./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3864235293 <...> Warning: Permanently added '10.128.1.102' (ED25519) to the list of known hosts. execve("./syz-executor3864235293", ["./syz-executor3864235293"], 0x7fff7a2d3210 /* 10 vars */) = 0 brk(NULL) = 0x55558b40e000 brk(0x55558b40ed40) = 0x55558b40ed40 arch_prctl(ARCH_SET_FS, 0x55558b40e3c0) = 0 set_tid_address(0x55558b40e690) = 5014 set_robust_list(0x55558b40e6a0, 24) = 0 rseq(0x55558b40ece0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3864235293", 4096) = 28 getrandom("\x34\x8a\x13\x5e\x78\x19\x4f\xf5", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558b40ed40 brk(0x55558b42fd40) = 0x55558b42fd40 brk(0x55558b430000) = 0x55558b430000 mprotect(0x7fbe67d3e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5015 attached , child_tidptr=0x55558b40e690) = 5015 [pid 5015] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5015] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5015] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5015] setsid() = 1 [pid 5015] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5015] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5015] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5015] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5015] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5015] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5015] unshare(CLONE_NEWNS) = 0 [pid 5015] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5015] unshare(CLONE_NEWIPC) = 0 [pid 5015] unshare(CLONE_NEWCGROUP) = 0 [pid 5015] unshare(CLONE_NEWUTS) = 0 [pid 5015] unshare(CLONE_SYSVSEM) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "16777216", 8) = 8 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "536870912", 9) = 9 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "1024", 4) = 4 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "8192", 4) = 4 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "1024", 4) = 4 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "1024", 4) = 4 [pid 5015] close(3) = 0 [pid 5015] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5015] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5015] close(3) = 0 [pid 5015] getpid() = 1 [pid 5015] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< {parent_tid=[3]}, 88) = 3 [pid 5018] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5018] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5018] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5019 attached [pid 5019] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053) = 0 [pid 5019] set_robust_list(0x7fbe67c759a0, 24) = 0 [pid 5019] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5019] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS./strace-static-x86_64: Process 5020 attached [pid 5020] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5019] <... clone resumed>, tls=NULL) = 4 [pid 5019] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5018] <... futex resumed>) = 0 [pid 5018] close(3 [pid 5019] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5018] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5018] close(4) = -1 EBADF (Bad file descriptor) [pid 5018] close(5) = -1 EBADF (Bad file descriptor) [pid 5018] close(6) = -1 EBADF (Bad file descriptor) [pid 5018] close(7) = -1 EBADF (Bad file descriptor) [pid 5018] close(8) = -1 EBADF (Bad file descriptor) [pid 5018] close(9) = -1 EBADF (Bad file descriptor) [pid 5018] close(10) = -1 EBADF (Bad file descriptor) [pid 5018] close(11) = -1 EBADF (Bad file descriptor) [pid 5018] close(12) = -1 EBADF (Bad file descriptor) [pid 5018] close(13) = -1 EBADF (Bad file descriptor) [pid 5018] close(14) = -1 EBADF (Bad file descriptor) [pid 5018] close(15) = -1 EBADF (Bad file descriptor) [pid 5018] close(16) = -1 EBADF (Bad file descriptor) [pid 5018] close(17) = -1 EBADF (Bad file descriptor) [pid 5018] close(18) = -1 EBADF (Bad file