./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1128515381 <...> Warning: Permanently added '10.128.1.16' (ED25519) to the list of known hosts. execve("./syz-executor1128515381", ["./syz-executor1128515381"], 0x7ffda33bac50 /* 10 vars */) = 0 brk(NULL) = 0x55559440e000 brk(0x55559440ed00) = 0x55559440ed00 arch_prctl(ARCH_SET_FS, 0x55559440e380) = 0 set_tid_address(0x55559440e650) = 5237 set_robust_list(0x55559440e660, 24) = 0 rseq(0x55559440eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1128515381", 4096) = 28 getrandom("\xd4\x11\x80\x46\xd0\x3e\x06\x66", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55559440ed00 brk(0x55559442fd00) = 0x55559442fd00 brk(0x555594430000) = 0x555594430000 mprotect(0x7f01b0a2f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5238 attached [pid 5238] set_robust_list(0x55559440e660, 24 [pid 5237] <... clone resumed>, child_tidptr=0x55559440e650) = 5238 [pid 5238] <... set_robust_list resumed>) = 0 [pid 5238] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5237] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5239 attached [pid 5239] set_robust_list(0x55559440e660, 24./strace-static-x86_64: Process 5240 attached [pid 5238] <... clone resumed>, child_tidptr=0x55559440e650) = 5239 [pid 5237] <... clone resumed>, child_tidptr=0x55559440e650) = 5240 [pid 5239] <... set_robust_list resumed>) = 0 [pid 5237] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5240] set_robust_list(0x55559440e660, 24 [pid 5239] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5240] <... set_robust_list resumed>) = 0 [pid 5239] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5241 attached [pid 5240] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5239] setpgid(0, 0 [pid 5237] <... clone resumed>, child_tidptr=0x55559440e650) = 5241 [pid 5241] set_robust_list(0x55559440e660, 24 [pid 5239] <... setpgid resumed>) = 0 [pid 5237] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5242 attached ./strace-static-x86_64: Process 5243 attached [pid 5241] <... set_robust_list resumed>) = 0 [pid 5239] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5241] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5237] <... clone resumed>, child_tidptr=0x55559440e650) = 5243 [pid 5243] set_robust_list(0x55559440e660, 24 [pid 5242] set_robust_list(0x55559440e660, 24 [pid 5240] <... clone resumed>, child_tidptr=0x55559440e650) = 5242 [pid 5239] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5244 attached [pid 5237] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5243] <... set_robust_list resumed>) = 0 [pid 5242] <... set_robust_list resumed>) = 0 [pid 5244] set_robust_list(0x55559440e660, 24 [pid 5243] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5239] write(3, "1000", 4 [pid 5244] <... set_robust_list resumed>) = 0 [pid 5242] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5241] <... clone resumed>, child_tidptr=0x55559440e650) = 5244 [pid 5239] <... write resumed>) = 4 [pid 5244] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5242] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5245 attached [pid 5239] close(3 [pid 5245] set_robust_list(0x55559440e660, 24 [pid 5244] <... prctl resumed>) = 0 [pid 5239] <... close resumed>) = 0 ./strace-static-x86_64: Process 5246 attached [pid 5237] <... clone resumed>, child_tidptr=0x55559440e650) = 5245 [pid 5245] <... set_robust_list resumed>) = 0 [pid 5244] setpgid(0, 0 [pid 5243] <... clone resumed>, child_tidptr=0x55559440e650) = 5246 executing program [pid 5242] setpgid(0, 0 [pid 5239] write(1, "executing program\n", 18 [pid 5246] set_robust_list(0x55559440e660, 24 [pid 5245] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5244] <... setpgid resumed>) = 0 [pid 5242] <... setpgid