./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor599038527 <...> Warning: Permanently added '10.128.0.30' (ED25519) to the list of known hosts. execve("./syz-executor599038527", ["./syz-executor599038527"], 0x7ffde7b30a30 /* 10 vars */) = 0 brk(NULL) = 0x555562bf0000 brk(0x555562bf0e00) = 0x555562bf0e00 arch_prctl(ARCH_SET_FS, 0x555562bf0480) = 0 set_tid_address(0x555562bf0750) = 5837 set_robust_list(0x555562bf0760, 24) = 0 rseq(0x555562bf0da0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor599038527", 4096) = 27 getrandom("\xd0\xd6\x69\x6d\x62\x7c\xf2\x13", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555562bf0e00 brk(0x555562c11e00) = 0x555562c11e00 brk(0x555562c12000) = 0x555562c12000 mprotect(0x7f4dd28d7000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGSEGV, {sa_handler=0x7f4dd2834340, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f4dd283b500}, NULL, 8) = 0 rt_sigaction(SIGBUS, {sa_handler=0x7f4dd2834340, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f4dd283b500}, executing program NULL, 8) = 0 write(1, "executing program\n", 18) = 18 socket(AF_INET6, SOCK_STREAM, IPPROTO_IP) = 3 setsockopt(3, SOL_TCP, TCP_REPAIR, [1], 4) = 0 connect(3, {sa_family=AF_INET6, sin6_port=htons(0), sin6_flowinfo=htonl(0), inet_pton(AF_INET6, "::1", &sin6_addr), sin6_scope_id=0}, 28) = 0 setsockopt(3, SOL_TCP, TCP_ULP, [7564404], 4) = 0 setsockopt(3, SOL_TCP, TCP_REPAIR_QUEUE, [1], 4) = 0 setsockopt(3, SOL_TLS, TLS_TX, "\x03\x03\x33\x00\xb3\x91\x62\xa1\xdc\x8b\x4c\x3f\x7e\xa8\xf8\x6a\xc3\x96\x96\xdc\xed\xdf\x8c\x42\x1b\xbd\xcc\x0f\x00\x00\x00\x00\xf9\x80\x9f\xe3\x9a\x1d\xaf\xc9", 40) = 0 sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="n7", iov_len=2}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 2 setsockopt(3, SOL_TLS, TLS_RX, "\x03\x03\x33\x00\x00\x00\x37\xd7\x00\x94\x00\x00\xc0\xb6\xc5\xb2\x9c\xa2\xb8\x38\xd4\x1a\xc2\xfc\x7d\xdf\x97\x2d\xe9\xbe\x1e\xae\xbb\x10\x00\x00\x00\x00\x00\x01", 40) = 0 mmap(0x400000000000, 9814016, PROT_READ|PROT_GROWSDOWN, MAP_SHARED|MAP_FIXED|MAP_ANONYMOUS|MAP_NORESERVE|MAP_POPULATE|MAP_NONBLOCK|MAP_HUGETLB|0x600280|21< 0b 90 eb 84 e8 a8 b8 31 f7 90 0f 0b 90 e9 8c fe ff ff 89 d9 80 [ 69.515745][ T5837] RSP: 0018:ffffc90003b87700 EFLAGS: 00010293 [ 69.521809][ T5837] RAX: ffffffff8a90068d RBX: ffff8880573758dc RCX: ffff888034bf9e00 [ 69.529962][ T5837] RDX: 0000000000000000 RSI: 000000000000001f RDI: 0000000000000000 [ 69.538085][ T5837] RBP: ffffc90003b877f0 R08: ffffffff8a9002fe R09: 1ffff1100b0f11bc [ 69.546471][ T5837] R10: dffffc0000000000 R11: ffffed100b0f11bd R12: ffff8880573758d0 [ 69.554537][ T5837] R13: dffffc0000000000 R14: 0000000000000000 R15: 000000000000001f [ 69.562571][ T5837] FS: 0000555562bf0480(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 69.571619][ T5837] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.578364][ T5837] CR2: 0000400000000218 CR3: 0000000078fee000 CR4: 00000000003526f0 [ 69.586427][ T5837] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.594902][ T5837] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.603004][ T5837] Call Trace: [ 69.606352][ T5837] [ 69.609292][ T5837] ? __warn+0x165/0x4d0 [ 69.613443][ T5837] ? tls_strp_msg_load+0x72e/0xa80 [ 69.618611][ T5837] ? report_bug+0x2b3/0x500 [ 69.623161][ T5837] ? tls_strp_msg_load+0x72e/0xa80 [ 69.628524][ T5837] ? handle_bug+0x60/0x90 [ 69.632883][ T5837] ? exc_invalid_op+0x1a/0x50 [ 69.637629][ T5837] ? asm_exc_invalid_op+0x1a/0x20 [ 69.642670][ T5837] ? tls_strp_msg_load+0x39e/0xa80 [ 69.647828][ T5837] ? tls_strp_msg_load+0x72d/0xa80 [ 69.652954][ T5837] ? tls_strp_msg_load+0x72e/0xa80 [ 69.658147][ T5837] ? __pfx_tls_strp_msg_load+0x10/0x10 [ 69.663619][ T5837] ? __pfx_lock_acquire+0x10/0x10 [ 69.668710][ T5837] tls_rx_rec_wait+0x280/0xa60 [ 69.673524][ T5837] ? __pfx_tls_rx_rec_wait+0x10/0x10 [ 69.678903][ T5837] ? sk_psock_get+0x408/0x520 [ 69.683647][ T5837] ? __pfx_woken_wake_function+0x10/0x10 [ 69.689986][ T5837] ? __pfx_sk_psock_get+0x10/0x10 [ 69.695133][ T5837] tls_sw_recvmsg+0x85c/0x1c30 [ 69.699963][ T5837] ? __pfx_tls_sw_recvmsg+0x10/0x10 [ 69.705247][ T5837] ? aa_sk_perm+0x96d/0xab0 [ 69.709796][ T5837] ? __pfx_tls_sw_recvmsg+0x10/0x10 [ 69.715086][ T5837] inet6_recvmsg+0x2c9/0x730 [ 69.719706][ T5837] ? do_raw_spin_lock+0x14f/0x370 [ 69.724811][ T5837] ? __pfx_inet6_recvmsg+0x10/0x10 [ 69.729939][ T5837] ? aa_sock_msg_perm+0x91/0x160 [ 69.734925][ T5837] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 69.740225][ T5837] sock_recvmsg+0x109/0x280 [ 69.744789][ T5837] __sys_recvfrom+0x202/0x380 [ 69.749493][ T5837] ? __pfx___sys_recvfrom+0x10/0x10 [ 69.754878][ T5837] ? _raw_spin_unlock_irq+0x2e/0x50 [ 69.760125][ T5837] ? ptrace_notify+0x27f/0x380 [ 69.764948][ T5837] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 69.771296][ T5837] __x64_sys_recvfrom+0xde/0x100 [ 69.776292][ T5837] do_syscall_64+0xf3/0x230 [ 69.780809][ T5837] ? clear_bhb_loop+0x35/0x90 [ 69.785647][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 69.791554][ T5837] RIP: 0033:0x7f4dd28643a9 [ 69.796024][ T5837] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 69.815774][ T5837] RSP: 002b:00007ffed5446098 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 69.824264][ T5837] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4dd28643a9 [ 69.832285][ T5837] RDX: 0000000000001ff4 RSI: 0000400000000100 RDI: 0000000000000003 [ 69.840339][ T5837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 69.848387][ T5837] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000000 [ 69.856422][ T5837] R13: 00007ffed5446318 R14: 0000000000000001 R15: 0000000000000001 [ 69.864451][ T5837] [ 69.867497][ T5837] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 69.874820][ T5837] CPU: 0 UID: 0 PID: 5837 Comm: syz-executor599 Not tainted 6.14.0-rc4-syzkaller-00210-gccc2f5a436fb #0 [ 69.886000][ T5837] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 69.896148][ T5837] Call Trace: [ 69.899437][ T5837] [ 69.902380][ T5837] dump_stack_lvl+0x241/0x360 [ 69.907050][ T5837] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.912405][ T5837] ? __pfx__printk+0x10/0x10 [ 69.916977][ T5837] ? _printk+0xd5/0x120 [ 69.921113][ T5837] ? __init_begin+0x41000/0x41000 [ 69.926133][ T5837] ? vscnprintf+0x5d/0x90 [ 69.930449][ T5837] panic+0x349/0x880 [ 69.934418][ T5837] ? __warn+0x174/0x4d0 [ 69.938580][ T5837] ? __pfx_panic+0x10/0x10 [ 69.943004][ T5837] __warn+0x344/0x4d0 [ 69.947072][ T5837] ? tls_strp_msg_load+0x72e/0xa80 [ 69.952184][ T5837] report_bug+0x2b3/0x500 [ 69.956506][ T5837] ? tls_strp_msg_load+0x72e/0xa80 [ 69.961624][ T5837] handle_bug+0x60/0x90 [ 69.965776][ T5837] exc_invalid_op+0x1a/0x50 [ 69.970296][ T5837] asm_exc_invalid_op+0x1a/0x20 [ 69.975144][ T5837] RIP: 0010:tls_strp_msg_load+0x72e/0xa80 [ 69.980860][ T5837] Code: 5c 24 18 e9 72 fc ff ff e8 cf b8 31 f7 90 0f 0b 90 e9 91 f9 ff ff e8 c1 b8 31 f7 90 0f 0b 90 e9 be f9 ff ff e8 b3 b8 31 f7 90 <0f> 0b 90 eb 84 e8 a8 b8 31 f7 90 0f 0b 90 e9 8c fe ff ff 89 d9 80 [ 70.000462][ T5837] RSP: 0018:ffffc90003b87700 EFLAGS: 00010293 [ 70.006529][ T5837] RAX: ffffffff8a90068d RBX: ffff8880573758dc RCX: ffff888034bf9e00 [ 70.014496][ T5837] RDX: 0000000000000000 RSI: 000000000000001f RDI: 0000000000000000 [ 70.022469][ T5837] RBP: ffffc90003b877f0 R08: ffffffff8a9002fe R09: 1ffff1100b0f11bc [ 70.030436][ T5837] R10: dffffc0000000000 R11: ffffed100b0f11bd R12: ffff8880573758d0 [ 70.038401][ T5837] R13: dffffc0000000000 R14: 0000000000000000 R15: 000000000000001f [ 70.046382][ T5837] ? tls_strp_msg_load+0x39e/0xa80 [ 70.051510][ T5837] ? tls_strp_msg_load+0x72d/0xa80 [ 70.056627][ T5837] ? __pfx_tls_strp_msg_load+0x10/0x10 [ 70.062080][ T5837] ? __pfx_lock_acquire+0x10/0x10 [ 70.067104][ T5837] tls_rx_rec_wait+0x280/0xa60 [ 70.072006][ T5837] ? __pfx_tls_rx_rec_wait+0x10/0x10 [ 70.077311][ T5837] ? sk_psock_get+0x408/0x520 [ 70.082005][ T5837] ? __pfx_woken_wake_function+0x10/0x10 [ 70.087736][ T5837] ? __pfx_sk_psock_get+0x10/0x10 [ 70.092765][ T5837] tls_sw_recvmsg+0x85c/0x1c30 [ 70.097649][ T5837] ? __pfx_tls_sw_recvmsg+0x10/0x10 [ 70.102852][ T5837] ? aa_sk_perm+0x96d/0xab0 [ 70.107392][ T5837] ? __pfx_tls_sw_recvmsg+0x10/0x10 [ 70.112610][ T5837] inet6_recvmsg+0x2c9/0x730 [ 70.117194][ T5837] ? do_raw_spin_lock+0x14f/0x370 [ 70.122212][ T5837] ? __pfx_inet6_recvmsg+0x10/0x10 [ 70.127318][ T5837] ? aa_sock_msg_perm+0x91/0x160 [ 70.132261][ T5837] ? bpf_lsm_socket_recvmsg+0x9/0x10 [ 70.137550][ T5837] sock_recvmsg+0x109/0x280 [ 70.142049][ T5837] __sys_recvfrom+0x202/0x380 [ 70.146725][ T5837] ? __pfx___sys_recvfrom+0x10/0x10 [ 70.151943][ T5837] ? _raw_spin_unlock_irq+0x2e/0x50 [ 70.157128][ T5837] ? ptrace_notify+0x27f/0x380 [ 70.161890][ T5837] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 70.168215][ T5837] __x64_sys_recvfrom+0xde/0x100 [ 70.173147][ T5837] do_syscall_64+0xf3/0x230 [ 70.177734][ T5837] ? clear_bhb_loop+0x35/0x90 [ 70.182415][ T5837] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.188300][ T5837] RIP: 0033:0x7f4dd28643a9 [ 70.192710][ T5837] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 70.212400][ T5837] RSP: 002b:00007ffed5446098 EFLAGS: 00000246 ORIG_RAX: 000000000000002d [ 70.220815][ T5837] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4dd28643a9 [ 70.228786][ T5837] RDX: 0000000000001ff4 RSI: 0000400000000100 RDI: 0000000000000003 [ 70.236754][ T5837] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000 [ 70.244719][ T5837] R10: 0000000000000040 R11: 0000000000000246 R12: 0000000000000000 [ 70.252679][ T5837] R13: 00007ffed5446318 R14: 0000000000000001 R15: 0000000000000001 [ 70.260654][ T5837] [ 70.264111][ T5837] Kernel Offset: disabled [ 70.268479][ T5837] Rebooting in 86400 seconds..