./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3887721707 <...> Warning: Permanently added '10.128.1.232' (ED25519) to the list of known hosts. execve("./syz-executor3887721707", ["./syz-executor3887721707"], 0x7ffd32584240 /* 10 vars */) = 0 brk(NULL) = 0x55557b6f2000 brk(0x55557b6f2d40) = 0x55557b6f2d40 arch_prctl(ARCH_SET_FS, 0x55557b6f23c0) = 0 set_tid_address(0x55557b6f2690) = 5849 set_robust_list(0x55557b6f26a0, 24) = 0 rseq(0x55557b6f2ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3887721707", 4096) = 28 getrandom("\xa0\x6c\xe7\x5b\x88\x38\xd5\x60", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557b6f2d40 brk(0x55557b713d40) = 0x55557b713d40 brk(0x55557b714000) = 0x55557b714000 mprotect(0x7f157bb23000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5850 attached [pid 5850] set_robust_list(0x55557b6f26a0, 24 [pid 5849] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5850 [pid 5850] <... set_robust_list resumed>) = 0 [pid 5850] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5851 attached [pid 5851] set_robust_list(0x55557b6f26a0, 24) = 0 ./strace-static-x86_64: Process 5852 attached [pid 5851] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5852] set_robust_list(0x55557b6f26a0, 24 [pid 5851] <... prctl resumed>) = 0 [pid 5850] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5851 [pid 5849] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5852 [pid 5852] <... set_robust_list resumed>) = 0 [pid 5851] setpgid(0, 0 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5852] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] <... setpgid resumed>) = 0 [pid 5851] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5853 attached ) = 3 [pid 5851] write(3, "1000", 4./strace-static-x86_64: Process 5854 attached [pid 5853] set_robust_list(0x55557b6f26a0, 24 [pid 5852] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5853 [pid 5851] <... write resumed>) = 4 [pid 5849] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5854 [pid 5854] set_robust_list(0x55557b6f26a0, 24 [pid 5851] close(3 [pid 5849] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5853] <... set_robust_list resumed>) = 0 [pid 5851] <... close resumed>) = 0 [pid 5854] <... set_robust_list resumed>) = 0 [pid 5851] write(1, "executing program\n", 18executing program [pid 5854] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5853] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5851] <... write resumed>) = 18 ./strace-static-x86_64: Process 5855 attached [pid 5851] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5855] set_robust_list(0x55557b6f26a0, 24 [pid 5851] <... futex resumed>) = 0 [pid 5851] rt_sigaction(SIGRT_1, {sa_handler=0x7f157bac5450, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f157bab6ad0}, NULL, 8) = 0 [pid 5855] <... set_robust_list resumed>) = 0 [pid 5851] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5855] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5851] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5851] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f157ba38000 [pid 5851] mprotect(0x7f157ba39000, 131072, PROT_READ|PROT_WRITE./strace-static-x86_64: Process 5856 attached [pid 5849] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5855 [pid 5851] <... mprotect resumed>) = 0 ./strace-static-x86_64: Process 5857 attached [pid 5853] <... prctl resumed>) = 0 [pid 5851] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5856] set_robust_list(0x55557b6f26a0, 24 [pid 5853] setpgid(0, 0 [pid 5851] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5856] <... set_robust_list resumed>) = 0 [pid 5853] <... setpgid resumed>) = 0 [pid 5851] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba58990, parent_tid=0x7f157ba58990, exit_signal=0, stack=0x7f157ba38000, stack_size=0x20300, tls=0x7f157ba586c0}./strace-static-x86_64: Process 5858 attached [pid 5857] set_robust_list(0x55557b6f26a0, 24 [pid 5856] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5853] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5858] rseq(0x7f157ba58fe0, 0x20, 0, 0x53053053 [pid 5857] <... set_robust_list resumed>) = 0 [pid 5856] <... prctl resumed>) = 