./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor124521918

<...>
Warning: Permanently added '10.128.0.101' (ED25519) to the list of known hosts.
execve("./syz-executor124521918", ["./syz-executor124521918"], 0x7ffcff7291e0 /* 10 vars */) = 0
brk(NULL)                               = 0x555588630000
brk(0x555588630d00)                     = 0x555588630d00
arch_prctl(ARCH_SET_FS, 0x555588630380) = 0
set_tid_address(0x555588630650)         = 5021
set_robust_list(0x555588630660, 24)     = 0
rseq(0x555588630ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor124521918", 4096) = 27
getrandom("\x4d\xc6\x5a\xd1\xd7\x17\x35\x7b", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555588630d00
brk(0x555588651d00)                     = 0x555588651d00
brk(0x555588652000)                     = 0x555588652000
mprotect(0x7ff0c9568000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555588630650) = 5022
./strace-static-x86_64: Process 5022 attached
[pid  5022] set_robust_list(0x555588630660, 24) = 0
[pid  5022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5022] setpgid(0, 0)               = 0
[pid  5022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5022] write(3, "1000", 4)         = 4
[pid  5022] close(3)                    = 0
[pid  5022] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=4095, max_entries=7, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid  5022] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid  5022] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[pid  5022] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kfree", prog_fd=4}}, 16) = 5
[pid  5022] exit_group(0)               = ?
[pid  5022] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=5022, si_uid=0, si_status=0, si_utime=0, si_stime=3 /* 0.03 s */} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5023 attached
, child_tidptr=0x555588630650) = 5023
[pid  5023] set_robust_list(0x555588630660, 24) = 0
[pid  5023] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5023] setpgid(0, 0)               = 0
[pid  5023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5023] write(3, "1000", 4)         = 4
[pid  5023] close(3)                    = 0
[pid  5023] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_LRU_PERCPU_HASH, key_size=4, value_size=4095, max_entries=7, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72) = 3
[pid  5023] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = -1 EFAULT (Bad address)
[pid  5023] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144) = 4
[pid  5023] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="kfree", prog_fd=4}}, 16) = 5
[pid  5023] exit_group(0)               = ?
[  152.874360][    C0] =====================================================
[  152.881743][    C0] BUG: KMSAN: uninit-value in htab_lru_percpu_map_lookup_percpu_elem+0x3f8/0x630
[  152.891212][    C0]  htab_lru_percpu_map_lookup_percpu_elem+0x3f8/0x630
[  152.898235][    C0]  bpf_map_lookup_percpu_elem+0x67/0x90
[  152.903997][    C0]  ___bpf_prog_run+0x13fe/0xe0f0
[  152.909089][    C0]  __bpf_prog_run32+0xb2/0xe0
[  152.913947][    C0]  bpf_trace_run2+0x116/0x300
[  152.918762][    C0]  __bpf_trace_kfree+0x29/0x40
[  152.923608][    C0]  kfree+0x6a5/0xa30
[  152.927725][    C0]  security_task_free+0x115/0x150
[  152.932938][    C0]  __put_task_struct+0x17f/0x730
[  152.938068][    C0]  delayed_put_task_struct+0x8a/0x280
[  152.943590][    C0]  rcu_core+0xa59/0x1e70
[  152.948038][    C0]  rcu_core_si+0x12/0x20
[  152.952441][    C0]  __do_softirq+0x1c0/0x7d7
[  152.957155][    C0]  irq_exit_rcu+0x6a/0x130
[  152.961736][    C0]  sysvec_apic_timer_interrupt+0x83/0x90
[  152.967575][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[  152.973768][    C0]  __msan_metadata_ptr_for_load_8+0x31/0x40
[  152.979895][    C0]  filter_irq_stacks+0x60/0x1a0
[  152.985038][    C0]  stack_depot_save_flags+0x2c/0x6e0
[  152.990501][    C0]  stack_depot_save+0x12/0x20
[  152.995351][    C0]  __msan_poison_alloca+0x106/0x1b0
[  153.000842][    C0]  _raw_spin_lock_irqsave+0x35/0xc0
[  153.006246][    C0]  remove_wait_queue+0x36/0x270
[  153.011283][    C0]  do_wait+0x34a/0x530
[  153.015523][    C0]  kernel_wait4+0x2ab/0x480
[  153.020187][    C0]  __x64_sys_wait4+0x14e/0x310
[  153.025128][    C0]  x64_sys_call+0x6e6/0x3b50
[  153.029900][    C0]  do_syscall_64+0xcf/0x1e0
[  153.034569][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.040661][    C0] 
[  153.043023][    C0] Local variable stack created at:
[  153.048283][    C0]  __bpf_prog_run32+0x43/0xe0
[  153.053135][    C0]  bpf_trace_run2+0x116/0x300
[  153.057984][    C0] 
[  153.060378][    C0] CPU: 0 PID: 5018 Comm: strace-static-x Not tainted 6.9.0-rc3-syzkaller-00355-g7efd0a74039f #0
[  153.070978][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  153.081193][    C0] =====================================================
[  153.088253][    C0] Disabling lock debugging due to kernel taint
[  153.094529][    C0] Kernel panic - not syncing: kmsan.panic set ...
