./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1637585261 <...> Warning: Permanently added '10.128.1.154' (ED25519) to the list of known hosts. execve("./syz-executor1637585261", ["./syz-executor1637585261"], 0x7ffdaff9d940 /* 10 vars */) = 0 brk(NULL) = 0x555571cf3000 brk(0x555571cf3d00) = 0x555571cf3d00 arch_prctl(ARCH_SET_FS, 0x555571cf3380) = 0 set_tid_address(0x555571cf3650) = 5840 set_robust_list(0x555571cf3660, 24) = 0 rseq(0x555571cf3ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1637585261", 4096) = 28 getrandom("\x3f\x84\x5c\x0a\xbd\x71\x52\xcf", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555571cf3d00 brk(0x555571d14d00) = 0x555571d14d00 brk(0x555571d15000) = 0x555571d15000 mprotect(0x7f4480c13000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 executing program write(1, "executing program\n", 18) = 18 socket(AF_PACKET, SOCK_DGRAM, htons(ETH_P_ALL)) = 3 setsockopt(3, SOL_PACKET, PACKET_RX_RING, 0x2000000000c0, 28) = 0 mmap(0x200000000000, 196608, PROT_WRITE, MAP_SHARED|MAP_FIXED, 3, 0) = 0x200000000000 mremap(0x200000001000, 12288, 16384, MREMAP_MAYMOVE|MREMAP_FIXED, 0x200000004000) = 0x200000004000 [ 73.213771][ T5840] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000004: 0000 [#1] SMP KASAN PTI [ 73.225690][ T5840] KASAN: null-ptr-deref in range [0x0000000000000020-0x0000000000000027] [ 73.234098][ T5840] CPU: 0 UID: 0 PID: 5840 Comm: syz-executor163 Not tainted 6.14.0-syzkaller-12456-gacc4d5ff0b61 #0 PREEMPT(full) [ 73.246142][ T5840] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 73.256180][ T5840] RIP: 0010:__se_sys_mremap+0x25fa/0x2c00 [ 73.261915][ T5840] Code: c0 0f 85 0e 05 00 00 0f b6 9c 24 20 03 00 00 31 ff 89 de e8 d8 0d ab ff 85 db 0f 84 7b 01 00 00 e8 cb 0a ab ff e9 9e 00 00 00 <80> 78 04 00 74 0a bf 20 00 00 00 e8 26 2f 15 00 4c 8b 34 25 20 00 [ 73.281505][ T5840] RSP: 0018:ffffc900040cfb40 EFLAGS: 00010246 [ 73.287554][ T5840] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff92000819fca [ 73.295505][ T5840] RDX: 0000000000000000 RSI: 0000000010000000 RDI: 0000000000000000 [ 73.303476][ T5840] RBP: ffffc900040cff00 R08: ffffffff821d1f24 R09: ffffffff8c271397 [ 73.311431][ T5840] R10: 0000000000000004 R11: ffff888034658000 R12: 0000200000000000 [ 73.319403][ T5840] R13: ffff888077fac000 R14: 00000000180000fa R15: ffffc900040cfcd0 [ 73.327356][ T5840] FS: 0000555571cf3380(0000) GS:ffff888124f99000(0000) knlGS:0000000000000000 [ 73.336272][ T5840] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.342852][ T5840] CR2: 00002000000000c0 CR3: 00000000316de000 CR4: 00000000003526f0 [ 73.350806][ T5840] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.358756][ T5840] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.366704][ T5840] Call Trace: [ 73.369963][ T5840] [ 73.372881][ T5840] ? __pfx___se_sys_mremap+0x10/0x10 [ 73.378160][ T5840] ? _raw_spin_lock_irq+0xdf/0x120 [ 73.383258][ T5840] ? __pfx__raw_spin_lock_irq+0x10/0x10 [ 73.388786][ T5840] ? _raw_spin_unlock_irq+0x23/0x50 [ 73.393995][ T5840] ? lockdep_hardirqs_on+0x9d/0x150 [ 73.399173][ T5840] ? _raw_spin_unlock_irq+0x2e/0x50 [ 73.404348][ T5840] ? ptrace_notify+0x282/0x390 [ 73.409099][ T5840] ? __x64_sys_mremap+0x20/0xc0 [ 73.413932][ T5840] do_syscall_64+0xf3/0x230 [ 73.418415][ T5840] ? clear_bhb_loop+0x45/0xa0 [ 73.423069][ T5840] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 73.428940][ T5840] RIP: 0033:0x7f4480ba0369 [ 73.433343][ T5840] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 73.452926][ T5840] RSP: 002b:00007fff6c642778 EFLAGS: 00000246 ORIG_RAX: 0000000000000019 [ 73.461319][ T5840] RAX: ffffffffffffffda RBX: 0000200000000000 RCX: 00007f4480ba0369 [ 73.469270][ T5840] RDX: 0000000000004000 RSI: 0000000000001000 RDI: 0000200000000000 [ 73.477219][ T5840] RBP: 0000200000001000 R08: 0000200000001000 R09: 0000000000000000 [ 73.485167][ T5840] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 73.493133][ T5840] R13: 00007fff6c642958 R14: 0000000000000001 R15: 0000000000000001 [ 73.501092][ T5840] [ 73.504105][ T5840] Modules linked in: [ 73.508210][ T5840] ---[ end trace 0000000000000000 ]--- [ 73.513964][ T5840] RIP: 0010:__se_sys_mremap+0x25fa/0x2c00 [ 73.520368][ T5840] Code: c0 0f 85 0e 05 00 00 0f b6 9c 24 20 03 00 00 31 ff 89 de e8 d8 0d ab ff 85 db 0f 84 7b 01 00 00 e8 cb 0a ab ff e9 9e 00 00 00 <80> 78 04 00 74 0a bf 20 00 00 00 e8 26 2f 15 00 4c 8b 34 25 20 00 [ 73.540009][ T5840] RSP: 0018:ffffc900040cfb40 EFLAGS: 00010246 [ 73.546084][ T5840] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: 1ffff92000819fca [ 73.554075][ T5840] RDX: 0000000000000000 RSI: 0000000010000000 RDI: 0000000000000000 [ 73.562074][ T5840] RBP: ffffc900040cff00 R08: ffffffff821d1f24 R09: ffffffff8c271397 [ 73.570068][ T5840] R10: 0000000000000004 R11: ffff888034658000 R12: 0000200000000000 [ 73.578058][ T5840] R13: ffff888077fac000 R14: 00000000180000fa R15: ffffc900040cfcd0 [ 73.586017][ T5840] FS: 0000555571cf3380(0000) GS:ffff888124f99000(0000) knlGS:0000000000000000 [ 73.594968][ T5840] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 73.601567][ T5840] CR2: 00002000000000c0 CR3: 00000000316de000 CR4: 00000000003526f0 [ 73.609554][ T5840] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 73.617568][ T5840] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 73.625554][ T5840] Kernel panic - not syncing: Fatal exception [ 73.631869][ T5840] Kernel Offset: disabled [ 73.636196][ T5840] Rebooting in 86400 seconds..