./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2029633501 <...> Warning: Permanently added '10.128.1.47' (ED25519) to the list of known hosts. execve("./syz-executor2029633501", ["./syz-executor2029633501"], 0x7ffcdec4b740 /* 10 vars */) = 0 brk(NULL) = 0x55555df4d000 brk(0x55555df4dd00) = 0x55555df4dd00 arch_prctl(ARCH_SET_FS, 0x55555df4d380) = 0 set_tid_address(0x55555df4d650) = 5839 set_robust_list(0x55555df4d660, 24) = 0 rseq(0x55555df4dca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2029633501", 4096) = 28 getrandom("\xcb\x1d\x6a\xc7\x52\x66\x0f\x79", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555df4dd00 brk(0x55555df6ed00) = 0x55555df6ed00 brk(0x55555df6f000) = 0x55555df6f000 mprotect(0x7f0ca4e3a000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached [pid 5840] set_robust_list(0x55555df4d660, 24 [pid 5839] <... clone resumed>, child_tidptr=0x55555df4d650) = 5840 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5840] setpgid(0, 0) = 0 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5840] write(3, "1000", 4) = 4 [pid 5840] close(3) = 0 executing program [pid 5840] write(1, "executing program\n", 18) = 18 [pid 5840] io_uring_setup(69, {flags=IORING_SETUP_R_DISABLED, sq_thread_cpu=0x2, sq_thread_idle=24, sq_entries=128, cq_entries=256, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|IORING_FEAT_LINKED_FILE|0x3e000, sq_off={head=0, tail=4, ring_mask=16, ring_entries=24, flags=36, dropped=32, array=4160}, cq_off={head=8, tail=12, ring_mask=20, ring_entries=28, overflow=44, cqes=64, flags=40}}) = 3 [pid 5840] mmap(NULL, 4672, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_POPULATE, 3, 0) = 0x7f0ca4d83000 [pid 5840] mmap(NULL, 8192, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_POPULATE, 3, 0x10000000) = 0x7f0ca4d81000 [ 93.275347][ T5840] ------------[ cut here ]------------ [ 93.281005][ T5840] WARNING: CPU: 1 PID: 5840 at mm/vmalloc.c:542 __vmap_pages_range_noflush+0xd4e/0xe10 [ 93.290771][ T5840] Modules linked in: [ 93.294827][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz-executor202 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 93.305250][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 93.315593][ T5840] RIP: 0010:__vmap_pages_range_noflush+0xd4e/0xe10 [ 93.322180][ T5840] Code: b0 ff eb 2f e8 93 f0 b0 ff 45 31 e4 eb 25 e8 89 f0 b0 ff 90 0f 0b 90 eb 14 e8 7e f0 b0 ff 90 0f 0b 90 eb 09 e8 73 f0 b0 ff 90 <0f> 0b 90 41 bc f4 ff ff ff 44 89 e0 48 81 c4 e0 00 00 00 5b 41 5c [ 93.341907][ T5840] RSP: 0018:ffffc900040cf8d8 EFLAGS: 00010293 [ 93.348073][ T5840] RAX: ffffffff820f354d RBX: ffff888050d8d408 RCX: ffff88807a028000 [ 93.356081][ T5840] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.364175][ T5840] RBP: ffffea0003000000 R08: 0000000000000000 R09: ffffffff820f3745 [ 93.372608][ T5840] R10: dffffc0000000000 R11: fffffbfff1c48c9f R12: ffffc9005d082000 [ 93.380726][ T5840] R13: 1ffff1100a1b1a81 R14: 0000000000000000 R15: dffffc0000000000 [ 93.388794][ T5840] FS: 000055555df4d380(0000) GS:ffff888125d57000(0000) knlGS:0000000000000000 [ 93.397836][ T5840] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 93.404475][ T5840] CR2: 00005573793af168 CR3: 0000000073eaa000 CR4: 00000000003526f0 [ 93.412537][ T5840] Call Trace: [ 93.415874][ T5840] [ 93.418951][ T5840] vmap+0x1ca/0x310 [ 93.422803][ T5840] io_region_init_ptr+0x24d/0x350 [ 93.427921][ T5840] ? __pfx_io_region_init_ptr+0x10/0x10 [ 93.433519][ T5840] ? io_region_allocate_pages+0x3aa/0x4b0 [ 93.439371][ T5840] io_create_region+0x3a4/0x480 [ 93.444275][ T5840] io_create_region_mmap_safe+0xc0/0x160 [ 93.450001][ T5840] ? __pfx_io_create_region_mmap_safe+0x10/0x10 [ 93.456388][ T5840] io_register_mem_region+0x27a/0x3c0 [ 93.461824][ T5840] ? __pfx_io_register_mem_region+0x10/0x10 [ 93.467915][ T5840] ? __fget_files+0x2a/0x420 [ 93.472581][ T5840] ? __fget_files+0x2a/0x420 [ 93.477353][ T5840] ? io_is_uring_fops+0xd/0x50 [ 93.482171][ T5840] __se_sys_io_uring_register+0x3b1/0x11b0 [ 93.488108][ T5840] ? __pfx___se_sys_io_uring_register+0x10/0x10 [ 93.494419][ T5840] do_syscall_64+0xfa/0x3b0 [ 93.499044][ T5840] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.504309][ T5840] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.510444][ T5840] ? clear_bhb_loop+0x60/0xb0 [ 93.515157][ T5840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.521131][ T5840] RIP: 0033:0x7f0ca4dc7b39 [ 93.525585][ T5840] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.545321][ T5840] RSP: 002b:00007ffeaca66238 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 93.553833][ T5840] RAX: ffffffffffffffda RBX: 0000000000000045 RCX: 00007f0ca4dc7b39 [ 93.561932][ T5840] RDX: 0000200000000200 RSI: 0000000000000022 RDI: 0000000000000003 [ 93.570060][ T5840] RBP: 0000000000000003 R08: 0000000010000000 R09: 0000000000000006 [ 93.578122][ T5840] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000300 [ 93.586168][ T5840] R13: 0000200000000100 R14: 0000000000000001 R15: 0000000000000001 [ 93.594185][ T5840] [ 93.597300][ T5840] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 93.604626][ T5840] CPU: 1 UID: 0 PID: 5840 Comm: syz-executor202 Not tainted 6.16.0-syzkaller #0 PREEMPT(full) [ 93.614982][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025 [ 93.625058][ T5840] Call Trace: [ 93.628359][ T5840] [ 93.631314][ T5840] dump_stack_lvl+0x99/0x250 [ 93.635937][ T5840] ? __asan_memcpy+0x40/0x70 [ 93.640555][ T5840] ? __pfx_dump_stack_lvl+0x10/0x10 [ 93.645779][ T5840] ? __pfx__printk+0x10/0x10 [ 93.650425][ T5840] panic+0x2db/0x790 [ 93.654348][ T5840] ? __pfx_panic+0x10/0x10 [ 93.658795][ T5840] __warn+0x31b/0x4b0 [ 93.662800][ T5840] ? __vmap_pages_range_noflush+0xd4e/0xe10 [ 93.668751][ T5840] ? __vmap_pages_range_noflush+0xd4e/0xe10 [ 93.674682][ T5840] report_bug+0x2be/0x4f0 [ 93.679030][ T5840] ? __vmap_pages_range_noflush+0xd4e/0xe10 [ 93.684979][ T5840] ? __vmap_pages_range_noflush+0xd4e/0xe10 [ 