         Starting getty on tty2-tty6 if dbus and logind are not available...
         Starting Permit User Sessions...
         Starting System Logging Service...
[[0;32m  OK  [0m] Started Daily Cleanup of Temporary Directories.
[[0;32m  OK  [0m] Reached target Timers.
[[0;32m  OK  [0m] Started Permit User Sessions.
[[0;32m  OK  [0m] Found device /dev/ttyS0.
[[0;32m  OK  [0m] Started System Logging Service.
[[0;32m  OK  [0m] Started getty on tty2-tty6 if dbus and logind are not available.
[[0;32m  OK  [0m] Started OpenBSD Secure Shell server.
[[0;32m  OK  [0m] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
Warning: Permanently added '10.128.1.57' (ECDSA) to the list of known hosts.
[[0;32m  OK  [0m] Started Getty on tty6.
[[0;32m  OK  [0m] Started Getty on tty5.
[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty1.
[[0;32m  OK  [0m] Started Serial Getty on ttyS0.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.

Debian GNU/Linux 9 syzkaller ttyS0

2020/10/16 03:27:41 fuzzer started
2020/10/16 03:27:43 dialing manager at 10.128.0.26:38335
2020/10/16 03:27:43 syscalls: 3414
2020/10/16 03:27:43 code coverage: enabled
2020/10/16 03:27:43 comparison tracing: enabled
2020/10/16 03:27:43 extra coverage: enabled
2020/10/16 03:27:43 setuid sandbox: enabled
2020/10/16 03:27:43 namespace sandbox: enabled
2020/10/16 03:27:43 Android sandbox: enabled
2020/10/16 03:27:43 fault injection: enabled
2020/10/16 03:27:43 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2020/10/16 03:27:43 net packet injection: enabled
2020/10/16 03:27:43 net device setup: enabled
2020/10/16 03:27:43 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2020/10/16 03:27:43 devlink PCI setup: PCI device 0000:00:10.0 is not available
2020/10/16 03:27:43 USB emulation: enabled
2020/10/16 03:27:43 hci packet injection: enabled
2020/10/16 03:27:43 wifi device emulation: enabled
03:30:40 executing program 0:
open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x0)
setxattr$security_selinux(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)='security.selinux\x00', &(0x7f0000000180)='unconfined_u:system_r:insmod_t:s0-s0:c0.c1023\x00', 0x24, 0x0)

