./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1174465112 <...> Warning: Permanently added '10.128.0.121' (ED25519) to the list of known hosts. execve("./syz-executor1174465112", ["./syz-executor1174465112"], 0x7ffc3c11db30 /* 10 vars */) = 0 brk(NULL) = 0x555586e70000 brk(0x555586e70d00) = 0x555586e70d00 arch_prctl(ARCH_SET_FS, 0x555586e70380) = 0 set_tid_address(0x555586e70650) = 5781 set_robust_list(0x555586e70660, 24) = 0 rseq(0x555586e70ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1174465112", 4096) = 28 getrandom("\x48\x43\x9c\x0e\xba\x2e\x70\xc3", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555586e70d00 brk(0x555586e91d00) = 0x555586e91d00 brk(0x555586e92000) = 0x555586e92000 mprotect(0x7f8368697000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555586e70650) = 5782 ./strace-static-x86_64: Process 5782 attached [pid 5782] set_robust_list(0x555586e70660, 24) = 0 [pid 5782] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5782] setpgid(0, 0) = 0 [pid 5782] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5782] write(3, "1000", 4executing program ) = 4 [pid 5782] close(3) = 0 [pid 5782] write(1, "executing program\n", 18) = 18 [pid 5782] pipe2(NULL, 0) = -1 EFAULT (Bad address) [pid 5782] prlimit64(0, RLIMIT_RTPRIO, {rlim_cur=8, rlim_max=139}, NULL) = 0 [pid 5782] sched_setscheduler(0, SCHED_RR, [8]) = 0 [pid 5782] openat(AT_FDCWD, "/dev/loop5", O_RDONLY|O_APPEND) = 3 [pid 5782] openat(AT_FDCWD, NULL, O_RDWR) = -1 EFAULT (Bad address) [pid 5782] ioctl(3, BLKTRACESETUP, {act_mask=8, buf_size=67371008, buf_nr=15, start_lba=4, end_lba=18446744071562067967, pid=0 [pid 5781] kill(-5782, SIGKILL) = 0 [pid 5781] kill(5782, SIGKILL) = 0 [pid 5781] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5781] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5781] getdents64(3, 0x555586e716f0 /* 2 entries */, 32768) = 48 [pid 5781] getdents64(3, 0x555586e716f0 /* 0 entries */, 32768) = 0 [pid 5781] close(3) = 0 [ 216.773521][ T5782] syz-executor117: page allocation failure: order:0, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 216.787138][ T5782] CPU: 1 UID: 0 PID: 5782 Comm: syz-executor117 Not tainted 6.14.0-rc3-syzkaller-00137-g27eddbf34490 #0 [ 216.787288][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 216.787533][ T5782] Call Trace: [ 216.787619][ T5782] [ 216.787694][ T5782] dump_stack_lvl+0x216/0x2d0 [ 216.788036][ T5782] dump_stack+0x1e/0x24 [ 216.788147][ T5782] warn_alloc+0x455/0x650 [ 216.788323][ T5782] ? __alloc_pages_may_oom+0x4ab/0x500 [ 216.788475][ T5782] __alloc_pages_slowpath+0x1615/0x16c0 [ 216.788680][ T5782] __alloc_frozen_pages_noprof+0xa4c/0xe00 [ 216.788878][ T5782] alloc_pages_mpol+0x4cd/0x890 [ 216.789043][ T5782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 216.789214][ T5782] alloc_pages_noprof+0x1b5/0x250 [ 216.789382][ T5782] relay_open_buf+0x42c/0x17a0 [ 216.789551][ T5782] relay_open+0x61f/0xec0 [ 216.789712][ T5782] do_blk_trace_setup+0x6ac/0xe60 [ 216.789888][ T5782] blk_trace_setup+0x120/0x260 [ 216.790058][ T5782] blk_trace_ioctl+0x17e/0x890 [ 216.790217][ T5782] ? kmsan_get_metadata+0x13e/0x1c0 [ 216.790373][ T5782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 216.790540][ T5782] ? kmsan_get_metadata+0x13e/0x1c0 [ 216.790696][ T5782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 216.790863][ T5782] ? file_to_blk_mode+0x129/0x190 [ 216.791006][ T5782] blkdev_ioctl+0x696/0xc30 [ 216.791148][ T5782] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 216.791313][ T5782] ? __pfx_blkdev_ioctl+0x10/0x10 [ 216.791453][ T5782] __se_sys_ioctl+0x246/0x440 [ 216.791595][ T5782] __x64_sys_ioctl+0x96/0xe0 [ 216.791733][ T5782] x64_sys_call+0x19f0/0x3c30 [ 216.791866][ T5782] do_syscall_64+0xcd/0x1e0 [ 216.792007][ T5782] ? clear_bhb_loop+0x25/0x80 [ 216.792156][ T5782] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 216.792347][ T5782] RIP: 0033:0x7f8368624939 [ 216.792664][ T5782] Code: Unable to access opcode bytes at 0x7f836862490f. [ 216.792754][ T5782] RSP: 002b:00007ffdbcfe28c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 216.792932][ T5782] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8368624939 [ 216.793048][ T5782] RDX: 0000400000005bc0 RSI: 00000000c0481273 RDI: 0000000000000003 [ 216.793161][ T5782] RBP: 00007f83686975f0 R08: 0000000000000006 R09: 0000000000000006 [ 216.793268][ T5782] R10: 0023706f6f6c2f76 R11: 0000000000000246 R12: 0000000000000001 [ 216.793379][ T5782] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001 [ 216.793508][ T5782] [ 217.026620][ T5782] Mem-Info: [ 217.029870][ T5782] active_anon:2894 inactive_anon:0 isolated_anon:0 [ 217.029870][ T5782] active_file:0 inactive_file:63 isolated_file:0 [ 217.029870][ T5782] unevictable:768 dirty:0 writeback:0 [ 217.029870][ T5782] slab_reclaimable:1736 slab_unreclaimable:16729 [ 217.029870][ T5782] mapped:1 shmem:1412 pagetables:390 [ 217.029870][ T5782] sec_pagetables:0 bounce:0 [ 217.029870][ T5782] kernel_misc_reclaimable:0 [ 217.029870][ T5782] free:12277 free_pcp:4141 free_cma:0 [ 217.074557][ T5782] Node 0 active_anon:11576kB inactive_anon:0kB active_file:68kB inactive_file:224kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:4kB dirty:0kB writeback:0kB shmem:4112kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:4608kB pagetables:1548kB sec_pagetables:0kB all_unreclaimable? yes [ 217.106413][ T5782] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:28kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:32kB pagetables:12kB sec_pagetables:0kB all_unreclaimable? yes [ 217.137261][ T5782] Node 0 DMA free:3684kB boost:0kB min:160kB low:200kB high:240kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:244kB inactive_file:128kB unevictable:0kB writepending:0kB present:15992kB managed:4096kB mlocked:0kB bounce:0kB free_pcp:28kB local_pcp:0kB free_cma:0kB [ 217.165423][ T5782] lowmem_reserve[]: 0 928 1241 0 0 [ 217.171319][ T5782] Node 0 DMA32 free:18996kB boost:0kB min:36108kB low:45132kB high:54156kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:951172kB