./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2068370062

<...>
Warning: Permanently added '10.128.1.79' (ECDSA) to the list of known hosts.
execve("./syz-executor2068370062", ["./syz-executor2068370062"], 0x7ffeeefbe450 /* 10 vars */) = 0
brk(NULL)                               = 0x555556c72000
brk(0x555556c72c40)                     = 0x555556c72c40
arch_prctl(ARCH_SET_FS, 0x555556c72300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2068370062", 4096) = 28
brk(0x555556c93c40)                     = 0x555556c93c40
brk(0x555556c94000)                     = 0x555556c94000
mprotect(0x7fa692ba9000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3617 attached
, child_tidptr=0x555556c725d0) = 3617
[pid  3617] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  3617] setpgid(0, 0)               = 0
[pid  3617] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  3617] write(3, "1000", 4)         = 4
[pid  3617] close(3)                    = 0
[pid  3617] io_uring_setup(136, {flags=0, sq_thread_cpu=0, sq_thread_idle=0, sq_entries=256, cq_entries=512, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|0x1000, sq_off={head=0, tail=64, ring_mask=256, ring_entries=264, flags=276, dropped=272, array=8512}, cq_off={head=128, tail=192, ring_mask=260, ring_entries=268, overflow=284, cqes=320, flags=280}}) = 3
[pid  3617] mmap(0x20ee7000, 9536, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0) = 0x20ee7000
[pid  3617] mmap(0x206d4000, 16384, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0x10000000) = 0x206d4000
[pid  3617] io_uring_setup(903, {flags=0, sq_thread_cpu=0, sq_thread_idle=0, sq_entries=1024, cq_entries=2048, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|0x1000, sq_off={head=0, tail=64, ring_mask=256, ring_entries=264, flags=276, dropped=272, array=33088}, cq_off={head=128, tail=192, ring_mask=260, ring_entries=268, overflow=284, cqes=320, flags=280}}) = 4
[pid  3617] mmap(0x20ff9000, 37184, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 4, 0) = 0x20ff9000
[pid  3617] mmap(0x205c0000, 65536, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 4, 0x10000000) = 0x205c0000
[pid  3617] io_uring_enter(3, 17672, 0, 0, NULL, 0) = 256
[pid  3617] exit_group(0)               = ?
[   44.038063][ T3618] ==================================================================
[   44.038074][ T3618] BUG: KASAN: null-ptr-deref in io_issue_sqe+0xa504/0x13680
[   44.038115][ T3618] Write of size 4 at addr 0000000000000118 by task iou-wrk-3617/3618
[   44.038130][ T3618] 
[   44.038135][ T3618] CPU: 0 PID: 3618 Comm: iou-wrk-3617 Not tainted 5.19.0-rc2-syzkaller-00052-g979086f5e006 #0
[   44.038152][ T3618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   44.038160][ T3618] Call Trace:
[   44.038165][ T3618]  <TASK>
[   44.038171][ T3618]  dump_stack_lvl+0x1e3/0x2cb
[   44.038196][ T3618]  ? irq_work_queue+0xb4/0x120
[   44.038214][ T3618]  ? bfq_pos_tree_add_move+0x436/0x436
[   44.038231][ T3618]  ? panic+0x76e/0x76e
[   44.038247][ T3618]  ? _printk+0xcf/0x10f
[   44.038260][ T3618]  ? _raw_spin_lock_irqsave+0xac/0x120
[   44.038283][ T3618]  print_report+0xdd/0x210