syzkaller login: [  340.267497][   T28] audit: type=1400 audit(1602819041.001:8): avc:  denied  { execmem } for  pid=8523 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  341.851133][ T8524] IPVS: ftp: loaded support on port[0] = 21
[  342.419501][ T8524] chnl_net:caif_netlink_parms(): no params data found
[  342.559434][ T8524] bridge0: port 1(bridge_slave_0) entered blocking state
[  342.567589][ T8524] bridge0: port 1(bridge_slave_0) entered disabled state
[  342.577212][ T8524] device bridge_slave_0 entered promiscuous mode
[  342.590706][ T8524] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.598137][ T8524] bridge0: port 2(bridge_slave_1) entered disabled state
[  342.607821][ T8524] device bridge_slave_1 entered promiscuous mode
[  342.655938][ T8524] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  342.673473][ T8524] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  342.720397][ T8524] team0: Port device team_slave_0 added
[  342.734075][ T8524] team0: Port device team_slave_1 added
[  342.778656][ T8524] batman_adv: batadv0: Adding interface: batadv_slave_0
[  342.786348][ T8524] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  342.812705][ T8524] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  342.829233][ T8524] batman_adv: batadv0: Adding interface: batadv_slave_1
[  342.837158][ T8524] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  342.863262][ T8524] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  342.933422][ T8524] device hsr_slave_0 entered promiscuous mode
[  342.946716][ T8524] device hsr_slave_1 entered promiscuous mode
[  343.242552][ T8524] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  343.274555][ T8524] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  343.315032][ T8524] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  343.351951][ T8524] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  343.668865][ T8524] 8021q: adding VLAN 0 to HW filter on device bond0
[  343.703525][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  343.712488][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  343.734114][ T8524] 8021q: adding VLAN 0 to HW filter on device team0
[  343.762733][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  343.763037][   T27] Bluetooth: hci0: command 0x0409 tx timeout
[  343.772226][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  343.789353][ T8744] bridge0: port 1(bridge_slave_0) entered blocking state
[  343.796719][ T8744] bridge0: port 1(bridge_slave_0) entered forwarding state
[  343.855052][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  343.864579][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  343.874277][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  343.883646][ T8744] bridge0: port 2(bridge_slave_1) entered blocking state
[  343.890865][ T8744] bridge0: port 2(bridge_slave_1) entered forwarding state
[  343.899818][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  343.910479][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  343.920970][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  343.931124][ T8744] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  343.953563][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  343.963329][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  343.973863][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  343.993522][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  344.002466][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  344.033454][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  344.042274][   T27] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  344.061019][ T8524] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  344.120942][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  344.128883][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  344.168064][ T8524] 8021q: adding VLAN 0 to HW filter on device batadv0
[  344.231963][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  344.242051][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  344.301621][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  344.311449][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  344.335957][ T8524] device veth0_vlan entered promiscuous mode
[  344.344992][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  344.354023][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  344.404464][ T8524] device veth1_vlan entered promiscuous mode
[  344.495718][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  344.505587][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  344.531840][ T8524] device veth0_macvtap entered promiscuous mode
[  344.557837][ T8524] device veth1_macvtap entered promiscuous mode
[  344.622327][ T8524] batman_adv: batadv0: Interface activated: batadv_slave_0
[  344.630840][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  344.640542][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  344.649675][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  344.659660][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  344.688840][ T8524] batman_adv: batadv0: Interface activated: batadv_slave_1
[  344.707861][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  344.718137][ T3245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  344.735123][ T8524] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  344.744556][ T8524] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  344.753975][ T8524] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  344.762869][ T8524] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  345.053785][ T8746] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  345.061691][ T8746] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.075177][ T3798] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  345.114829][ T8537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  345.123271][ T8537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  345.134073][ T8751] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  345.393530][   T28] audit: type=1800 audit(1602819046.121:9): pid=8769 uid=0 auid=0 ses=4 subj=system_u:system_r:kernel_t:s0 op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="sda1" ino=15720 res=0 errno=0
[  345.444356][   T28] audit: type=1400 audit(1602819046.151:10): avc:  denied  { relabelto } for  pid=8768 comm="syz-executor.0" name="file0" dev="sda1" ino=15720 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:system_r:insmod_t:s0 tclass=file permissive=1
03:30:46 executing program 0:
r0 = memfd_create(&(0x7f0000000000)='\v\x8b\x8a\xa9\x9fca\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b', 0x0)
fremovexattr(r0, &(0x7f0000000180)=@random={'system.', 'posix_acl_access&)em1)\x00>\va\xac\xcf\xa5\xa9\x8a\xa2\xdb\xf6\x15\'\xe1I\xfe\xe65\x86\x04\x19\xfb\xbd\xf15+G\xd78\x8e[.\x176S\xf4\x86K[;\xff\'\x84\xe2 \xb9\xa3\xadvJc\n/\xbc\xea\x19C\x04\xe3X\x13\x16U[\xba\f\xe6\v\xcd\xa7\x83Y\x026\xf2]\xe1\x161\xb1Q\x8cu\xc05\xffw\xdc\xd2\x8d\xa9\xef\xae\xd03\"\xc3O\xe3\x05\x84\x84\xe5\xe6\xf8K\xe7\x9d\x86\xb8\xf9w\xc8\x14G\x13\x92\xe3\xcc$X\x148\x8a\x12\xcbO\xec\xfa\xf5\xaa\xf1\xe8\bcL\xa5\xee\x7ft\x13f\x00\x11\xc1\xf8\ba\x05\x91t3Hn\x97\x0env\"J\xecq\xb0y\x7f\xf9\x91\x03\x88\xfe\xfb\xc5k\x01x\xd8\xfbJ\xf1\x8bk\xbe\xf2(/\x06\xa4\xaeL\x850\xde\x9ewh\xecBz\x9a\xf4\'R\xb3\xf1H\xa9 !G\xff\x062\x85UgC!\xf8l\aX\xb1Y\x01U\x84\x89\xf9KG\x83\xd7\xd6Cq\x1d\"}\xbc5\x9d\xd3\x7f\xf7\x84N\x88\xfcr\xd3\xb3+\x10[\xcfY\x84\xe8\x1a\xcd\xcfk\xe5\xc8(\xcc0X;\xf0_\xb7\xc92\x1eQ\v\x1b\x86Q(\x1b\xb0z\xc7\x960\xab\xf40G\t\xd6\'\xb9\x1dv\"D\xfc\x93H\xd8X\xc6\xf1\x9d\xa2\xe3\xbb'})