descriptor) [pid 5018] close(19) = -1 EBADF (Bad file descriptor) [pid 5018] close(20) = -1 EBADF (Bad file descriptor) [pid 5018] close(21) = -1 EBADF (Bad file descriptor) [pid 5018] close(22) = -1 EBADF (Bad file descriptor) [pid 5018] close(23) = -1 EBADF (Bad file descriptor) [pid 5018] close(24) = -1 EBADF (Bad file descriptor) [pid 5018] close(25) = -1 EBADF (Bad file descriptor) [pid 5018] close(26) = -1 EBADF (Bad file descriptor) [pid 5018] close(27) = -1 EBADF (Bad file descriptor) [pid 5018] close(28) = -1 EBADF (Bad file descriptor) [pid 5018] close(29) = -1 EBADF (Bad file descriptor) [pid 5018] exit_group(0 [pid 5019] <... futex resumed>) = ? [pid 5018] <... exit_group resumed>) = ? [pid 5019] +++ exited with 0 +++ [pid 5018] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=2, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 5015] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5021 attached , child_tidptr=0x55558b40e690) = 5 [pid 5021] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5021] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5021] setpgid(0, 0) = 0 [pid 5021] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5021] write(3, "1000", 4) = 4 [pid 5021] close(3) = 0 [pid 5021] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5021] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [pid 5021] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5021] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbe67c55000 [pid 5021] mprotect(0x7fbe67c56000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5021] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5021] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbe67c75990, parent_tid=0x7fbe67c75990, exit_signal=0, stack=0x7fbe67c55000, stack_size=0x20300, tls=0x7fbe67c756c0} => {parent_tid=[6]}, 88) = 6 [pid 5021] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5021] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5021] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5022 attached [pid 5022] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053) = 0 [pid 5022] set_robust_list(0x7fbe67c759a0, 24) = 0 [pid 5022] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5022] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS./strace-static-x86_64: Process 5023 attached [pid 5023] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5022] <... clone resumed>, tls=NULL) = 7 [pid 5022] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5020] +++ killed by SIGSEGV (core dumped) +++ [pid 5022] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5021] <... futex resumed>) = 0 [pid 5021] close(3 [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=4, si_uid=0, si_status=SIGSEGV, si_utime=0, si_stime=13 /* 0.13 s */} --- [pid 5021] <... close resumed>) = -1 EBADF (Bad file descriptor) [pid 5021] close(4) = -1 EBADF (Bad file descriptor) [pid 5021] close(5) = -1 EBADF (Bad file descriptor) [pid 5021] close(6) = -1 EBADF (Bad file descriptor) [pid 5021] close(7) = -1 EBADF (Bad file descriptor) [pid 5021] close(8) = -1 EBADF (Bad file descriptor) [pid 5021] close(9) = -1 EBADF (Bad file descriptor) [pid 5021] close(10) = -1 EBADF (Bad file descriptor) [pid 5021] close(11) = -1 EBADF (Bad file descriptor) [pid 5021] close(12) = -1 EBADF (Bad file descriptor) [pid 5021] close(13) = -1 EBADF (Bad file descriptor) [pid 5021] close(14) = -1 EBADF (Bad file descriptor) [pid 5021] close(15) = -1 EBADF (Bad file descriptor) [pid 5021] close(16) = -1 EBADF (Bad file descriptor) [pid 5021] close(17) = -1 EBADF (Bad file descriptor) [pid 5021] close(18) = -1 EBADF (Bad file descriptor) [pid 5021] close(19) = -1 EBADF (Bad file descriptor) [pid 5021] close(20) = -1 EBADF (Bad file descriptor) [pid 5021] close(21) = -1 EBADF (Bad file descriptor) [pid 5021] close(22) = -1 EBADF (Bad file descriptor) [pid 5021] close(23) = -1 EBADF (Bad file descriptor) [pid 5021] close(24) = -1 EBADF (Bad file