[   44.038305][ T3618]  ? io_issue_sqe+0xa504/0x13680
[   44.038320][ T3618]  kasan_report+0xfb/0x130
[   44.038339][ T3618]  ? io_issue_sqe+0xa504/0x13680
[   44.038354][ T3618]  ? __fget_files+0x3ba/0x420
[   44.038372][ T3618]  kasan_check_range+0x2a7/0x2e0
[   44.038391][ T3618]  io_issue_sqe+0xa504/0x13680
[   44.038418][ T3618]  ? io_req_complete_failed+0x5e0/0x5e0
[   44.038435][ T3618]  ? validate_chain+0x126/0x65c0
[   44.038460][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.038482][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.038496][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.038512][ T3618]  ? local_lock_release+0x96/0x170
[   44.038528][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.038541][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.038555][ T3618]  ? trace_lock_acquire+0x7d/0x1d0
[   44.038570][ T3618]  ? trace_lock_release+0x7a/0x190
[   44.038584][ T3618]  ? lock_release+0x81/0x870
[   44.038596][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.038609][ T3618]  ? lockdep_unlock+0x163/0x300
[   44.038622][ T3618]  ? lockdep_lock+0x2a0/0x2a0
[   44.038637][ T3618]  ? validate_chain+0x126/0x65c0
[   44.038651][ T3618]  ? finish_lock_switch+0x1bb/0x350
[   44.038667][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.038680][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.038698][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.038713][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.038728][ T3618]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[   44.038742][ T3618]  ? print_irqtrace_events+0x220/0x220
[   44.038758][ T3618]  ? finish_lock_switch+0x1c0/0x350
[   44.038771][ T3618]  ? lockdep_hardirqs_on+0x95/0x140
[   44.038785][ T3618]  ? finish_lock_switch+0x1c0/0x350
[   44.038800][ T3618]  ? finish_task_switch+0x140/0x610
[   44.038814][ T3618]  ? mark_lock+0x98/0x350
[   44.038828][ T3618]  ? io_worker_handle_work+0x7e6/0xee0
[   44.038843][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.038857][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.038873][ T3618]  ? trace_lock_release+0x7a/0x190
[   44.038889][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.038902][ T3618]  ? io_worker_handle_work+0x7e6/0xee0
[   44.038916][ T3618]  ? do_raw_spin_lock+0x148/0x360
[   44.038930][ T3618]  ? __lock_acquire+0x1f80/0x1f80
[   44.038945][ T3618]  io_wq_submit_work+0x4be/0x990
[   44.038962][ T3618]  io_worker_handle_work+0x8e1/0xee0
[   44.038977][ T3618]  ? __lock_acquire+0x1f80/0x1f80
[   44.038997][ T3618]  io_wqe_worker+0x39c/0xe90
[   44.039017][ T3618]  ? create_worker_cont+0x590/0x590
[   44.039032][ T3618]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[   44.039046][ T3618]  ? print_irqtrace_events+0x220/0x220
[   44.039061][ T3618]  ? _raw_spin_unlock_irq+0x1f/0x40
[   44.039075][ T3618]  ? lockdep_hardirqs_on+0x95/0x140
[   44.039087][ T3618]  ? create_worker_cont+0x590/0x590
[   44.039102][ T3618]  ret_from_fork+0x1f/0x30
[   44.039121][ T3618]  </TASK>
[   44.039126][ T3618] ==================================================================
[   44.039292][ T3618] Kernel panic - not syncing: panic_on_warn set ...
