./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1252033926

<...>
Warning: Permanently added '10.128.0.150' (ED25519) to the list of known hosts.
execve("./syz-executor1252033926", ["./syz-executor1252033926"], 0x7ffd10d594b0 /* 10 vars */) = 0
brk(NULL)                               = 0x55556d6c9000
brk(0x55556d6c9d00)                     = 0x55556d6c9d00
arch_prctl(ARCH_SET_FS, 0x55556d6c9380) = 0
set_tid_address(0x55556d6c9650)         = 5840
set_robust_list(0x55556d6c9660, 24)     = 0
rseq(0x55556d6c9ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1252033926", 4096) = 28
getrandom("\x83\x34\x29\x9f\x7c\x31\x6d\x77", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55556d6c9d00
brk(0x55556d6ead00)                     = 0x55556d6ead00
brk(0x55556d6eb000)                     = 0x55556d6eb000
mprotect(0x7f1b7b37f000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5841 attached
, child_tidptr=0x55556d6c9650) = 5841
[pid  5841] set_robust_list(0x55556d6c9660, 24) = 0
[pid  5841] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5841] setpgid(0, 0)               = 0
[pid  5841] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5841] write(3, "1000", 4)         = 4
[pid  5841] close(3)                    = 0
[pid  5841] write(1, "executing program\n", 18executing program
) = 18
[pid  5841] socket(AF_KEY, SOCK_RAW, 2) = 3
[pid  5841] sendmsg(3, {msg_name=0x3, msg_namelen=0, msg_iov=[{iov_base="\x02\x03\xfb\x02\x1e\x00\x00\x00\x2c\xbd\x70\x00\xfc\xdb\xdf\x25\x02\x00\x09\x00\x08\x00\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x05\x00\x06\x00\x00\x00\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x02\x00\x00\x00\x00\x00\x00\x00\x02\x00\x01\x00\x00\x00\x00\x00\x04\x00\x07\x0c\x00\x00\x00\x00\x05\x00\x05\x00\x00\x00\x00\x00\x0a\x00\x00\x00"..., iov_len=240}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 240
[pid  5841] socket(AF_NETLINK, SOCK_RAW, NETLINK_XFRM) = 4
[pid  5841] sendmsg(4, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\xfc\x00\x00\x00\x19\x00\x67\x4c\x00\x00\x00\x00\x00\x00\x00\x00\xe0\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xe0\x00\x00\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x0a\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x40\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., iov_len=252}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = 252
[pid  5841] socket(AF_INET6, SOCK_DGRAM, IPPROTO_L2TP) = 5
[   90.432157][ T5841] ------------[ cut here ]------------
[   90.438152][ T5841] memcpy: detected field-spanning write (size 40) of single field "&top_iph->saddr" at net/ipv6/ah6.c:439 (size 16)
[   90.457442][ T5841] WARNING: CPU: 0 PID: 5841 at net/ipv6/ah6.c:439 ah6_output+0xece/0x1510
[   90.466017][ T5841] Modules linked in:
[   90.470080][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor125 Not tainted 6.16.0-rc2-syzkaller-00179-g9caca6ac0e26 #0 PREEMPT(full) 
[   90.482549][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.492703][ T5841] RIP: 0010:ah6_output+0xece/0x1510
[   90.498029][ T5841] Code: ff e8 e6 09 91 f7 c6 05 d6 c0 5b 05 01 90 b9 10 00 00 00 48 c7 c7 60 64 a0 8c 4c 89 f6 48 c7 c2 c0 66 a0 8c e8 73 b4 54 f7 90 <0f> 0b 90 90 e9 ab fe ff ff e8 c4 14 37 01 48 8b 4c 24 28 80 e1 07
[   90.517872][ T5841] RSP: 0018:ffffc900041a70a0 EFLAGS: 00010246
[   90.523986][ T5841] RAX: 6316bcc3c9618000 RBX: ffff888030ed5808 RCX: ffff888079c1da00
[   90.532051][ T5841] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   90.540125][ T5841] RBP: ffffc900041a7230 R08: 0000000000000003 R09: 0000000000000004
[   90.548205][ T5841] R10: dffffc0000000000 R11: fffffbfff1bfa9ec R12: dffffc0000000000
[   90.556216][ T5841] R13: 1ffff92000834e34 R14: 0000000000000028 R15: 0000000000000030
[   90.564276][ T5841] FS:  000055556d6c9380(0000) GS:ffff888125c51000(0000) knlGS:0000000000000000
[   90.573385][ T5841] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   90.580050][ T5841] CR2: 00007fe027d09e9c CR3: 0000000074d90000 CR4: 00000000003526f0
