./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2335670948
<...>
Warning: Permanently added '10.128.0.238' (ED25519) to the list of known hosts.
execve("./syz-executor2335670948", ["./syz-executor2335670948"], 0x7ffdcfa50430 /* 10 vars */) = 0
brk(NULL) = 0x5555602dc000
brk(0x5555602dcd00) = 0x5555602dcd00
arch_prctl(ARCH_SET_FS, 0x5555602dc380) = 0
set_tid_address(0x5555602dc650) = 296
set_robust_list(0x5555602dc660, 24) = 0
rseq(0x5555602dcca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor2335670948", 4096) = 28
getrandom("\x79\x8e\x2c\xfb\xe6\xff\x54\x6b", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x5555602dcd00
brk(0x5555602fdd00) = 0x5555602fdd00
brk(0x5555602fe000) = 0x5555602fe000
mprotect(0x7f230d3e4000, 16384, PROT_READ) = 0
mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000
mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000
mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 297
./strace-static-x86_64: Process 297 attached
[pid 297] set_robust_list(0x5555602dc660, 24) = 0
[pid 297] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 297] setpgid(0, 0) = 0
[pid 297] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 297] write(3, "1000", 4) = 4
[pid 297] close(3) = 0
executing program
[pid 297] write(1, "executing program\n", 18) = 18
[pid 297] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[ 25.524878][ T36] audit: type=1400 audit(1752455522.680:64): avc: denied { execmem } for pid=296 comm="syz-executor233" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 25.531713][ T297] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[pid 297] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 297] eventfd(127) = 5
[pid 297] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 297] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 297] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 297] exit_group(0) = ?
[ 25.544448][ T36] audit: type=1400 audit(1752455522.680:65): avc: denied { read } for pid=297 comm="syz-executor233" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 25.584544][ T36] audit: type=1400 audit(1752455522.680:66): avc: denied { open } for pid=297 comm="syz-executor233" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[pid 297] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=297, si_uid=0, si_status=0, si_utime=0, si_stime=5} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 299 attached
, child_tidptr=0x5555602dc650) = 299
[pid 299] set_robust_list(0x5555602dc660, 24) = 0
[pid 299] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 299] setpgid(0, 0) = 0
[pid 299] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 299] write(3, "1000", 4) = 4
[pid 299] close(3) = 0
executing program
[pid 299] write(1, "executing program\n", 18) = 18
[pid 299] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 299] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 299] eventfd(127) = 5
[pid 299] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 299] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 299] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 299] exit_group(0) = ?
[ 25.608018][ T36] audit: type=1400 audit(1752455522.680:67): avc: denied { ioctl } for pid=297 comm="syz-executor233" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 25.693402][ T299] ------------[ cut here ]------------
[ 25.698900][ T299] WARNING: CPU: 0 PID: 299 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 25.708699][ T299] Modules linked in:
[ 25.712687][ T299] CPU: 0 UID: 0 PID: 299 Comm: syz-executor233 Not tainted 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 25.726545][ T299] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 25.736749][ T299] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 25.742703][ T299] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 25.762360][ T299] RSP: 0018:ffffc9000124faa8 EFLAGS: 00010202
[ 25.768516][ T299] RAX: 1ffffd1ffff80dea RBX: ffffc9000125a8e8 RCX: ffffffff816d8c29
[ 25.776534][ T299] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc06f50
[ 25.784571][ T299] RBP: ffffc9000124fb10 R08: ffffe8ffffc06f57 R09: 1ffffd1ffff80dea
[ 25.792611][ T299] R10: dffffc0000000000 R11: fffff91ffff80deb R12: dffffc0000000000
[ 25.800585][ T299] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc06f50
[ 25.808596][ T299] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 25.817668][ T299] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 25.824305][ T299] CR2: 0000558a8cb3fb48 CR3: 0000000102394000 CR4: 00000000003526b0
[ 25.832300][ T299] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 25.840338][ T299] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 25.848376][ T299] Call Trace:
[ 25.851669][ T299]
[ 25.854650][ T299] kvm_put_kvm+0x1100/0x12b0
[ 25.859310][ T299] ? __cfi_kvm_vm_release+0x10/0x10
[ 25.864588][ T299] kvm_vm_release+0x47/0x70
[ 25.869134][ T299] __fput+0x1fb/0xa00
[ 25.873184][ T299] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 25.878764][ T299] ____fput+0x20/0x30
[ 25.882820][ T299] task_work_run+0x1e3/0x250
[ 25.887440][ T299] ? __cfi_task_work_run+0x10/0x10
[ 25.892610][ T299] ? __kasan_check_write+0x18/0x20
[ 25.897766][ T299] do_exit+0x9b4/0x2630
[ 25.902011][ T299] ? __cfi_do_exit+0x10/0x10
[ 25.906642][ T299] ? __kasan_check_write+0x18/0x20
[ 25.911787][ T299] ? _raw_spin_lock_irq+0x8d/0x120
[ 25.916954][ T299] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 25.922552][ T299] ? zap_other_threads+0x334/0x370
[ 25.927672][ T299] do_group_exit+0x22a/0x300
[ 25.932272][ T299] __x64_sys_exit_group+0x43/0x50
[ 25.937346][ T299] x64_sys_call+0x2ed2/0x2ee0
[ 25.942066][ T299] do_syscall_64+0x58/0xf0
[ 25.946531][ T299] ? clear_bhb_loop+0x50/0xa0
[ 25.951242][ T299] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 25.957253][ T299] RIP: 0033:0x7f230d36fc49
[ 25.961810][ T299] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 25.968955][ T299] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 25.977587][ T299] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[ 25.985618][ T299] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[pid 299] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=299, si_uid=0, si_status=0, si_utime=0, si_stime=33} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 300 attached
, child_tidptr=0x5555602dc650) = 300
[pid 300] set_robust_list(0x5555602dc660, 24) = 0
[pid 300] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 300] setpgid(0, 0) = 0
[pid 300] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 300] write(3, "1000", 4) = 4
[pid 300] close(3) = 0
executing program
[pid 300] write(1, "executing program\n", 18) = 18
[pid 300] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 300] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 300] eventfd(127) = 5
[pid 300] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 300] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 300] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 300] exit_group(0) = ?
[ 25.993824][ T299] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 26.001847][ T299] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 26.009894][ T299] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 26.017935][ T299]
[ 26.021011][ T299] ---[ end trace 0000000000000000 ]---
[ 26.063272][ T300] ------------[ cut here ]------------
[ 26.068774][ T300] WARNING: CPU: 1 PID: 300 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 26.078657][ T300] Modules linked in:
[ 26.082611][ T300] CPU: 1 UID: 0 PID: 300 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 26.098062][ T300] Tainted: [W]=WARN
[ 26.101936][ T300] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 26.112151][ T300] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 26.118220][ T300] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 26.137918][ T300] RSP: 0018:ffffc90001267aa8 EFLAGS: 00010202
[ 26.144121][ T300] RAX: 1ffffd1ffff80e1a RBX: ffffc900012728e8 RCX: ffffffff816d8c29
[ 26.152113][ T300] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc070d0
[ 26.160150][ T300] RBP: ffffc90001267b10 R08: ffffe8ffffc070d7 R09: 1ffffd1ffff80e1a
[ 26.168183][ T300] R10: dffffc0000000000 R11: fffff91ffff80e1b R12: dffffc0000000000
[ 26.176220][ T300] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc070d0
[ 26.184335][ T300] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 26.193318][ T300] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 26.199934][ T300] CR2: 00005555602dc650 CR3: 0000000102394000 CR4: 00000000003526b0
[ 26.207960][ T300] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 26.215979][ T300] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 26.224005][ T300] Call Trace:
[ 26.227306][ T300]
[ 26.230242][ T300] kvm_put_kvm+0x1100/0x12b0
[ 26.234980][ T300] ? __cfi_kvm_vm_release+0x10/0x10
[ 26.240232][ T300] kvm_vm_release+0x47/0x70
[ 26.244787][ T300] __fput+0x1fb/0xa00
[ 26.248790][ T300] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 26.254379][ T300] ____fput+0x20/0x30
[ 26.258385][ T300] task_work_run+0x1e3/0x250
[ 26.263140][ T300] ? __cfi_task_work_run+0x10/0x10
[ 26.268299][ T300] ? __kasan_check_write+0x18/0x20
[ 26.273507][ T300] do_exit+0x9b4/0x2630
[ 26.277698][ T300] ? __cfi_do_exit+0x10/0x10
[ 26.282300][ T300] ? __kasan_check_write+0x18/0x20
[ 26.287492][ T300] ? _raw_spin_lock_irq+0x8d/0x120
[ 26.292670][ T300] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 26.298225][ T300] ? zap_other_threads+0x334/0x370
[ 26.303383][ T300] do_group_exit+0x22a/0x300
[ 26.308004][ T300] __x64_sys_exit_group+0x43/0x50
[ 26.313076][ T300] x64_sys_call+0x2ed2/0x2ee0
[ 26.317826][ T300] do_syscall_64+0x58/0xf0
[ 26.322259][ T300] ? clear_bhb_loop+0x50/0xa0
[ 26.327027][ T300] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 26.332992][ T300] RIP: 0033:0x7f230d36fc49
[ 26.337438][ T300] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 26.344488][ T300] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 26.352972][ T300] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 300] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=300, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 301
./strace-static-x86_64: Process 301 attached
[pid 301] set_robust_list(0x5555602dc660, 24) = 0
[pid 301] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 301] setpgid(0, 0) = 0
[pid 301] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 301] write(3, "1000", 4) = 4
[pid 301] close(3) = 0
executing program
[pid 301] write(1, "executing program\n", 18) = 18
[pid 301] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 301] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 301] eventfd(127) = 5
[pid 301] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 301] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 301] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 301] exit_group(0) = ?
