./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2229833904 <...> [ 91.804749][ T1457] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.15' (ECDSA) to the list of known hosts. execve("./syz-executor2229833904", ["./syz-executor2229833904"], 0x7fff5eb58d10 /* 10 vars */) = 0 brk(NULL) = 0x55555562f000 brk(0x55555562fc40) = 0x55555562fc40 arch_prctl(ARCH_SET_FS, 0x55555562f300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2229833904", 4096) = 28 brk(0x555555650c40) = 0x555555650c40 brk(0x555555651000) = 0x555555651000 mprotect(0x7efed169d000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 socket(AF_KCM, SOCK_DGRAM, KCMPROTO_CONNECTED) = 3 [ 94.941799][ T5007] ------------[ cut here ]------------ [ 94.947466][ T5007] WARNING: CPU: 0 PID: 5007 at net/kcm/kcmsock.c:533 unreserve_psock+0x2e1/0x6e0 [ 94.956650][ T5007] Modules linked in: [ 94.960545][ T5007] CPU: 0 PID: 5007 Comm: syz-executor222 Not tainted 6.4.0-rc5-syzkaller-01194-gc29e012eae29 #0 [ 94.970991][ T5007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 94.981107][ T5007] RIP: 0010:unreserve_psock+0x2e1/0x6e0 [ 94.986720][ T5007] Code: 3c f8 48 89 ef e8 df b1 ff ff 4c 89 f7 e8 e7 f5 cd 00 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c4 f2 3c f8 e8 bf f2 3c f8 <0f> 0b 4c 89 f7 e8 c5 f5 cd 00 eb dc e8 ae f2 3c f8 0f 0b e9 f0 fe [ 95.006426][ T5007] RSP: 0018:ffffc90003a9f6a0 EFLAGS: 00010293 [ 95.012545][ T5007] RAX: 0000000000000000 RBX: ffff888077f60000 RCX: 0000000000000000 [ 95.020597][ T5007] RDX: ffff8880284d3b80 RSI: ffffffff89475391 RDI: ffffc90003a9f630 [ 95.028625][ T5007] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000003 [ 95.036655][ T5007] R10: fffff52000753ec6 R11: 0000000000000005 R12: ffff88802cfd8000 [ 95.044704][ T5007] R13: ffff888077f60000 R14: ffff88802cfd81c0 R15: ffff888077f60598 [ 95.052695][ T5007] FS: 000055555562f300(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 95.061691][ T5007] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 95.068419][ T5007] CR2: 00000000200006c8 CR3: 0000000025a48000 CR4: 00000000003506f0 [ 95.076449][ T5007] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 95.084473][ T5007] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 95.092469][ T5007] Call Trace: [ 95.095799][ T5007] [ 95.098751][ T5007] ? __warn+0xe6/0x390 [ 95.102897][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.107907][ T5007] ? report_bug+0x2da/0x500 [ 95.112429][ T5007] ? handle_bug+0x3c/0x70 [ 95.116819][ T5007] ? exc_invalid_op+0x18/0x50 [ 95.121531][ T5007] ? asm_exc_invalid_op+0x1a/0x20 [ 95.126639][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.131630][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.136648][ T5007] kcm_write_msgs+0x571/0x14b0 [ 95.141469][ T5007] ? unreserve_psock+0x6e0/0x6e0 [ 95.146478][ T5007] ? kcm_sendmsg+0x1d0/0x2720 [ 95.151202][ T5007] ? lock_downgrade+0x690/0x690 [ 95.156133][ T5007] ? mark_held_locks+0x9f/0xe0 [ 95.160940][ T5007] ? __local_bh_enable_ip+0xa4/0x130 [ 95.166297][ T5007] kcm_sendmsg+0x1fe1/0x2720 [ 95.170961][ T5007] ? kcm_release+0x730/0x730 [ 95.175644][ T5007] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 95.180969][ T5007] ? kcm_release+0x730/0x730 [ 95.185626][ T5007] sock_sendmsg+0xde/0x190 [ 95.190082][ T5007] ____sys_sendmsg+0x344/0x920 [ 95.194914][ T5007] ? copy_msghdr_from_user+0xfc/0x150 [ 95.200332][ T5007] ? kernel_sendmsg+0x50/0x50 [ 95.205067][ T5007] ? psi_task_switch+0x2de/0x950 [ 95.210042][ T5007] ? find_held_lock+0x2d/0x110 [ 95.214886][ T5007] ___sys_sendmsg+0x110/0x1b0 [ 95.219612][ T5007] ? do_recvmmsg+0x6f0/0x6f0 [ 95.224275][ T5007] ? __lock_acquire+0x1987/0x5f30 [ 95.229363][ T5007] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 95.235414][ T5007] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 95.241459][ T5007] ? __fget_light+0x20a/0x270 [ 95.246205][ T5007] __sys_sendmmsg+0x18f/0x460 [ 95.250924][ T5007] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 95.256024][ T5007] ? ptrace_stop.part.0+0x60f/0x8e0 [ 95.261261][ T5007] ? find_held_lock+0x2d/0x110 [ 95.266093][ T5007] ? ptrace_notify+0xfe/0x140 [ 95.270807][ T5007] ? lock_downgrade+0x690/0x690 [ 95.275729][ T5007] ? _raw_spin_unlock_irq+0x23/0x50 [ 95.280971][ T5007] ? lockdep_hardirqs_on+0x7d/0x100 [ 95.286243][ T5007] __x64_sys_sendmmsg+0x9d/0x100 [ 95.291230][ T5007] do_syscall_64+0x39/0xb0 [ 95.295705][ T5007] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 95.301653][ T5007] RIP: 0033:0x7efed1630b39 [ 95.306123][ T5007] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 95.325803][ T5007] RSP: 002b:00007fff10fc2e08 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 95.334452][ T5007] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efed1630b39 [ 95.342446][ T5007] RDX: 0000000000000001 RSI: 00000000200006c0 RDI: 0000000000000003 [ 95.350472][ T5007] RBP: 00007efed15f4ce0 R08: 0000000000000000 R09: 0000000000000000 [ 95.358488][ T5007] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efed15f4d70 [ 95.366512][ T5007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 95.374544][ T5007] [ 95.377571][ T5007] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 95.384854][ T5007] CPU: 0 PID: 5007 Comm: syz-executor222 Not tainted 6.4.0-rc5-syzkaller-01194-gc29e012eae29 #0 [ 95.395364][ T5007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023 [ 95.405421][ T5007] Call Trace: [ 95.408793][ T5007] [ 95.411743][ T5007] dump_stack_lvl+0xd9/0x150 [ 95.416352][ T5007] panic+0x686/0x730 [ 95.420283][ T5007] ? panic_smp_self_stop+0xa0/0xa0 [ 95.425422][ T5007] ? show_trace_log_lvl+0x284/0x390 [ 95.430677][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.435644][ T5007] check_panic_on_warn+0xb1/0xc0 [ 95.440599][ T5007] __warn+0xf2/0x390 [ 95.444514][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.449471][ T5007] report_bug+0x2da/0x500 [ 95.453835][ T5007] handle_bug+0x3c/0x70 [ 95.457999][ T5007] exc_invalid_op+0x18/0x50 [ 95.462510][ T5007] asm_exc_invalid_op+0x1a/0x20 [ 95.467401][ T5007] RIP: 0010:unreserve_psock+0x2e1/0x6e0 [ 95.472971][ T5007] Code: 3c f8 48 89 ef e8 df b1 ff ff 4c 89 f7 e8 e7 f5 cd 00 48 83 c4 08 5b 5d 41 5c 41 5d 41 5e 41 5f e9 c4 f2 3c f8 e8 