descriptor) [pid 5021] close(25) = -1 EBADF (Bad file descriptor) [pid 5021] close(26) = -1 EBADF (Bad file descriptor) [pid 5021] close(27) = -1 EBADF (Bad file descriptor) [pid 5021] close(28) = -1 EBADF (Bad file descriptor) [pid 5021] close(29) = -1 EBADF (Bad file descriptor) [pid 5021] exit_group(0 [pid 5022] <... futex resumed>) = ? [pid 5021] <... exit_group resumed>) = ? [pid 5022] +++ exited with 0 +++ [pid 5021] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5, si_uid=0, si_status=0, si_utime=0, si_stime=4 /* 0.04 s */} --- [pid 5015] restart_syscall(<... resuming interrupted clone ...>) = 0 [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5024 attached , child_tidptr=0x55558b40e690) = 8 [pid 5024] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5024] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5024] setpgid(0, 0) = 0 [pid 5024] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5024] write(3, "1000", 4) = 4 [pid 5024] close(3) = 0 [pid 5024] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5024] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [pid 5024] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5024] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbe67c55000 [pid 5024] mprotect(0x7fbe67c56000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5024] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5024] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbe67c75990, parent_tid=0x7fbe67c75990, exit_signal=0, stack=0x7fbe67c55000, stack_size=0x20300, tls=0x7fbe67c756c0} => {parent_tid=[9]}, 88) = 9 [pid 5024] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5025 attached NULL, 8) = 0 [pid 5024] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5024] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5025] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053) = 0 [pid 5025] set_robust_list(0x7fbe67c759a0, 24) = 0 [pid 5025] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5025] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS, tls=NULL) = 10 ./strace-static-x86_64: Process 5026 attached [pid 5025] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5026] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5025] <... futex resumed>) = 1 [pid 5024] <... futex resumed>) = 0 [pid 5025] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5024] close(3) = -1 EBADF (Bad file descriptor) [pid 5024] close(4) = -1 EBADF (Bad file descriptor) [pid 5024] close(5) = -1 EBADF (Bad file descriptor) [pid 5024] close(6) = -1 EBADF (Bad file descriptor) [pid 5024] close(7) = -1 EBADF (Bad file descriptor) [pid 5023] +++ killed by SIGSEGV (core dumped) +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=7, si_uid=0, si_status=SIGSEGV, si_utime=0, si_stime=18 /* 0.18 s */} --- [pid 5024] close(8) = -1 EBADF (Bad file descriptor) [pid 5024] close(9) = -1 EBADF (Bad file descriptor) [pid 5024] close(10) = -1 EBADF (Bad file descriptor) [pid 5024] close(11) = -1 EBADF (Bad file descriptor) [pid 5024] close(12) = -1 EBADF (Bad file descriptor) [pid 5024] close(13) = -1 EBADF (Bad file descriptor) [pid 5024] close(14) = -1 EBADF (Bad file descriptor) [pid 5024] close(15) = -1 EBADF (Bad file descriptor) [pid 5024] close(16) = -1 EBADF (Bad file descriptor) [pid 5024] close(17) = -1 EBADF (Bad file descriptor) [pid 5024] close(18) = -1 EBADF (Bad file descriptor) [pid 5024] close(19) = -1 EBADF (Bad file descriptor) [pid 5024] close(20) = -1 EBADF (Bad file descriptor) [pid 5024] close(21) = -1 EBADF (Bad file descriptor) [pid 5024] close(22) = -1 EBADF (Bad file descriptor) [pid 5024] close(23) = -1 EBADF (Bad file descriptor) [pid 5024] close(24) = -1 EBADF (Bad file descriptor) [pid 5024] close(25) = -1 EBADF (Bad file descriptor) [pid 5024] close(26) = -1 EBADF (Bad file descriptor) [pid 5024] close(27) = -1 EBADF (Bad file descriptor) [pid 5024] close(28) = -1 EBADF (Bad file descriptor) [pid 5024] close(29) = -1 