mlocked:0kB bounce:0kB free_pcp:8060kB local_pcp:8060kB free_cma:0kB [ 217.200346][ T5782] lowmem_reserve[]: 0 0 312 0 0 [ 217.205546][ T5782] Node 0 Normal free:6188kB boost:0kB min:12708kB low:15884kB high:19060kB reserved_highatomic:0KB active_anon:11536kB inactive_anon:0kB active_file:0kB inactive_file:92kB unevictable:1536kB writepending:0kB present:1048580kB managed:320496kB mlocked:0kB bounce:0kB free_pcp:352kB local_pcp:236kB free_cma:0kB [ 217.235077][ T5782] lowmem_reserve[]: 0 0 0 0 0 [ 217.240511][ T5782] Node 1 Normal free:20048kB boost:0kB min:41128kB low:51408kB high:61688kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:28kB unevictable:1536kB writepending:0kB present:4194300kB managed:1037024kB mlocked:0kB bounce:0kB free_pcp:8060kB local_pcp:8060kB free_cma:0kB [ 217.270146][ T5782] lowmem_reserve[]: 0 0 0 0 0 [ 217.275252][ T5782] Node 0 DMA: 1*4kB (M) 0*8kB 0*16kB 0*32kB 1*64kB (M) 0*128kB 1*256kB (M) 0*512kB 1*1024kB (M) 1*2048kB (M) 0*4096kB = 3396kB [ 217.290090][ T5782] Node 0 DMA32: 8*4kB (ME) 6*8kB (UM) 10*16kB (ME) 6*32kB (UME) 4*64kB (UME) 3*128kB (UME) 4*256kB (ME) 3*512kB (UME) 5*1024kB (UME) 3*2048kB (ME) 1*4096kB (M) = 18992kB [ 217.309437][ T5782] Node 0 Normal: 728*4kB (UME) 137*8kB (ME) 22*16kB (UME) 11*32kB (UME) 5*64kB (UE) 3*128kB (UE) 3*256kB (U) 0*512kB 0*1024kB 0*2048kB 0*4096kB = 6184kB [ 217.327100][ T5782] Node 1 Normal: 3*4kB (UM) 4*8kB (ME) 8*16kB (ME) 9*32kB (UME) 10*64kB (UE) 6*128kB (UME) 5*256kB (ME) 5*512kB (UME) 2*1024kB (ME) 2*2048kB (ME) 2*4096kB (UM) = 20044kB [ 217.346156][ T5782] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 217.356325][ T5782] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 217.365858][ T5782] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 217.375579][ T5782] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 217.385118][ T5782] 1703 total pagecache pages [ 217.389817][ T5782] 0 pages in swap cache [ 217.394537][ T5782] Free swap = 0kB [ 217.398410][ T5782] Total swap = 0kB [ 217.402303][ T5782] 2097051 pages RAM [ 217.406213][ T5782] 0 pages HighMem/MovableOnly [ 217.411494][ T5782] 1518854 pages reserved [ 217.416294][ T5782] 0 pages cma reserved [ 217.476701][ T5126] ===================================================== [ 217.484018][ T5126] BUG: KMSAN: uninit-value in __alloc_pages_slowpath+0xee8/0x16c0 [ 217.492106][ T5126] __alloc_pages_slowpath+0xee8/0x16c0 [ 217.497781][ T5126] __alloc_frozen_pages_noprof+0xa4c/0xe00 [ 217.503904][ T5126] alloc_pages_mpol+0x4cd/0x890 [ 217.508944][ T5126] folio_alloc_noprof+0x1dc/0x350 [ 217.514227][ T5126] filemap_alloc_folio_noprof+0xa6/0x440 [ 217.520153][ T5126] __filemap_get_folio+0xb9a/0x1840 [ 217.525551][ T5126] bdev_getblk+0x2c9/0xab0 [ 217.530266][ T5126] ext4_getblk+0x3b7/0xe50 [ 217.534862][ T5126] ext4_bread_batch+0x9f/0x7d0 [ 217.539813][ T5126] __ext4_find_entry+0x1ebb/0x36c0 [ 217.545272][ T5126] ext4_lookup+0x189/0xb40 [ 217.549850][ T5126] __lookup_slow+0x538/0x710 [ 217.554680][ T5126] lookup_slow+0x6a/0xd0 [ 217.559080][ T5126] link_path_walk+0xf29/0x1420 [ 217.564140][ T5126] path_openat+0x30f/0x6250 [ 217.568810][ T5126] do_filp_open+0x268/0x600 [ 217.573542][ T5126] do_sys_openat2+0x1bf/0x2f0 [ 217.578416][ T5126] __x64_sys_openat+0x2a1/0x310 [ 217.583553][ T5126] x64_sys_call+0x36f5/0x3c30 [ 217.588396][ T5126] do_syscall_64+0xcd/0x1e0 [ 217.593142][ T5126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.599227][ T5126] [ 217.601724][ T5126] Local variable compact_result created at: [ 217.607720][ T5126] __alloc_pages_slowpath+0x66/0x16c0 [ 217.613358][ T5126] __alloc_frozen_pages_noprof+0xa4c/0xe00 [ 217.619370][ T5126] [ 217.621889][ T5126] CPU: 0 UID: 0 PID: 5126 Comm: syslogd Not tainted 6.14.0-rc3-syzkaller-00137-g27eddbf34490 #0 [ 217.632539][ T5126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 217.642909][ T5126] ===================================================== [ 217.650019][ T5126] Disabling lock debugging due to kernel taint [ 217.656280][ T5126] Kernel panic - not syncing: kmsan.panic set ... [ 217.662827][ T5126] CPU: 0 UID: 0 PID: 5126 Comm: syslogd Tainted: G B 6.14.0-rc3-syzkaller-00137-g27eddbf34490 #0 [ 217.674916][ T5126] Tainted: [B]=BAD_PAGE [ 217.679170][ T5126] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 217.689363][ T5126] Call Trace: [ 217.692754][ T5126] [ 217.695792][ T5126] dump_stack_lvl+0x216/0x2d0 [ 217.700638][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.706666][ T5126] dump_stack+0x1e/0x24 [ 217.710982][ T5126] panic+0x4e2/0xcf0 [ 217.715086][ T5126] ? kmsan_get_metadata+0x81/0x1c0 [ 217.720417][ T5126] kmsan_report+0x2c7/0x2d0 [ 217.725116][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 217.730511][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.736527][ T5126] ? __msan_warning+0x95/0x120 [ 217.741472][ T5126] ? __alloc_pages_slowpath+0xee8/0x16c0 [ 217.747318][ T5126] ? __alloc_frozen_pages_noprof+0xa4c/0xe00 [ 217.753515][ T5126] ? alloc_pages_mpol+0x4cd/0x890 [ 217.758746][ T5126] ? folio_alloc_noprof+0x1dc/0x350 [ 217.764149][ T5126] ? filemap_alloc_folio_noprof+0xa6/0x440 [ 217.770163][ T5126] ? __filemap_get_folio+0xb9a/0x1840 [ 217.775748][ T5126] ? bdev_getblk+0x2c9/0xab0 [ 217.780607][ T5126] ? ext4_getblk+0x3b7/0xe50 [ 217.785388][ T5126] ? ext4_bread_batch+0x9f/0x7d0 [ 217.790517][ T5126] ? __ext4_find_entry+0x1ebb/0x36c0 [ 217.795984][ T5126] ? ext4_lookup+0x189/0xb40 [ 217.800748][ T5126] ? __lookup_slow+0x538/0x710 [ 217.805674][ T5126] ? lookup_slow+0x6a/0xd0 [ 217.810247][ T5126] ? link_path_walk+0xf29/0x1420 [ 217.815384][ T5126] ? path_openat+0x30f/0x6250 [ 217.820231][ T5126] ? do_filp_open+0x268/0x600 [ 217.825078][ T5126] ? do_sys_openat2+0x1bf/0x2f0 [ 217.830138][ T5126] ? __x64_sys_openat+0x2a1/0x310 [ 217.835370][ T5126] ? x64_sys_call+0x36f5/0x3c30 [ 217.840398][ T5126] ? do_syscall_64+0xcd/0x1e0 [ 217.845248][ T5126] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 217.851541][ T5126] ? should_reclaim_retry+0xa89/0xb40 [ 