./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2697917189
<...>
Warning: Permanently added '10.128.0.95' (ECDSA) to the list of known hosts.
execve("./syz-executor2697917189", ["./syz-executor2697917189"], 0x7ffe922f9630 /* 10 vars */) = 0
brk(NULL) = 0x555555c32000
brk(0x555555c32d00) = 0x555555c32d00
arch_prctl(ARCH_SET_FS, 0x555555c323c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor2697917189", 4096) = 28
brk(0x555555c53d00) = 0x555555c53d00
brk(0x555555c54000) = 0x555555c54000
mprotect(0x7fac0ad7a000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7fac0accba90, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fac0accbd80}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7fac0accba90, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7fac0accbd80}, NULL, 8) = 0
mkdir("./file0", 0777) = 0
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} ---
pipe2([3, 4], 0) = 0
write(4, "\x15\x00\x00\x00\x01\xff\xff\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 21) = 21
dup(4) = 5
mount(NULL, "./file0", "9p", 0, "trans=fd,rfdno=0x0000000000000003,wfdno=0x0000000000000005,") = -1 EREMOTEIO (Remote I/O error)
write(5, "\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", 24) = 24
write(5, "\x4c\x01\x00\x00\x05\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x18\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 311) = 311
syzkaller login: [ 51.449323][ T3608] ------------[ cut here ]------------
[ 51.454941][ T3608] WARNING: CPU: 1 PID: 3608 at mm/page_alloc.c:5482 __alloc_pages+0x39e/0x510
[ 51.464080][ T3608] Modules linked in:
[ 51.468302][ T3608] CPU: 0 PID: 3608 Comm: syz-executor269 Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 51.478400][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 51.488573][ T3608] RIP: 0010:__alloc_pages+0x39e/0x510
[ 51.493945][ T3608] Code: ff ff 00 0f 84 33 fe ff ff 80 ce 01 e9 2b fe ff ff 83 fe 0a 0f 86 3e fd ff ff 80 3d 3a cf eb 0b 00 75 09 c6 05 31 cf eb 0b 01 <0f> 0b 45 31 f6 e9 8d fe ff ff 65 ff 05 61 2d 46 7e 48 c7 c0 40 9d
[ 51.513642][ T3608] RSP: 0018:ffffc90002f1fb08 EFLAGS: 00010246
[ 51.519745][ T3608] RAX: 0000000000000000 RBX: 1ffff920005e3f62 RCX: 0000000000000000
[ 51.527790][ T3608] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 51.535804][ T3608] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 51.543766][ T3608] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000014
[ 51.551775][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88801e198eb0
[ 51.560026][ T3608] FS: 0000555555c323c0(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 51.569006][ T3608] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 51.575622][ T3608] CR2: 000055ab9a4a26f8 CR3: 000000001f94d000 CR4: 00000000003506e0
[ 51.583653][ T3608] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 51.591660][ T3608] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 51.599665][ T3608] Call Trace:
[ 51.602946][ T3608]
[ 51.605911][ T3608] ? __alloc_pages_slowpath.constprop.0+0x2140/0x2140
[ 51.612695][ T3608] ? p9_client_clunk+0xa5/0x2a0
[ 51.617605][ T3608] ? v9fs_fid_xattr_get+0x174/0x210
[ 51.622810][ T3608] ? v9fs_writeback_fid+0xd0/0xd0
[ 51.627886][ T3608] alloc_pages+0x1aa/0x310
[ 51.632315][ T3608] kmalloc_order+0x34/0xf0
[ 51.636763][ T3608] ? slab_free_freelist_hook+0x8b/0x1c0
[ 51.642328][ T3608] kmalloc_order_trace+0x13/0x120
[ 51.647387][ T3608] __v9fs_get_acl+0xb5/0x170
[ 51.651986][ T3608] v9fs_get_acl+0xf7/0x2f0
[ 51.656648][ T3608] v9fs_mount+0x607/0xa80
[ 51.660984][ T3608] ? v9fs_write_inode_dotl+0x140/0x140
[ 51.666497][ T3608] legacy_get_tree+0x105/0x220
[ 51.671285][ T3608] vfs_get_tree+0x89/0x2f0
[ 51.675694][ T3608] path_mount+0x1320/0x1fa0
[ 51.680267][ T3608] ? putname+0xfe/0x140
[ 51.684446][ T3608] ? kmem_cache_free+0xeb/0x5b0
[ 51.689353][ T3608] ? finish_automount+0xaf0/0xaf0
[ 51.694416][ T3608] ? putname+0xfe/0x140
[ 51.698643][ T3608] __x64_sys_mount+0x27f/0x300
[ 51.703421][ T3608] ? copy_mnt_ns+0xae0/0xae0
[ 51.708047][ T3608] ? lockdep_hardirqs_on+0x79/0x100
[ 51.713286][ T3608] ? _raw_spin_unlock_irq+0x2a/0x40
[ 51.718611][ T3608] ? ptrace_notify+0xfa/0x140
[ 51.723307][ T3608] do_syscall_64+0x35/0xb0
[ 51.727760][ T3608] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 51.733671][ T3608] RIP: 0033:0x7fac0ad0d7c9
[ 51.738129][ T3608] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 51.757855][ T3608] RSP: 002b:00007ffc0a97d6e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 51.766316][ T3608] RAX: ffffffffffffffda RBX: 00007ffc0a97d6f8 RCX: 00007fac0ad0d7c9
[ 51.774296][ T3608] RDX: 0000000020000140 RSI: 0000000020000200 RDI: 0000000000000000
[ 51.782300][ T3608] RBP: 00007ffc0a97d6f0 R08: 00000000200004c0 R09: 00007fac0accba90
[ 51.790302][ T3608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 51.798305][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 51.806354][ T3608]
[ 51.809388][ T3608] Kernel panic - not syncing: panic_on_warn set ...