[  345.514646][   T28] audit: type=1400 audit(1602819046.251:11): avc:  denied  { unlink } for  pid=8524 comm="syz-executor.0" name="file0" dev="sda1" ino=15720 scontext=system_u:system_r:kernel_t:s0 tcontext=unconfined_u:system_r:insmod_t:s0 tclass=file permissive=1
03:30:46 executing program 0:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r0 = gettid()
timer_create(0x8, &(0x7f0000000000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

[  345.843901][ T8751] Bluetooth: hci0: command 0x041b tx timeout
03:30:46 executing program 0:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r0 = gettid()
timer_create(0x8, &(0x7f0000000000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:30:47 executing program 0:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r0 = gettid()
timer_create(0x8, &(0x7f0000000000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:30:47 executing program 0:
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000080))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
r0 = gettid()
timer_create(0x8, &(0x7f0000000000)={0x0, 0x14, 0x4, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x1, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)

03:30:47 executing program 0:
r0 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000100)='/dev/dsp1\x00', 0x0, 0x0)
ioctl$SNDCTL_DSP_GETIPTR(r0, 0x800c5011, 0x0)

03:30:47 executing program 0:
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00')
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x6, 0xffffdf01, 0x6, 0x80000001, 0x404, r0, 0x1, [], 0x0, r0, 0x4, 0x2, 0x2}, 0x40)
r2 = socket(0x1, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@newlink={0x8c, 0x10, 0x401, 0x1, 0x25dfdbfd, {}, [@IFLA_LINKINFO={0x64, 0x12, 0x0, 0x1, @sit={{0x8, 0x1, 'sit\x00'}, {0x58, 0x2, 0x0, 0x1, [@IFLA_IPTUN_TOS={0x5, 0x5, 0x28}, @IFLA_IPTUN_6RD_PREFIX={0x14, 0xb, @mcast1}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0xff}, @IFLA_IPTUN_FWMARK={0x8, 0x14, 0x9}, @IFLA_IPTUN_ENCAP_FLAGS={0x6, 0x10, 0x1}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @rand_addr=0x64010100}, @IFLA_IPTUN_TOS={0x5, 0x5, 0x9}, @IFLA_IPTUN_PROTO={0x5, 0x9, 0x29}, @IFLA_IPTUN_ENCAP_DPORT={0x6, 0x12, 0x4e21}]}}}, @IFLA_MASTER={0x8, 0x3, r3}]}, 0x8c}}, 0x0)

03:30:48 executing program 0:
pselect6(0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x8, 0x1000000000000}, 0x0, &(0x7f0000000140), &(0x7f0000000200), 0x0)

03:30:48 executing program 0:
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
r1 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/full\x00', 0x0, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040)=ANY=[], 0xfea7)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r2, 0x0)
getsockopt$inet_int(r0, 0x10d, 0xe5, 0x0, &(0x7f0000000080))
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x1, 0x1000000, 0x100000000})

[  347.657934][   T28] audit: type=1400 audit(1602819048.392:12): avc:  denied  { create } for  pid=8801 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=dccp_socket permissive=1
03:30:48 executing program 0:
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000080)='.\x00', 0x400017e)
open(&(0x7f0000000040)='./bus\x00', 0x17e, 0x0)
r1 = creat(&(0x7f0000000000)='./bus\x00', 0x10)
r2 = openat$vcs(0xffffff9c, &(0x7f00000000c0)='/dev/vcs\x00', 0x290281, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r2, 0x0, 0x0}, 0x1c)
ioctl$BLKROSET(r2, 0x125d, &(0x7f0000000200)=0x8)
ioctl$VIDIOC_S_FBUF(r1, 0x402c560b, &(0x7f00000001c0)={0x21, 0x64, &(0x7f00000000c0)="b241568d0737f09ff5302c0203a1614fc585f28bcb8d6cfdfcc860bf5d4b45c9e5569e4ebcf327e0aac43220c96b29a0e6d9f19300c43440587320a77b6ddc88e99a6e7c07d379d288b4247eea3dcf749c8d484b6ab62d84a434c02a0e4d44ec2c36768b7c0be60cf057ab7b3f6c344f3614d41c81adbf4b5ad4ff426a7b4bc50c189c7618bbf72d486bb3278d66dc66f987a6d8d3f51ae0502ae7e89f293ee9f3a8535393238677f40b7f691d73e35f91efdacc03ce5583029205fdc4e43267d930584eb219dfd85909c1122c66b71414d074996339aa1db56d940d017accd3ad6f", {0xfffffffa, 0x6, 0x50313459, 0x6, 0xa0cd, 0x100, 0x8, 0x9}})
unlink(&(0x7f0000000280)='./bus\x00')

