./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1454599881 <...> Warning: Permanently added '10.128.0.18' (ECDSA) to the list of known hosts. execve("./syz-executor1454599881", ["./syz-executor1454599881"], 0x7ffcae5d04c0 /* 10 vars */) = 0 brk(NULL) = 0x555556248000 brk(0x555556248c40) = 0x555556248c40 arch_prctl(ARCH_SET_FS, 0x555556248300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1454599881", 4096) = 28 brk(0x555556269c40) = 0x555556269c40 brk(0x55555626a000) = 0x55555626a000 mprotect(0x7fc256a2e000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 io_submit(NULL, 9, [{aio_data=0, aio_lio_opcode=IOCB_CMD_PREAD, aio_reqprio=-5, aio_fildes=-1, aio_buf=0x20000380, aio_nbytes=199, aio_offset=8, aio_resfd=0xffffffff}, {aio_data=0, aio_lio_opcode=IOCB_CMD_FSYNC, aio_reqprio=IOPRIO_PRIO_VALUE(IOPRIO_CLASS_NONE, 8), aio_fildes=-1}, NULL, NULL, NULL, NULL, NULL, NULL, NULL]) = -1 EINVAL (Invalid argument) openat(-1, "cpuacct.stat", O_RDONLY) = -1 EBADF (Bad file descriptor) openat(AT_FDCWD, "/dev/kvm", O_RDONLY) = 3 ioctl(3, KVM_CREATE_VM, 0) = 4 ioctl(4, KVM_CREATE_VCPU, 0) = 5 ioctl(4, KVM_SET_USER_MEMORY_REGION, {slot=0, flags=0, guest_phys_addr=0, memory_size=8192, userspace_addr=0x20000000}) = 0 ioctl(5, KVM_SET_REGS, {rax=0, ..., rsp=0xfb, rbp=0, ..., rip=0, rflags=0}) = 0 socketpair(AF_UNIX, SOCK_SEQPACKET, 0, [6, 7]) = 0 sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="", iov_len=0}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor) ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 ioctl(5, KVM_RUN, 0) = 0 [ 40.638220][ T3602] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. ioctl(5, KVM_RUN, 0) = 0 [ 40.679460][ T3602] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 40.688517][ T3602] ------------[ cut here ]------------ [ 40.694014][ T3602] WARNING: CPU: 0 PID: 3602 at arch/x86/kvm/x86.c:11101 kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 40.704309][ T3602] Modules linked in: [ 40.708235][ T3602] CPU: 0 PID: 3602 Comm: syz-executor145 Not tainted 6.1.0-rc1-next-20221020-syzkaller #0 [ 40.718143][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 40.728227][ T3602] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 40.734644][ T3602] Code: e8 7f b1 b6 00 e9 83 dd ff ff 48 8b 7c 24 28 e8 00 b1 b6 00 e9 b8 dc ff ff e8 26 26 6a 00 0f 0b e9 02 e0 ff ff e8 1a 26 6a 00 <0f> 0b e9 3a e0 ff ff e8 0e 26 6a 00 be 08 00 00 00 65 48 8b 1c 25 [ 40.754338][ T3602] RSP: 0018:ffffc90003bbfca8 EFLAGS: 00010293 [ 40.760476][ T3602] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 40.768666][ T3602] RDX: ffff8880202d57c0 RSI: ffffffff81125fc6 RDI: 0000000000000005 [ 40.776669][ T3602] RBP: ffff888054c20000 R08: 0000000000000005 R09: 0000000000000000 [ 40.784738][ T3602] R10: 0000000000000001 R11: 000000000008c001 R12: 0000000000000000 [ 40.792778][ T3602] R13: ffffc90003c1b470 R14: ffff88801df748c0 R15: ffff888054c202ec [ 40.800788][ T3602] FS: 0000555556248300(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000 [ 40.809768][ T3602] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.816353][ T3602] CR2: 0000000000000000 CR3: 0000000075bbf000 CR4: 00000000003526f0 [ 40.824352][ T3602] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.832364][ T3602] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.840356][ T3602] Call Trace: [ 40.843916][ T3602] [ 40.846839][ T3602] kvm_vcpu_ioctl+0x570/0xfc0 [ 40.851629][ T3602] ? kvm_vcpu_ioctl+0x0/0xfc0 [ 40.856333][ T3602] ? rcu_read_lock_sched_held+0xd/0x70 [ 40.861833][ T3602] ? lock_release+0x5cb/0x810 [ 40.866524][ T3602] ? ptrace_notify+0xfa/0x140 [ 40.871245][ T3602] ? lock_release+0x0/0x810 [ 40.875814][ T3602] ? bpf_lsm_mmap_addr-0xb/0x10 [ 40.880788][ T3602] ? kvm_vcpu_ioctl+0x0/0xfc0 [ 40.885492][ T3602] __x64_sys_ioctl+0x193/0x200 [ 