[ 26.360971][ T300] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 26.369085][ T300] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 26.377128][ T300] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 26.385156][ T300] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 26.393374][ T300]
[ 26.396392][ T300] ---[ end trace 0000000000000000 ]---
[ 26.443189][ T301] ------------[ cut here ]------------
[ 26.448681][ T301] WARNING: CPU: 1 PID: 301 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 26.458461][ T301] Modules linked in:
[ 26.462381][ T301] CPU: 1 UID: 0 PID: 301 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 26.477715][ T301] Tainted: [W]=WARN
[ 26.481531][ T301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 26.491717][ T301] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 26.497700][ T301] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 26.517352][ T301] RSP: 0018:ffffc90001267aa8 EFLAGS: 00010202
[ 26.523468][ T301] RAX: 1ffffd1ffff80e52 RBX: ffffc9000127d8e8 RCX: ffffffff816d8c29
[ 26.531446][ T301] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07290
[ 26.539457][ T301] RBP: ffffc90001267b10 R08: ffffe8ffffc07297 R09: 1ffffd1ffff80e52
[ 26.547497][ T301] R10: dffffc0000000000 R11: fffff91ffff80e53 R12: dffffc0000000000
[ 26.555559][ T301] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07290
[ 26.563592][ T301] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 26.572581][ T301] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 26.579206][ T301] CR2: 0000558a8cb055b0 CR3: 0000000102394000 CR4: 00000000003526b0
[ 26.587257][ T301] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 26.595325][ T301] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 26.603353][ T301] Call Trace:
[ 26.606753][ T301]
[ 26.609690][ T301] kvm_put_kvm+0x1100/0x12b0
[ 26.614398][ T301] ? __cfi_kvm_vm_release+0x10/0x10
[ 26.619738][ T301] kvm_vm_release+0x47/0x70
[ 26.624317][ T301] __fput+0x1fb/0xa00
[ 26.628328][ T301] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 26.633938][ T301] ____fput+0x20/0x30
[ 26.638057][ T301] task_work_run+0x1e3/0x250
[ 26.642711][ T301] ? __cfi_task_work_run+0x10/0x10
[ 26.647874][ T301] ? __kasan_check_write+0x18/0x20
[ 26.653051][ T301] do_exit+0x9b4/0x2630
[ 26.657242][ T301] ? __cfi_do_exit+0x10/0x10
[ 26.661842][ T301] ? __kasan_check_write+0x18/0x20
[ 26.667011][ T301] ? _raw_spin_lock_irq+0x8d/0x120
[ 26.672151][ T301] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 26.677788][ T301] ? zap_other_threads+0x334/0x370
[ 26.682952][ T301] do_group_exit+0x22a/0x300
[ 26.687555][ T301] __x64_sys_exit_group+0x43/0x50
[ 26.692618][ T301] x64_sys_call+0x2ed2/0x2ee0
[ 26.697330][ T301] do_syscall_64+0x58/0xf0
[ 26.701772][ T301] ? clear_bhb_loop+0x50/0xa0
[ 26.706534][ T301] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 26.712556][ T301] RIP: 0033:0x7f230d36fc49
[ 26.717008][ T301] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 26.724068][ T301] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 26.732558][ T301] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 301] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=301, si_uid=0, si_status=0, si_utime=0, si_stime=30} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 302
./strace-static-x86_64: Process 302 attached
[pid 302] set_robust_list(0x5555602dc660, 24) = 0
[pid 302] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 302] setpgid(0, 0) = 0
[pid 302] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 302] write(3, "1000", 4) = 4
[pid 302] close(3) = 0
executing program
[pid 302] write(1, "executing program\n", 18) = 18
[pid 302] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 302] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 302] eventfd(127) = 5
[pid 302] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 302] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 302] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 302] exit_group(0) = ?
[ 26.740549][ T301] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 26.748559][ T301] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 26.756576][ T301] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 26.764684][ T301] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 26.772726][ T301]
[ 26.775767][ T301] ---[ end trace 0000000000000000 ]---
[ 26.813171][ T302] ------------[ cut here ]------------
[ 26.818675][ T302] WARNING: CPU: 1 PID: 302 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 26.828619][ T302] Modules linked in:
[ 26.832714][ T302] CPU: 1 UID: 0 PID: 302 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 26.848088][ T302] Tainted: [W]=WARN
[ 26.852015][ T302] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 26.862110][ T302] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 26.868161][ T302] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 26.887841][ T302] RSP: 0018:ffffc90001267aa8 EFLAGS: 00010202
[ 26.893967][ T302] RAX: 1ffffd1ffff80e82 RBX: ffffc900012888e8 RCX: ffffffff816d8c29
[ 26.901954][ T302] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07410
[ 26.909989][ T302] RBP: ffffc90001267b10 R08: ffffe8ffffc07417 R09: 1ffffd1ffff80e82
[ 26.918014][ T302] R10: dffffc0000000000 R11: fffff91ffff80e83 R12: dffffc0000000000
[ 26.926044][ T302] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07410
[ 26.934080][ T302] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 26.943162][ T302] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 26.949820][ T302] CR2: 00007f230d36fbc3 CR3: 0000000102396000 CR4: 00000000003526b0
[ 26.957941][ T302] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 26.965979][ T302] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 26.974024][ T302] Call Trace:
[ 26.977377][ T302]
[ 26.980319][ T302] kvm_put_kvm+0x1100/0x12b0
[ 26.984961][ T302] ? __cfi_kvm_vm_release+0x10/0x10
[ 26.990199][ T302] kvm_vm_release+0x47/0x70
[ 26.994757][ T302] __fput+0x1fb/0xa00
[ 26.998775][ T302] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.004391][ T302] ____fput+0x20/0x30
[ 27.008397][ T302] task_work_run+0x1e3/0x250
[ 27.013024][ T302] ? __cfi_task_work_run+0x10/0x10
[ 27.018159][ T302] ? __kasan_check_write+0x18/0x20
[ 27.023327][ T302] do_exit+0x9b4/0x2630
[ 27.027554][ T302] ? __cfi_do_exit+0x10/0x10
[ 27.032151][ T302] ? __kasan_check_write+0x18/0x20
[ 27.037303][ T302] ? _raw_spin_lock_irq+0x8d/0x120
[ 27.042465][ T302] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.048105][ T302] ? zap_other_threads+0x334/0x370
[ 27.053274][ T302] do_group_exit+0x22a/0x300
[ 27.057893][ T302] __x64_sys_exit_group+0x43/0x50
[ 27.062969][ T302] x64_sys_call+0x2ed2/0x2ee0
[ 27.067676][ T302] do_syscall_64+0x58/0xf0
[ 27.072094][ T302] ? clear_bhb_loop+0x50/0xa0
[ 27.076828][ T302] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 27.082846][ T302] RIP: 0033:0x7f230d36fc49
[ 27.087283][ T302] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 27.094350][ T302] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 27.102818][ T302] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 302] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=302, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 303
./strace-static-x86_64: Process 303 attached
[pid 303] set_robust_list(0x5555602dc660, 24) = 0
[pid 303] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 303] setpgid(0, 0) = 0
[pid 303] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 303] write(3, "1000", 4) = 4
executing program
[pid 303] close(3) = 0
[pid 303] write(1, "executing program\n", 18) = 18
[pid 303] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 303] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 303] eventfd(127) = 5
[pid 303] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 303] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 303] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 303] exit_group(0) = ?
[ 27.110946][ T302] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 27.119045][ T302] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 27.127092][ T302] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 27.135170][ T302] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 27.143235][ T302]
[ 27.146283][ T302] ---[ end trace 0000000000000000 ]---
[pid 303] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=303, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 304
./strace-static-x86_64: Process 304 attached
[pid 304] set_robust_list(0x5555602dc660, 24) = 0
[pid 304] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 304] setpgid(0, 0) = 0
[pid 304] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 304] write(3, "1000", 4) = 4
[pid 304] close(3) = 0
executing program
[pid 304] write(1, "executing program\n", 18) = 18
[pid 304] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 304] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 304] eventfd(127) = 5
[pid 304] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 304] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 304] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 304] exit_group(0) = ?