[  347.922512][ T8751] Bluetooth: hci0: command 0x040f tx timeout
03:30:48 executing program 0:
r0 = socket(0x10, 0x80002, 0x0)
r1 = creat(0x0, 0x0)
syz_usb_connect$cdc_ecm(0x5, 0x0, 0x0, 0x0)
sysfs$2(0x2, 0x0, &(0x7f0000000200)=""/102)
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
ioctl$FBIOPUTCMAP(r1, 0x4605, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000180)=[0x4, 0x7, 0x69, 0x1], &(0x7f00000001c0)=[0xaefd, 0x9, 0x4683, 0x400, 0x9], &(0x7f0000000280)})
r3 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x4, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="02000000000000005c00128009000100766c616e000000004c0002800600010088090000340003800c000100ef000000040000000c000100b838163a060000000c00010007000000000100000c00e700000000000000000000000200100000000100000008000500", @ANYRES32=r2, @ANYBLOB="08000a00c64f4ba7c956ae935998acaed6de8f6f3e1ea6f1907f0000000000000037aeba9082a69bc75d7a3912339e96a01f5aa7929395003f20017069ebf1b5ebe5a27fb59f6aa90fbec56b78a52078c1eed0f3"], 0x8c}, 0x1, 0x0, 0x0, 0x54}, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
tee(0xffffffffffffffff, r4, 0x3, 0x0)

[  348.087536][    C1] hrtimer: interrupt took 107381 ns
[  348.155688][ T8810] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  349.346341][ T8811] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
03:30:50 executing program 0:
r0 = socket(0x10, 0x80002, 0x0)
r1 = creat(0x0, 0x0)
syz_usb_connect$cdc_ecm(0x5, 0x0, 0x0, 0x0)
sysfs$2(0x2, 0x0, &(0x7f0000000200)=""/102)
openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000000)={'batadv0\x00', <r2=>0x0})
ioctl$FBIOPUTCMAP(r1, 0x4605, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040), &(0x7f0000000180)=[0x4, 0x7, 0x69, 0x1], &(0x7f00000001c0)=[0xaefd, 0x9, 0x4683, 0x400, 0x9], &(0x7f0000000280)})
r3 = socket$nl_route(0x10, 0x3, 0x0)
perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x4, &(0x7f0000000140)={&(0x7f0000000580)=ANY=[@ANYBLOB="8c0000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="02000000000000005c00128009000100766c616e000000004c0002800600010088090000340003800c000100ef000000040000000c000100b838163a060000000c00010007000000000100000c00e700000000000000000000000200100000000100000008000500", @ANYRES32=r2, @ANYBLOB="08000a00c64f4ba7c956ae935998acaed6de8f6f3e1ea6f1907f0000000000000037aeba9082a69bc75d7a3912339e96a01f5aa7929395003f20017069ebf1b5ebe5a27fb59f6aa90fbec56b78a52078c1eed0f3"], 0x8c}, 0x1, 0x0, 0x0, 0x54}, 0x0)
pipe(&(0x7f00000000c0)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
tee(0xffffffffffffffff, r4, 0x3, 0x0)