bf f2 3c f8 <0f> 0b 4c 89 f7 e8 c5 f5 cd 00 eb dc e8 ae f2 3c f8 0f 0b e9 f0 fe [ 95.492584][ T5007] RSP: 0018:ffffc90003a9f6a0 EFLAGS: 00010293 [ 95.498653][ T5007] RAX: 0000000000000000 RBX: ffff888077f60000 RCX: 0000000000000000 [ 95.506625][ T5007] RDX: ffff8880284d3b80 RSI: ffffffff89475391 RDI: ffffc90003a9f630 [ 95.514597][ T5007] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000003 [ 95.522569][ T5007] R10: fffff52000753ec6 R11: 0000000000000005 R12: ffff88802cfd8000 [ 95.530552][ T5007] R13: ffff888077f60000 R14: ffff88802cfd81c0 R15: ffff888077f60598 [ 95.538542][ T5007] ? unreserve_psock+0x2e1/0x6e0 [ 95.543512][ T5007] kcm_write_msgs+0x571/0x14b0 [ 95.548304][ T5007] ? unreserve_psock+0x6e0/0x6e0 [ 95.553265][ T5007] ? kcm_sendmsg+0x1d0/0x2720 [ 95.557963][ T5007] ? lock_downgrade+0x690/0x690 [ 95.562935][ T5007] ? mark_held_locks+0x9f/0xe0 [ 95.567745][ T5007] ? __local_bh_enable_ip+0xa4/0x130 [ 95.573063][ T5007] kcm_sendmsg+0x1fe1/0x2720 [ 95.577697][ T5007] ? kcm_release+0x730/0x730 [ 95.582313][ T5007] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 95.587614][ T5007] ? kcm_release+0x730/0x730 [ 95.592229][ T5007] sock_sendmsg+0xde/0x190 [ 95.596661][ T5007] ____sys_sendmsg+0x344/0x920 [ 95.601443][ T5007] ? copy_msghdr_from_user+0xfc/0x150 [ 95.606836][ T5007] ? kernel_sendmsg+0x50/0x50 [ 95.611524][ T5007] ? psi_task_switch+0x2de/0x950 [ 95.616474][ T5007] ? find_held_lock+0x2d/0x110 [ 95.621255][ T5007] ___sys_sendmsg+0x110/0x1b0 [ 95.625956][ T5007] ? do_recvmmsg+0x6f0/0x6f0 [ 95.630562][ T5007] ? __lock_acquire+0x1987/0x5f30 [ 95.635613][ T5007] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 95.641611][ T5007] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 95.647618][ T5007] ? __fget_light+0x20a/0x270 [ 95.652324][ T5007] __sys_sendmmsg+0x18f/0x460 [ 95.657021][ T5007] ? __ia32_sys_sendmsg+0xb0/0xb0 [ 95.662068][ T5007] ? ptrace_stop.part.0+0x60f/0x8e0 [ 95.667278][ T5007] ? find_held_lock+0x2d/0x110 [ 95.672060][ T5007] ? ptrace_notify+0xfe/0x140 [ 95.676747][ T5007] ? lock_downgrade+0x690/0x690 [ 95.681621][ T5007] ? _raw_spin_unlock_irq+0x23/0x50 [ 95.686841][ T5007] ? lockdep_hardirqs_on+0x7d/0x100 [ 95.692059][ T5007] __x64_sys_sendmmsg+0x9d/0x100 [ 95.697017][ T5007] do_syscall_64+0x39/0xb0 [ 95.701439][ T5007] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 95.707363][ T5007] RIP: 0033:0x7efed1630b39 [ 95.711785][ T5007] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 95.731400][ T5007] RSP: 002b:00007fff10fc2e08 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 95.739821][ T5007] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007efed1630b39 [ 95.747801][ T5007] RDX: 0000000000000001 RSI: 00000000200006c0 RDI: 0000000000000003 [ 95.755777][ T5007] RBP: 00007efed15f4ce0 R08: 0000000000000000 R09: 0000000000000000 [ 95.763753][ T5007] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efed15f4d70 [ 95.771729][ T5007] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 95.779714][ T5007] [ 95.782989][ T5007] Kernel Offset: disabled [ 95.787411][ T5007] Rebooting in 86400 seconds..