EBADF (Bad file descriptor) [pid 5024] exit_group(0) = ? [pid 5025] <... futex resumed>) = ? [pid 5025] +++ exited with 0 +++ [pid 5024] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=8, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} --- [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5027 attached , child_tidptr=0x55558b40e690) = 11 [pid 5027] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5027] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5027] setpgid(0, 0) = 0 [pid 5027] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5027] write(3, "1000", 4) = 4 [pid 5027] close(3) = 0 [pid 5027] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5027] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [pid 5027] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5027] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbe67c55000 [pid 5027] mprotect(0x7fbe67c56000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5027] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5027] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbe67c75990, parent_tid=0x7fbe67c75990, exit_signal=0, stack=0x7fbe67c55000, stack_size=0x20300, tls=0x7fbe67c756c0} => {parent_tid=[12]}, 88) = 12 ./strace-static-x86_64: Process 5028 attached [pid 5028] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053 [pid 5027] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5028] <... rseq resumed>) = 0 [pid 5027] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5028] set_robust_list(0x7fbe67c759a0, 24 [pid 5027] <... futex resumed>) = 0 [pid 5028] <... set_robust_list resumed>) = 0 [pid 5028] rt_sigprocmask(SIG_SETMASK, [], [pid 5027] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5028] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5028] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS./strace-static-x86_64: Process 5029 attached [pid 5029] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5028] <... clone resumed>, tls=NULL) = 13 [pid 5028] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5027] <... futex resumed>) = 0 [pid 5028] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5027] close(3) = -1 EBADF (Bad file descriptor) [pid 5027] close(4) = -1 EBADF (Bad file descriptor) [pid 5027] close(5) = -1 EBADF (Bad file descriptor) [pid 5027] close(6) = -1 EBADF (Bad file descriptor) [pid 5027] close(7) = -1 EBADF (Bad file descriptor) [pid 5027] close(8) = -1 EBADF (Bad file descriptor) [pid 5027] close(9) = -1 EBADF (Bad file descriptor) [pid 5027] close(10) = -1 EBADF (Bad file descriptor) [pid 5027] close(11) = -1 EBADF (Bad file descriptor) [pid 5027] close(12) = -1 EBADF (Bad file descriptor) [pid 5027] close(13) = -1 EBADF (Bad file descriptor) [pid 5027] close(14) = -1 EBADF (Bad file descriptor) [pid 5027] close(15) = -1 EBADF (Bad file descriptor) [pid 5027] close(16) = -1 EBADF (Bad file descriptor) [pid 5027] close(17) = -1 EBADF (Bad file descriptor) [pid 5027] close(18) = -1 EBADF (Bad file descriptor) [pid 5027] close(19) = -1 EBADF (Bad file descriptor) [pid 5027] close(20) = -1 EBADF (Bad file descriptor) [pid 5027] close(21) = -1 EBADF (Bad file descriptor) [pid 5027] close(22) = -1 EBADF (Bad file descriptor) [pid 5027] close(23) = -1 EBADF (Bad file descriptor) [pid 5027] close(24) = -1 EBADF (Bad file descriptor) [pid 5027] close(25) = -1 EBADF (Bad file descriptor) [pid 5027] close(26) = -1 EBADF (Bad file descriptor) [pid 5027] close(27) = -1 EBADF (Bad file descriptor) [pid 5027] close(28) = -1 EBADF (Bad file descriptor) [pid 5027] close(29) = -1 EBADF (Bad file descriptor) [pid 5027] exit_group(0 [pid 5028] <... futex resumed>) = ? [pid 5027] <... exit_group resumed>) = ? [pid 5028] +++ exited with 0 +++ [pid 5027] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=11, si_uid=0, si_status=0, si_utime=0, si_stime=1 /* 0.01 s */} --- [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5030 attached [pid 