0 [pid 5855] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5856 [pid 5854] <... clone resumed>, child_tidptr=0x55557b6f2690) = 5857 [pid 5856] setpgid(0, 0 [pid 5851] <... clone3 resumed> => {parent_tid=[5858]}, 88) = 5858 [pid 5856] <... setpgid resumed>) = 0 [pid 5851] rt_sigprocmask(SIG_SETMASK, [], [pid 5856] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5853] <... openat resumed>) = 3 [pid 5851] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] <... rseq resumed>) = 0 [pid 5857] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5856] <... openat resumed>) = 3 [pid 5853] write(3, "1000", 4 [pid 5851] <... futex resumed>) = 0 [pid 5858] set_robust_list(0x7f157ba589a0, 24) = 0 [pid 5853] <... write resumed>) = 4 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] rt_sigprocmask(SIG_SETMASK, [], [pid 5853] close(3 [pid 5858] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] <... prctl resumed>) = 0 [pid 5858] madvise(0x200000a93000, 16384, MADV_HUGEPAGE [pid 5853] <... close resumed>) = 0 [pid 5856] write(3, "1000", 4 [pid 5853] write(1, "executing program\n", 18executing program [pid 5856] <... write resumed>) = 4 [pid 5856] close(3) = 0 [pid 5856] write(1, "executing program\n", 18) = 18 [pid 5856] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000executing program ) = 0 [pid 5856] rt_sigaction(SIGRT_1, {sa_handler=0x7f157bac5450, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f157bab6ad0}, NULL, 8) = 0 [pid 5858] <... madvise resumed>) = 0 [pid 5857] setpgid(0, 0 [pid 5856] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], [pid 5857] <... setpgid resumed>) = 0 [pid 5856] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] <... write resumed>) = 18 [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5857] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5856] <... mmap resumed>) = 0x7f157ba38000 [pid 5858] <... futex resumed>) = 1 [pid 5857] <... openat resumed>) = 3 [pid 5856] mprotect(0x7f157ba39000, 131072, PROT_READ|PROT_WRITE [pid 5853] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] <... futex resumed>) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5858] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5856] <... mprotect resumed>) = 0 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5857] write(3, "1000", 4 [pid 5856] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5853] rt_sigaction(SIGRT_1, {sa_handler=0x7f157bac5450, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f157bab6ad0}, [pid 5851] <... futex resumed>) = 0 [pid 5858] mremap(0x200000a96000, 4096, 8388608, MREMAP_MAYMOVE|MREMAP_FIXED, 0x200000130000 [pid 5857] <... write resumed>) = 4 [pid 5856] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5853] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] <... mremap resumed>) = 0x200000130000 [pid 5857] close(3 [pid 5856] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba58990, parent_tid=0x7f157ba58990, exit_signal=0, stack=0x7f157ba38000, stack_size=0x20300, tls=0x7f157ba586c0} [pid 5853] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], ./strace-static-x86_64: Process 5859 attached [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] <... futex resumed>) = 0 [pid 5859] rseq(0x7f157ba58fe0, 0x20, 0, 0x53053053 [pid 5858] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... rseq resumed>) = 0 [pid 5858] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5851] <... futex resumed>) = 0 [pid 5859] set_robust_list(0x7f157ba589a0, 24 [pid 5858] mlock(0x200000000000, 8388608 [pid 5856] <... clone3 resumed> => {parent_tid=[5859]}, 88) = 5859 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5859] <... set_robust_list resumed>) = 0 [pid 5857] <... close resumed>) = 0 [pid 5856] rt_sigprocmask(SIG_SETMASK, [], [pid 5853] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] rt_sigprocmask(SIG_SETMASK, [], executing program [pid 5857] write(1, "executing program\n", 18 [pid 5853] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5857] <... write resumed>) = 18 [pid 5853] <... mmap resumed>) = 0x7f157ba38000 [pid 5857] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] mprotect(0x7f157ba39000, 