40.890316][ T3602] do_syscall_64+0x35/0xb0 [ 40.894756][ T3602] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 40.900722][ T3602] RIP: 0033:0x7fc2569c1079 [ 40.905144][ T3602] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 40.924791][ T3602] RSP: 002b:00007ffde980cd18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 40.933257][ T3602] RAX: ffffffffffffffda RBX: 000000000000002e RCX: 00007fc2569c1079 [ 40.941266][ T3602] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 40.949271][ T3602] RBP: 00007fc256985220 R08: 0000000000000000 R09: 0000000000000000 [ 40.957231][ T3602] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc2569852b0 [ 40.965273][ T3602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 40.973335][ T3602] [ 40.976346][ T3602] Kernel panic - not syncing: panic_on_warn set ... [ 40.982962][ T3602] CPU: 0 PID: 3602 Comm: syz-executor145 Not tainted 6.1.0-rc1-next-20221020-syzkaller #0 [ 40.992835][ T3602] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022 [ 41.002894][ T3602] Call Trace: [ 41.006170][ T3602] [ 41.009099][ T3602] dump_stack_lvl+0xcd/0x134 [ 41.013710][ T3602] panic+0x2c8/0x622 [ 41.017622][ T3602] ? panic+0x0/0x622 [ 41.021535][ T3602] ? __warn.cold+0x24b/0x350 [ 41.026141][ T3602] ? kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 41.031970][ T3602] __warn.cold+0x25c/0x350 [ 41.036401][ T3602] ? kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 41.042226][ T3602] report_bug+0x1bc/0x210 [ 41.046573][ T3602] handle_bug+0x3c/0x70 [ 41.050932][ T3602] exc_invalid_op+0x14/0x40 [ 41.055452][ T3602] asm_exc_int3-0xa/0x40 [ 41.059711][ T3602] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 41.066153][ T3602] Code: e8 7f b1 b6 00 e9 83 dd ff ff 48 8b 7c 24 28 e8 00 b1 b6 00 e9 b8 dc ff ff e8 26 26 6a 00 0f 0b e9 02 e0 ff ff e8 1a 26 6a 00 <0f> 0b e9 3a e0 ff ff e8 0e 26 6a 00 be 08 00 00 00 65 48 8b 1c 25 [ 41.085771][ T3602] RSP: 0018:ffffc90003bbfca8 EFLAGS: 00010293 [ 41.091841][ T3602] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 41.099818][ T3602] RDX: ffff8880202d57c0 RSI: ffffffff81125fc6 RDI: 0000000000000005 [ 41.107793][ T3602] RBP: ffff888054c20000 R08: 0000000000000005 R09: 0000000000000000 [ 41.115788][ T3602] R10: 0000000000000001 R11: 000000000008c001 R12: 0000000000000000 [ 41.123767][ T3602] R13: ffffc90003c1b470 R14: ffff88801df748c0 R15: ffff888054c202ec [ 41.131762][ T3602] ? kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 41.137601][ T3602] ? kvm_arch_vcpu_ioctl_run+0x24d6/0x2b90 [ 41.143434][ T3602] kvm_vcpu_ioctl+0x570/0xfc0 [ 41.148132][ T3602] ? kvm_vcpu_ioctl+0x0/0xfc0 [ 41.152834][ T3602] ? rcu_read_lock_sched_held+0xd/0x70 [ 41.158317][ T3602] ? lock_release+0x5cb/0x810 [ 41.163003][ T3602] ? ptrace_notify+0xfa/0x140 [ 41.167688][ T3602] ? lock_release+0x0/0x810 [ 41.172201][ T3602] ? bpf_lsm_mmap_addr-0xb/0x10 [ 41.177062][ T3602] ? kvm_vcpu_ioctl+0x0/0xfc0 [ 41.181773][ T3602] __x64_sys_ioctl+0x193/0x200 [ 41.186643][ T3602] do_syscall_64+0x35/0xb0 [ 41.191077][ T3602] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 41.196989][ T3602] RIP: 0033:0x7fc2569c1079 [ 41.201419][ T3602] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48 [ 41.221045][ T3602] RSP: 002b:00007ffde980cd18 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 41.229467][ T3602] RAX: ffffffffffffffda RBX: 000000000000002e RCX: 00007fc2569c1079 [ 41.237443][ T3602] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 41.245610][ T3602] RBP: 00007fc256985220 R08: 0000000000000000 R09: 0000000000000000 [ 41.253594][ T3602] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc2569852b0 [ 41.261570][ T3602] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 41.269548][ T3602] [ 41.272726][ T3602] Kernel Offset: disabled [ 41.277045][ T3602] Rebooting in 86400 seconds..