5030] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5030] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5015] <... clone resumed>, child_tidptr=0x55558b40e690) = 14 [pid 5030] <... prctl resumed>) = 0 [pid 5030] setpgid(0, 0) = 0 [pid 5030] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5030] write(3, "1000", 4) = 4 [pid 5030] close(3) = 0 [pid 5029] +++ killed by SIGSEGV (core dumped) +++ [pid 5030] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5030] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=13, si_uid=0, si_status=SIGSEGV, si_utime=0, si_stime=16 /* 0.16 s */} --- [pid 5030] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5026] +++ killed by SIGSEGV (core dumped) +++ [pid 5030] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5030] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbe67c55000 [pid 5030] mprotect(0x7fbe67c56000, 131072, PROT_READ|PROT_WRITE [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_DUMPED, si_pid=10, si_uid=0, si_status=SIGSEGV, si_utime=0, si_stime=26 /* 0.26 s */} --- [pid 5030] <... mprotect resumed>) = 0 [pid 5030] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5030] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbe67c75990, parent_tid=0x7fbe67c75990, exit_signal=0, stack=0x7fbe67c55000, stack_size=0x20300, tls=0x7fbe67c756c0}./strace-static-x86_64: Process 5031 attached [pid 5031] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053 [pid 5030] <... clone3 resumed> => {parent_tid=[15]}, 88) = 15 [pid 5031] <... rseq resumed>) = 0 [pid 5030] rt_sigprocmask(SIG_SETMASK, [], [pid 5031] set_robust_list(0x7fbe67c759a0, 24 [pid 5030] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5015] restart_syscall(<... resuming interrupted clone ...> [pid 5031] <... set_robust_list resumed>) = 0 [pid 5030] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5031] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5030] <... futex resumed>) = 0 [pid 5031] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS [pid 5030] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5015] <... restart_syscall resumed>) = 0 ./strace-static-x86_64: Process 5032 attached [pid 5031] <... clone resumed>, tls=NULL) = 16 [pid 5031] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5032] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5031] <... futex resumed>) = 1 [pid 5031] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5030] <... futex resumed>) = 0 [pid 5030] close(3) = -1 EBADF (Bad file descriptor) [pid 5030] close(4) = -1 EBADF (Bad file descriptor) [pid 5030] close(5) = -1 EBADF (Bad file descriptor) [pid 5030] close(6) = -1 EBADF (Bad file descriptor) [pid 5030] close(7) = -1 EBADF (Bad file descriptor) [pid 5030] close(8) = -1 EBADF (Bad file descriptor) [pid 5030] close(9) = -1 EBADF (Bad file descriptor) [pid 5030] close(10) = -1 EBADF (Bad file descriptor) [pid 5030] close(11) = -1 EBADF (Bad file descriptor) [pid 5030] close(12) = -1 EBADF (Bad file descriptor) [pid 5030] close(13) = -1 EBADF (Bad file descriptor) [pid 5030] close(14) = -1 EBADF (Bad file descriptor) [pid 5030] close(15) = -1 EBADF (Bad file descriptor) [pid 5030] close(16) = -1 EBADF (Bad file descriptor) [pid 5030] close(17) = -1 EBADF (Bad file descriptor) [pid 5030] close(18) = -1 EBADF (Bad file descriptor) [pid 5030] close(19) = -1 EBADF (Bad file descriptor) [pid 5030] close(20) = -1 EBADF (Bad file descriptor) [pid 5030] close(21) = -1 EBADF (Bad file descriptor) [pid 5030] close(22) = -1 EBADF (Bad file descriptor) [pid 5030] close(23) = -1 EBADF (Bad file descriptor) [pid 5030] close(24) = -1 EBADF (Bad file descriptor) [pid 5030] close(25) = -1 EBADF (Bad file descriptor) [pid 5030] close(26) = -1 EBADF (Bad file descriptor) [pid 5030] close(27) = -1 EBADF (Bad file descriptor) [pid 5030] close(28) = -1 EBADF (Bad file descriptor) [pid 5030] close(29) = -1 EBADF (Bad file descriptor) [pid 5030] exit_group(0) = ? [pid 5031] <... futex