[ 27.243387][ T304] ------------[ cut here ]------------
[ 27.248878][ T304] WARNING: CPU: 1 PID: 304 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 27.258664][ T304] Modules linked in:
[ 27.262628][ T304] CPU: 1 UID: 0 PID: 304 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 27.277962][ T304] Tainted: [W]=WARN
[ 27.281780][ T304] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 27.291868][ T304] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 27.297841][ T304] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 27.317518][ T304] RSP: 0018:ffffc9000122faa8 EFLAGS: 00010202
[ 27.323693][ T304] RAX: 1ffffd1ffff80eb2 RBX: ffffc9000129e8e8 RCX: ffffffff816d8c29
[ 27.331859][ T304] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07590
[ 27.339977][ T304] RBP: ffffc9000122fb10 R08: ffffe8ffffc07597 R09: 1ffffd1ffff80eb2
[ 27.348032][ T304] R10: dffffc0000000000 R11: fffff91ffff80eb3 R12: dffffc0000000000
[ 27.356060][ T304] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07590
[ 27.364085][ T304] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 27.373072][ T304] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 27.379687][ T304] CR2: 0000558a8cba9d50 CR3: 0000000102394000 CR4: 00000000003526b0
[ 27.387708][ T304] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 27.395763][ T304] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 27.403807][ T304] Call Trace:
[ 27.407109][ T304]
[ 27.410047][ T304] kvm_put_kvm+0x1100/0x12b0
[ 27.414696][ T304] ? __cfi_kvm_vm_release+0x10/0x10
[ 27.419933][ T304] kvm_vm_release+0x47/0x70
[ 27.424477][ T304] __fput+0x1fb/0xa00
[ 27.428487][ T304] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.434073][ T304] ____fput+0x20/0x30
[ 27.438085][ T304] task_work_run+0x1e3/0x250
[ 27.442721][ T304] ? __cfi_task_work_run+0x10/0x10
[ 27.447896][ T304] ? __kasan_check_write+0x18/0x20
[ 27.453092][ T304] do_exit+0x9b4/0x2630
[ 27.457280][ T304] ? __cfi_do_exit+0x10/0x10
[ 27.461879][ T304] ? __kasan_check_write+0x18/0x20
[ 27.467036][ T304] ? _raw_spin_lock_irq+0x8d/0x120
[ 27.472174][ T304] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.477763][ T304] ? zap_other_threads+0x334/0x370
[ 27.482945][ T304] do_group_exit+0x22a/0x300
[ 27.487571][ T304] __x64_sys_exit_group+0x43/0x50
[ 27.492654][ T304] x64_sys_call+0x2ed2/0x2ee0
[ 27.497357][ T304] do_syscall_64+0x58/0xf0
[ 27.501775][ T304] ? clear_bhb_loop+0x50/0xa0
[ 27.506616][ T304] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 27.512574][ T304] RIP: 0033:0x7f230d36fc49
[ 27.517009][ T304] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 27.524161][ T304] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 27.532759][ T304] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 304] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=304, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 305
./strace-static-x86_64: Process 305 attached
[pid 305] set_robust_list(0x5555602dc660, 24) = 0
[pid 305] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 305] setpgid(0, 0) = 0
[pid 305] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 305] write(3, "1000", 4) = 4
executing program
[pid 305] close(3) = 0
[pid 305] write(1, "executing program\n", 18) = 18
[pid 305] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 305] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 305] eventfd(127) = 5
[pid 305] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 305] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 305] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 305] exit_group(0) = ?
[ 27.540786][ T304] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 27.548812][ T304] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 27.556871][ T304] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 27.564913][ T304] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 27.573049][ T304]
[ 27.576087][ T304] ---[ end trace 0000000000000000 ]---
[pid 305] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=305, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 306
./strace-static-x86_64: Process 306 attached
[pid 306] set_robust_list(0x5555602dc660, 24) = 0
[pid 306] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 306] setpgid(0, 0) = 0
[pid 306] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 306] write(3, "1000", 4) = 4
[pid 306] close(3) = 0
[pid 306] write(1, "executing program\n", 18executing program
) = 18
[pid 306] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 306] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 306] eventfd(127) = 5
[pid 306] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 306] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 306] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 306] exit_group(0) = ?
[ 27.693284][ T306] ------------[ cut here ]------------
[ 27.698917][ T306] WARNING: CPU: 1 PID: 306 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 27.708707][ T306] Modules linked in:
[ 27.712663][ T306] CPU: 1 UID: 0 PID: 306 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 27.728001][ T306] Tainted: [W]=WARN
[ 27.731821][ T306] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 27.741912][ T306] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 27.747855][ T306] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 27.767526][ T306] RSP: 0018:ffffc90001267aa8 EFLAGS: 00010202
[ 27.773654][ T306] RAX: 1ffffd1ffff80ee2 RBX: ffffc900012bd8e8 RCX: ffffffff816d8c29
[ 27.781633][ T306] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07710
[ 27.789718][ T306] RBP: ffffc90001267b10 R08: ffffe8ffffc07717 R09: 1ffffd1ffff80ee2
[ 27.797760][ T306] R10: dffffc0000000000 R11: fffff91ffff80ee3 R12: dffffc0000000000
[ 27.805852][ T306] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07710
[ 27.813920][ T306] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 27.822915][ T306] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 27.829550][ T306] CR2: 00005555602dc650 CR3: 0000000102394000 CR4: 00000000003526b0
[ 27.837606][ T306] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 27.845676][ T306] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 27.853972][ T306] Call Trace:
[ 27.857297][ T306]
[ 27.860240][ T306] kvm_put_kvm+0x1100/0x12b0
[ 27.864914][ T306] ? __cfi_kvm_vm_release+0x10/0x10
[ 27.870169][ T306] kvm_vm_release+0x47/0x70
[ 27.874753][ T306] __fput+0x1fb/0xa00
[ 27.878762][ T306] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.884372][ T306] ____fput+0x20/0x30
[ 27.888380][ T306] task_work_run+0x1e3/0x250
[ 27.893012][ T306] ? __cfi_task_work_run+0x10/0x10
[ 27.898149][ T306] ? __kasan_check_write+0x18/0x20
[ 27.903310][ T306] do_exit+0x9b4/0x2630
[ 27.907499][ T306] ? __cfi_do_exit+0x10/0x10
[ 27.912088][ T306] ? __kasan_check_write+0x18/0x20
[ 27.917316][ T306] ? _raw_spin_lock_irq+0x8d/0x120
[ 27.922549][ T306] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 27.928127][ T306] ? zap_other_threads+0x334/0x370
[ 27.933299][ T306] do_group_exit+0x22a/0x300
[ 27.937920][ T306] __x64_sys_exit_group+0x43/0x50
[ 27.943009][ T306] x64_sys_call+0x2ed2/0x2ee0
[ 27.947716][ T306] do_syscall_64+0x58/0xf0
[ 27.952225][ T306] ? clear_bhb_loop+0x50/0xa0
[ 27.956959][ T306] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 27.962921][ T306] RIP: 0033:0x7f230d36fc49
[ 27.967347][ T306] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 27.974403][ T306] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 27.982887][ T306] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 306] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=306, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 307 attached
, child_tidptr=0x5555602dc650) = 307
[pid 307] set_robust_list(0x5555602dc660, 24) = 0
[pid 307] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 307] setpgid(0, 0) = 0
[pid 307] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 307] write(3, "1000", 4) = 4
[pid 307] close(3) = 0
executing program
[pid 307] write(1, "executing program\n", 18) = 18
[pid 307] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 307] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 307] eventfd(127) = 5
[pid 307] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 307] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 307] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 307] exit_group(0) = ?
