./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2565841272 <...> Warning: Permanently added '10.128.0.89' (ED25519) to the list of known hosts. execve("./syz-executor2565841272", ["./syz-executor2565841272"], 0x7fff5789e110 /* 10 vars */) = 0 brk(NULL) = 0x55557ac96000 brk(0x55557ac96d40) = 0x55557ac96d40 arch_prctl(ARCH_SET_FS, 0x55557ac963c0) = 0 set_tid_address(0x55557ac96690) = 5066 set_robust_list(0x55557ac966a0, 24) = 0 rseq(0x55557ac96ce0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2565841272", 4096) = 28 getrandom("\x8a\xab\x4d\x18\x17\x94\x9e\xb6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557ac96d40 brk(0x55557acb7d40) = 0x55557acb7d40 brk(0x55557acb8000) = 0x55557acb8000 mprotect(0x7f7fe5586000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557ac96690) = 5067 ./strace-static-x86_64: Process 5067 attached [pid 5067] set_robust_list(0x55557ac966a0, 24) = 0 [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5067] setpgid(0, 0) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5067] write(3, "1000", 4) = 4 [pid 5067] close(3) = 0 [pid 5067] futex(0x7f7fe558c32c, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5067] rt_sigaction(SIGRT_1, {sa_handler=0x7f7fe5528760, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f7fe5519de0}, NULL, 8) = 0 [pid 5067] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5067] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f7fe549d000 [pid 5067] mprotect(0x7f7fe549e000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5067] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5067] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f7fe54bd990, parent_tid=0x7f7fe54bd990, exit_signal=0, stack=0x7f7fe549d000, stack_size=0x20300, tls=0x7f7fe54bd6c0}./strace-static-x86_64: Process 5068 attached [pid 5068] rseq(0x7f7fe54bdfe0, 0x20, 0, 0x53053053) = 0 [pid 5067] <... clone3 resumed> => {parent_tid=[5068]}, 88) = 5068 [pid 5068] set_robust_list(0x7f7fe54bd9a0, 24 [pid 5067] rt_sigprocmask(SIG_SETMASK, [], [pid 5068] <... set_robust_list resumed>) = 0 [pid 5067] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5068] rt_sigprocmask(SIG_SETMASK, [], [pid 5067] futex(0x7f7fe558c328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5067] <... futex resumed>) = 0 [pid 5068] bpf(BPF_MAP_CREATE, {map_type=BPF_MAP_TYPE_SOCKMAP, key_size=4, value_size=8, max_entries=8, map_flags=0, inner_map_fd=-1, map_name="", map_ifindex=0, btf_fd=-1, btf_key_type_id=0, btf_value_type_id=0, btf_vmlinux_value_type_id=0, map_extra=0}, 72 [pid 5067] futex(0x7f7fe558c32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... bpf resumed>) = 3 [pid 5068] futex(0x7f7fe558c32c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5068] futex(0x7f7fe558c328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5067] <... futex resumed>) = 0 [pid 5067] futex(0x7f7fe558c328, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5068] <... futex resumed>) = 0 [pid 5068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_UNSPEC, insn_cnt=12, insns=0x20000440, license=NULL, log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5067] futex(0x7f7fe558c32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... bpf resumed>) = -1 EFAULT (Bad address) [pid 5068] futex(0x7f7fe558c32c, FUTEX_WAKE_PRIVATE, 1000000 [pid 5067] <... futex resumed>) = 0 [pid 5068] <... futex resumed>) = 1 [pid 5067] futex(0x7f7fe558c328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=12, insns=0x20000440, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS, prog_btf_fd=-1, func_info_rec_size=0, func_info=NULL, func_info_cnt=0, line_info_rec_size=0, line_info=NULL, line_info_cnt=0, attach_btf_id=0, attach_prog_fd=0, fd_array=NULL}, 144 [pid 5067] <... futex resumed>) = 0 [pid 5067] futex(0x7f7fe558c32c, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5068] <... bpf resumed>) = 4 [pid 5068] futex(0x7f7fe558c32c, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5067] <... futex resumed>) = 0 [pid 5068] futex(0x7f7fe558c328, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5067] futex(0x7f7fe558c328, FUTEX_WAKE_PRIVATE, 1000000 [pid 5068] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5067] <... futex resumed>) = 0 [pid 5068] bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="contention_end", prog_fd=4}}, 16 [ 55.850212][ T5063] ------------[ cut here ]------------ [ 55.855809][ T5063] WARNING: CPU: 1 PID: 5063 at kernel/softirq.c:362 __local_bh_enable_ip+0x1be/0x200 [ 55.865268][ T5063] Modules linked in: [ 55.869149][ T5063] CPU: 1 PID: 5063 Comm: strace-static-x Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 55.879194][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 55.889250][ T5063] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 55.895216][ T5063] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 55.914812][ T5063] RSP: 0018:ffffc90004017700 EFLAGS: 00010046 [ 55.920865][ T5063] RAX: 0000000000000000 RBX: 1ffff92000802ee4 RCX: 0000000000000001 [ 55.928818][ T5063] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 55.936789][ T5063] RBP: ffffc900040177c0 R08: ffff888028dd29eb R09: 1ffff110051ba53d [ 55.944751][ T5063] R10: dffffc0000000000 R11: ffffed10051ba53e R12: dffffc0000000000 [ 55.952719][ T5063] R13: ffff88802d1ef880 R14: ffffc90004017740 R15: 0000000000000201 [ 55.960676][ T5063] FS: 0000000030f8c3c0(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 55.969590][ T5063] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 55.976174][ T5063] CR2: 0000000000000000 CR3: 000000007d868000 CR4: 00000000003506f0 [ 55.984163][ T5063] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 55.992293][ T5063] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.000253][ T5063] Call Trace: [ 56.003523][ T5063] [ 56.006447][ T5063] ? __warn+0x163/0x4b0 [ 56.010589][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 56.015953][ T5063] ? report_bug+0x2b3/0x500 [ 56.020448][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 56.025800][ T5063] ? handle_bug+0x3e/0x70 [ 56.030114][ T5063] ? exc_invalid_op+0x1a/0x50 [ 56.034803][ T5063] ? asm_exc_invalid_op+0x1a/0x20 [ 56.039838][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.045134][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 56.050491][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.055759][ T5063] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 56.061482][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.066749][ T5063] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.071971][ T5063] ? __pfx___cant_migrate+0x10/0x10 [ 56.077197][ T5063] ? sock_map_delete_elem+0x97/0x140 [ 56.082487][ T5063] sock_map_delete_elem+0xca/0x140 [ 56.087596][ T5063] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 56.093048][ T5063] bpf_trace_run2+0x204/0x420 [ 56.097741][ T5063] ? bpf_trace_run2+0x114/0x420 [ 56.102575][ T5063] ? __pfx_bpf_trace_run2+0x10/0x10 [ 56.107761][ T5063] trace_contention_end+0xf6/0x120 [ 56.112865][ T5063] __pv_queued_spin_lock_slowpath+0x939/0xc60 [ 56.118937][ T5063] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 56.125522][ T5063] queued_spin_lock_slowpath+0x42/0x50 [ 56.130979][ T5063] do_raw_spin_lock+0x272/0x370 [ 56.135817][ T5063] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 56.141187][ T5063] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 56.147152][ T5063] _raw_spin_lock_irqsave+0xe1/0x120 [ 56.152421][ T5063] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 56.158297][ T5063] ? __pfx___do_wait+0x10/0x10 [ 56.163067][ T5063] remove_wait_queue+0x24/0x130 [ 56.167923][ T5063] do_wait+0x370/0x540 [ 56.171989][ T5063] ? do_wait+0x175/0x540 [ 56.176252][ T5063] kernel_wait4+0x2a7/0x3e0 [ 56.180767][ T5063] ? __pfx_kernel_wait4+0x10/0x10 [ 56.185787][ T5063] ? __pfx_child_wait_callback+0x10/0x10 [ 56.191510][ T5063] __x64_sys_wait4+0x134/0x1e0 [ 56.196290][ T5063] ? __pfx___x64_sys_wait4+0x10/0x10 [ 56.201576][ T5063] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 56.207894][ T5063] ? do_syscall_64+0x10a/0x240 [ 56.212692][ T5063] ? do_syscall_64+0xb6/0x240 [ 56.217382][ T5063] do_syscall_64+0xfb/0x240 [ 56.221891][ T5063] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 56.227777][ T5063] RIP: 0033:0x4d6ad6 [ 56.231657][ T5063] Code: 00 00 00 90 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24 [ 56.251251][ T5063] RSP: 002b:00007fff5789ddb8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d [ 56.259674][ T5063] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004d6ad6 [ 56.267652][ T5063] RDX: 0000000040000000 RSI: 00007fff5789dddc RDI: 00000000ffffffff [ 56.275612][ T5063] RBP: 0000000000000000 R08: 0000000000000017 R09: 0000000000000000 [ 56.283569][ T5063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000030f93530 [ 56.291539][ T5063] R13: 00007fff5789dddc R14: 0000000030f8db90 R15: 000000000063f160 [ 56.299551][ T5063] [ 56.302626][ T5063] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 56.309922][ T5063] CPU: 1 PID: 5063 Comm: strace-static-x Not tainted 6.8.0-syzkaller-05236-g443574b03387 #0 [ 56.320037][ T5063] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 56.330091][ T5063] Call Trace: [ 56.333370][ T5063] [ 56.336292][ T5063] dump_stack_lvl+0x1e7/0x2e0 [ 56.340983][ T5063] ? __pfx_dump_stack_lvl+0x10/0x10 [ 56.346169][ T5063] ? __pfx__printk+0x10/0x10 [ 56.350764][ T5063] ? vscnprintf+0x5d/0x90 [ 56.355092][ T5063] panic+0x349/0x860 [ 56.358976][ T5063] ? __warn+0x172/0x4b0 [ 56.363124][ T5063] ? __pfx_panic+0x10/0x10 [ 56.367539][ T5063] __warn+0x31e/0x4b0 [ 56.371510][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 56.376874][ T5063] report_bug+0x2b3/0x500 [ 56.381195][ T5063] ? __local_bh_enable_ip+0x1be/0x200 [ 56.386560][ T5063] handle_bug+0x3e/0x70 [ 56.390718][ T5063] exc_invalid_op+0x1a/0x50 [ 56.395206][ T5063] asm_exc_invalid_op+0x1a/0x20 [ 56.400042][ T5063] RIP: 0010:__local_bh_enable_ip+0x1be/0x200 [ 56.406005][ T5063] Code: 3b 44 24 60 75 52 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc 90 0f 0b 90 e9 ca fe ff ff e8 55 00 00 00 eb 9c 90 <0f> 0b 90 e9 fa fe ff ff 48 c7 c1 9c e1 86 8f 80 e1 07 80 c1 03 38 [ 56.425610][ T5063] RSP: 0018:ffffc90004017700 EFLAGS: 00010046 [ 56.431659][ T5063] RAX: 0000000000000000 RBX: 1ffff92000802ee4 RCX: 0000000000000001 [ 56.439613][ T5063] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff895fa99a [ 56.447568][ T5063] RBP: ffffc900040177c0 R08: ffff888028dd29eb R09: 1ffff110051ba53d [ 56.455632][ T5063] R10: dffffc0000000000 R11: ffffed10051ba53e R12: dffffc0000000000 [ 56.463600][ T5063] R13: ffff88802d1ef880 R14: ffffc90004017740 R15: 0000000000000201 [ 56.471583][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.476860][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.482128][ T5063] ? __pfx___local_bh_enable_ip+0x10/0x10 [ 56.487830][ T5063] ? sock_map_delete_elem+0xca/0x140 [ 56.493099][ T5063] ? do_raw_spin_unlock+0x13c/0x8b0 [ 56.498295][ T5063] ? __pfx___cant_migrate+0x10/0x10 [ 56.503479][ T5063] ? sock_map_delete_elem+0x97/0x140 [ 56.508745][ T5063] sock_map_delete_elem+0xca/0x140 [ 56.513843][ T5063] bpf_prog_2c29ac5cdc6b1842+0x42/0x46 [ 56.519286][ T5063] bpf_trace_run2+0x204/0x420 [ 56.523956][ T5063] ? bpf_trace_run2+0x114/0x420 [ 56.528789][ T5063] ? __pfx_bpf_trace_run2+0x10/0x10 [ 56.533974][ T5063] trace_contention_end+0xf6/0x120 [ 56.539067][ T5063] __pv_queued_spin_lock_slowpath+0x939/0xc60 [ 56.545125][ T5063] ? __pfx___pv_queued_spin_lock_slowpath+0x10/0x10 [ 56.551701][ T5063] queued_spin_lock_slowpath+0x42/0x50 [ 56.557144][ T5063] do_raw_spin_lock+0x272/0x370 [ 56.561981][ T5063] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 56.567333][ T5063] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 56.573313][ T5063] _raw_spin_lock_irqsave+0xe1/0x120 [ 56.578601][ T5063] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 56.584506][ T5063] ? __pfx___do_wait+0x10/0x10 [ 56.589299][ T5063] remove_wait_queue+0x24/0x130 [ 56.594161][ T5063] do_wait+0x370/0x540 [ 56.598232][ T5063] ? do_wait+0x175/0x540 [ 56.602479][ T5063] kernel_wait4+0x2a7/0x3e0 [ 56.606978][ T5063] ? __pfx_kernel_wait4+0x10/0x10 [ 56.611996][ T5063] ? __pfx_child_wait_callback+0x10/0x10 [ 56.617639][ T5063] __x64_sys_wait4+0x134/0x1e0 [ 56.622399][ T5063] ? __pfx___x64_sys_wait4+0x10/0x10 [ 56.627686][ T5063] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 56.634013][ T5063] ? do_syscall_64+0x10a/0x240 [ 56.638787][ T5063] ? do_syscall_64+0xb6/0x240 [ 56.643467][ T5063] do_syscall_64+0xfb/0x240 [ 56.648009][ T5063] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 56.653900][ T5063] RIP: 0033:0x4d6ad6 [ 56.657803][ T5063] Code: 00 00 00 90 31 c9 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 49 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 11 b8 3d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 5a c3 90 48 83 ec 28 89 54 24 14 48 89 74 24 [ 56.677412][ T5063] RSP: 002b:00007fff5789ddb8 EFLAGS: 00000246 ORIG_RAX: 000000000000003d [ 56.686074][ T5063] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00000000004d6ad6 [ 56.694029][ T5063] RDX: 0000000040000000 RSI: 00007fff5789dddc RDI: 00000000ffffffff [ 56.701979][ T5063] RBP: 0000000000000000 R08: 0000000000000017 R09: 0000000000000000 [ 56.709931][ T5063] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000030f93530 [ 56.717885][ T5063] R13: 00007fff5789dddc R14: 0000000030f8db90 R15: 000000000063f160 [ 56.725855][ T5063] [ 57.796551][ T5063] Shutting down cpus with NMI [ 57.801511][ T5063] Kernel Offset: disabled [ 57.805895][ T5063] Rebooting in 86400 seconds..