./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3432434227

<...>
DUID 00:04:11:31:ea:d8:bb:db:47:a8:80:cb:7d:0b:3c:d8:ea:74
forked to background, child pid 3186
[   26.104189][ T3187] 8021q: adding VLAN 0 to HW filter on device bond0
[   26.115743][ T3187] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.125' (ECDSA) to the list of known hosts.
execve("./syz-executor3432434227", ["./syz-executor3432434227"], 0x7ffe852b13d0 /* 10 vars */) = 0
brk(NULL)                               = 0x555555da5000
brk(0x555555da5d00)                     = 0x555555da5d00
arch_prctl(ARCH_SET_FS, 0x555555da53c0) = 0
uname({sysname="Linux", nodename="syzkaller", ...}) = 0
readlink("/proc/self/exe", "/root/syz-executor3432434227", 4096) = 28
brk(0x555555dc6d00)                     = 0x555555dc6d00
brk(0x555555dc7000)                     = 0x555555dc7000
mprotect(0x7f859bba1000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0
rt_sigaction(SIGSEGV, {sa_handler=0x7f859baf7b00, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f859baf7c10}, NULL, 8) = 0
rt_sigaction(SIGBUS, {sa_handler=0x7f859baf7b00, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f859baf7c10}, NULL, 8) = 0
io_uring_setup(26354, {flags=0, sq_thread_cpu=0, sq_thread_idle=0, sq_entries=32768, cq_entries=65536, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|0x1000, sq_off={head=0, tail=64, ring_mask=256, ring_entries=264, flags=276, dropped=272, array=1048896}, cq_off={head=128, tail=192, ring_mask=260, ring_entries=268, overflow=284, cqes=320, flags=280}}) = 3
mmap(0x202a2000, 1179968, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0) = 0x202a2000
mmap(0x200bf000, 2097152, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 3, 0x10000000) = 0x200bf000
io_uring_setup(6379, {flags=0, sq_thread_cpu=0, sq_thread_idle=0, sq_entries=8192, cq_entries=16384, features=IORING_FEAT_SINGLE_MMAP|IORING_FEAT_NODROP|IORING_FEAT_SUBMIT_STABLE|IORING_FEAT_RW_CUR_POS|IORING_FEAT_CUR_PERSONALITY|IORING_FEAT_FAST_POLL|IORING_FEAT_POLL_32BITS|IORING_FEAT_SQPOLL_NONFIXED|IORING_FEAT_EXT_ARG|IORING_FEAT_NATIVE_WORKERS|IORING_FEAT_RSRC_TAGS|IORING_FEAT_CQE_SKIP|0x1000, sq_off={head=0, tail=64, ring_mask=256, ring_entries=264, flags=276, dropped=272, array=262464}, cq_off={head=128, tail=192, ring_mask=260, ring_entries=268, overflow=284, cqes=320, flags=280}}) = 4
mmap(0x20acc000, 295232, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 4, 0) = 0x20acc000
mmap(0x2046d000, 524288, PROT_READ|PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE, 4, 0x10000000) = 0x2046d000
openat(AT_FDCWD, "/dev/video2", O_RDWR) = 5
--- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=0x10c} ---
sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base=NULL, iov_len=18446744073709550981}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor)
memfd_secret(0)                         = 6
socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 7
openat(AT_FDCWD, "/dev/kvm", O_RDONLY)  = 8
ioctl(8, KVM_CREATE_VM, 0)              = 9
openat(AT_FDCWD, "memory.current", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 10