resumed>) = 0 [pid 5239] <... write resumed>) = 18 [pid 5246] <... set_robust_list resumed>) = 0 [pid 5244] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5242] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5239] creat("./file0", 000 [pid 5246] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5247 attached [pid 5244] <... openat resumed>) = 3 [pid 5242] <... openat resumed>) = 3 [pid 5247] set_robust_list(0x55559440e660, 24 [pid 5244] write(3, "1000", 4 [pid 5247] <... set_robust_list resumed>) = 0 [pid 5245] <... clone resumed>, child_tidptr=0x55559440e650) = 5247 [pid 5244] <... write resumed>) = 4 [pid 5247] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5246] <... prctl resumed>) = 0 [pid 5244] close(3 [pid 5242] write(3, "1000", 4 [pid 5247] <... prctl resumed>) = 0 [pid 5246] setpgid(0, 0 [pid 5244] <... close resumed>) = 0 [pid 5242] <... write resumed>) = 4 [pid 5239] <... creat resumed>) = 3 executing program [pid 5247] setpgid(0, 0 [pid 5246] <... setpgid resumed>) = 0 [pid 5244] write(1, "executing program\n", 18 [pid 5242] close(3 [pid 5239] pipe2( [pid 5247] <... setpgid resumed>) = 0 [pid 5244] <... write resumed>) = 18 [pid 5242] <... close resumed>) = 0 [pid 5239] <... pipe2 resumed>[4, 5], 0) = 0 [pid 5247] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5246] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5244] creat("./file0", 000executing program [pid 5242] write(1, "executing program\n", 18 [pid 5247] <... openat resumed>) = 3 [pid 5246] <... openat resumed>) = 3 [pid 5242] <... write resumed>) = 18 [pid 5239] dup(5 [pid 5247] write(3, "1000", 4 [pid 5244] <... creat resumed>) = 3 [pid 5239] <... dup resumed>) = 6 [pid 5247] <... write resumed>) = 4 [pid 5244] pipe2( [pid 5239] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000004,wfdno=0x0000000000000006,cache=mmap,k" [pid 5247] close(3 [pid 5246] write(3, "1000", 4 [pid 5244] <... pipe2 resumed>[4, 5], 0) = 0 [pid 5242] creat("./file0", 000 [pid 5247] <... close resumed>) = 0 [pid 5246] <... write resumed>) = 4 [pid 5244] dup(5 [pid 5242] <... creat resumed>) = 3 [pid 5247] write(1, "executing program\n", 18 [pid 5246] close(3executing program ) = 0 [pid 5247] <... write resumed>) = 18 [pid 5246] write(1, "executing program\n", 18 [pid 5244] <... dup resumed>) = 6 [pid 5242] pipe2( [pid 5247] creat("./file0", 000executing program ) = 3 [pid 5246] <... write resumed>) = 18 [pid 5244] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000004,wfdno=0x0000000000000006,cache=mmap,k" [pid 5242] <... pipe2 resumed>[4, 5], 0) = 0 [pid 5246] creat("./file0", 000 [pid 5242] dup(5 [pid 5247] pipe2( [pid 5246] <... creat resumed>) = 3 [pid 5242] <... dup resumed>) = 6 [pid 5247] <... pipe2 resumed>[4, 5], 0) = 0 [pid 5246] pipe2( [pid 5242] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000004,wfdno=0x0000000000000006,cache=mmap,k" [pid 5246] <... pipe2 resumed>[4, 5], 0) = 0 [pid 5246] dup(5) = 6 [pid 5246] mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000004,wfdno=0x0000000000000006,cache=mmap,k" [pid 5247] dup(5) = 6 [ 54.366716][ T5244] ------------[ cut here ]------------ [ 54.372366][ T5244] kmem_cache of name '9p-fcall-cache-(null)' already exists [ 54.386600][ T5244] WARNING: CPU: 0 PID: 5244 at mm/slab_common.c:108 __kmem_cache_create_args+0xa7/0x320 [ 54.396480][ T5244] Modules linked in: [ 54.400412][ T5244] CPU: 0 UID: 0 PID: 5244 Comm: syz-executor112 Not tainted 6.12.0-rc3-next-20241016-syzkaller #0 [ 54.411226][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 54.421426][ T5244] RIP: 0010:__kmem_cache_create_args+0xa7/0x320 [ 54.427741][ T5244] Code: 8e 48 8b 1b 48 39 eb 74 25 48 8b 7b f8 4c 89 fe e8 ce 95 e7 09 85 c0 75 e8 90 48 c7 c7 e7 08 0c 8e 4c 89 fe e8 