./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1154460632
<...>
Warning: Permanently added '10.128.1.7' (ED25519) to the list of known hosts.
execve("./syz-executor1154460632", ["./syz-executor1154460632"], 0x7ffee0abc9a0 /* 10 vars */) = 0
brk(NULL) = 0x5555814db000
brk(0x5555814dbd00) = 0x5555814dbd00
arch_prctl(ARCH_SET_FS, 0x5555814db380) = 0
set_tid_address(0x5555814db650) = 5820
set_robust_list(0x5555814db660, 24) = 0
rseq(0x5555814dbca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1154460632", 4096) = 28
getrandom("\x8b\x71\x33\x1b\x4f\xbe\xd2\x84", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x5555814dbd00
brk(0x5555814fcd00) = 0x5555814fcd00
brk(0x5555814fd000) = 0x5555814fd000
mprotect(0x7f46ffb83000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
openat(AT_FDCWD, "/proc/self/make-it-fail", O_WRONLY) = 3
close(3) = 0
openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_WRONLY) = 3
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
[ 62.090313][ T30] audit: type=1400 audit(1743740631.803:88): avc: denied { execmem } for pid=5820 comm="syz-executor115" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
executing program
write(1, "executing program\n", 18) = 18
munmap(0x200000ffd000, 8192) = 0
openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 3
write(3, "1", 1) = 1
[ 62.344958][ T5820] FAULT_INJECTION: forcing a failure.
[ 62.344958][ T5820] name failslab, interval 1, probability 0, space 0, times 1
[ 62.357971][ T5820] CPU: 0 UID: 0 PID: 5820 Comm: syz-executor115 Not tainted 6.14.0-syzkaller-12966-ga2cc6ff5ec8f #0 PREEMPT(full)
[ 62.357985][ T5820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 62.357992][ T5820] Call Trace:
[ 62.357995][ T5820]
[ 62.357999][ T5820] dump_stack_lvl+0x16c/0x1f0
[ 62.358031][ T5820] should_fail_ex+0x512/0x640
[ 62.358044][ T5820] ? kmem_cache_alloc_noprof+0x5a/0x3b0
[ 62.358058][ T5820] should_failslab+0xc2/0x120
[ 62.358069][ T5820] kmem_cache_alloc_noprof+0x6d/0x3b0
[ 62.358080][ T5820] ? mas_alloc_nodes+0x18b/0x8b0
[ 62.358092][ T5820] mas_alloc_nodes+0x18b/0x8b0
[ 62.358104][ T5820] mas_node_count_gfp+0x105/0x130
[ 62.358116][ T5820] mas_preallocate+0x53e/0xcd0
[ 62.358130][ T5820] ? __lock_acquire+0xaa4/0x1ba0
[ 62.358141][ T5820] ? __pfx_mas_preallocate+0x10/0x10
[ 62.358154][ T5820] ? do_raw_spin_lock+0x12c/0x2b0
[ 62.358168][ T5820] ? __asan_memset+0x23/0x50
[ 62.358184][ T5820] commit_merge+0x29a/0x1020
[ 62.358195][ T5820] ? __pfx_commit_merge+0x10/0x10
[ 62.358205][ T5820] ? vma_expand+0x682/0x8c0
[ 62.358215][ T5820] ? dup_anon_vma.constprop.0+0x74/0x320
[ 62.358226][ T5820] vma_expand+0x3c1/0x8c0
[ 62.358235][ T5820] ? __pfx_vma_expand+0x10/0x10
[ 62.358244][ T5820] ? can_vma_merge_right+0xa4/0x630
[ 62.358261][ T5820] vma_merge_new_range+0x33b/0xc10
[ 62.358274][ T5820] vma_merge_extend+0x25e/0x310
[ 62.358283][ T5820] ? __pfx_vma_merge_extend+0x10/0x10
[ 62.358298][ T5820] ? __vm_enough_memory+0x184/0x3f0
[ 62.358311][ T5820] ? security_vm_enough_memory_mm+0xdc/0x110
[ 62.358325][ T5820] __do_sys_mremap+0x122f/0x15c0
[ 62.358337][ T5820] ? __pfx___do_sys_mremap+0x10/0x10
[ 62.358353][ T5820] ? __pfx_ptrace_do_notify+0x10/0x10
[ 62.358371][ T5820] ? lockdep_hardirqs_on+0x7c/0x110
[ 62.358382][ T5820] ? _raw_spin_unlock_irq+0x2e/0x50
[ 62.358393][ T5820] ? ptrace_notify+0xf1/0x130
[ 62.358406][ T5820] do_syscall_64+0xcd/0x260
[ 62.358419][ T5820] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.358429][ T5820] RIP: 0033:0x7f46ffb182e9
[ 62.358438][ T5820] Code: 48 83 c4 28 c3 e8 17 1a 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 62.358448][ T5820] RSP: 002b:00007fff0b8738c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 62.358457][ T5820] RAX: ffffffffffffffda RBX: 00007fff0b8738d0 RCX: 00007f46ffb182e9
[ 62.358463][ T5820] RDX: 0000000000003000 RSI: 0000000000001000 RDI: 0000200000ffc000
[ 62.358468][ T5820] RBP: 0000000000000001 R08: 0000200000ffa000 R09: 00007f46ffb80031
[ 62.358474][ T5820] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f46ffb83618
[ 62.358479][ T5820] R13: 00007fff0b873aa8 R14: 0000000000000001 R15: 0000000000000001
[ 62.358491][ T5820]
