./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3828058910 <...> Warning: Permanently added '10.128.0.76' (ED25519) to the list of known hosts. execve("./syz-executor3828058910", ["./syz-executor3828058910"], 0x7ffdc2c37930 /* 10 vars */) = 0 brk(NULL) = 0x555567f79000 brk(0x555567f79d00) = 0x555567f79d00 arch_prctl(ARCH_SET_FS, 0x555567f79380) = 0 set_tid_address(0x555567f79650) = 5084 set_robust_list(0x555567f79660, 24) = 0 rseq(0x555567f79ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3828058910", 4096) = 28 getrandom("\x87\x5d\xc2\xe7\x5a\xa5\x92\x8a", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555567f79d00 brk(0x555567f9ad00) = 0x555567f9ad00 brk(0x555567f9b000) = 0x555567f9b000 mprotect(0x7f4551532000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 userfaultfd(UFFD_USER_MODE_ONLY|O_NONBLOCK) = 3 ioctl(3, UFFDIO_API, {api=0xaa, features=0 => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|UFFD_FEATURE_EXACT_ADDRESS|0x14000, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 mprotect(0x20ffc000, 12288, PROT_EXEC|PROT_SEM) = 0 ioctl(3, UFFDIO_REGISTER, {range={start=0x20ffc000, len=0x3000}, mode=UFFDIO_REGISTER_MODE_MISSING|UFFDIO_REGISTER_MODE_WP, ioctls=1<<_UFFDIO_WAKE|1<<_UFFDIO_COPY|1<<_UFFDIO_ZEROPAGE|1<<_UFFDIO_WRITEPROTECT|0x120}) = 0 ioctl(3, UFFDIO_COPY, {dst=0x20ffd000, src=0x20ffb000, len=0x1000, mode=UFFDIO_COPY_MODE_DONTWAKE|UFFDIO_COPY_MODE_WP, copy=0x1000}) = 0 seccomp(SECCOMP_SET_MODE_FILTER, 0, {len=1, filter=0x20000040}) = 0 open_tree(-1, NULL, 0) = -1 EFAULT (Bad address) close_range(0, 4294967295, 0) = 0 [ 55.967500][ T5084] ------------[ cut here ]------------ [ 55.973391][ T5084] WARNING: CPU: 0 PID: 5084 at mm/page_table_check.c:199 __page_table_check_ptes_set+0x1db/0x420 [ 55.984067][ T5084] Modules linked in: [ 55.988007][ T5084] CPU: 0 PID: 5084 Comm: syz-executor382 Not tainted 6.9.0-rc4-next-20240417-syzkaller #0 [ 55.997995][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 56.008114][ T5084] RIP: 0010:__page_table_check_ptes_set+0x1db/0x420 [ 56.014731][ T5084] Code: 48 8b 7c 24 40 48 c7 c6 80 19 46 8e e8 ee df 8e ff 41 83 fc 1d 74 18 41 83 fc 1a 75 1d e8 5d da 8e ff eb 10 e8 56 da 8e ff 90 <0f> 0b 90 eb 10 e8 4b da 8e ff 90 0f 0b 90 eb 05 e8 40 da 8e ff 48 [ 56.034554][ T5084] RSP: 0018:ffffc9000366f740 EFLAGS: 00010293 [ 56.040821][ T5084] RAX: ffffffff8207833a RBX: ffffc9000366f7c0 RCX: ffff888022af3c00 [ 56.048929][ T5084] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000 [ 56.056918][ T5084] RBP: ffffc9000366f830 R08: ffffffff820782af R09: 1ffffd40000a6a10 [ 56.064963][ T5084] R10: dffffc0000000000 R11: fffff940000a6a11 R12: 0000000000000000 [ 56.073027][ T5084] R13: 0000000014d42c67 R14: 0000000000000001 R15: 0000000000000000 [ 56.081061][ T5084] FS: 0000555567f79380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 56.090075][ T5084] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 56.096675][ T5084] CR2: 000000000066c7e0 CR3: 0000000078cb0000 CR4: 00000000003506f0 [ 