[  349.631943][ T8824] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  350.004312][ T3798] Bluetooth: hci0: command 0x0419 tx timeout
03:30:51 executing program 1:
sendmsg$NL80211_CMD_GET_COALESCE(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000080)={&(0x7f0000000040)={0x28, 0x0, 0xa4da83cf01314691, 0x70bd2a, 0x25dfdbfd, {{}, {@val={0x8, 0x1, 0x3a}, @void, @val={0xc, 0x99, {0x9, 0x2d}}}}, ["", "", ""]}, 0x28}, 0x1, 0x0, 0x0, 0x2400c041}, 0x20048084)
ioctl$FBIOPAN_DISPLAY(0xffffffffffffffff, 0x4606, &(0x7f0000000100)={0x1e0, 0x1e0, 0x780, 0x40, 0x0, 0x2, 0x18, 0x0, {0x9, 0x4, 0x1}, {0x100, 0x7543}, {0x4, 0x7, 0x1}, {0x10000, 0x6}, 0x2, 0x2, 0x5, 0x1f, 0x1, 0x9, 0x1, 0x1, 0x6, 0x8, 0x3, 0xb7, 0x30, 0x2, 0x0, 0x4})
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f00000001c0)='cpuacct.usage_percpu_sys\x00', 0x0, 0x0)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000240)='IPVS\x00')
sendmsg$IPVS_CMD_DEL_DAEMON(r0, &(0x7f0000000340)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x48, r1, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DEST={0x34, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x8}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x3}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x6}, @IPVS_DEST_ATTR_PORT={0x6, 0x2, 0x4e24}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x800}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4044000}, 0x4800)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0)='ethtool\x00')
ioctl$ifreq_SIOCGIFINDEX_wireguard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'wg1\x00', <r3=>0x0})
ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f00000004c0)={'ip6gre0\x00', &(0x7f0000000440)={'syztnl1\x00', <r4=>0x0, 0x4, 0x7, 0x1, 0x2a35, 0x9, @private0, @private1, 0x700, 0x7800, 0x2, 0x6}})
getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000500)={<r5=>0x0, @rand_addr, @empty}, &(0x7f0000000540)=0xc)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000600)={'gretap0\x00', &(0x7f0000000580)={'syztnl0\x00', <r6=>0x0, 0x7, 0x0, 0x0, 0xffff, {{0x11, 0x4, 0x1, 0x1, 0x44, 0x68, 0x0, 0x0, 0x2f, 0x0, @multicast2, @loopback, {[@timestamp_addr={0x44, 0x1c, 0x18, 0x1, 0x2, [{@initdev={0xac, 0x1e, 0x1, 0x0}, 0x2}, {@broadcast, 0xfffffbff}, {@dev={0xac, 0x14, 0x14, 0x23}, 0xfffffff9}]}, @lsrr={0x83, 0x13, 0xa5, [@loopback, @local, @rand_addr=0x64010101, @multicast1]}]}}}}})
ioctl$sock_ipv6_tunnel_SIOCDELPRL(r0, 0x89f6, &(0x7f00000006c0)={'sit0\x00', &(0x7f0000000640)={'syztnl0\x00', <r7=>0x0, 0x29, 0x5, 0xf6, 0x7f, 0x20, @empty, @loopback, 0x700, 0x10, 0x964, 0xdd3}})
sendmsg$ETHTOOL_MSG_LINKSTATE_GET(r0, &(0x7f0000000900)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000008c0)={&(0x7f0000000700)={0x188, r2, 0x300, 0x70bd26, 0x25dfdbfc, {}, [@HEADER={0x4c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_hsr\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r3}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'tunl0\x00'}]}, @HEADER={0x14, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}, @HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x5}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'hsr0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}, @HEADER={0x84, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r6}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @HEADER={0x34, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_bridge\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}]}, @HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'team_slave_1\x00'}]}]}, 0x188}, 0x1, 0x0, 0x0, 0x8004}, 0x1)
ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, &(0x7f0000000940)={0x0, "15cab7624823857fb3531fd6e700c0bc"})
openat$sequencer(0xffffff9c, &(0x7f0000001940)='/dev/sequencer\x00', 0x121c02, 0x0)
r8 = signalfd4(r0, &(0x7f0000001980)={[0x20, 0x8]}, 0x8, 0x80800)
setsockopt$SO_VM_SOCKETS_BUFFER_SIZE(r8, 0x28, 0x0, &(0x7f00000019c0)=0x1000, 0x8)
socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000001a00)="f0e7516e71dd2631ad44141b229ec205811fb0d62cdaac41bc4393314c676570a1361bdf9af3976a2ac05c98bfcbf9320ebdb4f6fa37b5162d3aa05deb6103b7a1a1438892acd883d5a984b553924e33c1e6ea0f9e53ef92d1388708a375910656f78f3d993f3e580114a0b40d5fe728dbb252a7a08a0637d5d02ef79bc17568355a4a5203f827bf1cd05bc709b7b467738332bc93f6ca3aca6127ec49e403053057dbd0f29c8b14cba38eb46e1eaca75f82ed400daad7398934f15fa1", 0xbd)
ioctl$SG_SET_TIMEOUT(r0, 0x2201, &(0x7f0000001ac0)=0xa90)
ioctl$SOUND_MIXER_READ_CAPS(r8, 0x80044dfc, &(0x7f0000001b00))