[  153.100994][    C0] CPU: 0 PID: 5018 Comm: strace-static-x Tainted: G    B              6.9.0-rc3-syzkaller-00355-g7efd0a74039f #0
[  153.113036][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[  153.123164][    C0] Call Trace:
[  153.126497][    C0]  <IRQ>
[  153.129397][    C0]  dump_stack_lvl+0x216/0x2d0
[  153.134176][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.140083][    C0]  dump_stack+0x1e/0x30
[  153.144317][    C0]  panic+0x4e2/0xcd0
[  153.148333][    C0]  ? kmsan_get_metadata+0xf1/0x1d0
[  153.153549][    C0]  kmsan_report+0x2d5/0x2e0
[  153.158145][    C0]  ? __msan_warning+0x95/0x120
[  153.163195][    C0]  ? htab_lru_percpu_map_lookup_percpu_elem+0x3f8/0x630
[  153.170259][    C0]  ? bpf_map_lookup_percpu_elem+0x67/0x90
[  153.176099][    C0]  ? ___bpf_prog_run+0x13fe/0xe0f0
[  153.181308][    C0]  ? __bpf_prog_run32+0xb2/0xe0
[  153.186254][    C0]  ? bpf_trace_run2+0x116/0x300
[  153.191193][    C0]  ? __bpf_trace_kfree+0x29/0x40
[  153.196217][    C0]  ? kfree+0x6a5/0xa30
[  153.200416][    C0]  ? security_task_free+0x115/0x150
[  153.205726][    C0]  ? __put_task_struct+0x17f/0x730
[  153.210951][    C0]  ? delayed_put_task_struct+0x8a/0x280
[  153.216588][    C0]  ? rcu_core+0xa59/0x1e70
[  153.221118][    C0]  ? rcu_core_si+0x12/0x20
[  153.225630][    C0]  ? __do_softirq+0x1c0/0x7d7
[  153.230418][    C0]  ? irq_exit_rcu+0x6a/0x130
[  153.235112][    C0]  ? sysvec_apic_timer_interrupt+0x83/0x90
[  153.241037][    C0]  ? asm_sysvec_apic_timer_interrupt+0x1f/0x30
[  153.247321][    C0]  ? __msan_metadata_ptr_for_load_8+0x31/0x40
[  153.253519][    C0]  ? filter_irq_stacks+0x60/0x1a0
[  153.258657][    C0]  ? stack_depot_save_flags+0x2c/0x6e0
[  153.264244][    C0]  ? stack_depot_save+0x12/0x20
[  153.269203][    C0]  ? __msan_poison_alloca+0x106/0x1b0
[  153.274698][    C0]  ? _raw_spin_lock_irqsave+0x35/0xc0
[  153.280181][    C0]  ? remove_wait_queue+0x36/0x270
[  153.285320][    C0]  ? do_wait+0x34a/0x530
[  153.289651][    C0]  ? kernel_wait4+0x2ab/0x480
[  153.294415][    C0]  ? __x64_sys_wait4+0x14e/0x310
[  153.299442][    C0]  ? x64_sys_call+0x6e6/0x3b50
[  153.304337][    C0]  ? do_syscall_64+0xcf/0x1e0
[  153.309105][    C0]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.315300][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.321217][    C0]  ? __module_address+0xef/0x7e0
[  153.326289][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.332200][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.337484][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.343391][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.348679][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.354584][    C0]  __msan_warning+0x95/0x120
[  153.359289][    C0]  htab_lru_percpu_map_lookup_percpu_elem+0x3f8/0x630
[  153.366185][    C0]  ? __kernel_text_address+0x2a/0xa0
[  153.371604][    C0]  ? __pfx_htab_lru_percpu_map_lookup_percpu_elem+0x10/0x10
[  153.379012][    C0]  bpf_map_lookup_percpu_elem+0x67/0x90
[  153.384688][    C0]  ___bpf_prog_run+0x13fe/0xe0f0
[  153.389726][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.395029][    C0]  __bpf_prog_run32+0xb2/0xe0
[  153.399801][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.405096][    C0]  ? __pfx___bpf_prog_run32+0x10/0x10
[  153.410567][    C0]  bpf_trace_run2+0x116/0x300
[  153.415331][    C0]  ? security_task_free+0x115/0x150
[  153.420641][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.425932][    C0]  ? security_task_free+0x115/0x150
[  153.431289][    C0]  ? security_task_free+0x115/0x150
[  153.436617][    C0]  __bpf_trace_kfree+0x29/0x40
[  153.441487][    C0]  kfree+0x6a5/0xa30
