Warning: Permanently added '10.128.0.247' (ECDSA) to the list of known hosts. executing program [ 88.354039][ T5004] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5004 'syz-executor129' [ 88.364909][ T5004] loop0: detected capacity change from 0 to 128 [ 88.372680][ T5004] ======================================================= [ 88.372680][ T5004] WARNING: The mand mount option has been deprecated and [ 88.372680][ T5004] and is ignored by this kernel. Remove the mand [ 88.372680][ T5004] option from the mount to silence this warning. executing program executing program executing program [ 88.372680][ T5004] ======================================================= executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 90.365723][ T5735] mmap: map_count 19 vma iterator 18 [ 90.371192][ T5735] mm ffff8880216c8000 task_size 140737488351232 [ 90.371192][ T5735] get_unmapped_area ffffffff812e9300 [ 90.371192][ T5735] mmap_base 139965533368320 mmap_legacy_base 47667261800448 [ 90.371192][ T5735] pgd ffff888020a70000 mm_users 4 mm_count 1 pgtables_bytes 61440 map_count 19 [ 90.371192][ T5735] hiwater_rss 80 hiwater_vm 956b total_vm 957c locked_vm 0 [ 90.371192][ T5735] pinned_vm 0 data_vm 947b exec_vm 9d stack_vm 21 [ 90.371192][ T5735] start_code 7f4c43d86000 end_code 7f4c43e20f11 start_data 7f4c43e4ee50 end_data 7f4c43e54370 [ 90.371192][ T5735] start_brk 555556576000 brk 555556598000 start_stack 7ffc6ac59280 [ 90.371192][ T5735] arg_start 7ffc6ac5aefa arg_end 7ffc6ac5af13 env_start 7ffc6ac5af13 env_end 7ffc6ac5afdf [ 90.371192][ T5735] binfmt ffffffff8cba2c20 flags 7fd [ 90.371192][ T5735] ioctx_table 0000000000000000 [ 90.371192][ T5735] owner ffff888013f43b80 exe_file ffff888029e28f00 [ 90.371192][ T5735] notifier_subscriptions 0000000000000000 [ 90.371192][ T5735] numa_next_scan 4294946322 numa_scan_offset 0 numa_scan_seq 0 [ 90.371192][ T5735] tlb_flush_pending 0 [ 90.371192][ T5735] def_flags: 0x0() [ 90.476296][ T5735] ------------[ cut here ]------------ [ 90.481806][ T5735] kernel BUG at mm/mmap.c:340! [ 90.486970][ T5735] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 90.493029][ T5735] CPU: 0 PID: 5735 Comm: syz-executor129 Not tainted 6.4.0-syzkaller-10062-gf8566aa4f176 #0 [ 90.503120][ T5735] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/27/2023 [ 90.513148][ T5735] RIP: 0010:validate_mm+0x3a0/0x470 [ 90.518326][ T5735] Code: 24 48 e8 93 39 fb ff e9 fc fd ff ff e8 09 e1 be ff 44 89 fa 89 ee 48 c7 c7 a0 d3 78 8a e8 88 89 a2 ff 48 89 df e8 a0 17 fb ff <0f> 0b e8 e9 e0 be ff 48 8b 7c 24 18 e8 8f 17 fb ff c6 05 11 d7 cd [ 90.537993][ T5735] RSP: 0018:ffffc9000553faa0 EFLAGS: 00010282 [ 90.544121][ T5735] RAX: 000000000000032f RBX: ffff8880216c8000 RCX: 0000000000000000 [ 90.552067][ T5735] RDX: 0000000000000000 RSI: ffffffff8169097c RDI: 0000000000000005 [ 90.560013][ T5735] RBP: 0000000000000013 R08: 0000000000000005 R09: 0000000000000000 [ 90.567958][ T5735] R10: 0000000080000000 R11: 0000000000000001 R12: 00007ffc6ad5e000 [ 90.575905][ T5735] R13: 0000000000000000 R14: 00007ffc6ad5ffff R15: 0000000000000012 [ 90.583853][ T5735] FS: 00007f4c43d7c700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 90.592758][ T5735] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 90.599316][ T5735] CR2: 00007f4c43e12ee0 CR3: 0000000020a70000 