[ 27.990877][ T306] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 27.998891][ T306] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 28.006929][ T306] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 28.014965][ T306] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 28.022987][ T306]
[ 28.026007][ T306] ---[ end trace 0000000000000000 ]---
[ 28.063267][ T307] ------------[ cut here ]------------
[ 28.068750][ T307] WARNING: CPU: 1 PID: 307 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 28.078544][ T307] Modules linked in:
[ 28.082458][ T307] CPU: 1 UID: 0 PID: 307 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 28.097847][ T307] Tainted: [W]=WARN
[ 28.101660][ T307] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 28.111758][ T307] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 28.117732][ T307] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 28.137379][ T307] RSP: 0018:ffffc9000124faa8 EFLAGS: 00010202
[ 28.143501][ T307] RAX: 1ffffd1ffff80f12 RBX: ffffc900012c88e8 RCX: ffffffff816d8c29
[ 28.151599][ T307] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07890
[ 28.159612][ T307] RBP: ffffc9000124fb10 R08: ffffe8ffffc07897 R09: 1ffffd1ffff80f12
[ 28.167661][ T307] R10: dffffc0000000000 R11: fffff91ffff80f13 R12: dffffc0000000000
[ 28.175685][ T307] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07890
[ 28.183711][ T307] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 28.192678][ T307] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 28.199414][ T307] CR2: 00007f230d34065e CR3: 0000000102396000 CR4: 00000000003526b0
[ 28.207424][ T307] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 28.215432][ T307] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 28.223437][ T307] Call Trace:
[ 28.226726][ T307]
[ 28.229657][ T307] kvm_put_kvm+0x1100/0x12b0
[ 28.234293][ T307] ? __cfi_kvm_vm_release+0x10/0x10
[ 28.239523][ T307] kvm_vm_release+0x47/0x70
[ 28.244071][ T307] __fput+0x1fb/0xa00
[ 28.248072][ T307] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 28.253755][ T307] ____fput+0x20/0x30
[ 28.257867][ T307] task_work_run+0x1e3/0x250
[ 28.262543][ T307] ? __cfi_task_work_run+0x10/0x10
[ 28.267680][ T307] ? __kasan_check_write+0x18/0x20
[ 28.272842][ T307] do_exit+0x9b4/0x2630
[ 28.277019][ T307] ? __cfi_do_exit+0x10/0x10
[ 28.281609][ T307] ? __kasan_check_write+0x18/0x20
[ 28.286751][ T307] ? _raw_spin_lock_irq+0x8d/0x120
[ 28.291883][ T307] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 28.297495][ T307] ? zap_other_threads+0x334/0x370
[ 28.302753][ T307] do_group_exit+0x22a/0x300
[ 28.307364][ T307] __x64_sys_exit_group+0x43/0x50
[ 28.312413][ T307] x64_sys_call+0x2ed2/0x2ee0
[ 28.317121][ T307] do_syscall_64+0x58/0xf0
[ 28.321562][ T307] ? clear_bhb_loop+0x50/0xa0
[ 28.326297][ T307] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 28.332224][ T307] RIP: 0033:0x7f230d36fc49
[ 28.336718][ T307] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 28.343776][ T307] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 28.352195][ T307] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 307] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=307, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 308
./strace-static-x86_64: Process 308 attached
[pid 308] set_robust_list(0x5555602dc660, 24) = 0
[pid 308] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 308] setpgid(0, 0) = 0
[pid 308] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 308] write(3, "1000", 4) = 4
[pid 308] close(3) = 0
executing program
[pid 308] write(1, "executing program\n", 18) = 18
[pid 308] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 308] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 308] eventfd(127) = 5
[pid 308] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 308] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 308] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 308] exit_group(0) = ?
[ 28.360217][ T307] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 28.368234][ T307] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 28.376243][ T307] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 28.384259][ T307] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 28.392258][ T307]
[ 28.395331][ T307] ---[ end trace 0000000000000000 ]---
[pid 308] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=308, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 309
./strace-static-x86_64: Process 309 attached
[pid 309] set_robust_list(0x5555602dc660, 24) = 0
[pid 309] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 309] setpgid(0, 0) = 0
[pid 309] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 309] write(3, "1000", 4) = 4
[pid 309] close(3) = 0
executing program
[pid 309] write(1, "executing program\n", 18) = 18
[pid 309] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 309] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 309] eventfd(127) = 5
[pid 309] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 309] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 309] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 309] exit_group(0) = ?
[ 28.493334][ T309] ------------[ cut here ]------------
[ 28.498820][ T309] WARNING: CPU: 1 PID: 309 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 28.508687][ T309] Modules linked in:
[ 28.512686][ T309] CPU: 1 UID: 0 PID: 309 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 28.528015][ T309] Tainted: [W]=WARN
[ 28.531866][ T309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 28.541961][ T309] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 28.547908][ T309] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 28.567552][ T309] RSP: 0018:ffffc9000124faa8 EFLAGS: 00010202
[ 28.573677][ T309] RAX: 1ffffd1ffff80f42 RBX: ffffc900012de8e8 RCX: ffffffff816d8c29
[ 28.581871][ T309] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07a10
[ 28.589911][ T309] RBP: ffffc9000124fb10 R08: ffffe8ffffc07a17 R09: 1ffffd1ffff80f42
[ 28.597981][ T309] R10: dffffc0000000000 R11: fffff91ffff80f43 R12: dffffc0000000000
[ 28.606003][ T309] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07a10
[ 28.614027][ T309] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 28.622997][ T309] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 28.629606][ T309] CR2: 00007f230d3eb110 CR3: 0000000102394000 CR4: 00000000003526b0
[ 28.637667][ T309] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 28.645720][ T309] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 28.653798][ T309] Call Trace:
[ 28.657138][ T309]
[ 28.660074][ T309] kvm_put_kvm+0x1100/0x12b0
[ 28.664724][ T309] ? __cfi_kvm_vm_release+0x10/0x10
[ 28.669952][ T309] kvm_vm_release+0x47/0x70
[ 28.674553][ T309] __fput+0x1fb/0xa00
[ 28.678572][ T309] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 28.684171][ T309] ____fput+0x20/0x30
[ 28.688182][ T309] task_work_run+0x1e3/0x250
[ 28.692818][ T309] ? __cfi_task_work_run+0x10/0x10
[ 28.697963][ T309] ? __kasan_check_write+0x18/0x20
[ 28.703142][ T309] do_exit+0x9b4/0x2630
[ 28.707332][ T309] ? __cfi_do_exit+0x10/0x10
[ 28.711940][ T309] ? __kasan_check_write+0x18/0x20
[ 28.717221][ T309] ? _raw_spin_lock_irq+0x8d/0x120
[ 28.722382][ T309] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 28.728002][ T309] ? zap_other_threads+0x334/0x370
[ 28.733161][ T309] do_group_exit+0x22a/0x300
[ 28.737758][ T309] __x64_sys_exit_group+0x43/0x50
[ 28.742814][ T309] x64_sys_call+0x2ed2/0x2ee0
[ 28.747530][ T309] do_syscall_64+0x58/0xf0
[ 28.751948][ T309] ? clear_bhb_loop+0x50/0xa0
[ 28.756672][ T309] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 28.762648][ T309] RIP: 0033:0x7f230d36fc49
[ 28.767089][ T309] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 28.774134][ T309] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 28.782628][ T309] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 309] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=309, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 310
./strace-static-x86_64: Process 310 attached
[pid 310] set_robust_list(0x5555602dc660, 24) = 0
[pid 310] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 310] setpgid(0, 0) = 0
[pid 310] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 310] write(3, "1000", 4) = 4
[pid 310] close(3) = 0
executing program
[pid 310] write(1, "executing program\n", 18) = 18
[pid 310] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 310] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 310] eventfd(127) = 5
[pid 310] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 310] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 310] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 310] exit_group(0) = ?
[ 28.790626][ T309] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 28.798638][ T309] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 28.806666][ T309] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 28.814723][ T309] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 28.822770][ T309]
[ 28.825801][ T309] ---[ end trace 0000000000000000 ]---
[pid 310] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=310, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 311 attached
, child_tidptr=0x5555602dc650) = 311
[pid 311] set_robust_list(0x5555602dc660, 24) = 0
[pid 311] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 311] setpgid(0, 0) = 0
[pid 311] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 311] write(3, "1000", 4) = 4
[pid 311] close(3) = 0
[pid 311] write(1, "executing program\n", 18executing program
) = 18
[pid 311] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 311] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 311] eventfd(127) = 5
[pid 311] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 311] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 311] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 311] exit_group(0) = ?
[pid 311] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=311, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 312 attached
, child_tidptr=0x5555602dc650) = 312
[pid 312] set_robust_list(0x5555602dc660, 24) = 0
[pid 312] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 312] setpgid(0, 0) = 0
[pid 312] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 312] write(3, "1000", 4) = 4
[pid 312] close(3) = 0
executing program
[pid 312] write(1, "executing program\n", 18) = 18
[pid 312] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 312] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 312] eventfd(127) = 5
[pid 312] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 312] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 312] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 312] exit_group(0) = ?