[  350.885221][   T28] audit: type=1400 audit(1602819051.622:13): avc:  denied  { execmem } for  pid=8833 comm="syz-executor.1" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
03:30:51 executing program 0:
syz_mount_image$udf(&(0x7f0000000000)='udf\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x2e, &(0x7f0000000200)=[{&(0x7f0000010000)="0042454130310100"/32, 0x20, 0x8000}, {&(0x7f0000010100)="004e535230330100"/32, 0x20, 0x8800}, {&(0x7f0000010200)="0054454130310100"/32, 0x20, 0x9000}, {&(0x7f0000010300)="01000300d20001001369f001600000000100000000000000084c696e757855444600000000000000000000000000000000000000000000090100010003000300010000000100000008313233343536373831323334353637384c696e757855444600"/128, 0x80, 0x18000}, {&(0x7f0000010400)="0000000000000019004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000004f53544120436f6d7072657373656420556e69636f64650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002a4c696e7578206d6b756466667300000000000000000004050000000000007810e4070913142c1a143d07002a4c696e7578205544464653000000000000000000000004050000", 0xe0, 0x180c0}, {&(0x7f0000010500)="00000000000000000100"/32, 0x20, 0x181e0}, {&(0x7f0000010600)="06000300e2000100800ee8016100000002000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084c696e7578554446000000", 0x60, 0x18400}, {&(0x7f0000010700)="000000000000000000000000000000000000000900040000002a4f5354412055444620436f6d706c69616e74000000000102000000000000000400001000000000000000000000004000000001000000002a4c696e75782055444646530000000000000000000000040500"/128, 0x80, 0x184c0}, {&(0x7f0000010800)="00000000000000000000000000000000004000008000000002400000002a554446205370617261626c6520506172746974696f6e010204050000000001000000100002003802000070000000f00700"/96, 0x60, 0x185a0}, {&(0x7f0000010900)="05000300270001003a91f001620000000500000001000000002b4e53523033000000000000000000000000000000000000000000000000000004000000000000", 0x40, 0x18800}, {&(0x7f0000010a00)="0000000000000000000000000000000000000000000000000400000010050000d0020000002a4c696e7578205544464653000000000000000000000004050000", 0x40, 0x188a0}, {&(0x7f0000010b00)="0700030005000100f275300063000000060000000500000000e4000027000000002c00007500000000c0010090000000003c00000101000000280000f5070000", 0x40, 0x18c00}, {&(0x7f0000010c00)="04000300f60001003168f0016400000004000000002a554446204c5620496e666f00000000000000000000000102040500000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084c696e7578554446000000", 0x80, 0x19000}, {&(0x7f0000010d00)="0000000000000000000000000000000000000009084c696e7578206d6b756466667320322e32000000000000000000000000000000000012084c696e757820756466746f6f6c7320322e3200000000000000000000000000000000130868747470733a2f2f6769746875622e636f6d2f70616c692f756466746f6f6c732f0022002a4c696e757820554446465300000000000000000000000405000000000000", 0xa0, 0x190e0}, {&(0x7f0000010e00)="08000300620001000000f0016500"/32, 0x20, 0x19400}, {&(0x7f0000010f00)="00000300f20001001b39280270000000002a5544462053706172696e67205461626c65000000000001020405000000004000000000000000ffffffff10010000ffffffff20010000ffffffff30010000ffffffff40010000ffffffff50010000ffffffff60010000ffffffff70010000ffffffff80010000ffffffff90010000ffffffffa0010000ffffffffb0010000ffffffffc0010000ffffffffd0010000ffffffffe0010000fffffffff0010000ffffffff00020000ffffffff10020000ffffffff20020000ffffffff30020000ffffffff40020000ffffffff50020000ffffffff60020000ffffffff70020000ffffffff80020000ffffffff90020000ffffffffa0020000ffffffffb0020000ffffffffc0020000ffffffffd0020000ffffffffe0020000fffffffff0020000ffffffff00030000ffffffff10030000ffffffff20030000ffffffff30030000ffffffff40030000ffffffff50030000ffffffff60030000ffffffff70030000ffffffff80030000ffffffff90030000ffffffffa0030000ffffffffb0030000ffffffffc0030000ffffffffd0030000ffffffffe0030000fffffffff0030000ffffffff00040000ffffffff10040000ffffffff20040000ffffffff30040000ffffffff40040000ffffffff50040000ffffffff60040000ffffffff70040000ffffffff80040000ffffffff90040000ffffffffa0040000ffffffffb0040000ffffffffc0040000ffffffffd0040000ffffffffe0040000fffffffff0040000ffffffff000500"/576, 