56.104756][ T5084] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 56.112797][ T5084] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 56.120822][ T5084] Call Trace: [ 56.124116][ T5084] [ 56.127463][ T5084] ? __warn+0x163/0x4e0 [ 56.131636][ T5084] ? __page_table_check_ptes_set+0x1db/0x420 [ 56.137690][ T5084] ? report_bug+0x2b3/0x500 [ 56.142221][ T5084] ? __page_table_check_ptes_set+0x1db/0x420 [ 56.148286][ T5084] ? handle_bug+0x3e/0x70 [ 56.152721][ T5084] ? exc_invalid_op+0x1a/0x50 [ 56.157446][ T5084] ? asm_exc_invalid_op+0x1a/0x20 [ 56.162490][ T5084] ? __page_table_check_ptes_set+0x14f/0x420 [ 56.168535][ T5084] ? __page_table_check_ptes_set+0x1da/0x420 [ 56.174529][ T5084] ? __page_table_check_ptes_set+0x1db/0x420 [ 56.180579][ T5084] ? __pfx_lock_release+0x10/0x10 [ 56.185629][ T5084] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 56.192039][ T5084] ? vm_normal_page+0x97/0x1e0 [ 56.196851][ T5084] ? can_change_pte_writable+0x36a/0x7a0 [ 56.202569][ T5084] change_protection+0x2770/0x3cc0 [ 56.207780][ T5084] ? __pfx_change_protection+0x10/0x10 [ 56.213233][ T5084] ? ima_file_mprotect+0x18c/0x630 [ 56.218436][ T5084] ? vma_set_page_prot+0x1d7/0x530 [ 56.223567][ T5084] ? __pfx_vma_set_page_prot+0x10/0x10 [ 56.229194][ T5084] mprotect_fixup+0x740/0xa90 [ 56.233894][ T5084] ? __pfx_mprotect_fixup+0x10/0x10 [ 56.239177][ T5084] do_mprotect_pkey+0x90d/0xe00 [ 56.244073][ T5084] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 56.249624][ T5084] ? __secure_computing+0x125/0x370 [ 56.254842][ T5084] __x64_sys_mprotect+0x80/0x90 [ 56.259787][ T5084] do_syscall_64+0xf5/0x240 [ 56.264402][ T5084] ? clear_bhb_loop+0x35/0x90 [ 56.269200][ T5084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.275122][ T5084] RIP: 0033:0x7f45514bf429 [ 56.279611][ T5084] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.299296][ T5084] RSP: 002b:00007ffe52191598 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 56.308404][ T5084] RAX: ffffffffffffffda RBX: 00007ffe52191768 RCX: 00007f45514bf429 [ 56.316563][ T5084] RDX: 000000000000000f RSI: 0000000000004000 RDI: 0000000020ffc000 [ 56.324665][ T5084] RBP: 00007f4551532610 R08: 00007ffe52191768 R09: 00007ffe52191768 [ 56.332851][ T5084] R10: 00007ffe52191768 R11: 0000000000000246 R12: 0000000000000001 [ 56.340896][ T5084] R13: 00007ffe52191758 R14: 0000000000000001 R15: 0000000000000001 [ 56.348927][ T5084] [ 56.351942][ T5084] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 56.359301][ T5084] CPU: 0 PID: 5084 Comm: syz-executor382 Not tainted 6.9.0-rc4-next-20240417-syzkaller #0 [ 56.369186][ T5084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 56.379403][ T5084] Call Trace: [ 56.382671][ T5084] [ 56.385599][ T5084] dump_stack_lvl+0x241/0x360 [ 56.390271][ T5084] ? __pfx_dump_stack_lvl+0x10/0x10 [ 56.395454][ T5084] ? __pfx__printk+0x10/0x10 [ 56.400036][ T5084] ? vscnprintf+0x5d/0x90 [ 56.404355][ T5084] panic+0x349/0x860 [ 56.408327][ T5084] ? __warn+0x172/0x4e0 [ 56.412474][ T5084] ? __pfx_panic+0x10/0x10 [ 56.416888][ T5084] __warn+0x346/0x4e0 [ 56.420862][ T5084] ? __page_table_check_ptes_set+0x1db/0x420 [ 56.426832][ T5084] report_bug+0x2b3/0x500 [ 56.431272][ T5084] ? __page_table_check_ptes_set+0x1db/0x420 [ 56.438051][ T5084] handle_bug+0x3e/0x70 [ 56.442221][ T5084] exc_invalid_op+0x1a/0x50 [ 56.446714][ T5084] asm_exc_invalid_op+0x1a/0x20 [ 56.451579][ T5084] RIP: 0010:__page_table_check_ptes_set+0x1db/0x420 [ 56.458165][ T5084] Code: 48 8b 7c 24 40 48 c7 c6 80 19 46 8e e8 ee df 8e ff 41 83 fc 1d 74 18 41 83 fc 1a 75 1d e8 5d da 8e ff eb 10 e8 56 da 8e ff 90 <0f> 0b 90 eb 10 e8 4b da 8e ff 90 0f 0b 90 eb 05 e8 40 da 8e ff 48 [ 56.477770][ T5084] RSP: 0018:ffffc9000366f740 EFLAGS: 00010293 [ 56.483836][ T5084] RAX: ffffffff8207833a RBX: ffffc9000366f7c0 RCX: ffff888022af3c00 [ 56.491885][ T5084] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000000000000 [ 56.499850][ T5084] RBP: ffffc9000366f830 R08: ffffffff820782af R09: 1ffffd40000a6a10 [ 56.507817][ T5084] R10: dffffc0000000000 R11: fffff940000a6a11 R12: 0000000000000000 [ 56.515806][ T5084] R13: 0000000014d42c67 R14: 0000000000000001 R15: 0000000000000000 [ 56.523778][ T5084] ? __page_table_check_ptes_set+0x14f/0x420 [ 56.529758][ T5084] ? __page_table_check_ptes_set+0x1da/0x420 [ 56.535743][ T5084] ? __pfx_lock_release+0x10/0x10 [ 56.540775][ T5084] ? __pfx___page_table_check_ptes_set+0x10/0x10 [ 56.547270][ T5084] ? vm_normal_page+0x97/0x1e0 [ 56.552030][ T5084] ? can_change_pte_writable+0x36a/0x7a0 [ 56.557661][ T5084] change_protection+0x2770/0x3cc0 [ 56.562795][ T5084] ? __pfx_change_protection+0x10/0x10 [ 56.568245][ T5084] ? ima_file_mprotect+0x18c/0x630 [ 56.573390][ T5084] ? vma_set_page_prot+0x1d7/0x530 [ 56.578537][ T5084] ? __pfx_vma_set_page_prot+0x10/0x10 [ 56.584012][ T5084] mprotect_fixup+0x740/0xa90 [ 56.588700][ T5084] ? __pfx_mprotect_fixup+0x10/0x10 [ 56.593919][ T5084] do_mprotect_pkey+0x90d/0xe00 [ 56.598774][ T5084] ? __pfx_do_mprotect_pkey+0x10/0x10 [ 56.604244][ T5084] ? __secure_computing+0x125/0x370 [ 56.609463][ T5084] __x64_sys_mprotect+0x80/0x90 [ 56.614314][ T5084] do_syscall_64+0xf5/0x240 [ 56.618812][ T5084] ? clear_bhb_loop+0x35/0x90 [ 56.623481][ T5084] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 56.629371][ T5084] RIP: 0033:0x7f45514bf429 [ 56.633779][ T5084] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 56.653379][ T5084] RSP: 002b:00007ffe52191598 EFLAGS: 00000246 ORIG_RAX: 000000000000000a [ 56.661794][ T5084] RAX: ffffffffffffffda RBX: 00007ffe52191768 RCX: 00007f45514bf429 [ 56.669768][ T5084] RDX: 000000000000000f RSI: 0000000000004000 RDI: 0000000020ffc000 [ 56.677733][ T5084] RBP: 00007f4551532610 R08: 00007ffe52191768 R09: 00007ffe52191768 [ 56.685701][ T5084] R10: 00007ffe52191768 R11: 0000000000000246 R12: 0000000000000001 [ 56.693662][ T5084] R13: 00007ffe52191758 R14: 0000000000000001 R15: 0000000000000001 [ 56.701638][ T5084] [ 56.704973][ T5084] Kernel Offset: disabled [ 56.709360][ T5084] Rebooting in 86400 seconds..