[ 28.983311][ T312] ------------[ cut here ]------------
[ 28.988798][ T312] WARNING: CPU: 1 PID: 312 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 28.998659][ T312] Modules linked in:
[ 29.002800][ T312] CPU: 1 UID: 0 PID: 312 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 29.018245][ T312] Tainted: [W]=WARN
[ 29.022065][ T312] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 29.032165][ T312] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 29.038115][ T312] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 29.057821][ T312] RSP: 0018:ffffc900012a7aa8 EFLAGS: 00010202
[ 29.063956][ T312] RAX: 1ffffd1ffff80f72 RBX: ffffc900012ff8e8 RCX: ffffffff816d8c29
[ 29.071936][ T312] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07b90
[ 29.079980][ T312] RBP: ffffc900012a7b10 R08: ffffe8ffffc07b97 R09: 1ffffd1ffff80f72
[ 29.088007][ T312] R10: dffffc0000000000 R11: fffff91ffff80f73 R12: dffffc0000000000
[ 29.096043][ T312] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07b90
[ 29.104074][ T312] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 29.113056][ T312] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 29.119658][ T312] CR2: 00007f230d3eb110 CR3: 0000000102394000 CR4: 00000000003526b0
[ 29.127680][ T312] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 29.135981][ T312] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 29.144023][ T312] Call Trace:
[ 29.147327][ T312]
[ 29.150260][ T312] kvm_put_kvm+0x1100/0x12b0
[ 29.154892][ T312] ? __cfi_kvm_vm_release+0x10/0x10
[ 29.160125][ T312] kvm_vm_release+0x47/0x70
[ 29.164675][ T312] __fput+0x1fb/0xa00
[ 29.168680][ T312] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 29.174701][ T312] ____fput+0x20/0x30
[ 29.178709][ T312] task_work_run+0x1e3/0x250
[ 29.183332][ T312] ? __cfi_task_work_run+0x10/0x10
[ 29.188466][ T312] ? __kasan_check_write+0x18/0x20
[ 29.193701][ T312] do_exit+0x9b4/0x2630
[ 29.197891][ T312] ? __cfi_do_exit+0x10/0x10
[ 29.202530][ T312] ? __kasan_check_write+0x18/0x20
[ 29.207699][ T312] ? _raw_spin_lock_irq+0x8d/0x120
[ 29.212865][ T312] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 29.218438][ T312] ? zap_other_threads+0x334/0x370
[ 29.223608][ T312] do_group_exit+0x22a/0x300
[ 29.228364][ T312] __x64_sys_exit_group+0x43/0x50
[ 29.233458][ T312] x64_sys_call+0x2ed2/0x2ee0
[ 29.238193][ T312] do_syscall_64+0x58/0xf0
[ 29.242672][ T312] ? clear_bhb_loop+0x50/0xa0
[ 29.247376][ T312] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 29.253312][ T312] RIP: 0033:0x7f230d36fc49
[ 29.257846][ T312] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 29.264930][ T312] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 29.273443][ T312] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 312] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=312, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 313 attached
, child_tidptr=0x5555602dc650) = 313
[pid 313] set_robust_list(0x5555602dc660, 24) = 0
[pid 313] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 313] setpgid(0, 0) = 0
[pid 313] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 313] write(3, "1000", 4) = 4
[pid 313] close(3) = 0
executing program
[pid 313] write(1, "executing program\n", 18) = 18
[pid 313] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 313] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 313] eventfd(127) = 5
[pid 313] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 313] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 313] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 313] exit_group(0) = ?
[ 29.281441][ T312] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 29.289451][ T312] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 29.297481][ T312] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 29.305524][ T312] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 29.313576][ T312]
[ 29.316632][ T312] ---[ end trace 0000000000000000 ]---
[pid 313] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=313, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 314
./strace-static-x86_64: Process 314 attached
[pid 314] set_robust_list(0x5555602dc660, 24) = 0
[pid 314] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 314] setpgid(0, 0) = 0
[pid 314] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 314] write(3, "1000", 4) = 4
[pid 314] close(3) = 0
executing program
[pid 314] write(1, "executing program\n", 18) = 18
[pid 314] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 314] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 314] eventfd(127) = 5
[pid 314] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 314] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 314] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 314] exit_group(0) = ?
[ 29.423280][ T314] ------------[ cut here ]------------
[ 29.428798][ T314] WARNING: CPU: 1 PID: 314 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 29.438661][ T314] Modules linked in:
[ 29.442644][ T314] CPU: 1 UID: 0 PID: 314 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 29.458012][ T314] Tainted: [W]=WARN
[ 29.461839][ T314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 29.471949][ T314] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 29.477920][ T314] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 29.497629][ T314] RSP: 0018:ffffc9000124faa8 EFLAGS: 00010202
[ 29.503760][ T314] RAX: 1ffffd1ffff80fa2 RBX: ffffc900013158e8 RCX: ffffffff816d8c29
[ 29.511836][ T314] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07d10
[ 29.519877][ T314] RBP: ffffc9000124fb10 R08: ffffe8ffffc07d17 R09: 1ffffd1ffff80fa2
[ 29.527906][ T314] R10: dffffc0000000000 R11: fffff91ffff80fa3 R12: dffffc0000000000
[ 29.535913][ T314] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07d10
[ 29.543924][ T314] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 29.552892][ T314] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 29.559493][ T314] CR2: 00007f230d3e80d0 CR3: 0000000102396000 CR4: 00000000003526b0
[ 29.567505][ T314] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 29.575525][ T314] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 29.583542][ T314] Call Trace:
[ 29.586867][ T314]
[ 29.589801][ T314] kvm_put_kvm+0x1100/0x12b0
[ 29.594583][ T314] ? __cfi_kvm_vm_release+0x10/0x10
[ 29.599830][ T314] kvm_vm_release+0x47/0x70
[ 29.604468][ T314] __fput+0x1fb/0xa00
[ 29.608468][ T314] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 29.614079][ T314] ____fput+0x20/0x30
[ 29.618082][ T314] task_work_run+0x1e3/0x250
[ 29.622712][ T314] ? __cfi_task_work_run+0x10/0x10
[ 29.627847][ T314] ? __kasan_check_write+0x18/0x20
[ 29.633001][ T314] do_exit+0x9b4/0x2630
[ 29.637186][ T314] ? __cfi_do_exit+0x10/0x10
[ 29.641799][ T314] ? __kasan_check_write+0x18/0x20
[ 29.646946][ T314] ? _raw_spin_lock_irq+0x8d/0x120
[ 29.652113][ T314] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 29.657703][ T314] ? zap_other_threads+0x334/0x370
[ 29.662855][ T314] do_group_exit+0x22a/0x300
[ 29.667452][ T314] __x64_sys_exit_group+0x43/0x50
[ 29.672477][ T314] x64_sys_call+0x2ed2/0x2ee0
[ 29.677218][ T314] do_syscall_64+0x58/0xf0
[ 29.681638][ T314] ? clear_bhb_loop+0x50/0xa0
[ 29.686366][ T314] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 29.692298][ T314] RIP: 0033:0x7f230d36fc49
[ 29.696747][ T314] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 29.703801][ T314] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 29.712216][ T314] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 314] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=314, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 315
./strace-static-x86_64: Process 315 attached
[pid 315] set_robust_list(0x5555602dc660, 24) = 0
[pid 315] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 315] setpgid(0, 0) = 0
[pid 315] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 315] write(3, "1000", 4) = 4
[pid 315] close(3) = 0
[pid 315] write(1, "executing program\n", 18executing program
) = 18
[pid 315] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 315] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 315] eventfd(127) = 5
[pid 315] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 315] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 315] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 315] exit_group(0) = ?
[ 29.720396][ T314] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 29.728411][ T314] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 29.736441][ T314] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 29.744537][ T314] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 29.752564][ T314]
[ 29.755598][ T314] ---[ end trace 0000000000000000 ]---
[pid 315] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=315, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 316
./strace-static-x86_64: Process 316 attached
[pid 316] set_robust_list(0x5555602dc660, 24) = 0
[pid 316] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 316] setpgid(0, 0) = 0
[pid 316] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 316] write(3, "1000", 4) = 4
executing program
[pid 316] close(3) = 0
[pid 316] write(1, "executing program\n", 18) = 18
[pid 316] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 316] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 316] eventfd(127) = 5
[pid 316] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 316] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 316] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 316] exit_group(0) = ?
[ 29.863240][ T316] ------------[ cut here ]------------
[ 29.868729][ T316] WARNING: CPU: 0 PID: 316 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 29.878679][ T316] Modules linked in:
[ 29.882630][ T316] CPU: 0 UID: 0 PID: 316 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 29.897966][ T316] Tainted: [W]=WARN
[ 29.901786][ T316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 29.911879][ T316] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 29.917841][ T316] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 29.937497][ T316] RSP: 0018:ffffc900012a7aa8 EFLAGS: 00010202
[ 29.943701][ T316] RAX: 1ffffd1ffff80fd2 RBX: ffffc9000132b8e8 RCX: ffffffff816d8c29
[ 29.951675][ T316] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc07e90
[ 29.959704][ T316] RBP: ffffc900012a7b10 R08: ffffe8ffffc07e97 R09: 1ffffd1ffff80fd2
[ 29.967745][ T316] R10: dffffc0000000000 R11: fffff91ffff80fd3 R12: dffffc0000000000
[ 29.975762][ T316] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc07e90
[ 29.983783][ T316] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 29.992757][ T316] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 29.999368][ T316] CR2: 0000200000000040 CR3: 0000000102394000 CR4: 00000000003526b0
[ 30.007399][ T316] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 30.015414][ T316] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 30.023423][ T316] Call Trace:
[ 30.026728][ T316]
[ 30.029680][ T316] kvm_put_kvm+0x1100/0x12b0
[ 30.034342][ T316] ? __cfi_kvm_vm_release+0x10/0x10
[ 30.039571][ T316] kvm_vm_release+0x47/0x70
[ 30.044118][ T316] __fput+0x1fb/0xa00
[ 30.048123][ T316] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.053717][ T316] ____fput+0x20/0x30
[ 30.057725][ T316] task_work_run+0x1e3/0x250
[ 30.062317][ T316] ? __cfi_task_work_run+0x10/0x10
[ 30.067463][ T316] ? __kasan_check_write+0x18/0x20
[ 30.072644][ T316] do_exit+0x9b4/0x2630
[ 30.076819][ T316] ? __cfi_do_exit+0x10/0x10
[ 30.081407][ T316] ? __kasan_check_write+0x18/0x20
[ 30.086555][ T316] ? _raw_spin_lock_irq+0x8d/0x120
[ 30.091694][ T316] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.097386][ T316] ? zap_other_threads+0x334/0x370
[ 30.102541][ T316] do_group_exit+0x22a/0x300
[ 30.107135][ T316] __x64_sys_exit_group+0x43/0x50
[ 30.112165][ T316] x64_sys_call+0x2ed2/0x2ee0
[ 30.116882][ T316] do_syscall_64+0x58/0xf0
[ 30.121326][ T316] ? clear_bhb_loop+0x50/0xa0
[ 30.126042][ T316] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 30.131960][ T316] RIP: 0033:0x7f230d36fc49
[ 30.136413][ T316] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 30.143477][ T316] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 30.151912][ T316] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 316] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=316, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 317
./strace-static-x86_64: Process 317 attached
[pid 317] set_robust_list(0x5555602dc660, 24) = 0
[pid 317] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 317] setpgid(0, 0) = 0
[pid 317] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 317] write(3, "1000", 4) = 4
[pid 317] close(3) = 0
executing program
[pid 317] write(1, "executing program\n", 18) = 18
[pid 317] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 317] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 317] eventfd(127) = 5
[pid 317] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 317] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 317] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 317] exit_group(0) = ?