[  153.445502][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.451432][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.456735][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.462651][    C0]  ? __pfx_apparmor_task_free+0x10/0x10
[  153.468317][    C0]  security_task_free+0x115/0x150
[  153.473471][    C0]  __put_task_struct+0x17f/0x730
[  153.478524][    C0]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  153.484725][    C0]  delayed_put_task_struct+0x8a/0x280
[  153.490191][    C0]  ? __pfx_delayed_put_task_struct+0x10/0x10
[  153.496269][    C0]  rcu_core+0xa59/0x1e70
[  153.500651][    C0]  ? __pfx_rcu_core_si+0x10/0x10
[  153.505692][    C0]  rcu_core_si+0x12/0x20
[  153.510032][    C0]  __do_softirq+0x1c0/0x7d7
[  153.514661][    C0]  irq_exit_rcu+0x6a/0x130
[  153.519205][    C0]  sysvec_apic_timer_interrupt+0x83/0x90
[  153.524967][    C0]  </IRQ>
[  153.527943][    C0]  <TASK>
[  153.530926][    C0]  asm_sysvec_apic_timer_interrupt+0x1f/0x30
[  153.537043][    C0] RIP: 0010:__msan_metadata_ptr_for_load_8+0x31/0x40
[  153.543853][    C0] Code: e5 53 48 83 ec 10 9c 8f 45 e8 0f 01 ca 48 8b 5d e8 be 08 00 00 00 31 d2 e8 7c 24 00 00 48 89 5d f0 ff 75 f0 9d 48 83 c4 10 5b <5d> c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[  153.563628][    C0] RSP: 0018:ffff888117b43a90 EFLAGS: 00000286
[  153.569805][    C0] RAX: ffff888117343b98 RBX: ffff888117b43b98 RCX: 0000000117743b98
[  153.577857][    C0] RDX: ffff888117743b98 RSI: ffff88813fff9220 RDI: ffff888117b43b98
[  153.585918][    C0] RBP: ffff888117b43a90 R08: ffffea000000000f R09: 0000000000000000
[  153.593990][    C0] R10: ffff88823f154040 R11: 0000000000000004 R12: ffffffffffffffff
[  153.602065][    C0] R13: ffffffff8179dea6 R14: 0000000017743b00 R15: 0000000000000000
[  153.610117][    C0]  ? remove_wait_queue+0x36/0x270
[  153.615336][    C0]  filter_irq_stacks+0x60/0x1a0
[  153.620328][    C0]  stack_depot_save_flags+0x2c/0x6e0
[  153.625733][    C0]  stack_depot_save+0x12/0x20
[  153.630520][    C0]  __msan_poison_alloca+0x106/0x1b0
[  153.635852][    C0]  ? _raw_spin_lock_irqsave+0x35/0xc0
[  153.641343][    C0]  ? remove_wait_queue+0x36/0x270
[  153.646490][    C0]  _raw_spin_lock_irqsave+0x35/0xc0
[  153.651801][    C0]  remove_wait_queue+0x36/0x270
[  153.656770][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.662147][    C0]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[  153.668104][    C0]  do_wait+0x34a/0x530
[  153.672288][    C0]  kernel_wait4+0x2ab/0x480
[  153.676890][    C0]  ? __pfx_child_wait_callback+0x10/0x10
[  153.682675][    C0]  __x64_sys_wait4+0x14e/0x310
[  153.687556][    C0]  ? kmsan_get_metadata+0x146/0x1d0
[  153.692864][    C0]  ? kmsan_internal_set_shadow_origin+0x66/0xe0
[  153.699236][    C0]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  153.705464][    C0]  x64_sys_call+0x6e6/0x3b50
[  153.710174][    C0]  do_syscall_64+0xcf/0x1e0
[  153.714771][    C0]  ? clear_bhb_loop+0x25/0x80
[  153.719536][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  153.725558][    C0] RIP: 0033:0x4d6ad6
[  153.729517][    C0] Code: 00 00 00 90 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24
[  153.749233][    C0] RSP: 002b:00007ffcff728e88 EFLAGS: 00000246 ORIG_RAX: 000000000000003d
[  153.757748][    C0] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00000000004d6ad6
[  153.765813][    C0] RDX: 0000000040000001 RSI: 00007ffcff728eac RDI: 00000000ffffffff
[  153.773861][    C0] RBP: 000000000000139d R08: 0000000000000000 R09: 000000000000039d
[  153.781942][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000010cfb3f0
[  153.789986][    C0] R13: 00007ffcff728eac R14: 0000000010cf6b90 R15: 000000000063f160
[  153.798222][    C0]  </TASK>
[  153.801639][    C0] Kernel Offset: disabled
[  153.806019][    C0] Rebooting in 86400 seconds..