./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3374014289
<...>
Warning: Permanently added '10.128.1.35' (ECDSA) to the list of known hosts.
execve("./syz-executor3374014289", ["./syz-executor3374014289"], 0x7ffce9268f20 /* 10 vars */) = 0
brk(NULL) = 0x55555561c000
brk(0x55555561cd00) = 0x55555561cd00
arch_prctl(ARCH_SET_FS, 0x55555561c3c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3374014289", 4096) = 28
brk(0x55555563dd00) = 0x55555563dd00
brk(0x55555563e000) = 0x55555563e000
mprotect(0x7f425fc72000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f425fbc3bf0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f425fbc3ee0}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f425fbc3bf0, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f425fbc3ee0}, NULL, 8) = 0
prctl(PR_SET_SECCOMP, SECCOMP_MODE_DISABLED, 0x20000040, 0, 0) = -1 EINVAL (Invalid argument)
mkdir("./file0", 0777) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} ---
pipe2([3, 4], 0) = 0
write(4, "\x15\x00\x00\x00\x65\xff\xff\x7f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 21) = 21
dup(4) = 5
mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,") = -1 EREMOTEIO (Remote I/O error)
write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
syzkaller login: [ 59.479205][ T5295] ------------[ cut here ]------------
[ 59.484869][ T5295] WARNING: CPU: 0 PID: 5295 at mm/page_alloc.c:5527 __alloc_pages+0x412/0x5b0
[ 59.494031][ T5295] Modules linked in:
[ 59.498121][ T5295] CPU: 0 PID: 5295 Comm: syz-executor337 Not tainted 6.1.0-rc6-next-20221125-syzkaller #0
[ 59.508174][ T5295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 59.518766][ T5295] RIP: 0010:__alloc_pages+0x412/0x5b0
[ 59.524180][ T5295] Code: ff ff 00 0f 84 c3 fd ff ff 80 ce 01 e9 bb fd ff ff 83 fe 0a 0f 86 ce fc ff ff 80 3d 7d 63 98 0c 00 75 09 c6 05 74 63 98 0c 01 <0f> 0b 45 31 f6 e9 52 fe ff ff 65 ff 05 75 44 3f 7e 48 c7 c0 e0 59
[ 59.543892][ T5295] RSP: 0018:ffffc90003b3fac0 EFLAGS: 00010246
[ 59.550035][ T5295] RAX: 0000000000000000 RBX: 1ffff92000767f59 RCX: 0000000000000000
[ 59.558160][ T5295] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 59.566289][ T5295] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 59.574344][ T5295] R10: 0000000100000000 R11: 0000000000000000 R12: 0000000000000014
[ 59.582357][ T5295] R13: 0000000000000000 R14: 0000000000040d40 R15: ffff888076e48000
[ 59.590396][ T5295] FS: 000055555561c3c0(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 59.599409][ T5295] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 59.606400][ T5295] CR2: 00007f57a7ce2a70 CR3: 000000007adce000 CR4: 00000000003506f0
[ 59.614370][ T5295] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 59.622396][ T5295] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 59.630426][ T5295] Call Trace:
[ 59.634652][ T5295]
[ 59.637635][ T5295] ? __alloc_pages_slowpath.constprop.0+0x2380/0x2380
[ 59.644534][ T5295] ? p9_client_clunk+0xc0/0x140
[ 59.649486][ T5295] ? v9fs_writeback_fid+0x220/0x220
[ 59.654711][ T5295] ? mark_held_locks+0x9f/0xe0
[ 59.659558][ T5295] __kmalloc_large_node+0x85/0x160
[ 59.664697][ T5295] ? v9fs_fid_get_acl+0x78/0x120
[ 59.669714][ T5295] __kmalloc+0x91/0xd0
[ 59.673826][ T5295] v9fs_fid_get_acl+0x78/0x120
[ 59.678691][ T5295] v9fs_get_acl+0x120/0x5f0
[ 59.683222][ T5295] v9fs_mount+0x662/0xca0
[ 59.687633][ T5295] ? v9fs_statfs+0x4d0/0x4d0
[ 59.692255][ T5295] ? apparmor_capable+0x1dc/0x460
[ 59.697330][ T5295] ? v9fs_statfs+0x4d0/0x4d0
[ 59.702029][ T5295] legacy_get_tree+0x109/0x220
[ 59.707026][ T5295] vfs_get_tree+0x8d/0x2f0
[ 59.712343][ T5295] path_mount+0x132a/0x1e20
[ 59.718532][ T5295] ? kmem_cache_free+0xee/0x5c0
[ 59.723436][ T5295] ? finish_automount+0x960/0x960
[ 59.728520][ T5295] ? putname+0x102/0x140
[ 59.732812][ T5295] __x64_sys_mount+0x283/0x300
[ 59.737635][ T5295] ? copy_mnt_ns+0xae0/0xae0
[ 59.742249][ T5295] ? lockdep_hardirqs_on+0x7d/0x100
[ 59.747520][ T5295] ? _raw_spin_unlock_irq+0x2e/0x50
[ 59.752755][ T5295] ? ptrace_notify+0xfe/0x140
[ 59.757511][ T5295] do_syscall_64+0x39/0xb0
[ 59.761967][ T5295] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 59.768006][ T5295] RIP: 0033:0x7f425fc05929
[ 59.772434][ T5295] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 59.792101][ T5295] RSP: 002b:00007ffe17c2a538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 59.800615][ T5295] RAX: ffffffffffffffda RBX: 00007ffe17c2a548 RCX: 00007f425fc05929
[ 59.808726][ T5295] RDX: 0000000020000140 RSI: 0000000020000340 RDI: 0000000000000000
[ 59.816773][ T5295] RBP: 00007ffe17c2a540 R08: 00000000200006c0 R09: 00007f425fbc3bf0
[ 59.824776][ T5295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 59.832822][ T5295] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 59.840848][ T5295]
[ 59.843865][ T5295] Kernel panic - not syncing: panic_on_warn set ...
