./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3389775547
<...>
Warning: Permanently added '10.128.1.51' (ECDSA) to the list of known hosts.
execve("./syz-executor3389775547", ["./syz-executor3389775547"], 0x7ffecd1efe40 /* 10 vars */) = 0
brk(NULL) = 0x555556c9e000
brk(0x555556c9ec40) = 0x555556c9ec40
arch_prctl(ARCH_SET_FS, 0x555556c9e300) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3389775547", 4096) = 28
brk(0x555556cbfc40) = 0x555556cbfc40
brk(0x555556cc0000) = 0x555556cc0000
mprotect(0x7f8c9935d000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
openat(AT_FDCWD, "/sys/kernel/debug/failslab/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_futex/ignore-private", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-highmem", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/ignore-gfp-wait", O_WRONLY|O_CLOEXEC) = 3
write(3, "N", 1) = 1
close(3) = 0
openat(AT_FDCWD, "/sys/kernel/debug/fail_page_alloc/min-order", O_WRONLY|O_CLOEXEC) = 3
write(3, "0", 1) = 1
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556c9e5d0) = 3604
./strace-static-x86_64: Process 3604 attached
[pid 3604] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3604] setpgid(0, 0) = 0
[pid 3604] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3604] write(3, "1000", 4) = 4
[pid 3604] close(3) = 0
[pid 3604] openat(AT_FDCWD, "/dev/bus/usb/007/001", O_RDONLY) = 3
[pid 3604] mmap(0x20000000, 4194304, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_EXECUTABLE, 3, 0) = 0x20000000
[pid 3604] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 3604] write(4, "18", 2) = 2
[pid 3604] clone(child_stack=NULL, flags=0) = -1 ENOMEM (Cannot allocate memory)
[pid 3604] exit_group(0) = ?
[pid 3604] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3604, si_uid=0, si_status=0, si_utime=0, si_stime=1} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3605 attached
, child_tidptr=0x555556c9e5d0) = 3605
[pid 3605] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3605] setpgid(0, 0) = 0
[pid 3605] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3605] write(3, "1000", 4) = 4
[pid 3605] close(3) = 0
[pid 3605] openat(AT_FDCWD, "/dev/bus/usb/007/001", O_RDONLY) = 3
[pid 3605] mmap(0x20000000, 4194304, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_EXECUTABLE, 3, 0) = 0x20000000
[pid 3605] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 3605] write(4, "18", 2) = 2
[pid 3605] clone(child_stack=NULL, flags=0) = -1 ENOMEM (Cannot allocate memory)
[pid 3605] exit_group(0) = ?
[pid 3605] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3605, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3606 attached
, child_tidptr=0x555556c9e5d0) = 3606
[pid 3606] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3606] setpgid(0, 0) = 0
[pid 3606] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3606] write(3, "1000", 4) = 4
[pid 3606] close(3) = 0
[pid 3606] openat(AT_FDCWD, "/dev/bus/usb/007/001", O_RDONLY) = 3
[pid 3606] mmap(0x20000000, 4194304, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_EXECUTABLE, 3, 0) = 0x20000000
[pid 3606] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 3606] write(4, "18", 2) = 2
[pid 3606] clone(child_stack=NULL, flags=0) = -1 ENOMEM (Cannot allocate memory)
[pid 3606] exit_group(0) = ?
