./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1620002215
<...>
Warning: Permanently added '10.128.1.75' (ECDSA) to the list of known hosts.
execve("./syz-executor1620002215", ["./syz-executor1620002215"], 0x7ffc94d39e60 /* 10 vars */) = 0
brk(NULL) = 0x5555564e8000
brk(0x5555564e8c40) = 0x5555564e8c40
arch_prctl(ARCH_SET_FS, 0x5555564e8300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1620002215", 4096) = 28
brk(0x555556509c40) = 0x555556509c40
brk(0x55555650a000) = 0x55555650a000
mprotect(0x7fa38d0f4000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/dev/udmabuf", O_RDWR) = 3
memfd_create("\x79\x10\x35\x25\xfa\x2c\x1f\x99\xa2\xc9\x8e\xcd\xfc\xfa\xf6\x12\x95\x5e\xdf\x54\xe2\x3d\x0e\x7e\x46\xcd\x73", MFD_ALLOW_SEALING) = 4
ftruncate(4, 65535) = 0
fcntl(4, F_ADD_SEALS, F_SEAL_SEAL|F_SEAL_SHRINK|F_SEAL_GROW) = 0
dup(3) = 5
ioctl(5, UDMABUF_CREATE, 0x20000080) = 6
syzkaller login: [ 49.255761][ T3611] ------------[ cut here ]------------
[ 49.255771][ T3611] WARNING: CPU: 0 PID: 3611 at kernel/dma/mapping.c:188 dma_map_sgtable+0x203/0x260
[ 49.270989][ T3611] Modules linked in:
[ 49.274884][ T3611] CPU: 0 PID: 3611 Comm: syz-executor162 Not tainted 5.19.0-rc3-syzkaller-00146-g92f20ff72066 #0
[ 49.285519][ T3611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 49.295786][ T3611] RIP: 0010:dma_map_sgtable+0x203/0x260
[ 49.301495][ T3611] Code: 75 15 e8 80 c1 14 00 eb cb e8 79 c1 14 00 eb c4 e8 72 c1 14 00 eb bd e8 6b c1 14 00 0f 0b bd fb ff ff ff eb af e8 5d c1 14 00 <0f> 0b 31 ed 48 bb 00 00 00 00 00 fc ff df e9 7b ff ff ff 89 e9 80
[ 49.321223][ T3611] RSP: 0018:ffffc9000309fd40 EFLAGS: 00010293
[ 49.327302][ T3611] RAX: ffffffff8172e693 RBX: dffffc0000000000 RCX: ffff888025708000
[ 49.335364][ T3611] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002
[ 49.335386][ T3611] RBP: ffff88801ee77378 R08: ffffffff8172e563 R09: ffffed1002e76242
[ 49.335400][ T3611] R10: ffffed1002e76242 R11: 1ffff11002e76240 R12: ffff88801ee77000
[ 49.335414][ T3611] R13: ffff8880173b1200 R14: 0000000000000000 R15: 0000000000000002
[ 49.335428][ T3611] FS: 00005555564e8300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 49.335446][ T3611] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.335461][ T3611] CR2: 00000000005d84c8 CR3: 0000000079b83000 CR4: 00000000003506e0
[ 49.335478][ T3611] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.335491][ T3611] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.335504][ T3611] Call Trace:
[ 49.335513][ T3611]
[ 49.335530][ T3611] get_sg_table+0xf9/0x150
[ 49.335566][ T3611] begin_cpu_udmabuf+0xf5/0x160
[ 49.335589][ T3611] dma_buf_begin_cpu_access+0xd8/0x170
[ 49.335615][ T3611] dma_buf_ioctl+0x2a0/0x2f0
[ 49.335638][ T3611] ? dma_buf_poll+0x680/0x680
[ 49.335657][ T3611] ? vtime_user_exit+0x2b2/0x3e0
[ 49.335684][ T3611] ? bpf_lsm_file_ioctl+0x5/0x10
[ 49.335703][ T3611] ? security_file_ioctl+0x9d/0xb0
[ 49.335724][ T3611] ? dma_buf_poll+0x680/0x680
[ 49.335742][ T3611] __se_sys_ioctl+0xfb/0x170
[ 49.335764][ T3611] do_syscall_64+0x2b/0x70
[ 49.335803][ T3611] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 49.335823][ T3611] RIP: 0033:0x7fa38d087c29
[ 49.335843][ T3611] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 49.335859][ T3611] RSP: 002b:00007ffe2dbf0c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 49.335882][ T3611] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa38d087c29
[ 49.335896][ T3611] RDX: 0000000020000200 RSI: 0000000040086200 RDI: 0000000000000006
[ 49.335910][ T3611] RBP: 00007fa38d04bdd0 R08: 0000000000000000 R09: 0000000000000000
[ 49.335923][ T3611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa38d04be60
[ 49.335936][ T3611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 49.335965][ T3611]
[ 49.335975][ T3611] Kernel panic - not syncing: panic_on_warn set ...
