BUG: unable to handle kernel paging request in sunrpc_init_net Unable to handle kernel paging request at virtual address ffff800014b45904 KASAN: probably user-memory-access in range [0x00000000a5a2c820-0x00000000a5a2c827] Mem abort info: ESR = 0x0000000086000006 EC = 0x21: IABT (current EL), IL = 32 bits SET = 0, FnV = 0 EA = 0, S1PTW = 0 FSC = 0x06: level 2 translation fault swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000214bc3000 [ffff800014b45904] pgd=100000023ffff003, p4d=100000023ffff003, pud=100000023fffe003, pmd=0000000000000000 Internal error: Oops: 0000000086000006 [#1] PREEMPT SMP Modules linked in: CPU: 0 PID: 4240 Comm: syz-executor.0 Not tainted 6.1.140-syzkaller #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) pc : no_hash_pointers_enable+0x8af4/0xc8ec __efistub_vsprintf.c:-1 lr : rpc_proc_init+0x74/0xd8 net/sunrpc/stats.c:332 sp : ffff80001d5e7930 x29: ffff80001d5e7930 x28: 1ffff00002eaf237 x27: dfff800000000000 x26: 0000000000000061 x25: ffff0000cf050000 x24: ffff0000d000d000 x23: ffff800017579190 x22: ffff800017579180 x21: dfff800000000000 x20: ffff0000cf0501d8 x19: ffff0000d000b800 x18: ffff8000118d9dc0 x17: 0000000000000000 x16: ffff8000082cfb70 x15: ffff80000818ba8c x14: 00000000ffff8000 x13: 1ffff000029c20af x12: 0000000000ff0100 x11: ff0080000a7fd458 x10: 0000000000000000 x9 : e0cffd41920f9700 x8 : 0000000000000000 x7 : ffff800010b87a6c x6 : 0000000000000000 x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 x2 : 0000000000000008 x1 : ffff0000c884d500 x0 : ffff8000138b7420 Call trace: no_hash_pointers_enable+0x8af4/0xc8ec __efistub_vsprintf.c:-1 sunrpc_init_net+0x38/0x16c net/sunrpc/sunrpc_syms.c:38 ops_init+0x2b0/0x544 net/core/net_namespace.c:138 setup_net+0x464/0xb28 net/core/net_namespace.c:336 copy_net_ns+0x2b8/0x588 net/core/net_namespace.c:508 create_new_namespaces+0x318/0x5f0 kernel/nsproxy.c:110 unshare_nsproxy_namespaces+0x108/0x158 kernel/nsproxy.c:226 ksys_unshare+0x3d4/0x6d0 kernel/fork.c:3201 __do_sys_unshare kernel/fork.c:3272 [inline] __se_sys_unshare kernel/fork.c:3270 [inline] __arm64_sys_unshare+0x3c/0x50 kernel/fork.c:3270 __invoke_syscall arch/arm64/kernel/syscall.c:38 [inline] invoke_syscall+0x98/0x2bc arch/arm64/kernel/syscall.c:52 el0_svc_common+0x138/0x258 arch/arm64/kernel/syscall.c:140 do_el0_svc+0x58/0x13c arch/arm64/kernel/syscall.c:204 el0_svc+0x58/0x138 arch/arm64/kernel/entry-common.c:637 el0t_64_sync_handler+0x84/0xf0 arch/arm64/kernel/entry-common.c:655 el0t_64_sync+0x18c/0x190 arch/arm64/kernel/entry.S:585 Code: bad PC value ---[ end trace 0000000000000000 ]--- Warning: Permanently added '10.128.0.106' (ED25519) to the list of known hosts. 1970/01/01 00:00:38 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:00:38 ignoring optional flag "type"="gce" 1970/01/01 00:00:38 parsed 1 programs [ 38.598760][ T4233] cgroup: Unknown subsys name 'net' [ 38.857352][ T4233] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:00:38 executed programs: 0 [ 39.003018][ T4241] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 39.005482][ T4241] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 39.007662][ T4241] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 