[pid 3606] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=3606, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 3607 attached
, child_tidptr=0x555556c9e5d0) = 3607
[pid 3607] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 3607] setpgid(0, 0) = 0
[pid 3607] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 3607] write(3, "1000", 4) = 4
[pid 3607] close(3) = 0
[pid 3607] openat(AT_FDCWD, "/dev/bus/usb/007/001", O_RDONLY) = 3
[pid 3607] mmap(0x20000000, 4194304, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_EXECUTABLE, 3, 0) = 0x20000000
[pid 3607] openat(AT_FDCWD, "/proc/thread-self/fail-nth", O_RDWR) = 4
[pid 3607] write(4, "18", 2) = 2
syzkaller login: [ 34.982419][ T3607] ------------[ cut here ]------------
[ 34.988142][ T3607] WARNING: CPU: 1 PID: 3607 at arch/x86/mm/pat/memtype.c:1107 untrack_pfn+0x247/0x290
[ 34.998000][ T3607] Modules linked in:
[ 35.002066][ T3607] CPU: 0 PID: 3607 Comm: syz-executor338 Not tainted 6.0.0-syzkaller-09589-g55be6084c8e0 #0
[ 35.012374][ T3607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 35.023156][ T3607] RIP: 0010:untrack_pfn+0x247/0x290
[ 35.028351][ T3607] Code: 84 6c ff ff ff e8 a9 29 44 00 4c 89 ee 4c 89 e7 e8 be de ff ff e8 99 29 44 00 48 85 db 0f 85 58 ff ff ff eb 82 e8 89 29 44 00 <0f> 0b e9 76 ff ff ff 48 89 df e8 8a 90 91 00 e9 98 fe ff ff e8 c0
[ 35.047997][ T3607] RSP: 0018:ffffc900044c76f8 EFLAGS: 00010293
[ 35.054119][ T3607] RAX: 0000000000000000 RBX: ffff8880237cbe70 RCX: 0000000000000000
[ 35.062136][ T3607] RDX: ffff888020d5bb00 RSI: ffffffff813720b7 RDI: 0000000000000005
[ 35.070478][ T3607] RBP: 1ffff92000898edf R08: 0000000000000005 R09: 0000000000000000
[ 35.078587][ T3607] R10: 00000000ffffffea R11: 000000000008c07d R12: 00000000ffffffea
[ 35.086589][ T3607] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880237cbec0
[ 35.094745][ T3607] FS: 0000555556c9e300(0000) GS:ffff8880b9b00000(0000) knlGS:0000000000000000
[ 35.104176][ T3607] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 35.110960][ T3607] CR2: 00007f8c99320060 CR3: 000000001cca2000 CR4: 0000000000350ee0
[ 35.118961][ T3607] Call Trace:
[ 35.122279][ T3607]
[ 35.125301][ T3607] ? track_pfn_insert+0x140/0x140
[ 35.130316][ T3607] ? vm_normal_page_pmd+0x5a0/0x5a0
[ 35.135537][ T3607] ? unmap_vmas+0x148/0x310
[ 35.140048][ T3607] ? lock_downgrade+0x6e0/0x6e0
[ 35.144933][ T3607] ? uprobe_munmap+0x1c/0x560
[ 35.149714][ T3607] unmap_single_vma+0x1ba/0x360
[ 35.154591][ T3607] unmap_vmas+0x18c/0x310
[ 35.158940][ T3607] ? unmap_mapping_range+0x280/0x280
[ 35.164371][ T3607] ? lock_downgrade+0x6e0/0x6e0
[ 35.169224][ T3607] ? lru_add_drain_cpu+0x474/0x850
[ 35.174376][ T3607] exit_mmap+0x1b8/0x490
[ 35.178632][ T3607] ? __ia32_sys_remap_file_pages+0x150/0x150
[ 35.184664][ T3607] ? lock_release+0x560/0x780
[ 35.189345][ T3607] ? dup_mm+0xb7e/0x13a0
[ 35.193727][ T3607] __mmput+0x122/0x4b0
[ 35.197822][ T3607] mmput+0x56/0x60
[ 35.201829][ T3607] dup_mm+0xdb4/0x13a0
[ 35.205944][ T3607] ? replace_mm_exe_file+0x480/0x480