[ 30.159950][ T316] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 30.167984][ T316] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 30.176064][ T316] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 30.184089][ T316] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 30.192087][ T316]
[ 30.195146][ T316] ---[ end trace 0000000000000000 ]---
[ 30.233232][ T317] ------------[ cut here ]------------
[ 30.238713][ T317] WARNING: CPU: 1 PID: 317 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 30.248490][ T317] Modules linked in:
[ 30.252407][ T317] CPU: 1 UID: 0 PID: 317 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 30.267741][ T317] Tainted: [W]=WARN
[ 30.271562][ T317] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 30.281654][ T317] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 30.287615][ T317] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 30.307289][ T317] RSP: 0018:ffffc9000124faa8 EFLAGS: 00010202
[ 30.313413][ T317] RAX: 1ffffd1ffff81002 RBX: ffffc900013368e8 RCX: ffffffff816d8c29
[ 30.321563][ T317] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc08010
[ 30.329580][ T317] RBP: ffffc9000124fb10 R08: ffffe8ffffc08017 R09: 1ffffd1ffff81002
[ 30.337606][ T317] R10: dffffc0000000000 R11: fffff91ffff81003 R12: dffffc0000000000
[ 30.345643][ T317] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc08010
[ 30.353711][ T317] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 30.362673][ T317] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 30.369277][ T317] CR2: 0000200000000040 CR3: 0000000102396000 CR4: 00000000003526b0
[ 30.377323][ T317] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 30.385349][ T317] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 30.393364][ T317] Call Trace:
[ 30.396660][ T317]
[ 30.399591][ T317] kvm_put_kvm+0x1100/0x12b0
[ 30.404220][ T317] ? __cfi_kvm_vm_release+0x10/0x10
[ 30.409465][ T317] kvm_vm_release+0x47/0x70
[ 30.414017][ T317] __fput+0x1fb/0xa00
[ 30.418019][ T317] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.423616][ T317] ____fput+0x20/0x30
[ 30.427623][ T317] task_work_run+0x1e3/0x250
[ 30.432213][ T317] ? __cfi_task_work_run+0x10/0x10
[ 30.437368][ T317] ? __kasan_check_write+0x18/0x20
[ 30.442535][ T317] do_exit+0x9b4/0x2630
[ 30.446697][ T317] ? __cfi_do_exit+0x10/0x10
[ 30.451290][ T317] ? __kasan_check_write+0x18/0x20
[ 30.456443][ T317] ? _raw_spin_lock_irq+0x8d/0x120
[ 30.461578][ T317] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.467160][ T317] ? zap_other_threads+0x334/0x370
[ 30.472298][ T317] do_group_exit+0x22a/0x300
[ 30.476924][ T317] __x64_sys_exit_group+0x43/0x50
[ 30.481972][ T317] x64_sys_call+0x2ed2/0x2ee0
[ 30.486685][ T317] do_syscall_64+0x58/0xf0
[ 30.491124][ T317] ? clear_bhb_loop+0x50/0xa0
[ 30.495844][ T317] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 30.501795][ T317] RIP: 0033:0x7f230d36fc49
[ 30.506260][ T317] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 30.513332][ T317] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 30.521775][ T317] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 317] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=317, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 318
./strace-static-x86_64: Process 318 attached
[pid 318] set_robust_list(0x5555602dc660, 24) = 0
[pid 318] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 318] setpgid(0, 0) = 0
[pid 318] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 318] write(3, "1000", 4) = 4
[pid 318] close(3) = 0
[pid 318] write(1, "executing program\n", 18executing program
) = 18
[pid 318] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 318] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 318] eventfd(127) = 5
[pid 318] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 318] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 318] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 318] exit_group(0) = ?
[ 30.529785][ T317] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 30.537807][ T317] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 30.545836][ T317] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 30.553864][ T317] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 30.561844][ T317]
[ 30.564913][ T317] ---[ end trace 0000000000000000 ]---
[ 30.603155][ T318] ------------[ cut here ]------------
[ 30.608642][ T318] WARNING: CPU: 0 PID: 318 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 30.618439][ T318] Modules linked in:
[ 30.622393][ T318] CPU: 0 UID: 0 PID: 318 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 30.637716][ T318] Tainted: [W]=WARN
[ 30.641533][ T318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 30.651632][ T318] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 30.657589][ T318] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 30.677304][ T318] RSP: 0018:ffffc900012a7aa8 EFLAGS: 00010202
[ 30.683477][ T318] RAX: 1ffffd1ffff81032 RBX: ffffc900013418e8 RCX: ffffffff816d8c29
[ 30.691468][ T318] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc08190
[ 30.699485][ T318] RBP: ffffc900012a7b10 R08: ffffe8ffffc08197 R09: 1ffffd1ffff81032
[ 30.707502][ T318] R10: dffffc0000000000 R11: fffff91ffff81033 R12: dffffc0000000000
[ 30.715508][ T318] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc08190
[ 30.723528][ T318] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 30.732559][ T318] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 30.739170][ T318] CR2: 00007f230d3eb110 CR3: 0000000102394000 CR4: 00000000003526b0
[ 30.747186][ T318] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 30.755218][ T318] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 30.763254][ T318] Call Trace:
[ 30.766555][ T318]
[ 30.769489][ T318] kvm_put_kvm+0x1100/0x12b0
[ 30.774125][ T318] ? __cfi_kvm_vm_release+0x10/0x10
[ 30.779359][ T318] kvm_vm_release+0x47/0x70
[ 30.783937][ T318] __fput+0x1fb/0xa00
[ 30.787944][ T318] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.793661][ T318] ____fput+0x20/0x30
[ 30.797707][ T318] task_work_run+0x1e3/0x250
[ 30.802333][ T318] ? __cfi_task_work_run+0x10/0x10
[ 30.807501][ T318] ? __kasan_check_write+0x18/0x20
[ 30.812667][ T318] do_exit+0x9b4/0x2630
[ 30.816829][ T318] ? __cfi_do_exit+0x10/0x10
[ 30.821424][ T318] ? __kasan_check_write+0x18/0x20
[ 30.826647][ T318] ? _raw_spin_lock_irq+0x8d/0x120
[ 30.831783][ T318] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 30.837377][ T318] ? zap_other_threads+0x334/0x370
[ 30.842535][ T318] do_group_exit+0x22a/0x300
[ 30.847136][ T318] __x64_sys_exit_group+0x43/0x50
[ 30.852164][ T318] x64_sys_call+0x2ed2/0x2ee0
[ 30.856904][ T318] do_syscall_64+0x58/0xf0
[ 30.861442][ T318] ? clear_bhb_loop+0x50/0xa0
[ 30.866194][ T318] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 30.872116][ T318] RIP: 0033:0x7f230d36fc49
[ 30.876589][ T318] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 30.883681][ T318] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 30.892128][ T318] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 318] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=318, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 319 attached
, child_tidptr=0x5555602dc650) = 319
[pid 319] set_robust_list(0x5555602dc660, 24) = 0
[pid 319] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 319] setpgid(0, 0) = 0
[pid 319] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
executing program
[pid 319] write(3, "1000", 4) = 4
[pid 319] close(3) = 0
[pid 319] write(1, "executing program\n", 18) = 18
[pid 319] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 319] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 319] eventfd(127) = 5
[pid 319] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 319] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 319] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 319] exit_group(0) = ?
