./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1675963627 <...> Warning: Permanently added '10.128.1.73' (ED25519) to the list of known hosts. execve("./syz-executor1675963627", ["./syz-executor1675963627"], 0x7ffc62886a70 /* 10 vars */) = 0 brk(NULL) = 0x555555ed0000 brk(0x555555ed0d00) = 0x555555ed0d00 arch_prctl(ARCH_SET_FS, 0x555555ed0380) = 0 set_tid_address(0x555555ed0650) = 5071 set_robust_list(0x555555ed0660, 24) = 0 rseq(0x555555ed0ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1675963627", 4096) = 28 getrandom("\x31\xf8\xce\x18\x4c\x38\xff\x7d", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555ed0d00 brk(0x555555ef1d00) = 0x555555ef1d00 brk(0x555555ef2000) = 0x555555ef2000 mprotect(0x7fad99b06000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555ed0650) = 5072 ./strace-static-x86_64: Process 5072 attached [pid 5072] set_robust_list(0x555555ed0660, 24) = 0 [pid 5072] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5072] setsid() = 1 [pid 5072] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5072] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5072] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5072] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5072] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5072] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5072] unshare(CLONE_NEWNS) = 0 [pid 5072] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5072] unshare(CLONE_NEWIPC) = 0 [pid 5072] unshare(CLONE_NEWCGROUP) = 0 [pid 5072] unshare(CLONE_NEWUTS) = 0 [pid 5072] unshare(CLONE_SYSVSEM) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "16777216", 8) = 8 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "536870912", 9) = 9 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1024", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "8192", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1024", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1024", 4) = 4 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5072] close(3) = 0 [pid 5072] getpid() = 1 [pid 5072] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1<= skb_headlen() (11601) [ 80.072489][ T5072] WARNING: CPU: 1 PID: 5072 at net/core/dev.c:3294 skb_checksum_help+0x527/0x740 [ 80.081680][ T5072] Modules linked in: [ 80.085614][ T5072] CPU: 1 PID: 5072 Comm: syz-executor167 Not tainted 6.7.0-rc1-syzkaller-00434-g7490a42020bb #0 [ 80.096066][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 80.106154][ T5072] RIP: 0010:skb_checksum_help+0x527/0x740 [ 80.111958][ T5072] Code: 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 00 02 00 00 44 89 e2 2b 53 74 44 89 ee 48 c7 c7 a0 5f e9 8b e8 1a 55 dd f8 90 <0f> 0b 90 90 e9 42 ff ff ff e8 9b 3d 17 f9 44 0f b6 25 46 05 93 06 [ 80.131711][ T5072] RSP: 0018:ffffc900039f70a8 EFLAGS: 00010282 [ 80.137817][ T5072] RAX: 0000000000000000 RBX: ffff88801670e3c0 RCX: ffffffff814db209 [ 80.145849][ T5072] RDX: ffff88801aa58000 RSI: ffffffff814db216 RDI: 0000000000000001 [ 80.153829][ T5072] RBP: ffff88801670e434 R08: 0000000000000001 R09: 0000000000000000 [ 80.161853][ T5072] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000002d51 [ 80.169857][ T5072] R13: 0000000000002d51 R14: ffff88801670e430 R15: 0000000000002df9 [ 80.177878][ T5072] FS: 0000555555ed0380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 80.186846][ T5072] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 80.193435][ T5072] CR2: 000000002000d000 CR3: 000000007acd4000 CR4: 00000000003506f0 [ 80.201449][ T5072] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 80.209453][ T5072] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 80.217455][ T5072] Call Trace: [ 80.220737][ T5072] [ 80.223656][ T5072] ? show_regs+0x8f/0xa0 [ 80.227935][ T5072] ? __warn+0xe6/0x390 [ 80.232024][ T5072] ? skb_checksum_help+0x527/0x740 [ 80.237177][ T5072] ? report_bug+0x3bc/0x580 [ 80.241700][ T5072] ? handle_bug+0x3d/0x70 [ 80.246063][ T5072] ? exc_invalid_op+0x17/0x40 [ 80.250761][ T5072] ? asm_exc_invalid_op+0x1a/0x20 [ 80.255844][ T5072] ? __warn_printk+0x199/0x350 [ 80.260628][ T5072] ? __warn_printk+0x1a6/0x350 [ 80.265429][ T5072] ? skb_checksum_help+0x527/0x740 [ 80.270569][ T5072] ? skb_checksum_help+0x526/0x740 [ 80.275723][ T5072] ip_do_fragment+0xa1b/0x18b0 [ 80.280510][ T5072] ? ip_fragment.constprop.0+0x230/0x230 [ 80.286189][ T5072] ? kasan_quarantine_put+0x102/0x230 [ 80.291576][ T5072] ? ip_skb_dst_mtu+0xc80/0xc80 [ 80.296481][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.302391][ T5072] ip_fragment.constprop.0+0x161/0x230 [ 80.307907][ T5072] __ip_finish_output+0x49c/0x650 [ 80.312952][ T5072] ip_finish_output+0x31/0x310 [ 80.317759][ T5072] ip_mc_output+0x1dd/0x6a0 [ 80.322305][ T5072] ? __get_random_u32_below+0x4e/0xa0 [ 80.327719][ T5072] ip_local_out+0xaf/0x1a0 [ 80.332160][ T5072] iptunnel_xmit+0x5b4/0x9b0 [ 80.336807][ T5072] ip_tunnel_xmit+0x1dbc/0x33c0 [ 80.341685][ T5072] ? ip_md_tunnel_xmit+0x2000/0x2000 [ 80.347016][ T5072] ? skb_mac_gso_segment+0x3d1/0x610 [ 80.352321][ T5072] ? __gre_xmit+0x4f5/0x990 [ 80.356862][ T5072] ipgre_xmit+0x63c/0x910 [ 80.361203][ T5072] dev_hard_start_xmit+0x13d/0x6d0 [ 80.366359][ T5072] __dev_queue_xmit+0x7c1/0x3d60 [ 80.371319][ T5072] ? _copy_from_iter+0x2c1/0x10f0 [ 80.376379][ T5072] ? netdev_core_pick_tx+0x3a0/0x3a0 [ 80.381700][ T5072] ? skb_partial_csum_set+0x202/0x390 [ 80.387138][ T5072] ? virtio_net_hdr_to_skb.constprop.0+0x4e4/0x1380 [ 80.393787][ T5072] ? packet_create+0x8e0/0x8e0 [ 80.398618][ T5072] packet_xmit+0x257/0x380 [ 80.403055][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.408996][ T5072] packet_sendmsg+0x24ca/0x5240 [ 80.413936][ T5072] ? preempt_count_sub+0x160/0x160 [ 80.419062][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.425003][ T5072] ? aa_sk_perm+0x2f8/0xb40 [ 80.429525][ T5072] ? packet_notifier+0x8c0/0x8c0 [ 80.434508][ T5072] ? aa_af_perm+0x250/0x250 [ 80.439022][ T5072] ? import_ubuf+0x1a4/0x200 [ 80.443614][ T5072] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 80.448933][ T5072] ? packet_notifier+0x8c0/0x8c0 [ 80.453938][ T5072] __sock_sendmsg+0xd5/0x180 [ 80.458544][ T5072] ____sys_sendmsg+0x6ac/0x940 [ 80.463297][ T5072] ? copy_msghdr_from_user+0x10b/0x160 [ 80.468789][ T5072] ? kernel_sendmsg+0x50/0x50 [ 80.473502][ T5072] ? hlock_class+0x4e/0x130 [ 80.478066][ T5072] ___sys_sendmsg+0x135/0x1d0 [ 80.482766][ T5072] ? do_recvmmsg+0x740/0x740 [ 80.487421][ T5072] ? recalc_sigpending_tsk+0x187/0x1d0 [ 80.492890][ T5072] ? __fget_light+0x1fc/0x260 [ 80.497610][ T5072] __sys_sendmsg+0x117/0x1e0 [ 80.502220][ T5072] ? __sys_sendmsg_sock+0x30/0x30 [ 80.507297][ T5072] ? ptrace_notify+0xf4/0x130 [ 80.511990][ T5072] ? syscall_trace_enter.constprop.0+0xaf/0x1e0 [ 80.518380][ T5072] do_syscall_64+0x40/0x110 [ 80.522922][ T5072] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 80.528887][ T5072] RIP: 0033:0x7fad99a8e4d9 [ 80.533327][ T5072] Code: 48 83 c4 28 c3 e8 d7 19 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 80.552981][ T5072] RSP: 002b:00007fffa41836e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 80.561434][ T5072] RAX: ffffffffffffffda RBX: 00007fad99adb390 RCX: 00007fad99a8e4d9 [ 80.569433][ T5072] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003 [ 80.577464][ T5072] RBP: 0000000000000003 R08: 0000555500000000 R09: 0000555500000000 [ 80.585466][ T5072] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fffa4183730 [ 80.593441][ T5072] R13: 00007fffa4183700 R14: 0000000000000001 R15: 00007fffa4183730 [ 80.601474][ T5072] [ 80.604521][ T5072] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 80.611808][ T5072] CPU: 1 PID: 5072 Comm: syz-executor167 Not tainted 6.7.0-rc1-syzkaller-00434-g7490a42020bb #0 [ 80.622211][ T5072] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 80.632253][ T5072] Call Trace: [ 80.635520][ T5072] [ 80.638456][ T5072] dump_stack_lvl+0xd9/0x1b0 [ 80.643039][ T5072] panic+0x6dc/0x790 [ 80.646931][ T5072] ? panic_smp_self_stop+0xa0/0xa0 [ 80.652031][ T5072] ? show_trace_log_lvl+0x363/0x4f0 [ 80.657228][ T5072] ? check_panic_on_warn+0x1f/0xb0 [ 80.662331][ T5072] ? skb_checksum_help+0x527/0x740 [ 80.667431][ T5072] check_panic_on_warn+0xab/0xb0 [ 80.672358][ T5072] __warn+0xf2/0x390 [ 80.676248][ T5072] ? skb_checksum_help+0x527/0x740 [ 80.681358][ T5072] report_bug+0x3bc/0x580 [ 80.685684][ T5072] handle_bug+0x3d/0x70 [ 80.689846][ T5072] exc_invalid_op+0x17/0x40 [ 80.694351][ T5072] asm_exc_invalid_op+0x1a/0x20 [ 80.699221][ T5072] RIP: 0010:skb_checksum_help+0x527/0x740 [ 80.704934][ T5072] Code: 89 e8 83 e0 07 83 c0 03 38 d0 7c 08 84 d2 0f 85 00 02 00 00 44 89 e2 2b 53 74 44 89 ee 48 c7 c7 a0 5f e9 8b e8 1a 55 dd f8 90 <0f> 0b 90 90 e9 42 ff ff ff e8 9b 3d 17 f9 44 0f b6 25 46 05 93 06 [ 80.724530][ T5072] RSP: 0018:ffffc900039f70a8 EFLAGS: 00010282 [ 80.730581][ T5072] RAX: 0000000000000000 RBX: ffff88801670e3c0 RCX: ffffffff814db209 [ 80.738543][ T5072] RDX: ffff88801aa58000 RSI: ffffffff814db216 RDI: 0000000000000001 [ 80.746517][ T5072] RBP: ffff88801670e434 R08: 0000000000000001 R09: 0000000000000000 [ 80.754485][ T5072] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000002d51 [ 80.762459][ T5072] R13: 0000000000002d51 R14: ffff88801670e430 R15: 0000000000002df9 [ 80.770522][ T5072] ? __warn_printk+0x199/0x350 [ 80.775292][ T5072] ? __warn_printk+0x1a6/0x350 [ 80.780059][ T5072] ? skb_checksum_help+0x526/0x740 [ 80.785171][ T5072] ip_do_fragment+0xa1b/0x18b0 [ 80.789932][ T5072] ? ip_fragment.constprop.0+0x230/0x230 [ 80.795560][ T5072] ? kasan_quarantine_put+0x102/0x230 [ 80.800921][ T5072] ? ip_skb_dst_mtu+0xc80/0xc80 [ 