39.010203][ T4241] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 39.013317][ T4241] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 39.015441][ T4241] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 39.031725][ T4240] Unable to handle kernel paging request at virtual address ffff800014b45904 [ 39.034319][ T4240] KASAN: probably user-memory-access in range [0x00000000a5a2c820-0x00000000a5a2c827] [ 39.036752][ T4240] Mem abort info: [ 39.037725][ T4240] ESR = 0x0000000086000006 [ 39.038941][ T4240] EC = 0x21: IABT (current EL), IL = 32 bits [ 39.040483][ T4240] SET = 0, FnV = 0 [ 39.041548][ T4240] EA = 0, S1PTW = 0 [ 39.042607][ T4240] FSC = 0x06: level 2 translation fault [ 39.044110][ T4240] swapper pgtable: 4k pages, 48-bit VAs, pgdp=0000000214bc3000 [ 39.046023][ T4240] [ffff800014b45904] pgd=100000023ffff003, p4d=100000023ffff003, pud=100000023fffe003, pmd=0000000000000000 [ 39.049140][ T4240] Internal error: Oops: 0000000086000006 [#1] PREEMPT SMP [ 39.051062][ T4240] Modules linked in: [ 39.052083][ T4240] CPU: 0 PID: 4240 Comm: syz-executor.0 Not tainted 6.1.140-syzkaller #0 [ 39.054270][ T4240] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 39.056895][ T4240] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 39.059042][ T4240] pc : no_hash_pointers_enable+0x8af4/0xc8ec [ 39.060634][ T4240] lr : rpc_proc_init+0x74/0xd8 [ 39.061903][ T4240] sp : ffff80001d5e7930 [ 39.062962][ T4240] x29: ffff80001d5e7930 x28: 1ffff00002eaf237 x27: dfff800000000000 [ 39.065054][ T4240] x26: 0000000000000061 x25: ffff0000cf050000 x24: ffff0000d000d000 [ 39.067126][ T4240] x23: ffff800017579190 x22: ffff800017579180 x21: dfff800000000000 [ 39.069197][ T4240] x20: ffff0000cf0501d8 x19: ffff0000d000b800 x18: ffff8000118d9dc0 [ 39.071299][ T4240] x17: 0000000000000000 x16: ffff8000082cfb70 x15: ffff80000818ba8c [ 39.073452][ T4240] x14: 00000000ffff8000 x13: 1ffff000029c20af x12: 0000000000ff0100 [ 39.075514][ T4240] x11: ff0080000a7fd458 x10: 0000000000000000 x9 : e0cffd41920f9700 [ 39.077630][ T4240] x8 : 0000000000000000 x7 : ffff800010b87a6c x6 : 0000000000000000 [ 39.079804][ T4240] x5 : 0000000000000000 x4 : 0000000000000000 x3 : 0000000000000002 [ 39.081952][ T4240] x2 : 0000000000000008 x1 : ffff0000c884d500 x0 : ffff8000138b7420 [ 39.084187][ T4240] Call trace: [ 39.085074][ T4240] no_hash_pointers_enable+0x8af4/0xc8ec [ 39.086608][ T4240] sunrpc_init_net+0x38/0x16c [ 39.087767][ T4240] ops_init+0x2b0/0x544 [ 39.088837][ T4240] setup_net+0x464/0xb28 [ 39.089946][ T4240] copy_net_ns+0x2b8/0x588 [ 39.091077][ T4240] create_new_namespaces+0x318/0x5f0 [ 39.092458][ T4240] unshare_nsproxy_namespaces+0x108/0x158 [ 39.094010][ T4240] ksys_unshare+0x3d4/0x6d0 [ 39.095171][ T4240] __arm64_sys_unshare+0x3c/0x50 [ 39.096528][ T4240] invoke_syscall+0x98/0x2bc [ 39.097727][ T4240] el0_svc_common+0x138/0x258 [ 39.098947][ T4240] do_el0_svc+0x58/0x13c [ 39.100072][ T4240] el0_svc+0x58/0x138 [ 39.101107][ T4240] el0t_64_sync_handler+0x84/0xf0 [ 39.102466][ T4240] el0t_64_sync+0x18c/0x190 [ 39.103682][ T4240] Code: bad PC value [ 39.104666][ T4240] ---[ end trace 0000000000000000 ]--- [ 39.424155][ T4240] Kernel