./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3954151235
<...>
Warning: Permanently added '10.128.0.246' (ED25519) to the list of known hosts.
execve("./syz-executor3954151235", ["./syz-executor3954151235"], 0x7ffe192a21d0 /* 10 vars */) = 0
brk(NULL) = 0x555559948000
brk(0x555559948d00) = 0x555559948d00
arch_prctl(ARCH_SET_FS, 0x555559948380) = 0
set_tid_address(0x555559948650) = 5021
set_robust_list(0x555559948660, 24) = 0
rseq(0x555559948ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3954151235", 4096) = 28
getrandom("\x9b\x54\xad\x13\x7d\xc5\x0d\x25", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555559948d00
brk(0x555559969d00) = 0x555559969d00
brk(0x55555996a000) = 0x55555996a000
mprotect(0x7fd340ec0000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555559948650) = 5022
./strace-static-x86_64: Process 5022 attached
[pid 5022] set_robust_list(0x555559948660, 24) = 0
[pid 5022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5022] setpgid(0, 0) = 0
[pid 5022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5022] write(3, "1000", 4) = 4
[pid 5022] close(3) = 0
[pid 5022] openat(AT_FDCWD, "/sys/kernel/profiling", O_RDWR|O_CREAT|O_NOFOLLOW|FASYNC, 000) = 3
[ 155.834462][ T5022] kernel profiling enabled (shift: 3)
[ 155.873582][ C0] =====================================================
[ 155.880848][ C0] BUG: KMSAN: uninit-value in profile_tick+0x1ae/0x1b0
[ 155.887997][ C0] profile_tick+0x1ae/0x1b0
[ 155.892731][ C0] tick_nohz_handler+0x588/0x690
[ 155.898485][ C0] __hrtimer_run_queues+0x56f/0xe40
[ 155.903978][ C0] hrtimer_interrupt+0x3ab/0x1490
[ 155.909209][ C0] __sysvec_apic_timer_interrupt+0xa6/0x3a0
[ 155.915472][ C0] sysvec_apic_timer_interrupt+0x7e/0x90
[ 155.921321][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 155.927519][ C0] _raw_spin_unlock_irqrestore+0x33/0x60
[ 155.933502][ C0] do_notify_parent_cldstop+0x790/0x810
[ 155.939389][ C0] ptrace_stop+0x672/0xd60
[ 155.944010][ C0] ptrace_notify+0x234/0x320
[ 155.948797][ C0] syscall_trace_enter+0xe2/0x600
[ 155.954145][ C0] do_syscall_64+0xa6/0x1e0
[ 155.958935][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 155.965037][ C0]
[ 155.967443][ C0] Local variable ewq created at:
[ 155.972491][ C0] userfaultfd_unmap_complete+0x41/0x540
[ 155.978430][ C0] vm_mmap_pgoff+0x2cf/0x4e0
[ 155.983182][ C0]
[ 155.985606][ C0] CPU: 0 PID: 5021 Comm: syz-executor395 Not tainted 6.9.0-rc5-syzkaller-00042-ge88c4cfcb7b8 #0
[ 155.996207][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 156.006608][ C0] =====================================================
[ 156.013926][ C0] Disabling lock debugging due to kernel taint
[ 156.020553][ C0] Kernel panic - not syncing: kmsan.panic set ...
[ 156.027186][ C0] CPU: 0 PID: 5021 Comm: syz-executor395 Tainted: G B 6.9.0-rc5-syzkaller-00042-ge88c4cfcb7b8 #0
[ 156.039255][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[ 156.049452][ C0] Call Trace:
[ 156.052829][ C0]
[ 156.055753][ C0] dump_stack_lvl+0x216/0x2d0
[ 156.060567][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 156.066525][ C0] dump_stack+0x1e/0x30
[ 156.070800][ C0] panic+0x4e2/0xcd0
[ 156.074839][ C0] ? kmsan_get_metadata+0x101/0x1d0
[ 156.080177][ C0] kmsan_report+0x2d5/0x2e0
[ 156.085151][ C0] ? stack_depot_save_flags+0x2c/0x6e0
[ 156.090782][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.096203][ C0] ? __msan_warning+0x95/0x120
[ 156.101214][ C0] ? profile_tick+0x1ae/0x1b0
[ 156.106040][ C0] ? tick_nohz_handler+0x588/0x690
[ 156.111287][ C0] ? __hrtimer_run_queues+0x56f/0xe40
[ 156.116983][ C0] ? hrtimer_interrupt+0x3ab/0x1490
[ 156.122339][ C0] ? __sysvec_apic_timer_interrupt+0xa6/0x3a0
[ 156.128569][ C0] ? sysvec_apic_timer_interrupt+0x7e/0x90
[ 156.134524][ C0] ? asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 156.140818][ C0] ? _raw_spin_unlock_irqrestore+0x33/0x60