[   90.588084][ T5841] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   90.596063][ T5841] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   90.604118][ T5841] Call Trace:
[   90.607467][ T5841]  <TASK>
[   90.610430][ T5841]  ? __pfx_ah6_output+0x10/0x10
[   90.615306][ T5841]  xfrm_output_resume+0x2c55/0x6170
[   90.620642][ T5841]  ? __pfx_xfrm_output_resume+0x10/0x10
[   90.626231][ T5841]  ? xfrm_dev_offload_ok+0x129/0x780
[   90.631586][ T5841]  ? xfrm_output+0x9ad/0x1950
[   90.636305][ T5841]  __xfrm6_output+0x2eb/0x1070
[   90.641194][ T5841]  ? __lock_acquire+0xab9/0xd20
[   90.646091][ T5841]  ? __pfx___xfrm6_output+0x10/0x10
[   90.651412][ T5841]  ? xfrm6_output+0x258/0x4f0
[   90.656218][ T5841]  xfrm6_output+0x1c6/0x4f0
[   90.660809][ T5841]  ? xfrm6_output+0x258/0x4f0
[   90.665550][ T5841]  ? __pfx_xfrm6_output+0x10/0x10
[   90.670737][ T5841]  ? __pfx___xfrm6_output+0x10/0x10
[   90.675970][ T5841]  ? skb_dst+0x4f/0xd0
[   90.680135][ T5841]  ? dst_output+0x177/0x1c0
[   90.684668][ T5841]  ? ip6_send_skb+0x10f/0x390
[   90.689413][ T5841]  ip6_send_skb+0x1d5/0x390
[   90.693982][ T5841]  l2tp_ip6_sendmsg+0x12ee/0x17c0
[   90.699102][ T5841]  ? __pfx_l2tp_ip6_sendmsg+0x10/0x10
[   90.704522][ T5841]  ? __pfx_aa_sk_perm+0x10/0x10
[   90.709450][ T5841]  ? tomoyo_socket_sendmsg_permission+0x216/0x300
[   90.715906][ T5841]  ? inet_sendmsg+0x2f4/0x370
[   90.720856][ T5841]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   90.726170][ T5841]  __sock_sendmsg+0x19c/0x270
[   90.731008][ T5841]  ____sys_sendmsg+0x505/0x830
[   90.735809][ T5841]  ? __pfx_____sys_sendmsg+0x10/0x10
[   90.741278][ T5841]  ? import_iovec+0x74/0xa0
[   90.745823][ T5841]  ___sys_sendmsg+0x21f/0x2a0
[   90.750576][ T5841]  ? __pfx____sys_sendmsg+0x10/0x10
[   90.755814][ T5841]  ? do_raw_spin_lock+0x121/0x290
[   90.760960][ T5841]  __x64_sys_sendmsg+0x19b/0x260
[   90.765963][ T5841]  ? _raw_spin_unlock_irq+0x2e/0x50
[   90.771242][ T5841]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   90.776752][ T5841]  ? rcu_is_watching+0x15/0xb0
[   90.781631][ T5841]  do_syscall_64+0xfa/0x3b0
[   90.786176][ T5841]  ? lockdep_hardirqs_on+0x9c/0x150
[   90.791553][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.797689][ T5841]  ? clear_bhb_loop+0x60/0xb0
[   90.802397][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   90.808349][ T5841] RIP: 0033:0x7f1b7b30bc79
[   90.812802][ T5841] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   90.832483][ T5841] RSP: 002b:00007ffdde4e6fd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   90.840976][ T5841] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1b7b30bc79
[   90.849029][ T5841] RDX: 0000000000000800 RSI: 0000200000000540 RDI: 0000000000000005
[   90.857088][ T5841] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000006
[   90.865086][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   90.873147][ T5841] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[   90.881226][ T5841]  </TASK>
[   90.884258][ T5841] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   90.891549][ T5841] CPU: 0 UID: 0 PID: 5841 Comm: syz-executor125 Not tainted 6.16.0-rc2-syzkaller-00179-g9caca6ac0e26 #0 PREEMPT(full) 
[   90.903987][ T5841] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[   90.914077][ T5841] Call Trace:
[   90.917391][ T5841]  <TASK>
[   90.920346][ T5841]  dump_stack_lvl+0x99/0x250
[   90.924957][ T5841]  ? __asan_memcpy+0x40/0x70
[   90.929559][ T5841]  ? __pfx_dump_stack_lvl+0x10/0x10
[   90.934771][ T5841]  ? __pfx__printk+0x10/0x10
[   90.939384][ T5841]  panic+0x2db/0x790
[   90.943311][ T5841]  ? __pfx_panic+0x10/0x10
[   90.947754][ T5841]  ? show_trace_log_lvl+0x4fb/0x550
[   90.952993][ T5841]  __warn+0x31b/0x4b0
[   90.957000][ T5841]  ? ah6_output+0xece/0x1510
[   90.961630][ T5841]  ? ah6_output+0xece/0x1510
[   90.966245][ T5841]  report_bug+0x2be/0x4f0
[   90.970622][ T5841]  ? ah6_output+0xece/0x1510