resumed>) = ? [pid 5031] +++ exited with 0 +++ [pid 5030] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=14, si_uid=0, si_status=0, si_utime=0, si_stime=2 /* 0.02 s */} --- [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55558b40e690) = 17 ./strace-static-x86_64: Process 5033 attached [pid 5033] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5033] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5033] setpgid(0, 0) = 0 [pid 5033] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5033] write(3, "1000", 4) = 4 [pid 5033] close(3) = 0 [pid 5033] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5033] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [pid 5033] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5033] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fbe67c55000 [pid 5033] mprotect(0x7fbe67c56000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5033] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5033] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fbe67c75990, parent_tid=0x7fbe67c75990, exit_signal=0, stack=0x7fbe67c55000, stack_size=0x20300, tls=0x7fbe67c756c0}./strace-static-x86_64: Process 5034 attached => {parent_tid=[18]}, 88) = 18 [pid 5033] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5033] futex(0x7fbe67d44308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5033] futex(0x7fbe67d4430c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5034] rseq(0x7fbe67c75fe0, 0x20, 0, 0x53053053) = 0 [pid 5034] set_robust_list(0x7fbe67c759a0, 24) = 0 [pid 5034] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5034] clone(child_stack=NULL, flags=CLONE_NEWNS|CLONE_SYSVSEM|CLONE_SETTLS./strace-static-x86_64: Process 5035 attached [pid 5035] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x28} --- [pid 5034] <... clone resumed>, tls=NULL) = 19 [pid 5034] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5034] futex(0x7fbe67d44308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5033] <... futex resumed>) = 0 [pid 5033] close(3) = -1 EBADF (Bad file descriptor) [pid 5033] close(4) = -1 EBADF (Bad file descriptor) [pid 5033] close(5) = -1 EBADF (Bad file descriptor) [pid 5033] close(6) = -1 EBADF (Bad file descriptor) [pid 5033] close(7) = -1 EBADF (Bad file descriptor) [pid 5033] close(8) = -1 EBADF (Bad file descriptor) [pid 5033] close(9) = -1 EBADF (Bad file descriptor) [pid 5033] close(10) = -1 EBADF (Bad file descriptor) [pid 5033] close(11) = -1 EBADF (Bad file descriptor) [pid 5033] close(12) = -1 EBADF (Bad file descriptor) [pid 5033] close(13) = -1 EBADF (Bad file descriptor) [pid 5033] close(14) = -1 EBADF (Bad file descriptor) [pid 5033] close(15) = -1 EBADF (Bad file descriptor) [pid 5033] close(16) = -1 EBADF (Bad file descriptor) [pid 5033] close(17) = -1 EBADF (Bad file descriptor) [pid 5033] close(18) = -1 EBADF (Bad file descriptor) [pid 5033] close(19) = -1 EBADF (Bad file descriptor) [pid 5033] close(20) = -1 EBADF (Bad file descriptor) [pid 5033] close(21) = -1 EBADF (Bad file descriptor) [pid 5033] close(22) = -1 EBADF (Bad file descriptor) [pid 5033] close(23) = -1 EBADF (Bad file descriptor) [pid 5033] close(24) = -1 EBADF (Bad file descriptor) [pid 5033] close(25) = -1 EBADF (Bad file descriptor) [pid 5033] close(26) = -1 EBADF (Bad file descriptor) [pid 5033] close(27) = -1 EBADF (Bad file descriptor) [pid 5033] close(28) = -1 EBADF (Bad file descriptor) [pid 5033] close(29) = -1 EBADF (Bad file descriptor) [pid 5033] exit_group(0) = ? [pid 5034] <... futex resumed>) = ? [pid 5034] +++ exited with 0 +++ [pid 5033] +++ exited with 0 +++ [pid 5015] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=17, si_uid=0, si_status=0, si_utime=0, si_stime=0} --- [pid 5015] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5036 attached [pid 5036] set_robust_list(0x55558b40e6a0, 24) = 0 [pid 5015] <... clone resumed>, child_tidptr=0x55558b40e690) = 20 [pid 