[ 30.900133][ T318] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 30.908149][ T318] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 30.916167][ T318] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 30.924183][ T318] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 30.932165][ T318]
[ 30.935248][ T318] ---[ end trace 0000000000000000 ]---
[pid 319] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=319, si_uid=0, si_status=0, si_utime=0, si_stime=0} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 320 attached
[pid 320] set_robust_list(0x5555602dc660, 24) = 0
[pid 320] prctl(PR_SET_PDEATHSIG, SIGKILL
[pid 296] <... clone resumed>, child_tidptr=0x5555602dc650) = 320
[pid 320] <... prctl resumed>) = 0
[pid 320] setpgid(0, 0) = 0
[pid 320] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 320] write(3, "1000", 4) = 4
[pid 320] close(3) = 0
[pid 320] write(1, "executing program\n", 18executing program
) = 18
[pid 320] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 320] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 320] eventfd(127) = 5
[pid 320] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 320] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 320] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 320] exit_group(0) = ?
[ 31.033225][ T320] ------------[ cut here ]------------
[ 31.038888][ T320] WARNING: CPU: 1 PID: 320 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 31.048679][ T320] Modules linked in:
[ 31.052657][ T320] CPU: 1 UID: 0 PID: 320 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 31.068039][ T320] Tainted: [W]=WARN
[ 31.071866][ T320] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 31.081966][ T320] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 31.087923][ T320] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 31.107638][ T320] RSP: 0018:ffffc900012a7aa8 EFLAGS: 00010202
[ 31.113858][ T320] RAX: 1ffffd1ffff81062 RBX: ffffc900013578e8 RCX: ffffffff816d8c29
[ 31.121856][ T320] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc08310
[ 31.130002][ T320] RBP: ffffc900012a7b10 R08: ffffe8ffffc08317 R09: 1ffffd1ffff81062
[ 31.138087][ T320] R10: dffffc0000000000 R11: fffff91ffff81063 R12: dffffc0000000000
[ 31.146145][ T320] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc08310
[ 31.154198][ T320] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 31.163190][ T320] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 31.169806][ T320] CR2: 00005555602dc650 CR3: 0000000102394000 CR4: 00000000003526b0
[ 31.177851][ T320] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 31.186151][ T320] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 31.194180][ T320] Call Trace:
[ 31.197563][ T320]
[ 31.200501][ T320] kvm_put_kvm+0x1100/0x12b0
[ 31.205135][ T320] ? __cfi_kvm_vm_release+0x10/0x10
[ 31.210373][ T320] kvm_vm_release+0x47/0x70
[ 31.215009][ T320] __fput+0x1fb/0xa00
[ 31.219015][ T320] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 31.224601][ T320] ____fput+0x20/0x30
[ 31.228604][ T320] task_work_run+0x1e3/0x250
[ 31.233232][ T320] ? __cfi_task_work_run+0x10/0x10
[ 31.238431][ T320] ? __kasan_check_write+0x18/0x20
[ 31.243600][ T320] do_exit+0x9b4/0x2630
[ 31.247781][ T320] ? __cfi_do_exit+0x10/0x10
[ 31.252376][ T320] ? __kasan_check_write+0x18/0x20
[ 31.257521][ T320] ? _raw_spin_lock_irq+0x8d/0x120
[ 31.262699][ T320] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 31.268269][ T320] ? zap_other_threads+0x334/0x370
[ 31.273449][ T320] do_group_exit+0x22a/0x300
[ 31.278063][ T320] __x64_sys_exit_group+0x43/0x50
[ 31.283145][ T320] x64_sys_call+0x2ed2/0x2ee0
[ 31.287850][ T320] do_syscall_64+0x58/0xf0
[ 31.292304][ T320] ? clear_bhb_loop+0x50/0xa0
[ 31.297069][ T320] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 31.303175][ T320] RIP: 0033:0x7f230d36fc49
[ 31.307619][ T320] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 31.314680][ T320] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 31.323170][ T320] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 320] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=320, si_uid=0, si_status=0, si_utime=0, si_stime=31} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555602dc650) = 321
./strace-static-x86_64: Process 321 attached
[pid 321] set_robust_list(0x5555602dc660, 24) = 0
[pid 321] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 321] setpgid(0, 0executing program
) = 0
[pid 321] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 321] write(3, "1000", 4) = 4
[pid 321] close(3) = 0
[pid 321] write(1, "executing program\n", 18) = 18
[pid 321] openat(AT_FDCWD, "/dev/kvm", O_RDONLY|O_CREAT|O_NOFOLLOW, 000) = 3
[pid 321] ioctl(3, KVM_CREATE_VM, 0) = 4
[pid 321] eventfd(127) = 5
[pid 321] openat(AT_FDCWD, NULL, O_RDONLY) = -1 EFAULT (Bad address)
[pid 321] ioctl(4, KVM_IOEVENTFD, 0x200000000000) = 0
[pid 321] socket(AF_UNIX, SOCK_SEQPACKET, 0) = 6
[pid 321] exit_group(0) = ?
[ 31.331182][ T320] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 31.339197][ T320] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 31.347250][ T320] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 31.355280][ T320] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 31.363316][ T320]
[ 31.366350][ T320] ---[ end trace 0000000000000000 ]---
[ 31.403278][ T321] ------------[ cut here ]------------
[ 31.408762][ T321] WARNING: CPU: 1 PID: 321 at kernel/rcu/srcutree.c:664 cleanup_srcu_struct+0x3e9/0x4c0
[ 31.418554][ T321] Modules linked in:
[ 31.422470][ T321] CPU: 1 UID: 0 PID: 321 Comm: syz-executor233 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 31.437936][ T321] Tainted: [W]=WARN
[ 31.441749][ T321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 31.451841][ T321] RIP: 0010:cleanup_srcu_struct+0x3e9/0x4c0
[ 31.457801][ T321] Code: 00 48 8b 5d a0 74 08 48 89 df e8 a2 18 6e 00 48 c7 03 00 00 00 00 48 83 c4 40 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 7f 1a 04 cc <0f> 0b eb e8 0f 0b eb e4 0f 0b eb e0 0f 0b eb 0e 0f 0b 4c 8b 75 d0
[ 31.477565][ T321] RSP: 0018:ffffc900012a7aa8 EFLAGS: 00010202
[ 31.483722][ T321] RAX: 1ffffd1ffff81092 RBX: ffffc900013628e8 RCX: ffffffff816d8c29
[ 31.491735][ T321] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffe8ffffc08490
[ 31.499965][ T321] RBP: ffffc900012a7b10 R08: ffffe8ffffc08497 R09: 1ffffd1ffff81092
[ 31.508092][ T321] R10: dffffc0000000000 R11: fffff91ffff81093 R12: dffffc0000000000
[ 31.516121][ T321] R13: dffffc0000000000 R14: 0000000000000000 R15: ffffe8ffffc08490
[ 31.524150][ T321] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 31.533156][ T321] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 31.539756][ T321] CR2: 00005555602dc650 CR3: 0000000102396000 CR4: 00000000003526b0
[ 31.547765][ T321] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 31.555920][ T321] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 31.563975][ T321] Call Trace:
[ 31.567277][ T321]
[ 31.570212][ T321] kvm_put_kvm+0x1100/0x12b0
[ 31.574855][ T321] ? __cfi_kvm_vm_release+0x10/0x10
[ 31.580085][ T321] kvm_vm_release+0x47/0x70
[ 31.584627][ T321] __fput+0x1fb/0xa00
[ 31.588629][ T321] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 31.594265][ T321] ____fput+0x20/0x30
[ 31.598279][ T321] task_work_run+0x1e3/0x250
[ 31.602924][ T321] ? __cfi_task_work_run+0x10/0x10
[ 31.608088][ T321] ? __kasan_check_write+0x18/0x20
[ 31.613254][ T321] do_exit+0x9b4/0x2630
[ 31.617445][ T321] ? __cfi_do_exit+0x10/0x10
[ 31.622043][ T321] ? __kasan_check_write+0x18/0x20
[ 31.627293][ T321] ? _raw_spin_lock_irq+0x8d/0x120
[ 31.632528][ T321] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 31.638107][ T321] ? zap_other_threads+0x334/0x370
[ 31.643268][ T321] do_group_exit+0x22a/0x300
[ 31.647882][ T321] __x64_sys_exit_group+0x43/0x50
[ 31.652964][ T321] x64_sys_call+0x2ed2/0x2ee0
[ 31.657680][ T321] do_syscall_64+0x58/0xf0
[ 31.662111][ T321] ? clear_bhb_loop+0x50/0xa0
[ 31.666901][ T321] entry_SYSCALL_64_after_hwframe+0x76/0x7e
[ 31.672853][ T321] RIP: 0033:0x7f230d36fc49
[ 31.677308][ T321] Code: Unable to access opcode bytes at 0x7f230d36fc1f.