131072, PROT_READ|PROT_WRITE [pid 5857] <... futex resumed>) = 0 [pid 5853] <... mprotect resumed>) = 0 [pid 5857] rt_sigaction(SIGRT_1, {sa_handler=0x7f157bac5450, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f157bab6ad0}, [pid 5853] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5857] <... rt_sigaction resumed>NULL, 8) = 0 [pid 5853] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5857] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5853] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba58990, parent_tid=0x7f157ba58990, exit_signal=0, stack=0x7f157ba38000, stack_size=0x20300, tls=0x7f157ba586c0} [pid 5857] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0./strace-static-x86_64: Process 5860 attached [pid 5859] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5857] <... mmap resumed>) = 0x7f157ba38000 [pid 5856] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5860] rseq(0x7f157ba58fe0, 0x20, 0, 0x53053053 [pid 5859] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5856] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5860] <... rseq resumed>) = 0 [pid 5859] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5860] set_robust_list(0x7f157ba589a0, 24 [pid 5856] <... futex resumed>) = 0 [pid 5860] <... set_robust_list resumed>) = 0 [pid 5859] madvise(0x200000a93000, 16384, MADV_HUGEPAGE [pid 5860] rt_sigprocmask(SIG_SETMASK, [], [pid 5856] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5860] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5859] <... madvise resumed>) = 0 [pid 5858] <... mlock resumed>) = 0 [pid 5857] mprotect(0x7f157ba39000, 131072, PROT_READ|PROT_WRITE [pid 5853] <... clone3 resumed> => {parent_tid=[5860]}, 88) = 5860 [pid 5860] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5859] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] <... mprotect resumed>) = 0 [pid 5859] <... futex resumed>) = 1 [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] <... futex resumed>) = 0 [pid 5853] rt_sigprocmask(SIG_SETMASK, [], [pid 5859] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] <... futex resumed>) = 1 [pid 5857] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5856] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5851] <... futex resumed>) = 0 [pid 5859] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5858] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5856] <... futex resumed>) = 0 [pid 5853] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] mremap(0x200000a96000, 4096, 8388608, MREMAP_MAYMOVE|MREMAP_FIXED, 0x200000130000 [pid 5858] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5856] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5851] <... futex resumed>) = 0 [pid 5860] <... futex resumed>) = 0 [pid 5859] <... mremap resumed>) = 0x200000130000 [pid 5858] mbind(0x200000001000, 8388608, MPOL_DEFAULT, NULL, 0, MPOL_MF_MOVE [pid 5857] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5853] <... futex resumed>) = 1 [pid 5860] madvise(0x200000a93000, 16384, MADV_HUGEPAGE [pid 5859] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba58990, parent_tid=0x7f157ba58990, exit_signal=0, stack=0x7f157ba38000, stack_size=0x20300, tls=0x7f157ba586c0} [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5861 attached [pid 5860] <... madvise resumed>) = 0 [pid 5859] <... futex resumed>) = 1 [pid 5856] <... futex resumed>) = 0 [pid 5853] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] rseq(0x7f157ba58fe0, 0x20, 0, 0x53053053 [pid 5856] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... rseq resumed>) = 0 [pid 5859] mlock(0x200000000000, 8388608 [pid 5856] <... futex resumed>) = 0 [pid 5861] set_robust_list(0x7f157ba589a0, 24 [pid 5856] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5860] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] <... clone3 resumed> => {parent_tid=[5861]}, 88) = 5861 [pid 5861] <... set_robust_list resumed>) = 0 [pid 5861] rt_sigprocmask(SIG_SETMASK, [], [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5861] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5861] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5860] <... futex