./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4037971839 <...> Warning: Permanently added '10.128.0.152' (ED25519) to the list of known hosts. execve("./syz-executor4037971839", ["./syz-executor4037971839"], 0x7ffdde2feee0 /* 10 vars */) = 0 brk(NULL) = 0x55557bf45000 brk(0x55557bf45d00) = 0x55557bf45d00 arch_prctl(ARCH_SET_FS, 0x55557bf45380) = 0 set_tid_address(0x55557bf45650) = 5093 set_robust_list(0x55557bf45660, 24) = 0 rseq(0x55557bf45ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4037971839", 4096) = 28 getrandom("\x11\xc9\xdd\x9f\xa5\xeb\xef\x5b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557bf45d00 brk(0x55557bf66d00) = 0x55557bf66d00 brk(0x55557bf67000) = 0x55557bf67000 mprotect(0x7f99a4771000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 write(1, "executing program\n", 18executing program ) = 18 socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 3 socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4 sendto(4, [{nlmsg_len=32, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0c\x00\x02\x00\x65\x74\x68\x74\x6f\x6f\x6c\x00"], 32, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 32 recvfrom(4, [{nlmsg_len=956, nlmsg_type=nlctrl, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5093}, "\x01\x02\x00\x00\x0c\x00\x02\x00\x65\x74\x68\x74\x6f\x6f\x6c\x00\x06\x00\x01\x00\x16\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x00\x00\x00\x00\x60\x03\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x02\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x03\x00\x08\x00\x01\x00"...], 4096, 0, NULL, NULL) = 956 recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5093}, {error=0, msg={nlmsg_len=32, nlmsg_type=nlctrl, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36 close(4) = 0 [ 77.570477][ T5093] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000193: 0000 [#1] PREEMPT SMP KASAN PTI [ 77.583135][ T5093] KASAN: null-ptr-deref in range [0x0000000000000c98-0x0000000000000c9f] [ 77.591574][ T5093] CPU: 1 PID: 5093 Comm: syz-executor403 Not tainted 6.10.0-rc4-syzkaller-00936-g50b70845fc5c #0 [ 77.602078][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 77.612423][ T5093] RIP: 0010:coalesce_fill_reply+0xcc/0x1b70 [ 77.618445][ T5093] Code: e8 19 2c f9 f7 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 e3 f1 5e f8 bb 98 0c 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 c5 f1 5e f8 48 8b 03 48 89 44 24 [ 77.638072][ T5093] RSP: 0018:ffffc90003526ee0 EFLAGS: 00010206 [ 77.644327][ T5093] RAX: 0000000000000193 RBX: 0000000000000c98 RCX: ffff88802661da00 [ 77.652389][ T5093] RDX: 0000000000000000 RSI: ffff88801b72e740 RDI: ffff88802dac6780 [ 77.660384][ T5093] RBP: ffffc90003527118 R08: ffffffff899bb137 R09: 1ffff11003e8b805 [ 77.668385][ T5093] R10: dffffc0000000000 R11: ffffffff899cf860 R12: ffffffff899cf860 [ 77.676571][ T5093] R13: dffffc0000000000 R14: ffff88801b72e740 R15: ffff88802dac6780 [ 77.684563][ T5093] FS: 000055557bf45380(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 77.693510][ T5093] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.700101][ T5093] CR2: 00000000200f9018 CR3: 0000000066db0000 CR4: 00000000003506f0 [ 77.708471][ T5093] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.716552][ T5093] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.724534][ T5093] Call Trace: [ 77.727835][ T5093] [ 77.730877][ T5093] ? __die_body+0x88/0xe0 [ 77.735309][ T5093] ? die_addr+0x108/0x140 [ 77.739652][ T5093] ? exc_general_protection+0x3dd/0x5d0 [ 77.745303][ T5093] ? asm_exc_general_protection+0x26/0x30 [ 77.751212][ T5093] ? __pfx_coalesce_fill_reply+0x10/0x10 [ 77.756974][ T5093] ? __pfx_coalesce_fill_reply+0x10/0x10 [ 77.762921][ T5093] ? ethnl_default_dumpit+0x517/0xb30 [ 77.768555][ T5093] ? coalesce_fill_reply+0xcc/0x1b70 [ 77.773895][ T5093] ? __pfx___mutex_unlock_slowpath+0x10/0x10 [ 77.779971][ T5093] ? __pfx_coalesce_fill_reply+0x10/0x10 [ 77.785614][ T5093] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 77.791597][ T5093] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 77.798848][ T5093] ? nla_put+0x131/0x1e0 [ 77.803310][ T5093] ? __asan_memcpy+0x40/0x70 [ 77.807973][ T5093] ? nla_put+0x131/0x1e0 [ 77.812254][ T5093] ? ethnl_fill_reply_header+0x295/0x3c0 [ 77.817924][ T5093] ? __pfx_netdev_run_todo+0x10/0x10 [ 77.823251][ T5093] ? __pfx_ethnl_fill_reply_header+0x10/0x10 [ 77.829252][ T5093] ? __pm_runtime_idle+0x13e/0x1a0 [ 77.834472][ T5093] ? coalesce_prepare_data+0x175/0x1e0 [ 77.839968][ T5093] ? __pfx_coalesce_fill_reply+0x10/0x10 [ 77.845640][ T5093] ? ethnl_default_dumpit+0x83/0xb30 [ 77.850957][ T5093] ethnl_default_dumpit+0x5ac/0xb30 [ 77.856476][ T5093] ? ethnl_default_dumpit+0x83/0xb30 [ 77.861812][ T5093] genl_dumpit+0x107/0x1a0 [ 77.866257][ T5093] netlink_dump+0x647/0xd80 [ 77.870782][ T5093] ? __pfx_netlink_dump+0x10/0x10 [ 77.875825][ T5093] ? genl_start+0x597/0x6d0 [ 77.880349][ T5093] __netlink_dump_start+0x59f/0x780 [ 77.885559][ T5093] genl_rcv_msg+0x88c/0xec0 [ 77.890075][ T5093] ? mark_lock+0x9a/0x350 [ 77.894416][ T5093] ? __pfx_genl_rcv_msg+0x10/0x10 [ 77.899546][ T5093] ? __pfx_genl_start+0x10/0x10 [ 77.904497][ T5093] ? __pfx_genl_dumpit+0x10/0x10 [ 77.909445][ T5093] ? __pfx_genl_done+0x10/0x10 [ 77.914228][ T5093] ? __pfx_lock_acquire+0x10/0x10 [ 77.919370][ T5093] ? __pfx_ethnl_default_start+0x10/0x10 [ 77.925038][ T5093] ? __pfx_ethnl_default_dumpit+0x10/0x10 [ 77.931051][ T5093] ? __pfx_ethnl_default_done+0x10/0x10 [ 77.936639][ T5093] ? __pfx___might_resched+0x10/0x10 [ 77.942041][ T5093] netlink_rcv_skb+0x1e3/0x430 [ 77.946843][ T5093] ? __pfx_genl_rcv_msg+0x10/0x10 [ 77.951931][ T5093] ? __pfx_netlink_rcv_skb+0x10/0x10 [ 77.957453][ T5093] genl_rcv+0x28/0x40 [ 77.961489][ T5093] netlink_unicast+0x7f0/0x990 [ 77.966306][ T5093] ? __pfx_netlink_unicast+0x10/0x10 [ 77.971721][ T5093] ? __virt_addr_valid+0x183/0x520 [ 77.976862][ T5093] ? __check_object_size+0x49c/0x900 [ 77.982168][ T5093] ? bpf_lsm_netlink_send+0x9/0x10 [ 77.987301][ T5093] netlink_sendmsg+0x8e4/0xcb0 [ 77.992083][ T5093] ? __pfx_netlink_sendmsg+0x10/0x10 [ 77.997476][ T5093] ? __import_iovec+0x536/0x820 [ 78.002500][ T5093] ? aa_sock_msg_perm+0x91/0x160 [ 78.007499][ T5093] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 78.012827][ T5093] ? security_socket_sendmsg+0x87/0xb0 [ 78.018314][ T5093] ? __pfx_netlink_sendmsg+0x10/0x10 [ 78.023734][ T5093] __sock_sendmsg+0x221/0x270 [ 78.028436][ T5093] ____sys_sendmsg+0x525/0x7d0 [ 78.033263][ T5093] ? __pfx_____sys_sendmsg+0x10/0x10 [ 78.038672][ T5093] ? do_raw_spin_lock+0x14f/0x370 [ 78.043936][ T5093] __sys_sendmsg+0x2b0/0x3a0 [ 78.048765][ T5093] ? __pfx___sys_sendmsg+0x10/0x10 [ 78.054192][ T5093] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.060638][ T5093] ? _raw_spin_unlock_irq+0x2e/0x50 [ 78.065851][ T5093] ? ptrace_notify+0x279/0x380 [ 78.070638][ T5093] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 78.076975][ T5093] ? do_syscall_64+0x100/0x230 [ 78.081755][ T5093] do_syscall_64+0xf3/0x230 [ 78.086273][ T5093] ? clear_bhb_loop+0x35/0x90 [ 78.090952][ T5093] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 78.096873][ T5093] RIP: 0033:0x7f99a46ff219 [ 78.101357][ T5093] Code: 48 83 c4 28 c3 e8 e7 18 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 78.121056][ T5093] RSP: 002b:00007fff97ad8a78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 78.129485][ T5093] RAX: ffffffffffffffda RBX: 00007fff97ad8c48 RCX: 00007f99a46ff219 [ 78.137462][ T5093] RDX: 0000000000000000 RSI: 0000000020000e80 RDI: 0000000000000003 [ 78.145437][ T5093] RBP: 00007f99a4771610 R08: 0000000000000000 R09: 00007fff97ad8c48 [ 78.153411][ T5093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 78.161385][ T5093] R13: 00007fff97ad8c38 R14: 0000000000000001 R15: 0000000000000001 [ 78.169365][ T5093] [ 78.172421][ T5093] Modules linked in: [ 78.176862][ T5093] ---[ end trace 0000000000000000 ]--- [ 78.182367][ T5093] RIP: 0010:coalesce_fill_reply+0xcc/0x1b70 [ 78.188351][ T5093] Code: e8 19 2c f9 f7 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 e3 f1 5e f8 bb 98 0c 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 c5 f1 5e f8 48 8b 03 48 89 44 24 [ 78.208118][ T5093] RSP: 0018:ffffc90003526ee0 EFLAGS: 00010206 [ 78.214262][ T5093] RAX: 0000000000000193 RBX: 0000000000000c98 RCX: ffff88802661da00 [ 78.222305][ T5093] RDX: 0000000000000000 RSI: ffff88801b72e740 RDI: ffff88802dac6780 [ 78.230405][ T5093] RBP: ffffc90003527118 R08: ffffffff899bb137 R09: 1ffff11003e8b805 [ 78.238456][ T5093] R10: dffffc0000000000 R11: ffffffff899cf860 R12: ffffffff899cf860 [ 78.246482][ T5093] R13: dffffc0000000000 R14: ffff88801b72e740 R15: ffff88802dac6780 [ 78.254497][ T5093] FS: 000055557bf45380(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000 [ 78.263547][ T5093] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 78.270171][ T5093] CR2: 000055a18cbf60a8 CR3: 0000000066db0000 CR4: 00000000003506f0 [ 78.278207][ T5093] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 78.286278][ T5093] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 78.294335][ T5093] Kernel panic - not syncing: Fatal exception [ 78.300762][ T5093] Kernel Offset: disabled [ 78.305177][ T5093] Rebooting in 86400 seconds..