notify+0x10/0x10 [ 77.570502][ T5831] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.576833][ T5831] ? srso_alias_return_thunk+0x5/0xfbef5 [ 77.582470][ T5831] ? __pfx_do_pagemap_cmd+0x10/0x10 [ 77.587679][ T5831] __se_sys_ioctl+0xf7/0x170 [ 77.592269][ T5831] do_syscall_64+0xf3/0x230 [ 77.596776][ T5831] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 77.602687][ T5831] RIP: 0033:0x7f7d47eb5c39 [ 77.607101][ T5831] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 77.626700][ T5831] RSP: 002b:00007ffeceacfd18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 77.635107][ T5831] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d47eb5c39 [ 77.643066][ T5831] RDX: 0000400000000100 RSI: 00000000c0606610 RDI: 0000000000000004 [ 77.651025][ T5831] RBP: 00007f7d47f295f0 R08: 00007ffeceacf9c4 R09: 0000000000000006 [ 77.658985][ T5831] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000001 [ 77.666942][ T5831] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 77.674910][ T5831] [ 77.677913][ T5831] Modules linked in: [ 77.681799][ T5831] ---[ end trace 0000000000000000 ]--- [ 77.687236][ T5831] RIP: 0010:__lock_acquire+0x6a/0x2100 [ 77.692703][ T5831] Code: b6 04 30 84 c0 0f 85 f8 16 00 00 45 31 f6 83 3d 4b 53 a0 0e 00 0f 84 c8 13 00 00 89 54 24 60 89 5c 24 38 4c 89 f8 48 c1 e8 03 <80> 3c 30 00 74 12 4c 89 ff e8 a8 4b 8c 00 48 be 00 00 00 00 00 fc [ 77.712304][ T5831] RSP: 0018:ffffc90003f27850 EFLAGS: 00010016 [ 77.718365][ T5831] RAX: 000000000000003c RBX: 0000000000000001 RCX: 0000000000000001 [ 77.726322][ T5831] RDX: 0000000000000000 RSI: dffffc0000000000 RDI: 00000000000001e0 [ 77.734279][ T5831] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000 [ 77.742235][ T5831] R10: dffffc0000000000 R11: fffffbfff2079f4f R12: ffff88803044da00 [ 77.750195][ T5831] R13: 0000000000000000 R14: 0000000000000000 R15: 00000000000001e0 [ 77.758153][ T5831] FS: 000055555bd8c380(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 77.767070][ T5831] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.773643][ T5831] CR2: 00000000005fdeb8 CR3: 0000000012158000 CR4: 0000000000350ef0 [ 77.781603][ T5831] Kernel panic - not syncing: Fatal exception [ 77.787898][ T5831] Kernel Offset: disabled [ 77.792216][ T5831] Rebooting in 86400 seconds..