resumed>) = 1 [pid 5857] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5860] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] <... futex resumed>) = 1 [pid 5861] <... futex resumed>) = 0 [pid 5857] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] madvise(0x200000a93000, 16384, MADV_HUGEPAGE) = 0 [pid 5861] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5861] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5853] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5860] <... futex resumed>) = 0 [pid 5853] <... futex resumed>) = 1 [pid 5860] mremap(0x200000a96000, 4096, 8388608, MREMAP_MAYMOVE|MREMAP_FIXED, 0x200000130000 [pid 5857] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] <... futex resumed>) = 0 [pid 5860] <... mremap resumed>) = 0x200000130000 [pid 5857] <... futex resumed>) = 1 [pid 5861] mremap(0x200000a96000, 4096, 8388608, MREMAP_MAYMOVE|MREMAP_FIXED, 0x200000130000) = 0x200000130000 [pid 5861] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5861] <... futex resumed>) = 0 [pid 5860] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5857] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5861] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... futex resumed>) = 0 [pid 5860] <... futex resumed>) = 1 [pid 5857] <... futex resumed>) = 1 [pid 5853] <... futex resumed>) = 0 [pid 5861] mlock(0x200000000000, 8388608 [pid 5860] mlock(0x200000000000, 8388608 [pid 5857] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5853] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5853] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5859] <... mlock resumed>) = 0 [pid 5861] <... mlock resumed>) = 0 [pid 5860] <... mlock resumed>) = 0 [pid 5856] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5851] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5859] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5861] <... futex resumed>) = 1 [pid 5860] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5859] <... futex resumed>) = 0 [pid 5857] <... futex resumed>) = 0 [pid 5856] <... futex resumed>) = 0 [pid 5851] <... futex resumed>) = 0 [pid 5861] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5860] <... futex resumed>) = 1 [pid 5859] mbind(0x200000001000, 8388608, MPOL_DEFAULT, NULL, 0, MPOL_MF_MOVE [pid 5857] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5853] <... futex resumed>) = 0 [pid 5851] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5861] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5860] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] <... mbind resumed>) = 0 [pid 5857] <... futex resumed>) = 0 [pid 5853] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] <... mmap resumed>) = 0x7f157ba17000 [pid 5860] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5857] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5853] <... futex resumed>) = 0 [pid 5851] mprotect(0x7f157ba18000, 131072, PROT_READ|PROT_WRITE [pid 5860] mbind(0x200000001000, 8388608, MPOL_DEFAULT, NULL, 0, MPOL_MF_MOVE [pid 5853] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5851] <... mprotect resumed>) = 0 [pid 5861] mbind(0x200000001000, 8388608, MPOL_DEFAULT, NULL, 0, MPOL_MF_MOVE [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5851] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba37990, parent_tid=0x7f157ba37990, exit_signal=0, stack=0x7f157ba17000, stack_size=0x20300, tls=0x7f157ba376c0} [pid 5858] <... futex resumed>) = 0 [pid 5851] <... clone3 resumed> => {parent_tid=[5862]}, 88) = 5862 [pid 5851] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5851] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5851] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5862 attached [pid 5862] rseq(0x7f157ba37fe0, 0x20, 0, 0x53053053) = 0 [pid 5862] set_robust_list(0x7f157ba379a0, 24) = 0 [pid 5862] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5862] userfaultfd(UFFD_USER_MODE_ONLY) = 3 [pid 5862] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5851] <... futex resumed>) = 0 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5862] <... futex resumed>) = 1 [pid 