ea 59 78 ff 90 <0f> 0b 90 90 4c 89 ff be 20 00 00 00 e8 28 97 e7 09 48 85 c0 0f 85 [ 54.447426][ T5244] RSP: 0018:ffffc90003dc7788 EFLAGS: 00010246 [ 54.453525][ T5244] RAX: 4b4653905459d200 RBX: ffff88802d696a68 RCX: ffff88807dda9e00 [ 54.461618][ T5244] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 54.469656][ T5244] RBP: ffffffff8ea20cf8 R08: ffffffff8155d7b2 R09: fffffbfff1cfa3e0 [ 54.477713][ T5244] R10: dffffc0000000000 R11: fffffbfff1cfa3e0 R12: 0000000000020018 [ 54.485748][ T5244] R13: 0000000000000000 R14: ffffc90003dc7860 R15: ffff88802f8470c0 [ 54.493726][ T5244] FS: 000055559440e380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 54.502723][ T5244] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.509365][ T5244] CR2: 00007f01b09cead0 CR3: 0000000028632000 CR4: 00000000003526f0 [ 54.517381][ T5244] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 54.525402][ T5244] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 54.533391][ T5244] Call Trace: [ 54.536729][ T5244] [ 54.539680][ T5244] ? __warn+0x168/0x4e0 [ 54.543828][ T5244] ? __kmem_cache_create_args+0xa7/0x320 [ 54.549550][ T5244] ? report_bug+0x2b3/0x500 [ 54.554109][ T5244] ? __kmem_cache_create_args+0xa7/0x320 [ 54.559759][ T5244] ? handle_bug+0x60/0x90 [ 54.564160][ T5244] ? exc_invalid_op+0x1a/0x50 [ 54.568850][ T5244] ? asm_exc_invalid_op+0x1a/0x20 [ 54.573938][ T5244] ? __warn_printk+0x292/0x360 [ 54.578732][ T5244] ? __kmem_cache_create_args+0xa7/0x320 [ 54.584443][ T5244] ? __kmem_cache_create_args+0xa6/0x320 [ 54.590099][ T5244] p9_client_create+0xbc0/0x1150 [ 54.595136][ T5244] ? __pfx_p9_client_create+0x10/0x10 [ 54.600518][ T5244] ? __asan_memset+0x23/0x50 [ 54.605162][ T5244] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 54.610990][ T5244] ? __raw_spin_lock_init+0x45/0x100 [ 54.616331][ T5244] v9fs_session_init+0x1e4/0x1b80 [ 54.621396][ T5244] ? __pfx_v9fs_session_init+0x10/0x10 [ 54.626917][ T5244] ? __kasan_kmalloc+0x98/0xb0 [ 54.631698][ T5244] ? __kmalloc_cache_noprof+0x243/0x390 [ 54.637298][ T5244] ? v9fs_mount+0xb2/0xaa0 [ 54.641734][ T5244] v9fs_mount+0xcf/0xaa0 [ 54.646039][ T5244] ? __pfx_aa_get_newest_label+0x10/0x10 [ 54.651689][ T5244] ? __pfx_v9fs_mount+0x10/0x10 [ 54.656580][ T5244] ? __kmalloc_cache_noprof+0x243/0x390 [ 54.662148][ T5244] legacy_get_tree+0xee/0x190 [ 54.666883][ T5244] ? __pfx_v9fs_mount+0x10/0x10 [ 54.671772][ T5244] vfs_get_tree+0x90/0x2b0 [ 54.676235][ T5244] do_new_mount+0x2be/0xb40 [ 54.680756][ T5244] ? __pfx_do_new_mount+0x10/0x10 [ 54.685833][ T5244] __se_sys_mount+0x2d6/0x3c0 [ 54.690529][ T5244] ? __pfx___se_sys_mount+0x10/0x10 [ 54.695775][ T5244] ? exc_page_fault+0x590/0x8c0 [ 54.700645][ T5244] ? __x64_sys_mount+0x20/0xc0 [ 54.705476][ T5244] do_syscall_64+0xf3/0x230 [ 54.709992][ T5244] ? clear_bhb_loop+0x35/0x90 [ 54.714747][ T5244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 54.720662][ T5244] RIP: 0033:0x7f01b09bbe69 [ 54.725158][ T5244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 54.744830][ T5244] RSP: 002b:00007ffd9ca8c548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 54.753264][ T5244] RAX: ffffffffffffffda RBX: 00007f01b0a0504e RCX: 00007f01b09bbe69 [ 54.761294][ T5244] RDX: 0000000020000040 RSI: 0000000020000000 RDI: 0000000000000000 [ 54.769348][ T5244] RBP: 00000000000f4240 R08: 0000000020000180 R09: 00000000000000a0 [ 54.777401][ T5244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 54.785442][ T5244] R13: 00007ffd9ca8c768 R14: 00007ffd9ca8c570 R15: 00007ffd9ca8c560 [ 54.793436][ T5244] [ 54.796825][ T5244] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 54.804113][ T5244] CPU: 0 UID: 0 PID: 5244 Comm: syz-executor112 Not tainted 6.12.0-rc3-next-20241016-syzkaller #0 [ 54.814688][ T5244] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 54.824742][ T5244] Call Trace: [ 54.828007][ T5244] [ 54.830929][ T5244] dump_stack_lvl+0x241/0x360 [ 54.835600][ T5244] ? __pfx_dump_stack_lvl+0x10/0x10 [ 54.840786][ T5244] ? __pfx__printk+0x10/0x10 [ 54.845371][ T5244] ? vscnprintf+0x5d/0x90 [ 54.849688][ T5244] panic+0x349/0x880 [ 54.853597][ T5244] ? __warn+0x177/0x4e0 [ 54.857758][ T5244] ? __pfx_panic+0x10/0x10 [ 54.862193][ T5244] __warn+0x34b/0x4e0 [ 54.866175][ T5244] ? __kmem_cache_create_args+0xa7/0x320 [ 54.871807][ T5244] report_bug+0x2b3/0x500 [ 54.876134][ T5244] ? __kmem_cache_create_args+0xa7/0x320 [ 54.881767][ T5244] handle_bug+0x60/0x90 [ 54.885915][ T5244] exc_invalid_op+0x1a/0x50 [ 54.890415][ T5244] asm_exc_invalid_op+0x1a/0x20 [ 54.895258][ T5244] RIP: 0010:__kmem_cache_create_args+0xa7/0x320 [ 54.901492][ T5244] Code: 8e 48 8b 1b 48 39 eb 74 25 48 8b 7b f8 4c 89 fe e8 ce 95 e7 09 85 c0 75 e8 90 48 c7 c7 e7 08 0c 8e 4c 89 fe e8 ea 59 78 ff 90 <0f> 0b 90 90 4c 89 ff be 20 00 00 00 e8 28 97 e7 09 48 85 c0 0f 85 [ 54.921093][ T5244] RSP: 0018:ffffc90003dc7788 EFLAGS: 00010246 [ 54.927159][ T5244] RAX: 4b4653905459d200 RBX: ffff88802d696a68 RCX: ffff88807dda9e00 [ 54.935122][ T5244] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 54.943082][ T5244] RBP: ffffffff8ea20cf8 R08: ffffffff8155d7b2 R09: fffffbfff1cfa3e0 [ 54.951048][ T5244] R10: dffffc0000000000 R11: fffffbfff1cfa3e0 R12: 0000000000020018 [ 54.959011][ T5244] R13: 0000000000000000 R14: ffffc90003dc7860 R15: ffff88802f8470c0 [ 54.966980][ T5244] ? __warn_printk+0x292/0x360 [ 54.971744][ T5244] ? __kmem_cache_create_args+0xa6/0x320 [ 54.977376][ T5244] p9_client_create+0xbc0/0x1150 [ 54.982316][ T5244] ? __pfx_p9_client_create+0x10/0x10 [ 54.987680][ T5244] ? __asan_memset+0x23/0x50 [ 54.992270][ T5244] ? __pfx_lockdep_init_map_type+0x10/0x10 [ 54.998081][ T5244] ? __raw_spin_lock_init+0x45/0x100 [ 55.003365][ T5244] v9fs_session_init+0x1e4/0x1b80 [ 55.008412][ T5244] ? __pfx_v9fs_session_init+0x10/0x10 [ 55.013880][ T5244] ? __kasan_kmalloc+0x98/0xb0 [ 55.018640][ T5244] ? __kmalloc_cache_noprof+0x243/0x390 [ 55.024194][ T5244] ? v9fs_mount+0xb2/0xaa0 [ 55.028608][ T5244] v9fs_mount+0xcf/0xaa0 [ 55.032852][ T5244] ? __pfx_aa_get_newest_label+0x10/0x10 [ 55.038478][ T5244] ? __pfx_v9fs_mount+0x10/0x10 [ 55.043319][ T5244] ? __kmalloc_cache_noprof+0x243/0x390 [ 55.048869][ T5244] legacy_get_tree+0xee/0x190 [ 55.053542][ T5244] ? __pfx_v9fs_mount+0x10/0x10 [ 55.058390][ T5244] vfs_get_tree+0x90/0x2b0 [ 55.062803][ T5244] do_new_mount+0x2be/0xb40 [ 55.067308][ T5244] ? __pfx_do_new_mount+0x10/0x10 [ 55.072336][ T5244] __se_sys_mount+0x2d6/0x3c0 [ 55.077014][ T5244] ? __pfx___se_sys_mount+0x10/0x10 [ 55.082229][ T5244] ? exc_page_fault+0x590/0x8c0 [ 55.087096][ T5244] ? __x64_sys_mount+0x20/0xc0 [ 55.091883][ T5244] do_syscall_64+0xf3/0x230 [ 55.096397][ T5244] ? clear_bhb_loop+0x35/0x90 [ 55.101077][ T5244] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 55.106973][ T5244] RIP: 0033:0x7f01b09bbe69 [ 55.111409][ T5244] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 55.131029][ T5244] RSP: 002b:00007ffd9ca8c548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 55.139447][ T5244] RAX: ffffffffffffffda RBX: 00007f01b0a0504e RCX: 00007f01b09bbe69 [ 55.147519][ T5244] RDX: 0000000020000040 RSI: 0000000020000000 RDI: 0000000000000000 [ 55.155497][ T5244] RBP: 00000000000f4240 R08: 0000000020000180 R09: 00000000000000a0 [ 55.163469][ T5244] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 55.171444][ T5244] R13: 00007ffd9ca8c768 R14: 00007ffd9ca8c570 R15: 00007ffd9ca8c560 [ 55.179424][ T5244] [ 55.182676][ T5244] Kernel Offset: disabled [ 55.187032][ T5244] Rebooting in 86400 seconds..