syzkaller login: [   47.478452][ T3615] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
write(10, "\x07\x00\x00\x00\x00\x00\x00\x00\x85\xfd\xff\xff\xff\xff\xff\xff\x40\x00\x00\x20\x00\x00\x00\x00\x12\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x6d\x65\x6d\x6f\x72\x79\x2e\x63\x75\x72\x72\x65\x6e\x74\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651) = 16777216
mmap(0x20000000, 11755520, PROT_WRITE, MAP_SHARED|MAP_FIXED|MAP_POPULATE|MAP_STACK, 10, 0) = 0x20000000
preadv(10, 0x200015c0, 5, 0)            = 16777088
ioctl(9, KVM_CREATE_VCPU, 0)            = 11
ioctl(11, KVM_XEN_VCPU_SET_ATTR, 0x20003680) = 0
[   47.876085][ T3615] ------------[ cut here ]------------
[   47.881865][ T3615] ODEBUG: init active (active state 0) object type: hrtimer hint: xen_timer_callback+0x0/0xb0
[   47.892543][ T3615] WARNING: CPU: 0 PID: 3615 at lib/debugobjects.c:502 debug_print_object+0x16e/0x250
[   47.902079][ T3615] Modules linked in:
[   47.906024][ T3615] CPU: 0 PID: 3615 Comm: syz-executor343 Not tainted 5.19.0-rc7-syzkaller-00190-g70664fc10c0d #0
[   47.916555][ T3615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   47.926665][ T3615] RIP: 0010:debug_print_object+0x16e/0x250
[   47.932488][ T3615] Code: ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 af 00 00 00 48 8b 14 dd 40 79 28 8a 4c 89 ee 48 c7 c7 20 6d 28 8a e8 7c 1e 32 05 <0f> 0b 83 05 b5 62 bb 09 01 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e c3
[   47.952181][ T3615] RSP: 0018:ffffc9000306f778 EFLAGS: 00010282
[   47.958286][ T3615] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
[   47.966328][ T3615] RDX: ffff88801d968000 RSI: ffffffff8160d1a8 RDI: fffff5200060dee1
[   47.974349][ T3615] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[   47.982348][ T3615] R10: 0000000080000000 R11: 0000000000000001 R12: ffffffff89cee540
[   47.990409][ T3615] R13: ffffffff8a2872a0 R14: ffffffff816a72e0 R15: ffffffff9114ced8
[   47.998463][ T3615] FS:  0000555555da53c0(0000) GS:ffff8880b9a00000(0000) knlGS:0000000000000000
[   48.007545][ T3615] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   48.014140][ T3615] CR2: 0000000021000000 CR3: 000000001f980000 CR4: 00000000003526f0
[   48.022183][ T3615] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   48.030223][ T3615] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   48.038241][ T3615] Call Trace:
[   48.041525][ T3615]  <TASK>
[   48.044523][ T3615]  ? lockdep_hardirqs_on+0x79/0x100
[   48.049740][ T3615]  __debug_object_init+0x524/0xd10
[   48.054940][ T3615]  ? lock_release+0x780/0x780
[   48.059633][ T3615]  ? debug_object_free+0x350/0x350
[   48.064821][ T3615]  ? __might_fault+0xd1/0x170
[   48.069513][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.074431][ T3615]  hrtimer_init+0x23/0x2b0
[   48.078861][ T3615]  kvm_xen_vcpu_set_attr+0x1ca/0x16c0
[   48.084412][ T3615]  kvm_arch_vcpu_ioctl+0x1bb3/0x39d0
[   48.089729][ T3615]  ? __lock_acquire+0x163e/0x5660
[   48.094822][ T3615]  ? kvm_arch_vcpu_put+0x950/0x950
[   48.099953][ T3615]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   48.106008][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.110884][ T3615]  ? lock_release+0x780/0x780