5862] futex(0x7f157bb29318, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5858] ioctl(3, UFFDIO_API, {api=0xaa, features=0 => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|UFFD_FEATURE_EXACT_ADDRESS|0x14000, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] <... futex resumed>) = 0 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] ioctl(3, UFFDIO_REGISTER, {range={start=0x2000000e2000, len=0xc00000}, mode=UFFDIO_REGISTER_MODE_WP, ioctls=1<<_UFFDIO_WAKE|1<<_UFFDIO_COPY|1<<_UFFDIO_ZEROPAGE|1<<_UFFDIO_WRITEPROTECT|0x120}) = 0 [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] <... futex resumed>) = 0 [pid 5851] futex(0x7f157bb29308, FUTEX_WAKE_PRIVATE, 1000000 [pid 5858] ioctl(3, _IOC(_IOC_READ|_IOC_WRITE, 0xaa, 0x5, 0x28), 0x200000000180 [pid 5851] <... futex resumed>) = 0 [pid 5851] futex(0x7f157bb2930c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5858] <... ioctl resumed>) = -1 EEXIST (File exists) [pid 5858] futex(0x7f157bb2930c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5851] <... futex resumed>) = 0 [pid 5858] futex(0x7f157bb29308, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5851] exit_group(0 [pid 5858] <... futex resumed>) = ? [pid 5851] <... exit_group resumed>) = ? [pid 5858] +++ exited with 0 +++ [pid 5862] <... futex resumed>) = ? [pid 5856] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5856] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5856] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f157ba17000 [pid 5856] mprotect(0x7f157ba18000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5856] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5857] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5856] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5857] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5853] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5853] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba37990, parent_tid=0x7f157ba37990, exit_signal=0, stack=0x7f157ba17000, stack_size=0x20300, tls=0x7f157ba376c0} [pid 5853] <... futex resumed>) = 0 [pid 5857] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5853] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0 [pid 5857] <... mmap resumed>) = 0x7f157ba17000 [pid 5853] <... mmap resumed>) = 0x7f157ba17000 [pid 5857] mprotect(0x7f157ba18000, 131072, PROT_READ|PROT_WRITE [pid 5853] mprotect(0x7f157ba18000, 131072, PROT_READ|PROT_WRITE [pid 5857] <... mprotect resumed>) = 0 [pid 5853] <... mprotect resumed>) = 0 [pid 5853] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5853] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba37990, parent_tid=0x7f157ba37990, exit_signal=0, stack=0x7f157ba17000, stack_size=0x20300, tls=0x7f157ba376c0} => {parent_tid=[5864]}, 88) = 5864 [pid 5857] rt_sigprocmask(SIG_BLOCK, ~[], [pid 5856] <... clone3 resumed> => {parent_tid=[5865]}, 88) = 5865 [pid 5853] rt_sigprocmask(SIG_SETMASK, [], ./strace-static-x86_64: Process 5865 attached ./strace-static-x86_64: Process 5864 attached NULL, 8) = 0 [pid 5865] rseq(0x7f157ba37fe0, 0x20, 0, 0x53053053 [pid 5864] rseq(0x7f157ba37fe0, 0x20, 0, 0x53053053 [pid 5856] rt_sigprocmask(SIG_SETMASK, [], [pid 5857] <... rt_sigprocmask resumed>[], 8) = 0 [pid 5856] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... rseq resumed>) = 0 [pid 5864] <... rseq resumed>) = 0 [pid 5856] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] set_robust_list(0x7f157ba379a0, 24 [pid 5864] set_robust_list(0x7f157ba379a0, 24 [pid 5857] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f157ba37990, parent_tid=0x7f157ba37990, exit_signal=0, stack=0x7f157ba17000, stack_size=0x20300, tls=0x7f157ba376c0} [pid 5856] <... futex resumed>) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5865] <... set_robust_list resumed>) = 0 [pid 5864] <... set_robust_list resumed>) = 0 [pid 5856] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5864] rt_sigprocmask(SIG_SETMASK, [], [pid 5865] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5864] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5865] userfaultfd(UFFD_USER_MODE_ONLY [pid 5864] userfaultfd(UFFD_USER_MODE_ONLY [pid 5865] <... userfaultfd resumed>) = 3 [pid 5857] <... clone3 