[ 35.211456][ T3607] ? __raw_spin_lock_init+0x36/0x110
[ 35.216771][ T3607] copy_process+0x3bd3/0x7110
[ 35.221474][ T3607] ? vtime_account_system+0x2c6/0x530
[ 35.226885][ T3607] ? __cleanup_sighand+0xb0/0xb0
[ 35.231888][ T3607] ? trace_hardirqs_on+0x2d/0x120
[ 35.236931][ T3607] ? rcu_read_lock_sched_held+0xd/0x70
[ 35.242432][ T3607] ? lock_acquire+0x480/0x570
[ 35.247136][ T3607] ? rcu_read_lock_sched_held+0xd/0x70
[ 35.252659][ T3607] kernel_clone+0xe7/0x8f0
[ 35.257090][ T3607] ? create_io_thread+0xe0/0xe0
[ 35.262782][ T3607] ? rwlock_bug.part.0+0x90/0x90
[ 35.267745][ T3607] ? recalc_sigpending_tsk+0x18f/0x1d0
[ 35.273250][ T3607] ? ptrace_stop.part.0+0x5f4/0x8c0
[ 35.278542][ T3607] __do_sys_clone+0xba/0x100
[ 35.283351][ T3607] ? kernel_clone+0x8f0/0x8f0
[ 35.288036][ T3607] ? _raw_spin_unlock_irq+0x2a/0x40
[ 35.293278][ T3607] ? ptrace_notify+0xfa/0x140
[ 35.297977][ T3607] do_syscall_64+0x35/0xb0
[ 35.302467][ T3607] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 35.308388][ T3607] RIP: 0033:0x7f8c992f0699
[ 35.312854][ T3607] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 35.332681][ T3607] RSP: 002b:00007ffd9260db98 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 35.341249][ T3607] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8c992f0699
[ 35.349234][ T3607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 35.357289][ T3607] RBP: 00007ffd9260dbb0 R08: 0000000000000000 R09: 0000000000000001
[ 35.365420][ T3607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 35.373468][ T3607] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 35.381461][ T3607]
[ 35.384467][ T3607] Kernel panic - not syncing: panic_on_warn set ...
[ 35.391219][ T3607] CPU: 0 PID: 3607 Comm: syz-executor338 Not tainted 6.0.0-syzkaller-09589-g55be6084c8e0 #0
[ 35.401302][ T3607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/22/2022
[ 35.411481][ T3607] Call Trace:
[ 35.414749][ T3607]
[ 35.417665][ T3607] dump_stack_lvl+0xcd/0x134
[ 35.422264][ T3607] panic+0x2c8/0x622
[ 35.426151][ T3607] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 35.432124][ T3607] ? __warn.cold+0x248/0x2c4
[ 35.436716][ T3607] ? untrack_pfn+0x247/0x290
[ 35.441327][ T3607] __warn.cold+0x259/0x2c4
[ 35.445791][ T3607] ? untrack_pfn+0x247/0x290
[ 35.450400][ T3607] report_bug+0x1bc/0x210
[ 35.454748][ T3607] handle_bug+0x3c/0x70
[ 35.458914][ T3607] exc_invalid_op+0x14/0x40
[ 35.463421][ T3607] asm_exc_invalid_op+0x16/0x20
[ 35.468284][ T3607] RIP: 0010:untrack_pfn+0x247/0x290
[ 35.473512][ T3607] Code: 84 6c ff ff ff e8 a9 29 44 00 4c 89 ee 4c 89 e7 e8 be de ff ff e8 99 29 44 00 48 85 db 0f 85 58 ff ff ff eb 82 e8 89 29 44 00 <0f> 0b e9 76 ff ff ff 48 89 df e8 8a 90 91 00 e9 98 fe ff ff e8 c0
[ 35.493120][ T3607] RSP: 0018:ffffc900044c76f8 EFLAGS: 00010293
[ 35.499272][ T3607] RAX: 0000000000000000 RBX: ffff8880237cbe70 RCX: 0000000000000000
[ 35.507242][ T3607] RDX: ffff888020d5bb00 RSI: ffffffff813720b7 RDI: 0000000000000005