5036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [ 154.745001][ T98] ===================================================== [ 154.752359][ T98] BUG: KMSAN: uninit-value in virtqueue_add+0x1e86/0x65c0 [ 154.759682][ T98] virtqueue_add+0x1e86/0x65c0 [ 154.764715][ T98] virtqueue_add_sgs+0x186/0x1b0 [ 154.769861][ T98] virtscsi_add_cmd+0x838/0xad0 [ 154.774907][ T98] virtscsi_queuecommand+0x898/0xa60 [ 154.780386][ T98] scsi_queue_rq+0x4cd0/0x5a80 [ 154.785346][ T98] blk_mq_dispatch_rq_list+0x148e/0x3ae0 [pid 5036] setpgid(0, 0) = 0 [pid 5036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5036] write(3, "1000", 4) = 4 [pid 5036] close(3) = 0 [pid 5036] futex(0x7fbe67d4430c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5036] rt_sigaction(SIGRT_1, {sa_handler=0x7fbe67ce0550, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fbe67cd1bd0}, NULL, 8) = 0 [ 154.791209][ T98] __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 154.797868][ T98] blk_mq_sched_dispatch_requests+0x12f/0x270 [ 154.804167][ T98] blk_mq_run_work_fn+0xd0/0x280 [ 154.809291][ T98] process_scheduled_works+0xa81/0x1bd0 [ 154.815023][ T98] worker_thread+0xea5/0x1560 [ 154.819921][ T98] kthread+0x3e2/0x540 [ 154.824183][ T98] ret_from_fork+0x6d/0x90 [ 154.828772][ T98] ret_from_fork_asm+0x1a/0x30 [ 154.833753][ T98] [ 154.836177][ T98] Uninit was stored to memory at: [ 154.841502][ T98] copy_page_from_iter_atomic+0x12b7/0x2b60 [ 154.847601][ T98] generic_perform_write+0x4c1/0xc60 [ 154.853081][ T98] ext4_buffered_write_iter+0x564/0xaa0 [ 154.858825][ T98] ext4_file_write_iter+0x208/0x3450 [ 154.864292][ T98] __kernel_write_iter+0x68b/0xc40 [ 154.869584][ T98] dump_user_range+0x8dc/0xee0 [ 154.874514][ T98] elf_core_dump+0x520f/0x59c0 [ 154.879454][ T98] do_coredump+0x32d5/0x4920 [ 154.884201][ T98] get_signal+0x267e/0x2d00 [ 154.888862][ T98] arch_do_signal_or_restart+0x53/0xcb0 [ 154.894622][ T98] irqentry_exit_to_user_mode+0xa6/0x160 [ 154.900449][ T98] irqentry_exit+0x16/0x60 [ 154.905013][ T98] exc_page_fault+0x523/0x730 [ 154.909844][ T98] asm_exc_page_fault+0x2b/0x30 [ 154.914843][ T98] [ 154.917239][ T98] Uninit was created at: [ 154.921694][ T98] __alloc_pages+0x9d6/0xe70 [ 154.926476][ T98] alloc_pages_mpol+0x299/0x990 [ 154.931481][ T98] alloc_pages+0x1bf/0x1e0 [ 154.936049][ T98] dump_user_range+0x4a/0xee0 [ 154.940891][ T98] elf_core_dump+0x520f/0x59c0 [ 154.945833][ T98] do_coredump+0x32d5/0x4920 [ 154.950580][ T98] get_signal+0x267e/0x2d00 [ 154.955244][ T98] arch_do_signal_or_restart+0x53/0xcb0 [ 154.960999][ T98] irqentry_exit_to_user_mode+0xa6/0x160 [ 154.966815][ T98] irqentry_exit+0x16/0x60 [ 154.971405][ T98] exc_page_fault+0x523/0x730 [ 154.976234][ T98] asm_exc_page_fault+0x2b/0x30 [ 154.981240][ T98] [ 154.983637][ T98] Bytes 0-1023 of 1024 are uninitialized [ 154.989372][ T98] Memory access of size 1024 starts at ffff88812e8a1c00 [ 154.996413][ T98] [ 154.998820][ T98] CPU: 1 PID: 98 Comm: kworker/1:1H Not tainted 6.8.0-syzkaller-13006-g4f55aa85a874 #0 [ 155.008606][ T98] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 155.018805][ T98] Workqueue: kblockd blk_mq_run_work_fn [ 155.024534][ T98] ===================================================== [ 155.031552][ T98] Disabling lock debugging due to kernel taint [ 155.037799][ T98] Kernel panic - not syncing: kmsan.panic set ... [ 155.044325][ T98] CPU: 1 PID: 98 Comm: kworker/1:1H Tainted: G B 6.8.0-syzkaller-13006-g4f55aa85a874 #0 [ 155.055593][ T98] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024 [ 155.065793][ T98] Workqueue: kblockd blk_mq_run_work_fn [ 155.071542][ T98] Call Trace: [ 155.074918][ T98] [ 155.077941][ T98] dump_stack_lvl+0x216/0x2d0 [ 155.082833][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.088884][ T98] dump_stack+0x1e/0x30 [ 155.093203][ T98] panic+0x4e2/0xcd0 [ 155.097268][ T98] ? kmsan_get_metadata+0xd1/0x1d0 [ 155.102549][ T98] kmsan_report+0x2d5/0x2e0 [ 155.107261][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.112650][ T98] ? kmsan_internal_set_shadow_origin+0x66/0xe0 [ 155.119105][ T98] ? kmsan_internal_check_memory+0x48c/0x560 [ 155.125288][ T98] ? kmsan_handle_dma+0xac/0xc0 [ 155.130348][ T98] ? virtqueue_add+0x1e86/0x65c0 [ 155.135468][ T98] ? virtqueue_add_sgs+0x186/0x1b0 [ 155.140769][ T98] ? virtscsi_add_cmd+0x838/0xad0 [ 155.145972][ T98] ? virtscsi_queuecommand+0x898/0xa60 [ 155.151611][ T98] ? scsi_queue_rq+0x4cd0/0x5a80 [ 155.156723][ T98] ? blk_mq_dispatch_rq_list+0x148e/0x3ae0 [ 155.162754][ T98] ? __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 155.169563][ T98] ? blk_mq_sched_dispatch_requests+0x12f/0x270 [ 155.176047][ T98] ? blk_mq_run_work_fn+0xd0/0x280 [ 155.181354][ T98] ? process_scheduled_works+0xa81/0x1bd0 [ 155.187257][ T98] ? worker_thread+0xea5/0x1560 [ 155.192302][ T98] ? kthread+0x3e2/0x540 [ 155.196723][ T98] ? ret_from_fork+0x6d/0x90 [ 155.201478][ T98] ? ret_from_fork_asm+0x1a/0x30 [ 155.206613][ T98] ? scsi_queue_rq+0x4342/0x5a80 [ 155.211731][ T98] ? blk_mq_dispatch_rq_list+0x148e/0x3ae0 [ 155.217764][ T98] ? __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 155.224572][ T98] ? blk_mq_sched_dispatch_requests+0x12f/0x270 [ 155.231028][ T98] ? blk_mq_run_work_fn+0xd0/0x280 [ 155.236313][ T98] ? process_scheduled_works+0xa81/0x1bd0 [ 155.242211][ T98] ? worker_thread+0xea5/0x1560 [ 155.247231][ T98] ? kthread+0x3e2/0x540 [ 155.251650][ T98] ? ret_from_fork+0x6d/0x90 [ 155.256401][ T98] ? ret_from_fork_asm+0x1a/0x30 [ 155.261527][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.266883][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.272911][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.278276][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.284309][ T98] ? should_fail_ex+0x4a/0x800 [ 155.289237][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.294594][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.300624][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.305988][ T98] kmsan_internal_check_memory+0x48c/0x560 [ 155.312017][ T98] kmsan_handle_dma+0xac/0xc0 [ 155.316904][ T98] virtqueue_add+0x1e86/0x65c0 [ 155.321870][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.327899][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.333258][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.338622][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.344676][ T98] virtqueue_add_sgs+0x186/0x1b0 [ 155.349811][ T98] virtscsi_add_cmd+0x838/0xad0 [ 155.354887][ T98] virtscsi_queuecommand+0x898/0xa60 [ 155.360367][ T98] ? __pfx_virtscsi_queuecommand+0x10/0x10 [ 155.366379][ T98] scsi_queue_rq+0x4cd0/0x5a80 [ 155.371382][ T98] ? __pfx_scsi_queue_rq+0x10/0x10 [ 155.376690][ T98] blk_mq_dispatch_rq_list+0x148e/0x3ae0 [ 155.382548][ T98] ? sbitmap_get+0x4d5/0x670 [ 155.387313][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.393372][ T98] ? kmsan_get_metadata+0x146/0x1d0 [ 155.398756][ T98] ? dd_dispatch_request+0x9f1/0xa20 [ 155.404290][ T98] __blk_mq_sched_dispatch_requests+0x11b7/0x26e0 [ 155.410989][ T98] ? finish_task_switch+0x1c8/0x8f0 [ 155.416425][ T98] ? __blk_mq_sched_dispatch_requests+0x1071/0x26e0 [ 155.423254][ T98] blk_mq_sched_dispatch_requests+0x12f/0x270 [ 155.429551][ T98] blk_mq_run_work_fn+0xd0/0x280 [ 155.434672][ T98] ? __pfx_blk_mq_run_work_fn+0x10/0x10 [ 155.440399][ T98] process_scheduled_works+0xa81/0x1bd0 [ 155.446177][ T98] worker_thread+0xea5/0x1560 [ 155.451041][ T98] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 155.457115][ T98] kthread+0x3e2/0x540 [ 155.461402][ T98] ? __pfx_worker_thread+0x10/0x10 [ 155.466704][ T98] ? __pfx_kthread+0x10/0x10 [ 155.471478][ T98] ret_from_fork+0x6d/0x90 [ 155.476058][ T98] ? __pfx_kthread+0x10/0x10 [ 155.480840][ T98] ret_from_fork_asm+0x1a/0x30 [ 155.485813][ T98] [ 156.902201][ T98] Shutting down cpus with NMI [ 156.907326][ T98] Kernel Offset: disabled [ 156.911708][ T98] Rebooting in 86400 seconds..