217.857107][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 217.862508][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.868528][ T5126] __msan_warning+0x95/0x120 [ 217.873303][ T5126] __alloc_pages_slowpath+0xee8/0x16c0 [ 217.879005][ T5126] __alloc_frozen_pages_noprof+0xa4c/0xe00 [ 217.885057][ T5126] alloc_pages_mpol+0x4cd/0x890 [ 217.890142][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.896159][ T5126] folio_alloc_noprof+0x1dc/0x350 [ 217.901394][ T5126] filemap_alloc_folio_noprof+0xa6/0x440 [ 217.907262][ T5126] __filemap_get_folio+0xb9a/0x1840 [ 217.912699][ T5126] bdev_getblk+0x2c9/0xab0 [ 217.917316][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.923333][ T5126] ext4_getblk+0x3b7/0xe50 [ 217.927957][ T5126] ext4_bread_batch+0x9f/0x7d0 [ 217.932926][ T5126] __ext4_find_entry+0x1ebb/0x36c0 [ 217.938678][ T5126] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0 [ 217.944700][ T5126] ? ext4_fname_setup_ci_filename+0xaf/0x590 [ 217.950882][ T5126] ? ext4_fname_prepare_lookup+0x5e2/0x640 [ 217.956897][ T5126] ext4_lookup+0x189/0xb40 [ 217.961498][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 217.966897][ T5126] ? __pfx_ext4_lookup+0x10/0x10 [ 217.972008][ T5126] ? __pfx_ext4_lookup+0x10/0x10 [ 217.977118][ T5126] __lookup_slow+0x538/0x710 [ 217.981889][ T5126] lookup_slow+0x6a/0xd0 [ 217.986302][ T5126] link_path_walk+0xf29/0x1420 [ 217.991308][ T5126] path_openat+0x30f/0x6250 [ 217.995999][ T5126] ? do_filp_open+0x47/0x600 [ 218.000767][ T5126] ? filter_irq_stacks+0x60/0x1a0 [ 218.005991][ T5126] ? stack_depot_save_flags+0x2c/0x750 [ 218.011651][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 218.017056][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 218.022450][ T5126] ? kmsan_get_metadata+0x13e/0x1c0 [ 218.027851][ T5126] do_filp_open+0x268/0x600 [ 218.032565][ T5126] do_sys_openat2+0x1bf/0x2f0 [ 218.037474][ T5126] __x64_sys_openat+0x2a1/0x310 [ 218.042557][ T5126] x64_sys_call+0x36f5/0x3c30 [ 218.047420][ T5126] do_syscall_64+0xcd/0x1e0 [ 218.052101][ T5126] ? clear_bhb_loop+0x25/0x80 [ 218.056982][ T5126] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 218.063081][ T5126] RIP: 0033:0x7fa1155109a4 [ 218.067634][ T5126] Code: 24 20 48 8d 44 24 30 48 89 44 24 28 64 8b 04 25 18 00 00 00 85 c0 75 2c 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 76 60 48 8b 15 55 a4 0d 00 f7 d8 64 89 02 48 83 [ 218.087436][ T5126] RSP: 002b:00007ffdda9f1710 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 218.096032][ T5126] RAX: ffffffffffffffda RBX: 00005567ebda2910 RCX: 00007fa1155109a4 [ 218.104154][ T5126] RDX: 0000000000000d41 RSI: 00007fa1156af443 RDI: 00000000ffffff9c [ 218.112271][ T5126] RBP: 00007fa1156af443 R08: 0000000000000001 R09: 0000000000000000 [ 218.120382][ T5126] R10: 00000000000001b6 R11: 0000000000000246 R12: 0000000000000d41 [ 218.128492][ T5126] R13: 0000000067b86148 R14: 0000000000000004 R15: 00005567ebda2a60 [ 218.136622][ T5126] [ 218.140072][ T5126] Kernel Offset: disabled [ 218.144462][ T5126] Rebooting in 86400 seconds..