[ 156.146798][ C0] ? do_notify_parent_cldstop+0x790/0x810
[ 156.152659][ C0] ? ptrace_stop+0x672/0xd60
[ 156.157377][ C0] ? ptrace_notify+0x234/0x320
[ 156.162281][ C0] ? syscall_trace_enter+0xe2/0x600
[ 156.167658][ C0] ? do_syscall_64+0xa6/0x1e0
[ 156.172691][ C0] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.178995][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.184408][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 156.190714][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.196381][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 156.202423][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.207842][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 156.214048][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.219537][ C0] ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 156.225476][ C0] __msan_warning+0x95/0x120
[ 156.230251][ C0] profile_tick+0x1ae/0x1b0
[ 156.235292][ C0] ? do_notify_parent_cldstop+0x790/0x810
[ 156.241184][ C0] tick_nohz_handler+0x588/0x690
[ 156.246369][ C0] ? __pfx_tick_nohz_handler+0x10/0x10
[ 156.251966][ C0] __hrtimer_run_queues+0x56f/0xe40
[ 156.257410][ C0] hrtimer_interrupt+0x3ab/0x1490
[ 156.262582][ C0] ? __pfx_hrtimer_interrupt+0x10/0x10
[ 156.268179][ C0] ? __pfx_hrtimer_interrupt+0x10/0x10
[ 156.273771][ C0] __sysvec_apic_timer_interrupt+0xa6/0x3a0
[ 156.279833][ C0] sysvec_apic_timer_interrupt+0x7e/0x90
[ 156.285602][ C0]
[ 156.288685][ C0]
[ 156.291694][ C0] asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 156.297824][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0x33/0x60
[ 156.304584][ C0] Code: 56 53 49 89 f6 48 89 fb e8 8a bf c0 f2 48 89 df e8 92 b1 c0 f2 c6 00 00 c6 03 00 41 f7 c6 00 02 00 00 74 01 fb be 04 00 00 00 <48> c7 c7 08 5d 0a 00 e8 a1 b3 c0 f2 65 ff 0d 62 71 87 70 74 09 5b
[ 156.324619][ C0] RSP: 0018:ffff88811f1abc68 EFLAGS: 00000206
[ 156.330822][ C0] RAX: ffff888115b9d280 RBX: ffff88811639d280 RCX: 0000000115f9d280
[ 156.339001][ C0] RDX: ffff888115f9d280 RSI: 0000000000000004 RDI: ffff88811639d280
[ 156.347724][ C0] RBP: ffff88811f1abc78 R08: ffffea000000000f R09: 0000000000000000
[ 156.355861][ C0] R10: 0000000000000000 R11: ffffffff81732380 R12: 0000000000000292
[ 156.364033][ C0] R13: ffff88811865c180 R14: 0000000000000292 R15: 0000000000000000
[ 156.372205][ C0] ? __pfx_check_preempt_wakeup_fair+0x10/0x10
[ 156.378629][ C0] ? _raw_spin_unlock_irqrestore+0x1e/0x60
[ 156.384632][ C0] do_notify_parent_cldstop+0x790/0x810
[ 156.390347][ C0] ptrace_stop+0x672/0xd60
[ 156.394900][ C0] ptrace_notify+0x234/0x320
[ 156.399629][ C0] syscall_trace_enter+0xe2/0x600
[ 156.404891][ C0] ? kmsan_get_metadata+0x146/0x1d0
[ 156.410232][ C0] ? kmsan_internal_set_shadow_origin+0x66/0xe0
[ 156.416677][ C0] do_syscall_64+0xa6/0x1e0
[ 156.421498][ C0] ? clear_bhb_loop+0x25/0x80
[ 156.426422][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 156.432534][ C0] RIP: 0033:0x7fd340e865b3
[ 156.437053][ C0] Code: 00 00 00 00 0f 1f 00 83 ff 03 74 7b 83 ff 02 b8 fa ff ff ff 49 89 ca 0f 44 f8 80 3d ae ea 03 00 00 74 14 b8 e6 00 00 00 0f 05 d8 c3 66 2e 0f 1f 84 00 00 00 00 00 48 83 ec 28 48 89 54 24 10
[ 156.457063][ C0] RSP: 002b:00007ffc6b9afc38 EFLAGS: 00000202 ORIG_RAX: 00000000000000e6
[ 156.465601][ C0] RAX: ffffffffffffffda RBX: 000000000000139e RCX: 00007fd340e865b3
[ 156.473857][ C0] RDX: 00007ffc6b9afc50 RSI: 0000000000000000 RDI: 0000000000000000
[ 156.481935][ C0] RBP: 00000000000260a2 R08: 0000000000000010 R09: 00007fd340e0c0b0
[ 156.490653][ C0] R10: 0000000000000000 R11: 0000000000000202 R12: 00007ffc6b9afc8c
[ 156.498790][ C0] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[ 156.507364][ C0]
[ 157.910190][ C0] Shutting down cpus with NMI
[ 157.915144][ C0] Kernel Offset: disabled
[ 157.920310][ C0] Rebooting in 86400 seconds..