[ 62.358512][ T5820] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] SMP KASAN NOPTI
[ 62.638547][ T5820] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027]
[ 62.646951][ T5820] CPU: 0 UID: 0 PID: 5820 Comm: syz-executor115 Not tainted 6.14.0-syzkaller-12966-ga2cc6ff5ec8f #0 PREEMPT(full)
[ 62.658982][ T5820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 62.669008][ T5820] RIP: 0010:__do_sys_mremap+0x1392/0x15c0
[ 62.674714][ T5820] Code: 0f 85 45 02 00 00 48 8b 04 24 c6 84 24 70 01 00 00 01 48 01 85 68 02 00 00 eb 9a e8 18 34 af ff 48 b8 04 00 00 00 00 fc ff df <80> 38 00 0f 85 a7 01 00 00 48 8b 2c 25 20 00 00 00 31 ff 81 e5 00
[ 62.694292][ T5820] RSP: 0018:ffffc900039dfd20 EFLAGS: 00010293
[ 62.700340][ T5820] RAX: dffffc0000000004 RBX: ffff88802b765a00 RCX: ffffffff821183c6
[ 62.708283][ T5820] RDX: ffff88805c7b8000 RSI: ffffffff820c0cb8 RDI: 0000000000000005
[ 62.716228][ T5820] RBP: ffff8880341fb780 R08: 0000000000000005 R09: 0000000000000000
[ 62.724170][ T5820] R10: 00000000fffffff4 R11: 0000000000000001 R12: 0000000000002000
[ 62.732112][ T5820] R13: 1ffff9200073bfaa R14: 0000200000ffc000 R15: ffff88802b765b70
[ 62.740058][ T5820] FS: 00005555814db380(0000) GS:ffff8881249b8000(0000) knlGS:0000000000000000
[ 62.748971][ T5820] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 62.755549][ T5820] CR2: 00007fff0b8728e0 CR3: 000000007802e000 CR4: 00000000003526f0
[ 62.763523][ T5820] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 62.771499][ T5820] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 62.779461][ T5820] Call Trace:
[ 62.782733][ T5820]
[ 62.785654][ T5820] ? __pfx___do_sys_mremap+0x10/0x10
[ 62.790941][ T5820] ? __pfx_ptrace_do_notify+0x10/0x10
[ 62.796314][ T5820] ? lockdep_hardirqs_on+0x7c/0x110
[ 62.801492][ T5820] ? _raw_spin_unlock_irq+0x2e/0x50
[ 62.806669][ T5820] ? ptrace_notify+0xf1/0x130
[ 62.811319][ T5820] do_syscall_64+0xcd/0x260
[ 62.815797][ T5820] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 62.821679][ T5820] RIP: 0033:0x7f46ffb182e9
[ 62.826081][ T5820] Code: 48 83 c4 28 c3 e8 17 1a 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 62.846442][ T5820] RSP: 002b:00007fff0b8738c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000019
[ 62.854823][ T5820] RAX: ffffffffffffffda RBX: 00007fff0b8738d0 RCX: 00007f46ffb182e9
[ 62.862763][ T5820] RDX: 0000000000003000 RSI: 0000000000001000 RDI: 0000200000ffc000
[ 62.870700][ T5820] RBP: 0000000000000001 R08: 0000200000ffa000 R09: 00007f46ffb80031
[ 62.878639][ T5820] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f46ffb83618
[ 62.886626][ T5820] R13: 00007fff0b873aa8 R14: 0000000000000001 R15: 0000000000000001
[ 62.894592][ T5820]
[ 62.897595][ T5820] Modules linked in:
[ 62.901606][ T5820] ---[ end trace 0000000000000000 ]---
[ 62.907356][ T5820] RIP: 0010:__do_sys_mremap+0x1392/0x15c0
[ 62.913098][ T5820] Code: 0f 85 45 02 00 00 48 8b 04 24 c6 84 24 70 01 00 00 01 48 01 85 68 02 00 00 eb 9a e8 18 34 af ff 48 b8 04 00 00 00 00 fc ff df <80> 38 00 0f 85 a7 01 00 00 48 8b 2c 25 20 00 00 00 31 ff 81 e5 00
[ 62.932760][ T5820] RSP: 0018:ffffc900039dfd20 EFLAGS: 00010293
[ 62.938811][ T5820] RAX: dffffc0000000004 RBX: ffff88802b765a00 RCX: ffffffff821183c6
[ 62.946823][ T5820] RDX: ffff88805c7b8000 RSI: ffffffff820c0cb8 RDI: 0000000000000005
[ 62.954832][ T5820] RBP: ffff8880341fb780 R08: 0000000000000005 R09: 0000000000000000
[ 62.962807][ T5820] R10: 00000000fffffff4 R11: 0000000000000001 R12: 0000000000002000
[ 62.970769][ T5820] R13: 1ffff9200073bfaa R14: 0000200000ffc000 R15: ffff88802b765b70
[ 62.978746][ T5820] FS: 00005555814db380(0000) GS:ffff8881249b8000(0000) knlGS:0000000000000000
[ 62.987687][ T5820] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 62.994267][ T5820] CR2: 00007fff0b8728e0 CR3: 000000007802e000 CR4: 00000000003526f0
[ 63.002242][ T5820] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 63.010186][ T5820] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 63.018170][ T5820] Kernel panic - not syncing: Fatal exception
[ 63.024325][ T5820] Kernel Offset: disabled
[ 63.028625][ T5820] Rebooting in 86400 seconds..