80.805770][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.811655][ T5072] ip_fragment.constprop.0+0x161/0x230 [ 80.817118][ T5072] __ip_finish_output+0x49c/0x650 [ 80.822145][ T5072] ip_finish_output+0x31/0x310 [ 80.826907][ T5072] ip_mc_output+0x1dd/0x6a0 [ 80.831407][ T5072] ? __get_random_u32_below+0x4e/0xa0 [ 80.836788][ T5072] ip_local_out+0xaf/0x1a0 [ 80.841199][ T5072] iptunnel_xmit+0x5b4/0x9b0 [ 80.845790][ T5072] ip_tunnel_xmit+0x1dbc/0x33c0 [ 80.850637][ T5072] ? ip_md_tunnel_xmit+0x2000/0x2000 [ 80.855925][ T5072] ? skb_mac_gso_segment+0x3d1/0x610 [ 80.861214][ T5072] ? __gre_xmit+0x4f5/0x990 [ 80.865717][ T5072] ipgre_xmit+0x63c/0x910 [ 80.870063][ T5072] dev_hard_start_xmit+0x13d/0x6d0 [ 80.875176][ T5072] __dev_queue_xmit+0x7c1/0x3d60 [ 80.880113][ T5072] ? _copy_from_iter+0x2c1/0x10f0 [ 80.885133][ T5072] ? netdev_core_pick_tx+0x3a0/0x3a0 [ 80.890408][ T5072] ? skb_partial_csum_set+0x202/0x390 [ 80.895789][ T5072] ? virtio_net_hdr_to_skb.constprop.0+0x4e4/0x1380 [ 80.902394][ T5072] ? packet_create+0x8e0/0x8e0 [ 80.907150][ T5072] packet_xmit+0x257/0x380 [ 80.911566][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.917457][ T5072] packet_sendmsg+0x24ca/0x5240 [ 80.922309][ T5072] ? preempt_count_sub+0x160/0x160 [ 80.927413][ T5072] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 80.933309][ T5072] ? aa_sk_perm+0x2f8/0xb40 [ 80.937821][ T5072] ? packet_notifier+0x8c0/0x8c0 [ 80.942748][ T5072] ? aa_af_perm+0x250/0x250 [ 80.947255][ T5072] ? import_ubuf+0x1a4/0x200 [ 80.951840][ T5072] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 80.957117][ T5072] ? packet_notifier+0x8c0/0x8c0 [ 80.962045][ T5072] __sock_sendmsg+0xd5/0x180 [ 80.966626][ T5072] ____sys_sendmsg+0x6ac/0x940 [ 80.971378][ T5072] ? copy_msghdr_from_user+0x10b/0x160 [ 80.976860][ T5072] ? kernel_sendmsg+0x50/0x50 [ 80.981528][ T5072] ? hlock_class+0x4e/0x130 [ 80.986032][ T5072] ___sys_sendmsg+0x135/0x1d0 [ 80.990705][ T5072] ? do_recvmmsg+0x740/0x740 [ 80.995307][ T5072] ? recalc_sigpending_tsk+0x187/0x1d0 [ 81.000752][ T5072] ? __fget_light+0x1fc/0x260 [ 81.005421][ T5072] __sys_sendmsg+0x117/0x1e0 [ 81.010006][ T5072] ? __sys_sendmsg_sock+0x30/0x30 [ 81.015043][ T5072] ? ptrace_notify+0xf4/0x130 [ 81.019726][ T5072] ? syscall_trace_enter.constprop.0+0xaf/0x1e0 [ 81.025969][ T5072] do_syscall_64+0x40/0x110 [ 81.030464][ T5072] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 81.036356][ T5072] RIP: 0033:0x7fad99a8e4d9 [ 81.040755][ T5072] Code: 48 83 c4 28 c3 e8 d7 19 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 81.060525][ T5072] RSP: 002b:00007fffa41836e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 81.068924][ T5072] RAX: ffffffffffffffda RBX: 00007fad99adb390 RCX: 00007fad99a8e4d9 [ 81.076884][ T5072] RDX: 0000000000000000 RSI: 0000000020002ac0 RDI: 0000000000000003 [ 81.084845][ T5072] RBP: 0000000000000003 R08: 0000555500000000 R09: 0000555500000000 [ 81.092805][ T5072] R10: 0000000000000004 R11: 0000000000000246 R12: 00007fffa4183730 [ 81.100764][ T5072] R13: 00007fffa4183700 R14: 0000000000000001 R15: 00007fffa4183730 [ 81.108732][ T5072] [ 81.111965][ T5072] Kernel Offset: disabled [ 81.116347][ T5072] Rebooting in 86400 seconds..