[   90.975236][ T5841]  ? ah6_output+0xece/0x1510
[   90.979860][ T5841]  ? ah6_output+0xed0/0x1510
[   90.984469][ T5841]  handle_bug+0x84/0x160
[   90.988728][ T5841]  exc_invalid_op+0x1a/0x50
[   90.993248][ T5841]  asm_exc_invalid_op+0x1a/0x20
[   90.998197][ T5841] RIP: 0010:ah6_output+0xece/0x1510
[   91.003414][ T5841] Code: ff e8 e6 09 91 f7 c6 05 d6 c0 5b 05 01 90 b9 10 00 00 00 48 c7 c7 60 64 a0 8c 4c 89 f6 48 c7 c2 c0 66 a0 8c e8 73 b4 54 f7 90 <0f> 0b 90 90 e9 ab fe ff ff e8 c4 14 37 01 48 8b 4c 24 28 80 e1 07
[   91.023031][ T5841] RSP: 0018:ffffc900041a70a0 EFLAGS: 00010246
[   91.029113][ T5841] RAX: 6316bcc3c9618000 RBX: ffff888030ed5808 RCX: ffff888079c1da00
[   91.037097][ T5841] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[   91.045076][ T5841] RBP: ffffc900041a7230 R08: 0000000000000003 R09: 0000000000000004
[   91.053051][ T5841] R10: dffffc0000000000 R11: fffffbfff1bfa9ec R12: dffffc0000000000
[   91.061033][ T5841] R13: 1ffff92000834e34 R14: 0000000000000028 R15: 0000000000000030
[   91.069062][ T5841]  ? __pfx_ah6_output+0x10/0x10
[   91.073989][ T5841]  xfrm_output_resume+0x2c55/0x6170
[   91.079262][ T5841]  ? __pfx_xfrm_output_resume+0x10/0x10
[   91.084856][ T5841]  ? xfrm_dev_offload_ok+0x129/0x780
[   91.090156][ T5841]  ? xfrm_output+0x9ad/0x1950
[   91.094880][ T5841]  __xfrm6_output+0x2eb/0x1070
[   91.099653][ T5841]  ? __lock_acquire+0xab9/0xd20
[   91.104520][ T5841]  ? __pfx___xfrm6_output+0x10/0x10
[   91.109743][ T5841]  ? xfrm6_output+0x258/0x4f0
[   91.114440][ T5841]  xfrm6_output+0x1c6/0x4f0
[   91.119391][ T5841]  ? xfrm6_output+0x258/0x4f0
[   91.124078][ T5841]  ? __pfx_xfrm6_output+0x10/0x10
[   91.129119][ T5841]  ? __pfx___xfrm6_output+0x10/0x10
[   91.134330][ T5841]  ? skb_dst+0x4f/0xd0
[   91.138410][ T5841]  ? dst_output+0x177/0x1c0
[   91.142926][ T5841]  ? ip6_send_skb+0x10f/0x390
[   91.147624][ T5841]  ip6_send_skb+0x1d5/0x390
[   91.152146][ T5841]  l2tp_ip6_sendmsg+0x12ee/0x17c0
[   91.157201][ T5841]  ? __pfx_l2tp_ip6_sendmsg+0x10/0x10
[   91.162602][ T5841]  ? __pfx_aa_sk_perm+0x10/0x10
[   91.167465][ T5841]  ? tomoyo_socket_sendmsg_permission+0x216/0x300
[   91.173903][ T5841]  ? inet_sendmsg+0x2f4/0x370
[   91.178588][ T5841]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[   91.183898][ T5841]  __sock_sendmsg+0x19c/0x270
[   91.188598][ T5841]  ____sys_sendmsg+0x505/0x830
[   91.193380][ T5841]  ? __pfx_____sys_sendmsg+0x10/0x10
[   91.198691][ T5841]  ? import_iovec+0x74/0xa0
[   91.203207][ T5841]  ___sys_sendmsg+0x21f/0x2a0
[   91.207900][ T5841]  ? __pfx____sys_sendmsg+0x10/0x10
[   91.213117][ T5841]  ? do_raw_spin_lock+0x121/0x290
[   91.218183][ T5841]  __x64_sys_sendmsg+0x19b/0x260
[   91.223129][ T5841]  ? _raw_spin_unlock_irq+0x2e/0x50
[   91.228343][ T5841]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[   91.233823][ T5841]  ? rcu_is_watching+0x15/0xb0
[   91.238615][ T5841]  do_syscall_64+0xfa/0x3b0
[   91.243126][ T5841]  ? lockdep_hardirqs_on+0x9c/0x150
[   91.248345][ T5841]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.254423][ T5841]  ? clear_bhb_loop+0x60/0xb0
[   91.259119][ T5841]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.265022][ T5841] RIP: 0033:0x7f1b7b30bc79
[   91.269452][ T5841] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   91.289070][ T5841] RSP: 002b:00007ffdde4e6fd8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   91.297500][ T5841] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f1b7b30bc79
[   91.305479][ T5841] RDX: 0000000000000800 RSI: 0000200000000540 RDI: 0000000000000005
[   91.313460][ T5841] RBP: 0000000000000000 R08: 0000000000000006 R09: 0000000000000006
[   91.321439][ T5841] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   91.329507][ T5841] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000001
[   91.337502][ T5841]  </TASK>
[   91.340856][ T5841] Kernel Offset: disabled
[   91.345189][ T5841] Rebooting in 86400 seconds..