[ 35.515216][ T3607] RBP: 1ffff92000898edf R08: 0000000000000005 R09: 0000000000000000
[ 35.523193][ T3607] R10: 00000000ffffffea R11: 000000000008c07d R12: 00000000ffffffea
[ 35.531156][ T3607] R13: 0000000000000000 R14: 0000000000000000 R15: ffff8880237cbec0
[ 35.539124][ T3607] ? untrack_pfn+0x247/0x290
[ 35.543721][ T3607] ? untrack_pfn+0x247/0x290
[ 35.548394][ T3607] ? track_pfn_insert+0x140/0x140
[ 35.553413][ T3607] ? vm_normal_page_pmd+0x5a0/0x5a0
[ 35.558602][ T3607] ? unmap_vmas+0x148/0x310
[ 35.563103][ T3607] ? lock_downgrade+0x6e0/0x6e0
[ 35.567946][ T3607] ? uprobe_munmap+0x1c/0x560
[ 35.572616][ T3607] unmap_single_vma+0x1ba/0x360
[ 35.577462][ T3607] unmap_vmas+0x18c/0x310
[ 35.581783][ T3607] ? unmap_mapping_range+0x280/0x280
[ 35.587320][ T3607] ? lock_downgrade+0x6e0/0x6e0
[ 35.592272][ T3607] ? lru_add_drain_cpu+0x474/0x850
[ 35.597386][ T3607] exit_mmap+0x1b8/0x490
[ 35.601719][ T3607] ? __ia32_sys_remap_file_pages+0x150/0x150
[ 35.607699][ T3607] ? lock_release+0x560/0x780
[ 35.612371][ T3607] ? dup_mm+0xb7e/0x13a0
[ 35.616610][ T3607] __mmput+0x122/0x4b0
[ 35.620679][ T3607] mmput+0x56/0x60
[ 35.624394][ T3607] dup_mm+0xdb4/0x13a0
[ 35.628456][ T3607] ? replace_mm_exe_file+0x480/0x480
[ 35.633733][ T3607] ? __raw_spin_lock_init+0x36/0x110
[ 35.639010][ T3607] copy_process+0x3bd3/0x7110
[ 35.643766][ T3607] ? vtime_account_system+0x2c6/0x530
[ 35.649139][ T3607] ? __cleanup_sighand+0xb0/0xb0
[ 35.654074][ T3607] ? trace_hardirqs_on+0x2d/0x120
[ 35.659095][ T3607] ? rcu_read_lock_sched_held+0xd/0x70
[ 35.664551][ T3607] ? lock_acquire+0x480/0x570
[ 35.669220][ T3607] ? rcu_read_lock_sched_held+0xd/0x70
[ 35.674687][ T3607] kernel_clone+0xe7/0x8f0
[ 35.679104][ T3607] ? create_io_thread+0xe0/0xe0
[ 35.683949][ T3607] ? rwlock_bug.part.0+0x90/0x90
[ 35.688879][ T3607] ? recalc_sigpending_tsk+0x18f/0x1d0
[ 35.694338][ T3607] ? ptrace_stop.part.0+0x5f4/0x8c0
[ 35.699528][ T3607] __do_sys_clone+0xba/0x100
[ 35.704115][ T3607] ? kernel_clone+0x8f0/0x8f0
[ 35.708791][ T3607] ? _raw_spin_unlock_irq+0x2a/0x40
[ 35.713982][ T3607] ? ptrace_notify+0xfa/0x140
[ 35.718744][ T3607] do_syscall_64+0x35/0xb0
[ 35.723156][ T3607] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 35.729043][ T3607] RIP: 0033:0x7f8c992f0699
[ 35.733445][ T3607] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 b1 14 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[ 35.753049][ T3607] RSP: 002b:00007ffd9260db98 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 35.761450][ T3607] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f8c992f0699
[ 35.769415][ T3607] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 35.777374][ T3607] RBP: 00007ffd9260dbb0 R08: 0000000000000000 R09: 0000000000000001
[ 35.785421][ T3607] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000004
[ 35.793554][ T3607] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 35.801517][ T3607]
[ 35.805719][ T3607] Kernel Offset: disabled
[ 35.810037][ T3607] Rebooting in 86400 seconds..