93.690899][ T5840] ? __vmap_pages_range_noflush+0xd50/0xe10 [ 93.696822][ T5840] handle_bug+0x84/0x160 [ 93.701095][ T5840] exc_invalid_op+0x1a/0x50 [ 93.705756][ T5840] asm_exc_invalid_op+0x1a/0x20 [ 93.710647][ T5840] RIP: 0010:__vmap_pages_range_noflush+0xd4e/0xe10 [ 93.717181][ T5840] Code: b0 ff eb 2f e8 93 f0 b0 ff 45 31 e4 eb 25 e8 89 f0 b0 ff 90 0f 0b 90 eb 14 e8 7e f0 b0 ff 90 0f 0b 90 eb 09 e8 73 f0 b0 ff 90 <0f> 0b 90 41 bc f4 ff ff ff 44 89 e0 48 81 c4 e0 00 00 00 5b 41 5c [ 93.736813][ T5840] RSP: 0018:ffffc900040cf8d8 EFLAGS: 00010293 [ 93.742910][ T5840] RAX: ffffffff820f354d RBX: ffff888050d8d408 RCX: ffff88807a028000 [ 93.751336][ T5840] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 93.759320][ T5840] RBP: ffffea0003000000 R08: 0000000000000000 R09: ffffffff820f3745 [ 93.767308][ T5840] R10: dffffc0000000000 R11: fffffbfff1c48c9f R12: ffffc9005d082000 [ 93.775297][ T5840] R13: 1ffff1100a1b1a81 R14: 0000000000000000 R15: dffffc0000000000 [ 93.783290][ T5840] ? pfn_valid+0x125/0x4d0 [ 93.787738][ T5840] ? __vmap_pages_range_noflush+0xd4d/0xe10 [ 93.793664][ T5840] ? __vmap_pages_range_noflush+0xd4d/0xe10 [ 93.799616][ T5840] vmap+0x1ca/0x310 [ 93.803448][ T5840] io_region_init_ptr+0x24d/0x350 [ 93.808500][ T5840] ? __pfx_io_region_init_ptr+0x10/0x10 [ 93.814067][ T5840] ? io_region_allocate_pages+0x3aa/0x4b0 [ 93.819827][ T5840] io_create_region+0x3a4/0x480 [ 93.824752][ T5840] io_create_region_mmap_safe+0xc0/0x160 [ 93.830424][ T5840] ? __pfx_io_create_region_mmap_safe+0x10/0x10 [ 93.836731][ T5840] io_register_mem_region+0x27a/0x3c0 [ 93.842223][ T5840] ? __pfx_io_register_mem_region+0x10/0x10 [ 93.848141][ T5840] ? __fget_files+0x2a/0x420 [ 93.852844][ T5840] ? __fget_files+0x2a/0x420 [ 93.857454][ T5840] ? io_is_uring_fops+0xd/0x50 [ 93.862248][ T5840] __se_sys_io_uring_register+0x3b1/0x11b0 [ 93.868079][ T5840] ? __pfx___se_sys_io_uring_register+0x10/0x10 [ 93.874472][ T5840] do_syscall_64+0xfa/0x3b0 [ 93.879017][ T5840] ? lockdep_hardirqs_on+0x9c/0x150 [ 93.884255][ T5840] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.890359][ T5840] ? clear_bhb_loop+0x60/0xb0 [ 93.895065][ T5840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 93.900997][ T5840] RIP: 0033:0x7f0ca4dc7b39 [ 93.905443][ T5840] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 93.925191][ T5840] RSP: 002b:00007ffeaca66238 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab [ 93.933810][ T5840] RAX: ffffffffffffffda RBX: 0000000000000045 RCX: 00007f0ca4dc7b39 [ 93.941812][ T5840] RDX: 0000200000000200 RSI: 0000000000000022 RDI: 0000000000000003 [ 93.949804][ T5840] RBP: 0000000000000003 R08: 0000000010000000 R09: 0000000000000006 [ 93.957798][ T5840] R10: 0000000000000001 R11: 0000000000000246 R12: 0000200000000300 [ 93.965785][ T5840] R13: 0000200000000100 R14: 0000000000000001 R15: 0000000000000001 [ 93.973791][ T5840] [ 93.976979][ T5840] Kernel Offset: disabled [ 93.981322][ T5840] Rebooting in 86400 seconds..