[ 49.335986][ T3611] CPU: 1 PID: 3611 Comm: syz-executor162 Not tainted 5.19.0-rc3-syzkaller-00146-g92f20ff72066 #0
[ 49.336005][ T3611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 49.336015][ T3611] Call Trace:
[ 49.336022][ T3611]
[ 49.336029][ T3611] dump_stack_lvl+0x1e3/0x2cb
[ 49.336052][ T3611] ? bfq_pos_tree_add_move+0x436/0x436
[ 49.336071][ T3611] ? panic+0x782/0x782
[ 49.336095][ T3611] ? vscnprintf+0x59/0x80
[ 49.336115][ T3611] ? dma_map_sgtable+0x170/0x260
[ 49.336134][ T3611] panic+0x312/0x782
[ 49.336154][ T3611] ? __warn+0x136/0x230
[ 49.336174][ T3611] ? fb_is_primary_device+0xcc/0xcc
[ 49.336205][ T3611] ? dma_map_sgtable+0x203/0x260
[ 49.336224][ T3611] __warn+0x203/0x230
[ 49.336281][ T3611] ? dma_map_sgtable+0x203/0x260
[ 49.336312][ T3611] report_bug+0x1b3/0x2d0
[ 49.336337][ T3611] handle_bug+0x3d/0x70
[ 49.336358][ T3611] exc_invalid_op+0x16/0x40
[ 49.336378][ T3611] asm_exc_invalid_op+0x1b/0x20
[ 49.336396][ T3611] RIP: 0010:dma_map_sgtable+0x203/0x260
[ 49.336422][ T3611] Code: 75 15 e8 80 c1 14 00 eb cb e8 79 c1 14 00 eb c4 e8 72 c1 14 00 eb bd e8 6b c1 14 00 0f 0b bd fb ff ff ff eb af e8 5d c1 14 00 <0f> 0b 31 ed 48 bb 00 00 00 00 00 fc ff df e9 7b ff ff ff 89 e9 80
[ 49.336437][ T3611] RSP: 0018:ffffc9000309fd40 EFLAGS: 00010293
[ 49.336456][ T3611] RAX: ffffffff8172e693 RBX: dffffc0000000000 RCX: ffff888025708000
[ 49.336470][ T3611] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000002
[ 49.336482][ T3611] RBP: ffff88801ee77378 R08: ffffffff8172e563 R09: ffffed1002e76242
[ 49.336495][ T3611] R10: ffffed1002e76242 R11: 1ffff11002e76240 R12: ffff88801ee77000
[ 49.336508][ T3611] R13: ffff8880173b1200 R14: 0000000000000000 R15: 0000000000000002
[ 49.336527][ T3611] ? dma_map_sgtable+0xd3/0x260
[ 49.336544][ T3611] ? dma_map_sgtable+0x203/0x260
[ 49.336601][ T3611] get_sg_table+0xf9/0x150
[ 49.336622][ T3611] begin_cpu_udmabuf+0xf5/0x160
[ 49.336644][ T3611] dma_buf_begin_cpu_access+0xd8/0x170
[ 49.336671][ T3611] dma_buf_ioctl+0x2a0/0x2f0
[ 49.336692][ T3611] ? dma_buf_poll+0x680/0x680
[ 49.336711][ T3611] ? vtime_user_exit+0x2b2/0x3e0
[ 49.336734][ T3611] ? bpf_lsm_file_ioctl+0x5/0x10
[ 49.336751][ T3611] ? security_file_ioctl+0x9d/0xb0
[ 49.336771][ T3611] ? dma_buf_poll+0x680/0x680
[ 49.336788][ T3611] __se_sys_ioctl+0xfb/0x170
[ 49.336808][ T3611] do_syscall_64+0x2b/0x70
[ 49.336827][ T3611] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 49.336844][ T3611] RIP: 0033:0x7fa38d087c29
[ 49.336861][ T3611] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 49.336875][ T3611] RSP: 002b:00007ffe2dbf0c08 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 49.336895][ T3611] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa38d087c29
[ 49.336908][ T3611] RDX: 0000000020000200 RSI: 0000000040086200 RDI: 0000000000000006
[ 49.336920][ T3611] RBP: 00007fa38d04bdd0 R08: 0000000000000000 R09: 0000000000000000
[ 49.336932][ T3611] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fa38d04be60
[ 49.336944][ T3611] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 49.336970][ T3611]
[ 49.868851][ T3611] Kernel Offset: disabled
[ 49.873196][ T3611] Rebooting in 86400 seconds..