[   48.115636][ T3615]  ? rcu_read_lock_sched_held+0x3a/0x70
[   48.121228][ T3615]  ? trace_contention_end+0xea/0x150
[   48.126618][ T3615]  ? __mutex_lock+0x231/0x1350
[   48.131406][ T3615]  ? kvm_vcpu_ioctl+0x1d1/0xf30
[   48.136321][ T3615]  ? mutex_lock_io_nested+0x1190/0x1190
[   48.141880][ T3615]  ? tomoyo_execute_permission+0x4a0/0x4a0
[   48.147782][ T3615]  ? kvm_vcpu_ioctl+0x973/0xf30
[   48.152650][ T3615]  kvm_vcpu_ioctl+0x973/0xf30
[   48.157376][ T3615]  ? kvm_vcpu_kick+0x2f0/0x2f0
[   48.162166][ T3615]  ? find_held_lock+0x2d/0x110
[   48.167032][ T3615]  ? calibrate_delay+0xe83/0x1120
[   48.172074][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.176980][ T3615]  ? _raw_spin_unlock_irq+0x1f/0x40
[   48.182197][ T3615]  ? bpf_lsm_file_ioctl+0x5/0x10
[   48.187210][ T3615]  ? kvm_vcpu_kick+0x2f0/0x2f0
[   48.192078][ T3615]  __x64_sys_ioctl+0x193/0x200
[   48.196894][ T3615]  do_syscall_64+0x35/0xb0
[   48.201323][ T3615]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   48.207284][ T3615] RIP: 0033:0x7f859bb34cd9
[   48.211706][ T3615] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   48.231409][ T3615] RSP: 002b:00007ffd7a0db668 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.240076][ T3615] RAX: ffffffffffffffda RBX: 00007ffd7a0db678 RCX: 00007f859bb34cd9
[   48.248177][ T3615] RDX: 0000000020003680 RSI: 000000004048aecb RDI: 000000000000000b
[   48.256215][ T3615] RBP: 00007ffd7a0db670 R08: 00007f859baf7b00 R09: 00007f859baf7b00
[   48.264215][ T3615] R10: 00007f859baf7b00 R11: 0000000000000246 R12: 0000000000000000
[   48.272319][ T3615] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.280399][ T3615]  </TASK>
[   48.283422][ T3615] Kernel panic - not syncing: panic_on_warn set ...
[   48.290007][ T3615] CPU: 0 PID: 3615 Comm: syz-executor343 Not tainted 5.19.0-rc7-syzkaller-00190-g70664fc10c0d #0
[   48.300503][ T3615] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/29/2022
[   48.310640][ T3615] Call Trace:
[   48.313917][ T3615]  <TASK>
[   48.316842][ T3615]  dump_stack_lvl+0xcd/0x134
[   48.321426][ T3615]  panic+0x2d7/0x636
[   48.325312][ T3615]  ? panic_print_sys_info.part.0+0x10b/0x10b
[   48.331284][ T3615]  ? __warn.cold+0x1d1/0x2c5
[   48.335861][ T3615]  ? debug_print_object+0x16e/0x250
[   48.341052][ T3615]  __warn.cold+0x1e2/0x2c5
[   48.345455][ T3615]  ? debug_print_object+0x16e/0x250
[   48.350644][ T3615]  report_bug+0x1bc/0x210
[   48.354965][ T3615]  handle_bug+0x3c/0x60
[   48.359123][ T3615]  exc_invalid_op+0x14/0x40
[   48.363627][ T3615]  asm_exc_invalid_op+0x16/0x20
[   48.368475][ T3615] RIP: 0010:debug_print_object+0x16e/0x250
[   48.374292][ T3615] Code: ff df 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 af 00 00 00 48 8b 14 dd 40 79 28 8a 4c 89 ee 48 c7 c7 20 6d 28 8a e8 7c 1e 32 05 <0f> 0b 83 05 b5 62 bb 09 01 48 83 c4 18 5b 5d 41 5c 41 5d 41 5e c3
[   48.393907][ T3615] RSP: 0018:ffffc9000306f778 EFLAGS: 00010282
[   48.399972][ T3615] RAX: 0000000000000000 RBX: 0000000000000003 RCX: 0000000000000000
