./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1571934547 <...> Warning: Permanently added '10.128.15.198' (ECDSA) to the list of known hosts. execve("./syz-executor1571934547", ["./syz-executor1571934547"], 0x7fff1abdc290 /* 10 vars */) = 0 brk(NULL) = 0x5555573ed000 brk(0x5555573edc40) = 0x5555573edc40 arch_prctl(ARCH_SET_FS, 0x5555573ed300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1571934547", 4096) = 28 brk(0x55555740ec40) = 0x55555740ec40 brk(0x55555740f000) = 0x55555740f000 mprotect(0x7f4723ba3000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached , child_tidptr=0x5555573ed5d0) = 5082 [pid 5082] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setsid() = 1 [pid 5082] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5082] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5082] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5082] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5082] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5082] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5082] unshare(CLONE_NEWNS) = 0 [pid 5082] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5082] unshare(CLONE_NEWIPC) = 0 [pid 5082] unshare(CLONE_NEWCGROUP) = 0 [pid 5082] unshare(CLONE_NEWUTS) = 0 [pid 5082] unshare(CLONE_SYSVSEM) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "16777216", 8) = 8 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "536870912", 9) = 9 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1024", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "8192", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1024", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1024", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5082] close(3) = 0 [pid 5082] getpid() = 1 [pid 5082] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<frame_sz = 131072 [ 60.263794][ T5082] WARNING: CPU: 1 PID: 5082 at net/core/filter.c:4065 bpf_xdp_adjust_tail+0x461/0x9a0 [ 60.273394][ T5082] Modules linked in: [ 60.277280][ T5082] CPU: 1 PID: 5082 Comm: syz-executor157 Not tainted 6.1.0-syzkaller-04386-gfe69230f0589 #0 [ 60.287380][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 60.297467][ T5082] RIP: 0010:bpf_xdp_adjust_tail+0x461/0x9a0 [ 60.303408][ T5082] Code: ff 89 de e8 11 74 af f9 84 db 0f 85 59 fd ff ff e8 94 77 af f9 89 ee 48 c7 c7 c0 df 5b 8b c6 05 9c dc 8b 06 01 e8 9f 37 ed 01 <0f> 0b e9 38 fd ff ff e8 43 78 fd f9 e9 64 fc ff ff e8 39 78 fd f9 [ 60.323057][ T5082] RSP: 0018:ffffc90003baf8f0 EFLAGS: 00010282 [ 60.329119][ T5082] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 60.337132][ T5082] RDX: ffff888029903a80 RSI: ffffffff8166721c RDI: fffff52000775f10 [ 60.345921][ T5082] RBP: 0000000000020000 R08: 0000000000000005 R09: 0000000000000000 [ 60.354025][ T5082] R10: 0000000000000200 R11: 0000000000000000 R12: ffffffffffffffea [ 60.362029][ T5082] R13: ffff888076aafeef R14: 0000000000000000 R15: ffffc90003bafaa8 [ 60.372029][ T5082] FS: 00005555573ed300(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 60.381000][ T5082] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 60.387592][ T5082] CR2: 0000000020011000 CR3: 000000007daac000 CR4: 00000000003506e0 [ 60.395620][ T5082] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 60.403635][ T5082] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 60.411656][ T5082] Call Trace: [ 60.414954][ T5082] [ 60.417892][ T5082] bpf_prog_4add87e5301a4105+0x1a/0x1c [ 60.423393][ T5082] bpf_prog_run_generic_xdp+0x578/0x11e0 [ 60.430541][ T5082] netif_receive_generic_xdp+0x2e8/0x930 [ 60.436220][ T5082] do_xdp_generic+0x9a/0x1b0 [ 60.440854][ T5082] ? __netif_receive_skb_list_core+0x8f0/0x8f0 [ 60.447019][ T5082] tun_get_user+0x21ae/0x3870 [ 60.451755][ T5082] ? tun_build_skb+0x1160/0x1160 [ 60.456717][ T5082] ? lock_downgrade+0x6e0/0x6e0 [ 60.461624][ T5082] tun_chr_write_iter+0xdf/0x200 [ 60.466584][ T5082] vfs_write+0x9ed/0xdd0 [ 60.470879][ T5082] ? kernel_write+0x630/0x630 [ 60.475583][ T5082] ? find_held_lock+0x2d/0x110 [ 60.480355][ T5082] ? lock_downgrade+0x6e0/0x6e0 [ 60.485244][ T5082] ? __fget_light+0x20a/0x270 [ 60.490032][ T5082] ksys_write+0x12b/0x250 [ 60.494401][ T5082] ? __ia32_sys_read+0xb0/0xb0 [ 60.499228][ T5082] ? lockdep_hardirqs_on+0x7d/0x100 [ 60.504464][ T5082] ? _raw_spin_unlock_irq+0x2e/0x50 [ 60.509685][ T5082] ? ptrace_notify+0xfe/0x140 [ 60.514411][ T5082] do_syscall_64+0x39/0xb0 [ 60.518854][ T5082] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.524797][ T5082] RIP: 0033:0x7f4723af0c33 [ 60.529228][ T5082] Code: 5d 41 5c 41 5d 41 5e e9 9b fd ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 48 89 54 24 18 [ 60.548873][ T5082] RSP: 002b:00007ffee97bbf18 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 60.557332][ T5082] RAX: ffffffffffffffda RBX: 00007ffee97bbf40 RCX: 00007f4723af0c33 [ 60.565342][ T5082] RDX: 000000000000fdef RSI: 0000000020001600 RDI: 00000000000000c8 [ 60.573348][ T5082] RBP: 00007ffee97bbfa0 R08: 0000000000000000 R09: 0000000000000000 [ 60.581354][ T5082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 60.589342][ T5082] R13: 00007ffee97bbf50 R14: 00007ffee97bbf70 R15: 00007ffee97bbf38 [ 60.597371][ T5082] [ 60.600404][ T5082] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 60.607707][ T5082] CPU: 1 PID: 5082 Comm: syz-executor157 Not tainted 6.1.0-syzkaller-04386-gfe69230f0589 #0 [ 60.617772][ T5082] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 60.627907][ T5082] Call Trace: [ 60.631190][ T5082] [ 60.634114][ T5082] dump_stack_lvl+0xd1/0x138 [ 60.638705][ T5082] panic+0x2cc/0x626 [ 60.642598][ T5082] ? panic_print_sys_info.part.0+0x110/0x110 [ 60.648586][ T5082] ? bpf_xdp_adjust_tail+0x461/0x9a0 [ 60.653883][ T5082] check_panic_on_warn.cold+0x19/0x35 [ 60.659256][ T5082] __warn+0xf2/0x1a0 [ 60.663148][ T5082] ? __wake_up_klogd.part.0+0x99/0xf0 [ 60.668521][ T5082] ? bpf_xdp_adjust_tail+0x461/0x9a0 [ 60.673808][ T5082] report_bug+0x1c0/0x210 [ 60.678133][ T5082] handle_bug+0x3c/0x70 [ 60.682288][ T5082] exc_invalid_op+0x18/0x50 [ 60.686813][ T5082] asm_exc_invalid_op+0x1a/0x20 [ 60.691656][ T5082] RIP: 0010:bpf_xdp_adjust_tail+0x461/0x9a0 [ 60.697553][ T5082] Code: ff 89 de e8 11 74 af f9 84 db 0f 85 59 fd ff ff e8 94 77 af f9 89 ee 48 c7 c7 c0 df 5b 8b c6 05 9c dc 8b 06 01 e8 9f 37 ed 01 <0f> 0b e9 38 fd ff ff e8 43 78 fd f9 e9 64 fc ff ff e8 39 78 fd f9 [ 60.718024][ T5082] RSP: 0018:ffffc90003baf8f0 EFLAGS: 00010282 [ 60.724083][ T5082] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 60.732045][ T5082] RDX: ffff888029903a80 RSI: ffffffff8166721c RDI: fffff52000775f10 [ 60.740016][ T5082] RBP: 0000000000020000 R08: 0000000000000005 R09: 0000000000000000 [ 60.747980][ T5082] R10: 0000000000000200 R11: 0000000000000000 R12: ffffffffffffffea [ 60.755941][ T5082] R13: ffff888076aafeef R14: 0000000000000000 R15: ffffc90003bafaa8 [ 60.763913][ T5082] ? vprintk+0x8c/0xa0 [ 60.767999][ T5082] bpf_prog_4add87e5301a4105+0x1a/0x1c [ 60.773475][ T5082] bpf_prog_run_generic_xdp+0x578/0x11e0 [ 60.779116][ T5082] netif_receive_generic_xdp+0x2e8/0x930 [ 60.784748][ T5082] do_xdp_generic+0x9a/0x1b0 [ 60.789331][ T5082] ? __netif_receive_skb_list_core+0x8f0/0x8f0 [ 60.795506][ T5082] tun_get_user+0x21ae/0x3870 [ 60.800212][ T5082] ? tun_build_skb+0x1160/0x1160 [ 60.805165][ T5082] ? lock_downgrade+0x6e0/0x6e0 [ 60.810033][ T5082] tun_chr_write_iter+0xdf/0x200 [ 60.814988][ T5082] vfs_write+0x9ed/0xdd0 [ 60.819237][ T5082] ? kernel_write+0x630/0x630 [ 60.823919][ T5082] ? find_held_lock+0x2d/0x110 [ 60.828781][ T5082] ? lock_downgrade+0x6e0/0x6e0 [ 60.833630][ T5082] ? __fget_light+0x20a/0x270 [ 60.838303][ T5082] ksys_write+0x12b/0x250 [ 60.842629][ T5082] ? __ia32_sys_read+0xb0/0xb0 [ 60.847385][ T5082] ? lockdep_hardirqs_on+0x7d/0x100 [ 60.852575][ T5082] ? _raw_spin_unlock_irq+0x2e/0x50 [ 60.857767][ T5082] ? ptrace_notify+0xfe/0x140 [ 60.862449][ T5082] do_syscall_64+0x39/0xb0 [ 60.866866][ T5082] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 60.872762][ T5082] RIP: 0033:0x7f4723af0c33 [ 60.877170][ T5082] Code: 5d 41 5c 41 5d 41 5e e9 9b fd ff ff 66 2e 0f 1f 84 00 00 00 00 00 90 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 48 89 54 24 18 [ 60.896768][ T5082] RSP: 002b:00007ffee97bbf18 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 60.905178][ T5082] RAX: ffffffffffffffda RBX: 00007ffee97bbf40 RCX: 00007f4723af0c33 [ 60.913142][ T5082] RDX: 000000000000fdef RSI: 0000000020001600 RDI: 00000000000000c8 [ 60.921110][ T5082] RBP: 00007ffee97bbfa0 R08: 0000000000000000 R09: 0000000000000000 [ 60.929072][ T5082] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 60.937127][ T5082] R13: 00007ffee97bbf50 R14: 00007ffee97bbf70 R15: 00007ffee97bbf38 [ 60.945275][ T5082] [ 60.948353][ T5082] Kernel Offset: disabled [ 60.952727][ T5082] Rebooting in 86400 seconds..