CR4: 0000000000350ef0 [ 90.607262][ T5735] Call Trace: [ 90.610516][ T5735] [ 90.613422][ T5735] ? die+0x32/0x90 [ 90.617123][ T5735] ? do_trap+0x1b2/0x3f0 [ 90.621346][ T5735] ? validate_mm+0x3a0/0x470 [ 90.625913][ T5735] ? validate_mm+0x3a0/0x470 [ 90.630477][ T5735] ? do_error_trap+0xb1/0x170 [ 90.635228][ T5735] ? validate_mm+0x3a0/0x470 [ 90.639809][ T5735] ? handle_invalid_op+0x2c/0x30 [ 90.644742][ T5735] ? validate_mm+0x3a0/0x470 [ 90.649306][ T5735] ? exc_invalid_op+0x2f/0x50 [ 90.653961][ T5735] ? asm_exc_invalid_op+0x1a/0x20 [ 90.658963][ T5735] ? vprintk+0x8c/0xa0 [ 90.663009][ T5735] ? validate_mm+0x3a0/0x470 [ 90.667586][ T5735] ? vma_iter_store+0x9a0/0x9a0 [ 90.672412][ T5735] do_vmi_align_munmap+0x1199/0x1680 [ 90.677673][ T5735] ? __split_vma+0x830/0x830 [ 90.682238][ T5735] ? mtree_range_walk+0x63e/0x940 [ 90.687244][ T5735] ? mas_walk+0x5c7/0x7c0 [ 90.691550][ T5735] do_vmi_munmap+0x266/0x430 [ 90.696119][ T5735] __vm_munmap+0x137/0x380 [ 90.700514][ T5735] ? do_vmi_munmap+0x430/0x430 [ 90.705258][ T5735] ? syscall_enter_from_user_mode+0x26/0x80 [ 90.711133][ T5735] __x64_sys_munmap+0x62/0x80 [ 90.715784][ T5735] do_syscall_64+0x39/0xb0 [ 90.720176][ T5735] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 90.726088][ T5735] RIP: 0033:0x7f4c43dd7d07 [ 90.730477][ T5735] Code: 00 00 00 48 c7 c2 b8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff eb 85 66 2e 0f 1f 84 00 00 00 00 00 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 90.750097][ T5735] RSP: 002b:00007f4c43d7c078 EFLAGS: 00000246 ORIG_RAX: 000000000000000b [ 90.758484][ T5735] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 00007f4c43dd7d07 [ 90.766530][ T5735] RDX: 0000000000010000 RSI: 0000000000010000 RDI: 00007f4c3b93b000 [ 90.774479][ T5735] RBP: 00007f4c3b93b000 R08: 0000000000000000 R09: 0000000000000312 [ 90.782437][ T5735] R10: 0000000000010000 R11: 0000000000000246 R12: 00007f4c43d7c6b8 [ 90.790390][ T5735] R13: 00007f4c43d7c090 R14: 00007f4c43d7c0d0 R15: 0000000000022000 [ 90.798338][ T5735] [ 90.801330][ T5735] Modules linked in: [ 90.805547][ T5735] ---[ end trace 0000000000000000 ]--- [ 90.811019][ T5735] RIP: 0010:validate_mm+0x3a0/0x470 [ 90.816268][ T5735] Code: 24 48 e8 93 39 fb ff e9 fc fd ff ff e8 09 e1 be ff 44 89 fa 89 ee 48 c7 c7 a0 d3 78 8a e8 88 89 a2 ff 48 89 df e8 a0 17 fb ff <0f> 0b e8 e9 e0 be ff 48 8b 7c 24 18 e8 8f 17 fb ff c6 05 11 d7 cd [ 90.835894][ T5735] RSP: 0018:ffffc9000553faa0 EFLAGS: 00010282 [ 90.841966][ T5735] RAX: 000000000000032f RBX: ffff8880216c8000 RCX: 0000000000000000 [ 90.849942][ T5735] RDX: 0000000000000000 RSI: ffffffff8169097c RDI: 0000000000000005 [ 90.857937][ T5735] RBP: 0000000000000013 R08: 0000000000000005 R09: 0000000000000000 [ 90.865932][ T5735] R10: 0000000080000000 R11: 0000000000000001 R12: 00007ffc6ad5e000 [ 90.873900][ T5735] R13: 0000000000000000 R14: 00007ffc6ad5ffff R15: 0000000000000012 [ 90.881910][ T5735] FS: 00007f4c43d7c700(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 90.890842][ T5735] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 90.897519][ T5735] CR2: 00007f4c43e12ee0 CR3: 0000000020a70000 CR4: 0000000000350ef0 [ 90.905503][ T5735] Kernel panic - not syncing: Fatal exception [ 90.912467][ T5735] Kernel Offset: disabled [ 90.916768][ T5735] Rebooting in 86400 seconds..