[ 51.815973][ T3608] CPU: 1 PID: 3608 Comm: syz-executor269 Not tainted 5.19.0-rc4-next-20220628-syzkaller #0
[ 51.825933][ T3608] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/22/2022
[ 51.835974][ T3608] Call Trace:
[ 51.839238][ T3608]
[ 51.842159][ T3608] dump_stack_lvl+0xcd/0x134
[ 51.846749][ T3608] panic+0x2d7/0x636
[ 51.850639][ T3608] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 51.856625][ T3608] ? __warn.cold+0x248/0x2c4
[ 51.861207][ T3608] ? __alloc_pages+0x39e/0x510
[ 51.865966][ T3608] __warn.cold+0x259/0x2c4
[ 51.870377][ T3608] ? __alloc_pages+0x39e/0x510
[ 51.875136][ T3608] report_bug+0x1bc/0x210
[ 51.879461][ T3608] handle_bug+0x3c/0x60
[ 51.883608][ T3608] exc_invalid_op+0x14/0x40
[ 51.888100][ T3608] asm_exc_invalid_op+0x1b/0x20
[ 51.892936][ T3608] RIP: 0010:__alloc_pages+0x39e/0x510
[ 51.898299][ T3608] Code: ff ff 00 0f 84 33 fe ff ff 80 ce 01 e9 2b fe ff ff 83 fe 0a 0f 86 3e fd ff ff 80 3d 3a cf eb 0b 00 75 09 c6 05 31 cf eb 0b 01 <0f> 0b 45 31 f6 e9 8d fe ff ff 65 ff 05 61 2d 46 7e 48 c7 c0 40 9d
[ 51.917905][ T3608] RSP: 0018:ffffc90002f1fb08 EFLAGS: 00010246
[ 51.923980][ T3608] RAX: 0000000000000000 RBX: 1ffff920005e3f62 RCX: 0000000000000000
[ 51.931960][ T3608] RDX: 0000000000000000 RSI: 0000000000000014 RDI: 0000000000000000
[ 51.939930][ T3608] RBP: 0000000000040d40 R08: 0000000000000007 R09: 0000000000000000
[ 51.947898][ T3608] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000014
[ 51.955868][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: ffff88801e198eb0
[ 51.963855][ T3608] ? __alloc_pages_slowpath.constprop.0+0x2140/0x2140
[ 51.970616][ T3608] ? p9_client_clunk+0xa5/0x2a0
[ 51.975461][ T3608] ? v9fs_fid_xattr_get+0x174/0x210
[ 51.980647][ T3608] ? v9fs_writeback_fid+0xd0/0xd0
[ 51.985659][ T3608] alloc_pages+0x1aa/0x310
[ 51.990066][ T3608] kmalloc_order+0x34/0xf0
[ 51.994498][ T3608] ? slab_free_freelist_hook+0x8b/0x1c0
[ 52.000042][ T3608] kmalloc_order_trace+0x13/0x120
[ 52.005070][ T3608] __v9fs_get_acl+0xb5/0x170
[ 52.009657][ T3608] v9fs_get_acl+0xf7/0x2f0
[ 52.014062][ T3608] v9fs_mount+0x607/0xa80
[ 52.018394][ T3608] ? v9fs_write_inode_dotl+0x140/0x140
[ 52.023843][ T3608] legacy_get_tree+0x105/0x220
[ 52.028600][ T3608] vfs_get_tree+0x89/0x2f0
[ 52.033005][ T3608] path_mount+0x1320/0x1fa0
[ 52.037500][ T3608] ? putname+0xfe/0x140
[ 52.041646][ T3608] ? kmem_cache_free+0xeb/0x5b0
[ 52.046483][ T3608] ? finish_automount+0xaf0/0xaf0
[ 52.051497][ T3608] ? putname+0xfe/0x140
[ 52.055645][ T3608] __x64_sys_mount+0x27f/0x300
[ 52.060397][ T3608] ? copy_mnt_ns+0xae0/0xae0
[ 52.064982][ T3608] ? lockdep_hardirqs_on+0x79/0x100
[ 52.070186][ T3608] ? _raw_spin_unlock_irq+0x2a/0x40
[ 52.075377][ T3608] ? ptrace_notify+0xfa/0x140
[ 52.080046][ T3608] do_syscall_64+0x35/0xb0
[ 52.084454][ T3608] entry_SYSCALL_64_after_hwframe+0x46/0xb0
[ 52.090335][ T3608] RIP: 0033:0x7fac0ad0d7c9
[ 52.094737][ T3608] Code: 28 c3 e8 5a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 52.114330][ T3608] RSP: 002b:00007ffc0a97d6e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 52.122727][ T3608] RAX: ffffffffffffffda RBX: 00007ffc0a97d6f8 RCX: 00007fac0ad0d7c9
[ 52.130685][ T3608] RDX: 0000000020000140 RSI: 0000000020000200 RDI: 0000000000000000
[ 52.138642][ T3608] RBP: 00007ffc0a97d6f0 R08: 00000000200004c0 R09: 00007fac0accba90
[ 52.146598][ T3608] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 52.154555][ T3608] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 52.162519][ T3608]
[ 52.165796][ T3608] Kernel Offset: disabled
[ 52.170188][ T3608] Rebooting in 86400 seconds..