./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3205355340 <...> Warning: Permanently added '10.128.10.0' (ECDSA) to the list of known hosts. execve("./syz-executor3205355340", ["./syz-executor3205355340"], 0x7ffcf3862a20 /* 10 vars */) = 0 brk(NULL) = 0x555555e32000 brk(0x555555e32c40) = 0x555555e32c40 arch_prctl(ARCH_SET_FS, 0x555555e32300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3205355340", 4096) = 28 brk(0x555555e53c40) = 0x555555e53c40 brk(0x555555e54000) = 0x555555e54000 mprotect(0x7f4752a32000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SK_REUSEPORT, insn_cnt=3, insns=0x20000040, license="syzkaller", log_level=1, log_size=195, log_buf="", kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3 socket(AF_INET, SOCK_DGRAM, IPPROTO_IP) = 4 setsockopt(4, SOL_SOCKET, SO_REUSEPORT, "\xbb\x57\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 60) = 0 setsockopt(4, SOL_SOCKET, SO_ATTACH_REUSEPORT_EBPF, [3], 4) = 0 exit_group(0) = ? syzkaller login: [ 49.264655][ T3607] [ 49.267103][ T3607] ============================= [ 49.271967][ T3607] WARNING: suspicious RCU usage [ 49.276802][ T3607] 5.19.0-syzkaller-11980-ge34cfee65ec8 #0 Not tainted [ 49.283590][ T3607] ----------------------------- [ 49.288419][ T3607] include/net/sock.h:592 suspicious rcu_dereference_check() usage! [ 49.296334][ T3607] [ 49.296334][ T3607] other info that might help us debug this: [ 49.296334][ T3607] [ 49.306606][ T3607] [ 49.306606][ T3607] rcu_scheduler_active = 2, debug_locks = 1 [ 49.314712][ T3607] 3 locks held by syz-executor320/3607: [ 49.320302][ T3607] #0: ffff88807f0cac10 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: __sock_release+0x86/0x280 [ 49.330886][ T3607] #1: ffffffff8d7bb7b8 (reuseport_lock){+...}-{2:2}, at: reuseport_detach_sock+0x22/0x4a0 [ 49.340947][ T3607] #2: ffff888026ca8af8 (clock-AF_INET){++..}-{2:2}, at: bpf_sk_reuseport_detach+0x26/0x190 [ 49.351080][ T3607] [ 49.351080][ T3607] stack backtrace: [ 49.356968][ T3607] CPU: 0 PID: 3607 Comm: syz-executor320 Not tainted 5.19.0-syzkaller-11980-ge34cfee65ec8 #0 [ 49.367127][ T3607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022 [ 49.377169][ T3607] Call Trace: [ 49.380435][ T3607] [ 49.383371][ T3607] dump_stack_lvl+0xcd/0x134 [ 49.387955][ T3607] bpf_sk_reuseport_detach+0x156/0x190 [ 49.393407][ T3607] reuseport_detach_sock+0x8c/0x4a0 [ 49.398597][ T3607] ? netlink_has_listeners+0x21c/0x3d0 [ 49.404131][ T3607] __sk_free+0x130/0x460 [ 49.408379][ T3607] sk_common_release+0x292/0x390 [ 49.413329][ T3607] inet_release+0x12e/0x270 [ 49.417830][ T3607] __sock_release+0xcd/0x280 [ 49.422412][ T3607] sock_close+0x18/0x20 [ 49.426559][ T3607] __fput+0x277/0x9d0 [ 49.430533][ T3607] ? __sock_release+0x280/0x280 [ 49.435396][ T3607] task_work_run+0xdd/0x1a0 [ 49.439908][ T3607] do_exit+0xad5/0x29b0 [ 49.444061][ T3607] ? mm_update_next_owner+0x7a0/0x7a0 [ 49.449420][ T3607] ? _raw_spin_unlock_irq+0x1f/0x40 [ 49.454608][ T3607] ? _raw_spin_unlock_irq+0x1f/0x40 [ 49.459805][ T3607] do_group_exit+0xd2/0x2f0 [ 49.464303][ T3607] __x64_sys_exit_group+0x3a/0x50 [ 49.469330][ T3607] do_syscall_64+0x35/0xb0 [ 49.473738][ T3607] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 49.479634][ T3607] RIP: 0033:0x7f47529c4849 [ 49.484052][ T3607] Code: Unable to access opcode bytes at RIP 0x7f47529c481f. [ 49.491404][ T3607] RSP: 002b:00007ffc23fe9f48 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 49.499806][ T3607] RAX: ffffffffffffffda RBX: 00007f4752a38270 RCX: 00007f47529c4849 [ 49.507768][ T3607] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 +++ exited with 0 +++ [