./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1663706811
<...>
Warning: Permanently added '10.128.0.76' (ECDSA) to the list of known hosts.
execve("./syz-executor1663706811", ["./syz-executor1663706811"], 0x7ffcbff2a1a0 /* 10 vars */) = 0
brk(NULL) = 0x555557204000
brk(0x555557204c40) = 0x555557204c40
arch_prctl(ARCH_SET_FS, 0x555557204300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor1663706811", 4096) = 28
brk(0x555557225c40) = 0x555557225c40
brk(0x555557226000) = 0x555557226000
mprotect(0x7f3d16a63000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
memfd_create("\x5c\x29\x80\x9a\x82\xb2\xe3\xea\x6e\xb9\x7f\x83\x6d\x80\xaa\xae\xb9\x05\x70\xc7\x22\x6e\x54\xb6\x2d\xe5\x99\x06\x5a\xd7\x75\x65\xba\xf8\x84\xf7\x33\xd9\x9d\x29\x36\x4c\xb1\x94\x60\xc2\x4c\x86\xda\x2c\x45\x2c\x60\xfd\x8b\x6a\x0d\x41\xb5\x02\x26\x90\x3f\x06\x50\x0b\x2b\x7d\xbd\x81\x74\x1f\x98\x54\xf3\x98\x45\x82\xcd\x6f\x10\x27\x9b\xb1\x10\x79\x61\xd0\xbd\xaa\x68\x60\xde\x18\x4f\xe3\x4c\x99\x35\xa9"..., 0) = 3
mmap(0x20ffd000, 2097151, PROT_NONE, MAP_PRIVATE|MAP_FIXED, 3, 0) = 0x20ffd000
openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
write(4, "4", 1) = 1
[ 21.802201][ T28] audit: type=1400 audit(1686499032.688:66): avc: denied { execmem } for pid=293 comm="syz-executor166" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 21.809999][ T293] FAULT_INJECTION: forcing a failure.
[ 21.809999][ T293] name failslab, interval 1, probability 0, space 0, times 1
[ 21.812503][ T293] CPU: 1 PID: 293 Comm: syz-executor166 Not tainted 6.1.25-syzkaller-00020-g7641ff0a300a #0
[ 21.814425][ T293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 21.816016][ T293] Call Trace:
[ 21.816559][ T293]
[ 21.816951][ T293] dump_stack_lvl+0x151/0x1b7
[ 21.817584][ T293] ? nf_tcp_handle_invalid+0x3f1/0x3f1
[ 21.818361][ T293] dump_stack+0x15/0x17
[ 21.819072][ T293] should_fail_ex+0x3d0/0x520
[ 21.819753][ T293] ? mas_alloc_nodes+0x267/0x7d0
[ 21.820583][ T293] __should_failslab+0xaf/0xf0
[ 21.821258][ T293] should_failslab+0x9/0x20
[ 21.821984][ T293] kmem_cache_alloc+0x3b/0x2c0
[ 21.824605][ T293] mas_alloc_nodes+0x267/0x7d0
[ 21.829205][ T293] mas_preallocate+0xfe0/0x1e10
[ 21.833896][ T293] ? mas_destroy+0x2cc0/0x2cc0
[ 21.838492][ T293] ? rwsem_write_trylock+0x15b/0x290
[ 21.843611][ T293] vma_expand+0x338/0xaa0
[ 21.847776][ T293] mmap_region+0xde5/0x2380
[ 21.852120][ T293] ? file_mmap_ok+0x150/0x150
[ 21.856631][ T293] ? cap_mmap_addr+0x169/0x2e0
[ 21.861229][ T293] ? __kasan_check_read+0x11/0x20
[ 21.866091][ T293] ? shmem_get_unmapped_area+0x2e3/0x710
[ 21.871559][ T293] ? arch_get_unmapped_area+0x780/0x780
[ 21.876960][ T293] ? file_mmap_ok+0x104/0x150
[ 21.881573][ T293] do_mmap+0x853/0xe30
[ 21.885464][ T293] ? mlock_future_check+0x110/0x110
[ 21.890480][ T293] ? cgroup_update_frozen+0x15f/0x980
[ 21.895689][ T293] vm_mmap_pgoff+0x208/0x430
[ 21.900126][ T293] ? account_locked_vm+0x250/0x250
[ 21.905059][ T293] ? __fget_files+0x2cb/0x330
[ 21.909580][ T293] ksys_mmap_pgoff+0x15d/0x1e0
[ 21.914175][ T293] __x64_sys_mmap+0x103/0x120
[ 21.918686][ T293] do_syscall_64+0x3d/0xb0
[ 21.922940][ T293] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 21.928667][ T293] RIP: 0033:0x7f3d169f6769
[ 21.932920][ T293] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 21.952384][ T293] RSP: 002b:00007fff8c118908 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 21.960604][ T293] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f3d169f6769
[ 21.968418][ T293] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffd000
[ 21.976404][ T293] RBP: 00007fff8c118920 R08: 0000000000000003 R09: 0000000000000000
[ 21.984224][ T293] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000004
[ 21.992032][ T293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 21.999839][ T293]
[ 22.002886][ T293] ------------[ cut here ]------------
[ 22.008253][ T293] kernel BUG at mm/mmap.c:2664!
