./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2962142448 <...> Warning: Permanently added '10.128.0.207' (ECDSA) to the list of known hosts. execve("./syz-executor2962142448", ["./syz-executor2962142448"], 0x7fff5dc4b730 /* 10 vars */) = 0 brk(NULL) = 0x555555c7f000 brk(0x555555c7fc40) = 0x555555c7fc40 arch_prctl(ARCH_SET_FS, 0x555555c7f300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor2962142448", 4096) = 28 brk(0x555555ca0c40) = 0x555555ca0c40 brk(0x555555ca1000) = 0x555555ca1000 mprotect(0x7f2c10b3a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555c7f5d0) = 3493 ./strace-static-x86_64: Process 3493 attached [pid 3493] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3493] setpgid(0, 0) = 0 [pid 3493] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 3493] write(3, "1000", 4) = 4 [pid 3493] close(3) = 0 [pid 3493] openat(AT_FDCWD, "/sys/kernel/profiling", O_RDWR|O_CREAT|O_LARGEFILE|O_CLOEXEC, 000) = 3 [ 111.308738][ T3493] kernel profiling enabled (shift: 0) [ 111.512066][ C1] ===================================================== [ 111.512152][ C1] BUG: KMSAN: uninit-value in profile_tick+0x1ca/0x1d0 [ 111.512208][ C1] profile_tick+0x1ca/0x1d0 [ 111.512256][ C1] tick_sched_timer+0x5e4/0x700 [ 111.512311][ C1] __run_hrtimer+0x298/0x910 [ 111.512357][ C1] hrtimer_interrupt+0x78d/0x1440 [ 111.512402][ C1] __sysvec_apic_timer_interrupt+0x14b/0x5b0 [ 111.512445][ C1] sysvec_apic_timer_interrupt+0x95/0xc0 [ 111.512491][ C1] asm_sysvec_apic_timer_interrupt+0x20/0x30 [ 111.512555][ C1] _raw_spin_unlock_irqrestore+0x2f/0x50 [ 111.512605][ C1] add_wait_queue+0x19d/0x2c0 [ 111.512654][ C1] do_wait+0xce/0xff0 [ 111.512687][ C1] kernel_wait4+0x2c3/0x410 [ 111.512721][ C1] __x64_sys_wait4+0x193/0x3a0 [ 111.512757][ C1] do_syscall_64+0x3d/0xb0 [ 111.512810][ C1] entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 111.512864][ C1] [ 111.512872][ C1] Local variable filename created at: [ 111.512884][ C1] ima_file_mprotect+0x85/0x6f0 [ 111.512922][ C1] security_file_mprotect+0x13f/0x180 [ 111.512974][ C1] [ 111.512981][ C1] CPU: 1 PID: 3492 Comm: syz-executor296 Not tainted 5.19.0-rc3-syzkaller-30868-g4b28366af7d9 #0 [ 111.513025][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.513047][ C1] ===================================================== [ 111.513058][ C1] Disabling lock debugging due to kernel taint [ 111.513071][ C1] Kernel panic - not syncing: kmsan.panic set ... [ 111.658513][ C1] CPU: 1 PID: 3492 Comm: syz-executor296 Tainted: G B 5.19.0-rc3-syzkaller-30868-g4b28366af7d9 #0 [ 111.670475][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 111.680579][ C1] Call Trace: [ 111.683897][ C1] [ 111.686782][ C1] dump_stack_lvl+0x1c8/0x256 [ 111.691546][ C1] dump_stack+0x1a/0x1c [ 111.695788][ C1] panic+0x4d3/0xc7d [ 111.699763][ C1] ? print_tainted+0x1d1/0x1e0 [ 111.704610][ C1] ? add_taint+0x104/0x1a0 [ 111.709092][ C1] ? printk_sprint+0x29b/0x4d0 [ 111.714012][ C1] kmsan_report+0x2cc/0x2d0 [ 111.718588][ C1] ? __stack_depot_save+0x21/0x4b0 [ 111.723767][ C1] ? __msan_warning+0x92/0x110 [ 111.728600][ C1] ? profile_tick+0x1ca/0x1d0 [ 111.733347][ C1] ? tick_sched_timer+0x5e4/0x700 [ 111.738458][ C1] ? __run_hrtimer+0x298/0x910 [ 111.743313][ C1] ? hrtimer_interrupt+0x78d/0x1440 [ 111.748582][ C1] ? __sysvec_apic_timer_interrupt+0x14b/0x5b0 [ 111.754812][ C1] ? sysvec_apic_timer_interrupt+0x95/0xc0 [ 111.760696][ C1] ? asm_sysvec_apic_timer_interrupt+0x20/0x30 [ 111.766961][ C1] ? _raw_spin_unlock_irqrestore+0x2f/0x50 [ 111.772853][ C1] ? add_wait_queue+0x19d/0x2c0 [ 111.777797][ C1] ? do_wait+0xce/0xff0 [ 111.782030][ C1] ? kernel_wait4+0x2c3/0x410 [ 111.786790][ C1] ? __x64_sys_wait4+0x193/0x3a0 [ 111.791790][ C1] ? do_syscall_64+0x3d/0xb0 [ 111.796464][ C1] ? entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 111.802626][ C1] ? kmsan_get_metadata+0x33/0x220 [ 111.807846][ C1] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 111.813738][ C1] ? kmsan_get_metadata+0x33/0x220 [ 111.818945][ C1] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 111.824839][ C1] ? run_posix_cpu_timers+0x4f4/0x8a0 [ 111.830301][ C1] ? kmsan_get_metadata+0x33/0x220 [ 111.835510][ C1] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 111.841494][ C1] ? kmsan_get_metadata+0x33/0x220 [ 111.846704][ C1] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 111.852611][ C1] __msan_warning+0x92/0x110 [ 111.857291][ C1] profile_tick+0x1ca/0x1d0 [ 111.861889][ C1] ? add_wait_queue+0x19d/0x2c0 [ 111.866834][ C1] tick_sched_timer+0x5e4/0x700 [ 111.871785][ C1] ? tick_setup_sched_timer+0x750/0x750 [ 111.877421][ C1] __run_hrtimer+0x298/0x910 [ 111.882099][ C1] hrtimer_interrupt+0x78d/0x1440 [ 111.887211][ C1] ? hrtimer_init+0x370/0x370 [ 111.891966][ C1] ? hrtimer_init+0x370/0x370 [ 111.896708][ C1] __sysvec_apic_timer_interrupt+0x14b/0x5b0 [ 111.902793][ C1] sysvec_apic_timer_interrupt+0x95/0xc0 [ 111.908511][ C1] [ 111.911480][ C1] [ 111.914448][ C1] asm_sysvec_apic_timer_interrupt+0x20/0x30 [ 111.920530][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0x2f/0x50 [ 111.927030][ C1] Code: 56 53 49 89 f6 48 89 fb e8 0e d4 72 f4 48 89 df e8 46 c8 72 f4 c6 00 00 c6 03 00 41 f7 c6 00 02 00 00 74 01 fb bf 01 00 00 00 8c d1 b4 f3 65 8b 05 ad 53 4d 72 85 c0 74 05 5b 41 5e 5d c3 0f [ 111.946713][ C1] RSP: 0018:ffff88812c6c7c10 EFLAGS: 00000206 [ 111.952858][ C1] RAX: ffff88811252c4a0 RBX: ffff888112d2c4a0 RCX: 000000000055cddc [ 111.960887][ C1] RDX: ffff88811292c4a0 RSI: 00000000055e1dc0 RDI: 0000000000000001 [ 111.968913][ C1] RBP: ffff88812c6c7c20 R08: 0000000000000000 R09: ffff88811252c4a0 [ 111.976953][ C1] R10: ffff88812c6c7ba8 R11: ffff88810a938000 R12: ffff888112d2c4a8 [ 111.984998][ C1] R13: 0000000000000000 R14: 0000000000000286 R15: 0000000000000000 [ 111.993039][ C1] add_wait_queue+0x19d/0x2c0 [ 111.997819][ C1] do_wait+0xce/0xff0 [ 112.001883][ C1] ? kmsan_get_metadata+0x33/0x220 [ 112.007088][ C1] ? kmsan_get_shadow_origin_ptr+0x9a/0xf0 [ 112.012994][ C1] kernel_wait4+0x2c3/0x410 [ 112.017576][ C1] ? kernel_waitid+0x730/0x730 [ 112.022429][ C1] ? __x64_sys_wait4+0xcc/0x3a0 [ 112.027385][ C1] __x64_sys_wait4+0x193/0x3a0 [ 112.032253][ C1] ? ptrace_notify+0x276/0x340 [ 112.037110][ C1] do_syscall_64+0x3d/0xb0 [ 112.041634][ C1] entry_SYSCALL_64_after_hwframe+0x46/0xb0 [ 112.047618][ C1] RIP: 0033:0x7f2c10acc736 [ 112.052092][ C1] Code: 0f 1f 40 00 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24 [ 112.071775][ C1] RSP: 002b:00007ffd3605c298 EFLAGS: 00000246 ORIG_RAX: 000000000000003d [ 112.080259][ C1] RAX: ffffffffffffffda RBX: 000000000001b2ff RCX: 00007f2c10acc736 [ 112.088300][ C1] RDX: 0000000040000001 RSI: 00007ffd3605c2ac RDI: 00000000ffffffff [ 112.096331][ C1] RBP: 0000000000000da5 R08: 00007ffd360c40b0 R09: 0000000000000010 [ 112.104359][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd3605c2ac [ 112.112390][ C1] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000 [ 112.120437][ C1] [ 112.125595][ C1] Kernel Offset: disabled [ 112.129960][ C1] Rebooting in 86400 seconds..