[ 59.850440][ T5295] CPU: 0 PID: 5295 Comm: syz-executor337 Not tainted 6.1.0-rc6-next-20221125-syzkaller #0
[ 59.860505][ T5295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022
[ 59.870549][ T5295] Call Trace:
[ 59.873834][ T5295]
[ 59.876758][ T5295] dump_stack_lvl+0xd1/0x138
[ 59.881342][ T5295] panic+0x2cc/0x626
[ 59.885245][ T5295] ? panic_print_sys_info.part.0+0x110/0x110
[ 59.891251][ T5295] ? __warn.cold+0x24b/0x350
[ 59.895843][ T5295] ? __alloc_pages+0x412/0x5b0
[ 59.900623][ T5295] __warn.cold+0x25c/0x350
[ 59.905122][ T5295] ? __alloc_pages+0x412/0x5b0
[ 59.910054][ T5295] report_bug+0x1c0/0x210
[ 59.914404][ T5295] handle_bug+0x3c/0x70
[ 59.918562][ T5295] exc_invalid_op+0x18/0x50
[ 59.923064][ T5295] asm_exc_invalid_op+0x1a/0x20
[ 59.928358][ T5295] RIP: 0010:__alloc_pages+0x412/0x5b0
[ 59.933840][ T5295] Code: ff ff 00 0f 84 c3 fd ff ff 80 ce 01 e9 bb fd ff ff 83 fe 0a 0f 86 ce fc ff ff 80 3d 7d 63 98 0c 00 75 09 c6 05 74 63 98 0c 01 <0f> 0b 45 31 f6 e9 52 fe ff ff 65 ff 05 75 44 3f 7e 48 c7 c0 e0 59
[ 59.953462][ T5295] RSP: 0018:ffffc90003b3fac0 EFLAGS: 00010246
[ 59.959546][ T5295] RAX: 0000000000000000 RBX: 1ffff92000767f59 RCX: 0000000000000000
[ 59.967530][ T5295] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 59.975510][ T5295] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 59.983491][ T5295] R10: 0000000100000000 R11: 0000000000000000 R12: 0000000000000014
[ 59.991476][ T5295] R13: 0000000000000000 R14: 0000000000040d40 R15: ffff888076e48000
[ 59.999483][ T5295] ? __alloc_pages_slowpath.constprop.0+0x2380/0x2380
[ 60.006353][ T5295] ? p9_client_clunk+0xc0/0x140
[ 60.011230][ T5295] ? v9fs_writeback_fid+0x220/0x220
[ 60.016451][ T5295] ? mark_held_locks+0x9f/0xe0
[ 60.021268][ T5295] __kmalloc_large_node+0x85/0x160
[ 60.026405][ T5295] ? v9fs_fid_get_acl+0x78/0x120
[ 60.031357][ T5295] __kmalloc+0x91/0xd0
[ 60.035447][ T5295] v9fs_fid_get_acl+0x78/0x120
[ 60.040230][ T5295] v9fs_get_acl+0x120/0x5f0
[ 60.044752][ T5295] v9fs_mount+0x662/0xca0
[ 60.049110][ T5295] ? v9fs_statfs+0x4d0/0x4d0
[ 60.053727][ T5295] ? apparmor_capable+0x1dc/0x460
[ 60.058770][ T5295] ? v9fs_statfs+0x4d0/0x4d0
[ 60.063383][ T5295] legacy_get_tree+0x109/0x220
[ 60.068168][ T5295] vfs_get_tree+0x8d/0x2f0
[ 60.072609][ T5295] path_mount+0x132a/0x1e20
[ 60.077140][ T5295] ? kmem_cache_free+0xee/0x5c0
[ 60.082026][ T5295] ? finish_automount+0x960/0x960
[ 60.087078][ T5295] ? putname+0x102/0x140
[ 60.091342][ T5295] __x64_sys_mount+0x283/0x300
[ 60.096124][ T5295] ? copy_mnt_ns+0xae0/0xae0
[ 60.100728][ T5295] ? lockdep_hardirqs_on+0x7d/0x100
[ 60.105951][ T5295] ? _raw_spin_unlock_irq+0x2e/0x50
[ 60.111183][ T5295] ? ptrace_notify+0xfe/0x140
[ 60.115902][ T5295] do_syscall_64+0x39/0xb0
[ 60.120338][ T5295] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 60.126279][ T5295] RIP: 0033:0x7f425fc05929
[ 60.130703][ T5295] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 60.150346][ T5295] RSP: 002b:00007ffe17c2a538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 60.158789][ T5295] RAX: ffffffffffffffda RBX: 00007ffe17c2a548 RCX: 00007f425fc05929
[ 60.166790][ T5295] RDX: 0000000020000140 RSI: 0000000020000340 RDI: 0000000000000000
[ 60.174770][ T5295] RBP: 00007ffe17c2a540 R08: 00000000200006c0 R09: 00007f425fbc3bf0
[ 60.182753][ T5295] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 60.190732][ T5295] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 60.198742][ T5295]
[ 60.202102][ T5295] Kernel Offset: disabled
[ 60.206536][ T5295] Rebooting in 86400 seconds..