[ 22.013033][ T293] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 22.018910][ T293] CPU: 1 PID: 293 Comm: syz-executor166 Not tainted 6.1.25-syzkaller-00020-g7641ff0a300a #0
[ 22.028801][ T293] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 22.038696][ T293] RIP: 0010:mmap_region+0x2256/0x2380
[ 22.043902][ T293] Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 1e fc ff ff 48 89 df e8 2b 29 09 00 e9 11 fc ff ff e8 91 44 c3 ff 0f 0b e8 8a 44 c3 ff <0f> 0b 65 8b 05 39 95 51 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
[ 22.063344][ T293] RSP: 0018:ffffc90000de7a40 EFLAGS: 00010293
[ 22.069246][ T293] RAX: ffffffff81b07c16 RBX: 0000000020ffffff RCX: ffff88811ceea800
[ 22.077149][ T293] RDX: 0000000000000000 RSI: 0000000020ffffff RDI: 0000000021000000
[ 22.084963][ T293] RBP: ffffc90000de7c50 R08: ffffffff81b06861 R09: ffffffff84fc5753
[ 22.092766][ T293] R10: 0000000000000003 R11: ffff88811ceea800 R12: ffffc90000de7ba8
[ 22.100625][ T293] R13: dffffc0000000000 R14: 0000000020ffd000 R15: 0000000021000000
[ 22.108390][ T293] FS: 0000555557204300(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 22.117154][ T293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 22.123576][ T293] CR2: 0000000020000114 CR3: 000000011f3b7000 CR4: 00000000003506a0
[ 22.131392][ T293] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 22.139199][ T293] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 22.147099][ T293] Call Trace:
[ 22.150220][ T293]
[ 22.153004][ T293] ? file_mmap_ok+0x150/0x150
[ 22.157513][ T293] ? cap_mmap_addr+0x169/0x2e0
[ 22.162111][ T293] ? __kasan_check_read+0x11/0x20
[ 22.166985][ T293] ? shmem_get_unmapped_area+0x2e3/0x710
[ 22.172438][ T293] ? arch_get_unmapped_area+0x780/0x780
[ 22.177823][ T293] ? file_mmap_ok+0x104/0x150
[ 22.182341][ T293] do_mmap+0x853/0xe30
[ 22.186241][ T293] ? mlock_future_check+0x110/0x110
[ 22.191276][ T293] ? cgroup_update_frozen+0x15f/0x980
[ 22.196486][ T293] vm_mmap_pgoff+0x208/0x430
[ 22.200909][ T293] ? account_locked_vm+0x250/0x250
[ 22.206129][ T293] ? __fget_files+0x2cb/0x330
[ 22.210637][ T293] ksys_mmap_pgoff+0x15d/0x1e0
[ 22.215229][ T293] __x64_sys_mmap+0x103/0x120
[ 22.219741][ T293] do_syscall_64+0x3d/0xb0
[ 22.224104][ T293] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 22.229900][ T293] RIP: 0033:0x7f3d169f6769
[ 22.234157][ T293] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 22.254985][ T293] RSP: 002b:00007fff8c118908 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 22.263222][ T293] RAX: ffffffffffffffda RBX: 0000000000000001 RCX: 00007f3d169f6769
[ 22.271122][ T293] RDX: 0000000000000000 RSI: 0000000000003000 RDI: 0000000020ffd000
[ 22.278930][ T293] RBP: 00007fff8c118920 R08: 0000000000000003 R09: 0000000000000000
[ 22.286830][ T293] R10: 0000000000000012 R11: 0000000000000246 R12: 0000000000000004
[ 22.294640][ T293] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 22.302456][ T293]
[ 22.305316][ T293] Modules linked in:
[ 22.309255][ T293] ---[ end trace 0000000000000000 ]---
[ 22.314531][ T293] RIP: 0010:mmap_region+0x2256/0x2380
[ 22.319718][ T293] Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 1e fc ff ff 48 89 df e8 2b 29 09 00 e9 11 fc ff ff e8 91 44 c3 ff 0f 0b e8 8a 44 c3 ff <0f> 0b 65 8b 05 39 95 51 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
[ 22.339214][ T293] RSP: 0018:ffffc90000de7a40 EFLAGS: 00010293
[ 22.345384][ T293] RAX: ffffffff81b07c16 RBX: 0000000020ffffff RCX: ffff88811ceea800
[ 22.353248][ T293] RDX: 0000000000000000 RSI: 0000000020ffffff RDI: 0000000021000000
[ 22.361033][ T293] RBP: ffffc90000de7c50 R08: ffffffff81b06861 R09: ffffffff84fc5753
[ 22.368889][ T293] R10: 0000000000000003 R11: ffff88811ceea800 R12: ffffc90000de7ba8
[ 22.376678][ T293] R13: dffffc0000000000 R14: 0000000020ffd000 R15: 0000000021000000
[ 22.384491][ T293] FS: 0000555557204300(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 22.393338][ T293] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 22.399737][ T293] CR2: 0000000020000114 CR3: 000000011f3b7000 CR4: 00000000003506a0
[ 22.407656][ T293] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 22.415385][ T293] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 22.423290][ T293] Kernel panic - not syncing: Fatal exception
[ 22.429451][ T293] Kernel Offset: disabled
[ 22.433678][ T293] Rebooting in 86400 seconds..