[ 31.684398][ T321] RSP: 002b:00007fffab59bb78 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 31.692871][ T321] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f230d36fc49
[pid 321] +++ exited with 0 +++
--- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_EXITED, si_pid=321, si_uid=0, si_status=0, si_utime=0, si_stime=32} ---
restart_syscall(<... resuming interrupted clone ...>) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 322 attached
, child_tidptr=0x5555602dc650) = 322
[pid 322] set_robust_list(0x5555602dc660, 24) = 0
[pid 322] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 322] setpgid(0, 0) = 0
[pid 322] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 322] write(3, "1000", 4) = 4
[pid 322] close(3) = 0
executing program
[pid 322] write(1, "executing program\n", 18) = 18
[ 31.700866][ T321] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 31.708909][ T321] RBP: 00007f230d3ea2b0 R08: ffffffffffffffb8 R09: 0000000000000006
[ 31.716939][ T321] R10: 0000000000000006 R11: 0000000000000246 R12: 00007f230d3ea2b0
[ 31.724961][ T321] R13: 0000000000000000 R14: 00007f230d3ead00 R15: 00007f230d340ea0
[ 31.732991][ T321]
[ 31.736023][ T321] ---[ end trace 0000000000000000 ]---
[ 31.752655][ T10] ==================================================================
[ 31.760778][ T10] BUG: KASAN: vmalloc-out-of-bounds in srcu_invoke_callbacks+0x123/0x410
[ 31.769290][ T10] Read of size 8 at addr ffffc900013628f0 by task kworker/0:1/10
[ 31.777000][ T10]
[ 31.779317][ T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Tainted: G W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 31.779343][ T10] Tainted: [W]=WARN
[ 31.779348][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 31.779359][ T10] Workqueue: rcu_gp srcu_invoke_callbacks
[ 31.779382][ T10] Call Trace:
[ 31.779388][ T10]
[ 31.779396][ T10] __dump_stack+0x21/0x30
[ 31.779421][ T10] dump_stack_lvl+0x10c/0x190
[ 31.779440][ T10] ? __cfi_dump_stack_lvl+0x10/0x10
[ 31.779459][ T10] ? __cfi__printk+0x10/0x10
[ 31.779482][ T10] print_address_description+0x71/0x220
[ 31.779499][ T10] print_report+0x4a/0x70
[ 31.779513][ T10] kasan_report+0x163/0x1a0
[ 31.779537][ T10] ? srcu_invoke_callbacks+0x123/0x410
[ 31.779558][ T10] ? srcu_invoke_callbacks+0x123/0x410
[ 31.779577][ T10] __asan_report_load8_noabort+0x18/0x20
[ 31.779597][ T10] srcu_invoke_callbacks+0x123/0x410
[ 31.779617][ T10] ? __schedule+0x1333/0x1e00
[ 31.779636][ T10] ? __cfi_srcu_invoke_callbacks+0x10/0x10
[ 31.779656][ T10] ? kick_pool+0xb9/0x550
[ 31.779672][ T10] process_scheduled_works+0x7d5/0x1020
[ 31.779697][ T10] worker_thread+0xc58/0x1250
[ 31.779722][ T10] ? schedule+0xc6/0x240
[ 31.779739][ T10] kthread+0x2c7/0x370
[ 31.779753][ T10] ? __cfi_worker_thread+0x10/0x10
[ 31.779774][ T10] ? __cfi_kthread+0x10/0x10
[ 31.779788][ T10] ret_from_fork+0x64/0xa0
[ 31.779807][ T10] ? __cfi_kthread+0x10/0x10
[ 31.779821][ T10] ret_from_fork_asm+0x1a/0x30
[ 31.779843][ T10]
[ 31.779849][ T10]
[ 31.937137][ T10] Memory state around the buggy address:
[ 31.942785][ T10] ffffc90001362780: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 31.950840][ T10] ffffc90001362800: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 31.958896][ T10] >ffffc90001362880: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 31.966946][ T10] ^
[ 31.974656][ T10] ffffc90001362900: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 31.982710][ T10] ffffc90001362980: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[ 31.990762][ T10] ==================================================================
[ 31.998815][ T10] Disabling lock debugging due to kernel taint
[ 32.004976][ T10] BUG: unable to handle page fault for address: ffffc900013628f0
[ 32.012690][ T10] #PF: supervisor read access in kernel mode
[ 32.018674][ T10] #PF: error_code(0x0000) - not-present page
[ 32.024651][ T10] PGD 100000067 P4D 100000067 PUD 101656067 PMD 1023d3067 PTE 0
[ 32.032309][ T10] Oops: Oops: 0000 [#1] PREEMPT SMP KASAN PTI
[ 32.038378][ T10] CPU: 0 UID: 0 PID: 10 Comm: kworker/0:1 Tainted: G B W 6.12.30-syzkaller-g21ed84930c16 #0 fa4558fba7fa11aa57b2c84caea5bf67b39b1b5f
[ 32.053216][ T10] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 32.058225][ T10] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 32.068280][ T10] Workqueue: rcu_gp srcu_invoke_callbacks
[ 32.074031][ T10] RIP: 0010:srcu_invoke_callbacks+0x130/0x410
[ 32.080105][ T10] Code: 83 c5 10 4c 89 e8 48 c1 e8 03 80 3c 18 00 4c 8b 74 24 08 74 08 4c 89 ef e8 ad c0 6d 00 4d 8d be 48 ff ff ff 41 be 88 00 00 00 <4d> 03 75 00 4c 89 f0 48 c1 e8 03 80 3c 18 00 74 08 4c 89 f7 e8 87
[ 32.099714][ T10] RSP: 0018:ffffc900000a7ba0 EFLAGS: 00010082
[ 32.106157][ T10] RAX: ffff888102655f01 RBX: dffffc0000000000 RCX: ffff888102655f00
[ 32.114141][ T10] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 32.122124][ T10] RBP: ffffc900000a7c98 R08: ffffffff88958947 R09: 1ffffffff112b128
[ 32.130109][ T10] R10: dffffc0000000000 R11: fffffbfff112b129 R12: 1ffff92000014f7c
[ 32.138099][ T10] R13: ffffc900013628f0 R14: 0000000000000088 R15: ffffe8ffffc08448
[ 32.146076][ T10] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 32.155016][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 32.161702][ T10] CR2: ffffc900013628f0 CR3: 000000010875c000 CR4: 00000000003526b0
[ 32.169686][ T10] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 32.177660][ T10] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 32.185628][ T10] Call Trace:
[ 32.188901][ T10]
[ 32.191828][ T10] ? __schedule+0x1333/0x1e00
[ 32.196507][ T10] ? __cfi_srcu_invoke_callbacks+0x10/0x10
[ 32.202361][ T10] ? kick_pool+0xb9/0x550
[ 32.206688][ T10] process_scheduled_works+0x7d5/0x1020
[ 32.212247][ T10] worker_thread+0xc58/0x1250
[ 32.216927][ T10] ? schedule+0xc6/0x240
[ 32.221167][ T10] kthread+0x2c7/0x370
[ 32.225230][ T10] ? __cfi_worker_thread+0x10/0x10
[ 32.230348][ T10] ? __cfi_kthread+0x10/0x10
[ 32.234938][ T10] ret_from_fork+0x64/0xa0
[ 32.239357][ T10] ? __cfi_kthread+0x10/0x10
[ 32.243943][ T10] ret_from_fork_asm+0x1a/0x30
[ 32.248714][ T10]
[ 32.251737][ T10] Modules linked in:
[ 32.255655][ T10] CR2: ffffc900013628f0
[ 32.259812][ T10] ---[ end trace 0000000000000000 ]---
[ 32.265271][ T10] RIP: 0010:srcu_invoke_callbacks+0x130/0x410
[ 32.271429][ T10] Code: 83 c5 10 4c 89 e8 48 c1 e8 03 80 3c 18 00 4c 8b 74 24 08 74 08 4c 89 ef e8 ad c0 6d 00 4d 8d be 48 ff ff ff 41 be 88 00 00 00 <4d> 03 75 00 4c 89 f0 48 c1 e8 03 80 3c 18 00 74 08 4c 89 f7 e8 87
[ 32.291055][ T10] RSP: 0018:ffffc900000a7ba0 EFLAGS: 00010082
[ 32.297128][ T10] RAX: ffff888102655f01 RBX: dffffc0000000000 RCX: ffff888102655f00
[ 32.305114][ T10] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 32.313078][ T10] RBP: ffffc900000a7c98 R08: ffffffff88958947 R09: 1ffffffff112b128
[ 32.321055][ T10] R10: dffffc0000000000 R11: fffffbfff112b129 R12: 1ffff92000014f7c
[ 32.329127][ T10] R13: ffffc900013628f0 R14: 0000000000000088 R15: ffffe8ffffc08448
[ 32.337110][ T10] FS: 0000000000000000(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 32.346063][ T10] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 32.352647][ T10] CR2: ffffc900013628f0 CR3: 000000010875c000 CR4: 00000000003526b0
[ 32.360619][ T10] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 32.368585][ T10] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 32.376557][ T10] Kernel panic - not syncing: Fatal exception
[ 32.382974][ T10] Kernel Offset: disabled
[ 32.387388][ T10] Rebooting in 86400 seconds..