resumed> => {parent_tid=[5866]}, 88) = 5866 [pid 5865] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5864] <... userfaultfd resumed>) = 3 [pid 5865] <... futex resumed>) = 1 [pid 5856] <... futex resumed>) = 0 [pid 5865] futex(0x7f157bb29318, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5864] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5856] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5864] <... futex resumed>) = 1 [pid 5856] <... futex resumed>) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5864] futex(0x7f157bb29318, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5856] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5865] ioctl(3, UFFDIO_API, {api=0xaa, features=0 [pid 5864] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5853] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5866 attached [pid 5865] <... ioctl resumed> => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|UFFD_FEATURE_EXACT_ADDRESS|0x14000, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 [pid 5864] ioctl(3, UFFDIO_API, {api=0xaa, features=0 [pid 5857] rt_sigprocmask(SIG_SETMASK, [], [pid 5853] <... futex resumed>) = 0 [pid 5857] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5853] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5864] <... ioctl resumed> => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|UFFD_FEATURE_EXACT_ADDRESS|0x14000, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 [pid 5857] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] rseq(0x7f157ba37fe0, 0x20, 0, 0x53053053 [pid 5857] <... futex resumed>) = 0 [pid 5866] <... rseq resumed>) = 0 [pid 5857] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] set_robust_list(0x7f157ba379a0, 24) = 0 [pid 5866] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5866] userfaultfd(UFFD_USER_MODE_ONLY) = 3 [pid 5866] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5857] <... futex resumed>) = 0 [pid 5857] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5857] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] ioctl(3, UFFDIO_API, {api=0xaa, features=0 => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|UFFD_FEATURE_EXACT_ADDRESS|0x14000, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 [pid 5866] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5857] <... futex resumed>) = 0 [pid 5857] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5857] futex(0x7f157bb2931c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5866] ioctl(3, UFFDIO_REGISTER, {range={start=0x2000000e2000, len=0xc00000}, mode=UFFDIO_REGISTER_MODE_WP, ioctls=1<<_UFFDIO_WAKE|1<<_UFFDIO_COPY|1<<_UFFDIO_ZEROPAGE|1<<_UFFDIO_WRITEPROTECT|0x120}) = 0 [pid 5864] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] futex(0x7f157bb2931c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5865] <... futex resumed>) = 1 [pid 5864] <... futex resumed>) = 1 [pid 5860] <... mbind resumed>) = 0 [pid 5856] <... futex resumed>) = 0 [pid 5853] <... futex resumed>) = 0 [pid 5866] <... futex resumed>) = 1 [pid 5865] ioctl(3, UFFDIO_REGISTER, {range={start=0x2000000e2000, len=0xc00000}, mode=UFFDIO_REGISTER_MODE_WP [pid 5864] futex(0x7f157bb29318, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5857] <... futex resumed>) = 0 [pid 5856] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5853] futex(0x7f157bb29318, FUTEX_WAKE_PRIVATE, 1000000 [pid 5866] ioctl(3, _IOC(_IOC_READ|_IOC_WRITE, 0xaa, 0x5, 0x28), 0x200000000180 [pid 5864] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [ 85.953747][ T5866] BUG: unable to handle page fault for address: ffffea6000376008 [ 85.961657][ T5866] #PF: supervisor read access in kernel mode [ 85.967637][ T5866] #PF: error_code(0x0000) - not-present page [ 85.973607][ T5866] PGD 13fff8067 P4D 13fff8067 PUD 0 [ 85.978909][ T5866] Oops: Oops: 0000 [#1] SMP KASAN PTI [ 85.984301][ T5866] CPU: 0 UID: 0 PID: 5866 Comm: syz-executor388 Not tainted 6.16.0-rc6-next-20250716-syzkaller #0 PREEMPT(full) [ 85.996191][ T5866] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 86.006236][ T5866] RIP: 0010:move_pages+0xbe6/0x1430 [ 86.011464][ T5866] Code: c1 ec 06 4b 8d 1c 2c 48 83 c3 08 