[   44.411826][ T3618] CPU: 0 PID: 3618 Comm: iou-wrk-3617 Not tainted 5.19.0-rc2-syzkaller-00052-g979086f5e006 #0
[   44.422056][ T3618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   44.432097][ T3618] Call Trace:
[   44.435372][ T3618]  <TASK>
[   44.438312][ T3618]  dump_stack_lvl+0x1e3/0x2cb
[   44.442987][ T3618]  ? bfq_pos_tree_add_move+0x436/0x436
[   44.448444][ T3618]  ? panic+0x76e/0x76e
[   44.452538][ T3618]  ? preempt_schedule_common+0xb7/0xe0
[   44.458003][ T3618]  ? preempt_schedule+0xd9/0xe0
[   44.462846][ T3618]  ? vscnprintf+0x59/0x80
[   44.467170][ T3618]  panic+0x312/0x76e
[   44.471075][ T3618]  ? fb_is_primary_device+0xcc/0xcc
[   44.476298][ T3618]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[   44.482290][ T3618]  ? print_report+0xdd/0x210
[   44.486887][ T3618]  ? io_issue_sqe+0xa504/0x13680
[   44.491823][ T3618]  end_report+0x91/0xa0
[   44.495977][ T3618]  kasan_report+0x108/0x130
[   44.500474][ T3618]  ? io_issue_sqe+0xa504/0x13680
[   44.505425][ T3618]  ? __fget_files+0x3ba/0x420
[   44.510095][ T3618]  kasan_check_range+0x2a7/0x2e0
[   44.515038][ T3618]  io_issue_sqe+0xa504/0x13680
[   44.519802][ T3618]  ? io_req_complete_failed+0x5e0/0x5e0
[   44.525352][ T3618]  ? validate_chain+0x126/0x65c0
[   44.530317][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.535709][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.541088][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.546749][ T3618]  ? local_lock_release+0x96/0x170
[   44.551883][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.557514][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.563494][ T3618]  ? trace_lock_acquire+0x7d/0x1d0
[   44.568617][ T3618]  ? trace_lock_release+0x7a/0x190
[   44.573821][ T3618]  ? lock_release+0x81/0x870
[   44.578437][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.583814][ T3618]  ? lockdep_unlock+0x163/0x300
[   44.588657][ T3618]  ? lockdep_lock+0x2a0/0x2a0
[   44.593331][ T3618]  ? validate_chain+0x126/0x65c0
[   44.598274][ T3618]  ? finish_lock_switch+0x1bb/0x350
[   44.603465][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.609094][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.615065][ T3618]  ? reacquire_held_locks+0x680/0x680
[   44.620424][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.625785][ T3618]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[   44.631767][ T3618]  ? print_irqtrace_events+0x220/0x220
[   44.637226][ T3618]  ? finish_lock_switch+0x1c0/0x350
[   44.642415][ T3618]  ? lockdep_hardirqs_on+0x95/0x140
[   44.647600][ T3618]  ? finish_lock_switch+0x1c0/0x350
[   44.652798][ T3618]  ? finish_task_switch+0x140/0x610
[   44.657987][ T3618]  ? mark_lock+0x98/0x350
[   44.662386][ T3618]  ? io_worker_handle_work+0x7e6/0xee0
[   44.667878][ T3618]  ? rcu_read_lock_sched_held+0x89/0x130
[   44.674033][ T3618]  ? __bpf_trace_rcu_stall_warning+0x10/0x10
[   44.680010][ T3618]  ? trace_lock_release+0x7a/0x190
[   44.685124][ T3618]  ? read_lock_is_recursive+0x10/0x10
[   44.690485][ T3618]  ? io_worker_handle_work+0x7e6/0xee0
[   44.695951][ T3618]  ? do_raw_spin_lock+0x148/0x360
[   44.700970][ T3618]  ? __lock_acquire+0x1f80/0x1f80
[   44.705986][ T3618]  io_wq_submit_work+0x4be/0x990
[   44.710932][ T3618]  io_worker_handle_work+0x8e1/0xee0
[   44.716213][ T3618]  ? __lock_acquire+0x1f80/0x1f80
[   44.721236][ T3618]  io_wqe_worker+0x39c/0xe90
[   44.725827][ T3618]  ? create_worker_cont+0x590/0x590
[   44.731019][ T3618]  ? lockdep_hardirqs_on_prepare+0x448/0x7b0
[   44.736989][ T3618]  ? print_irqtrace_events+0x220/0x220
[   44.742437][ T3618]  ? _raw_spin_unlock_irq+0x1f/0x40
[   44.747638][ T3618]  ? lockdep_hardirqs_on+0x95/0x140
[   44.752825][ T3618]  ? create_worker_cont+0x590/0x590
[   44.758016][ T3618]  ret_from_fork+0x1f/0x30
[   44.762431][ T3618]  </TASK>
[   44.765599][ T3618] Kernel Offset: disabled
[   44.769916][ T3618] Rebooting in 86400 seconds..