panic - not syncing: Oops: Fatal exception [ 39.426033][ T4240] SMP: stopping secondary CPUs [ 39.427345][ T4240] Kernel Offset: disabled [ 39.428468][ T4240] CPU features: 0x080000,02070084,26017203 [ 39.429967][ T4240] Memory Limit: none [ 39.725970][ T4240] Rebooting in 86400 seconds.. syzkaller build log: go env (err=) GO111MODULE='auto' GOARCH='amd64' GOBIN='' GOCACHE='/syzkaller/.cache/go-build' GOENV='/syzkaller/.config/go/env' GOEXE='' GOEXPERIMENT='' GOFLAGS='' GOHOSTARCH='amd64' GOHOSTOS='linux' GOINSECURE='' GOMODCACHE='/syzkaller/jobs-2/linux/gopath/pkg/mod' GONOPROXY='' GONOSUMDB='' GOOS='linux' GOPATH='/syzkaller/jobs-2/linux/gopath' GOPRIVATE='' GOPROXY='https://proxy.golang.org,direct' GOROOT='/usr/local/go' GOSUMDB='sum.golang.org' GOTMPDIR='' GOTOOLCHAIN='auto' GOTOOLDIR='/usr/local/go/pkg/tool/linux_amd64' GOVCS='' GOVERSION='go1.22.7' GCCGO='gccgo' GOAMD64='v1' AR='ar' CC='gcc' CXX='g++' CGO_ENABLED='1' GOMOD='/syzkaller/jobs-2/linux/gopath/src/github.com/google/syzkaller/go.mod' GOWORK='' CGO_CFLAGS='-O2 -g' CGO_CPPFLAGS='' CGO_CXXFLAGS='-O2 -g' CGO_FFLAGS='-O2 -g' CGO_LDFLAGS='-O2 -g' PKG_CONFIG='pkg-config' GOGCCFLAGS='-fPIC -m64 -pthread -Wl,--no-gc-sections -fmessage-length=0 -ffile-prefix-map=/tmp/go-build1905540957=/tmp/go-build -gno-record-gcc-switches' git status (err=) HEAD detached at 7939252e4d nothing to commit, working tree clean tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified Makefile:32: run command via tools/syz-env for best compatibility, see: Makefile:33: https://github.com/google/syzkaller/blob/master/docs/contributing.md#using-syz-env go list -f '{{.Stale}}' ./sys/syz-sysgen | grep -q false || go install ./sys/syz-sysgen make .descriptions tput: No value for $TERM and no -T specified tput: No value for $TERM and no -T specified bin/syz-sysgen touch .descriptions GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=7939252e4ddf50bbb9912069a40d32f6c83c4f8e -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230317-174037'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-fuzzer github.com/google/syzkaller/syz-fuzzer GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=7939252e4ddf50bbb9912069a40d32f6c83c4f8e -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230317-174037'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-execprog github.com/google/syzkaller/tools/syz-execprog GOOS=linux GOARCH=arm64 go build "-ldflags=-s -w -X github.com/google/syzkaller/prog.GitRevision=7939252e4ddf50bbb9912069a40d32f6c83c4f8e -X 'github.com/google/syzkaller/prog.gitRevisionDate=20230317-174037'" "-tags=syz_target syz_os_linux syz_arch_arm64 " -o ./bin/linux_arm64/syz-stress github.com/google/syzkaller/tools/syz-stress mkdir -p ./bin/linux_arm64 aarch64-linux-gnu-gcc -o ./bin/linux_arm64/syz-executor executor/executor.cc \ -O2 -pthread -Wall -Werror -Wparentheses -Wunused-const-variable -Wframe-larger-than=16384 -Wno-stringop-overflow -Wno-array-bounds -Wno-format-overflow -Wno-unused-but-set-variable -Wno-unused-command-line-argument -static-pie -fpermissive -w -DGOOS_linux=1 -DGOARCH_arm64=1 \ -DHOSTGOOS_linux=1 -DGIT_REVISION=\"7939252e4ddf50bbb9912069a40d32f6c83c4f8e\"