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 9a 30 f4 ff <48> 8b 1b 48 89 de 48 83 e6 01 31 ff e8 59 70 8f ff 48 89 d8 48 83 [ 86.031062][ T5866] RSP: 0018:ffffc900042778a8 EFLAGS: 00010246 [ 86.037115][ T5866] RAX: 1ffffd4c0006ec01 RBX: ffffea6000376008 RCX: dffffc0000000000 [ 86.045076][ T5866] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 86.053032][ T5866] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004 [ 86.060992][ T5866] R10: dffffc0000000000 R11: fffff5200084ef00 R12: 0000006000376000 [ 86.068957][ T5866] R13: ffffea0000000000 R14: 200018000dd801fd R15: 00002000003ab000 [ 86.076932][ T5866] FS: 00007f157ba376c0(0000) GS:ffff8881257aa000(0000) knlGS:0000000000000000 [ 86.085850][ T5866] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.092419][ T5866] CR2: ffffea6000376008 CR3: 000000007359a000 CR4: 00000000003526f0 [ 86.100380][ T5866] Call Trace: [ 86.103651][ T5866] [ 86.106572][ T5866] userfaultfd_ioctl+0x2e8b/0x4c80 [ 86.111678][ T5866] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.117746][ T5866] ? __pfx_userfaultfd_ioctl+0x10/0x10 [ 86.123203][ T5866] ? kasan_quarantine_put+0xdd/0x220 [ 86.128492][ T5866] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 86.134217][ T5866] ? tomoyo_path_number_perm+0x1bc/0x5a0 [ 86.139845][ T5866] ? do_vfs_ioctl+0xbe8/0x1430 [ 86.144602][ T5866] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 86.149616][ T5866] ? _raw_spin_lock_irq+0xae/0xf0 [ 86.154647][ T5866] ? __lock_acquire+0xab9/0xd20 [ 86.159493][ T5866] ? __fget_files+0x2a/0x420 [ 86.164084][ T5866] ? __fget_files+0x2a/0x420 [ 86.168681][ T5866] ? __fget_files+0x3a0/0x420 [ 86.173389][ T5866] ? __fget_files+0x2a/0x420 [ 86.177996][ T5866] ? bpf_lsm_file_ioctl+0x9/0x20 [ 86.182926][ T5866] ? __pfx_userfaultfd_ioctl+0x10/0x10 [ 86.188382][ T5866] __se_sys_ioctl+0xfc/0x170 [ 86.192970][ T5866] do_syscall_64+0xfa/0x3b0 [ 86.197464][ T5866] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.203533][ T5866] ? __switch_to_asm+0x39/0x70 [ 86.208289][ T5866] ? clear_bhb_loop+0x60/0xb0 [ 86.212967][ T5866] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 86.218852][ T5866] RIP: 0033:0x7f157ba9f519 [ 86.223283][ T5866] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 51 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 86.242878][ T5866] RSP: 002b:00007f157ba37218 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 86.251310][ T5866] RAX: ffffffffffffffda RBX: 00007f157bb29318 RCX: 00007f157ba9f519 [ 86.259280][ T5866] RDX: 0000200000000180 RSI: 00000000c028aa05 RDI: 0000000000000003 [ 86.267249][ T5866] RBP: 00007f157bb29310 R08: 0000000000000000 R09: 0000000000000000 [ 86.275209][ T5866] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f157baf6074 [ 86.283167][ T5866] R13: 0000200000000180 R14: 0000200000000188 R15: 00002000002b9000 [ 86.291133][ T5866] [ 86.294164][ T5866] Modules linked in: [ 86.298056][ T5866] CR2: ffffea6000376008 [ 86.302379][ T5866] ---[ end trace 0000000000000000 ]--- [ 86.307826][ T5866] RIP: 0010:move_pages+0xbe6/0x1430 [ 86.313013][ T5866] Code: c1 ec 06 4b 8d 1c 2c 48 83 c3 08 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 3c 08 00 74 08 48 89 df e8 9a 30 f4 ff <48> 8b 1b 48 89 de 48 83 e6 01 31 ff e8 59 70 8f ff 48 89 d8 48 83 [ 86.332603][ T5866] RSP: 0018:ffffc900042778a8 EFLAGS: 00010246 [ 86.338659][ T5866] RAX: 1ffffd4c0006ec01 RBX: ffffea6000376008 RCX: dffffc0000000000 [ 86.346628][ T5866] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 86.354582][ T5866] RBP: 0000000000000000 R08: 0000000000000003 R09: 0000000000000004 [ 86.362554][ T5866] R10: dffffc0000000000 R11: fffff5200084ef00 R12: 0000006000376000 [ 86.370517][ T5866] R13: ffffea0000000000 R14: 200018000dd801fd R15: 00002000003ab000 [ 86.378480][ T5866] FS: 00007f157ba376c0(0000) GS:ffff8881257aa000(0000) knlGS:0000000000000000 [ 86.387403][ T5866] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 86.393976][ T5866] CR2: ffffea6000376008 CR3: 000000007359a000 CR4: 00000000003526f0 [ 86.401940][ T5866] Kernel panic - not syncing: Fatal exception [ 86.408292][ T5866] Kernel Offset: disabled [ 86.412609][ T5866] Rebooting in 86400 seconds..