[   48.407940][ T3615] RDX: ffff88801d968000 RSI: ffffffff8160d1a8 RDI: fffff5200060dee1
[   48.415936][ T3615] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000
[   48.423919][ T3615] R10: 0000000080000000 R11: 0000000000000001 R12: ffffffff89cee540
[   48.431890][ T3615] R13: ffffffff8a2872a0 R14: ffffffff816a72e0 R15: ffffffff9114ced8
[   48.439863][ T3615]  ? ktime_add_safe+0x70/0x70
[   48.444563][ T3615]  ? vprintk+0x88/0x90
[   48.448651][ T3615]  ? debug_print_object+0x16e/0x250
[   48.453853][ T3615]  ? lockdep_hardirqs_on+0x79/0x100
[   48.459058][ T3615]  __debug_object_init+0x524/0xd10
[   48.464179][ T3615]  ? lock_release+0x780/0x780
[   48.468854][ T3615]  ? debug_object_free+0x350/0x350
[   48.473973][ T3615]  ? __might_fault+0xd1/0x170
[   48.478655][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.483519][ T3615]  hrtimer_init+0x23/0x2b0
[   48.487938][ T3615]  kvm_xen_vcpu_set_attr+0x1ca/0x16c0
[   48.493321][ T3615]  kvm_arch_vcpu_ioctl+0x1bb3/0x39d0
[   48.498612][ T3615]  ? __lock_acquire+0x163e/0x5660
[   48.503645][ T3615]  ? kvm_arch_vcpu_put+0x950/0x950
[   48.508768][ T3615]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   48.514752][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.519625][ T3615]  ? lock_release+0x780/0x780
[   48.524318][ T3615]  ? rcu_read_lock_sched_held+0x3a/0x70
[   48.529869][ T3615]  ? trace_contention_end+0xea/0x150
[   48.535162][ T3615]  ? __mutex_lock+0x231/0x1350
[   48.539935][ T3615]  ? kvm_vcpu_ioctl+0x1d1/0xf30
[   48.544792][ T3615]  ? mutex_lock_io_nested+0x1190/0x1190
[   48.550341][ T3615]  ? tomoyo_execute_permission+0x4a0/0x4a0
[   48.556184][ T3615]  ? kvm_vcpu_ioctl+0x973/0xf30
[   48.561071][ T3615]  kvm_vcpu_ioctl+0x973/0xf30
[   48.565780][ T3615]  ? kvm_vcpu_kick+0x2f0/0x2f0
[   48.570579][ T3615]  ? find_held_lock+0x2d/0x110
[   48.575369][ T3615]  ? calibrate_delay+0xe83/0x1120
[   48.580407][ T3615]  ? lock_downgrade+0x6e0/0x6e0
[   48.585276][ T3615]  ? _raw_spin_unlock_irq+0x1f/0x40
[   48.590508][ T3615]  ? bpf_lsm_file_ioctl+0x5/0x10
[   48.595548][ T3615]  ? kvm_vcpu_kick+0x2f0/0x2f0
[   48.600413][ T3615]  __x64_sys_ioctl+0x193/0x200
[   48.605185][ T3615]  do_syscall_64+0x35/0xb0
[   48.609624][ T3615]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   48.615546][ T3615] RIP: 0033:0x7f859bb34cd9
[   48.619980][ T3615] Code: 28 c3 e8 2a 14 00 00 66 2e 0f 1f 84 00 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 c0 ff ff ff f7 d8 64 89 01 48
[   48.639602][ T3615] RSP: 002b:00007ffd7a0db668 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   48.648022][ T3615] RAX: ffffffffffffffda RBX: 00007ffd7a0db678 RCX: 00007f859bb34cd9
[   48.655992][ T3615] RDX: 0000000020003680 RSI: 000000004048aecb RDI: 000000000000000b
[   48.663962][ T3615] RBP: 00007ffd7a0db670 R08: 00007f859baf7b00 R09: 00007f859baf7b00
[   48.671930][ T3615] R10: 00007f859baf7b00 R11: 0000000000000246 R12: 0000000000000000
[   48.679898][ T3615] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[   48.687885][ T3615]  </TASK>
[   48.691183][ T3615] Kernel Offset: disabled
[   48.695574][ T3615] Rebooting in 86400 seconds..