0x240, 0x1c000}, {&(0x7f0000011200)="09000300250001009b877600800000000010e4070913122c1a61140f0100000000000000000000001800000000000000000000000000000000000000000000000000000000000000010000002e000000ba020000d0020000002a4c696e757820554446465300000000000000000000000405000000000000060000000200000001020102010200"/160, 0xa0, 0x20000}, {&(0x7f0000011300)="080003007e0001000000f0018100"/32, 0x20, 0x20400}, {&(0x7f0000011400)="020003003800010077c9f00100010000004000006000000000400000e0070000", 0x20, 0x40000}, {&(0x7f0000011500)="07010300f1000100337240000000000000000000040000000100000100000000000000002800000000340040030000000034004013000000003c004031000000003c0a4041000000000800002e00"/96, 0x60, 0xff}, {&(0x7f0000011600)='syzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkallersyzkal\x00\x00\x00\x00\x00\x00', 0x420, 0x401}, {&(0x7f0000000440)="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", 0x13b, 0x148000}, {&(0x7f0000011c00)="00000000000000000000000000000009004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084c696e7578554446000000000000000000000000000000000000000000000908436f707972696768740000000000000000000000000000000000000000000a084162737472616374000000000000000000000000000000000000000000000900040000300000000000000000000000002a4f5354412055444620436f6d706c69616e7400000000010200000000000000000000000000000000000000000000000400002000"/256, 0x100, 0x1480e0}, {&(0x7f0000011d00)="0a010300470001008ec1d8001100000000000000040000000100000500000000000001000000000000000000a57c000001000000000000001a040000000000001a0400000000000002000000000000000010e4070913122c1a5e224b0010e4070913122c1a5e224b0010e4070913122c1a5e224b0010e4070913122c1a5e224b01000000000000000000000000000000000000000000000000000000000000000000000000000000002a4c696e757820554446465300000000000000000000000405000000000000120000000000000000000000100000001a04000001000000", 0xe0, 0x148400}, {&(0x7f0000011e00)="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"/288, 0x120, 0x148800}, {&(0x7f0000012000)="05010300830001005c35c8002000000000000000040000000100000d00000000000003000000000000000000a57c00000100000000000000280000000000000000000000000000007810e4070913142c1a143d077810e4070913142c1a143d077810e4070913142c1a143d070100000000000000000000000000000000000000002a4c696e7578205544464653000000000000000000000004050000000000000000000000000000000000002800000001010300150001001bbc18002000000001000a00000400002000"/224, 0xe0, 0x14c002}, {&(0x7f0000012100)="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", 0x160, 0x14c400}, {&(0x7f0000012300)="0a010300e8000100578ed2002200000000000000040000000100000500000000000003000000000000000000a57c000001000000000000000a000000000000000a0000000000000000000000000000000010e4070913122c1a5e224b0010e4070913122c1a5e224b0010e4070913122c1a5e224b0010e4070913122c1a5e224b01000000000000000000000000000000000000000000000000000000000000000000000000000000002a4c696e7578205544464653000000000000000000000004050000000000001400000000000000000000000a00000073797a6b616c6c65727300"/256, 0x100, 0x14c800}, {&(0x7f0000012400)="0a0103007c000100cda5d8002300000000000000040000000100000500000000000001000000000000000000a57c000002000000000000002823000000000000282300000000000009000000000000000010e4070913122c1a5e4a4b0010e4070913122c1a5e4a4b0010e4070913122c1a5e4a4b0010e4070913122c1a5e4a4b01000000000000000000000000000000000000000000000000000000000000000000000000000000002a4c696e757820554446465300000000000000000000000405000000000000150000000000000000000000100000002823000024000000", 0xe0, 0x14cc00}, {&(0x7f0000012500)="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", 0x140, 0x14f400}, {&(0x7f0000012700)="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"/512, 0x200, 0x150000}, {&(0x7f0000012900)="05010300b90001000dc2a0004000000000000000040000000100000500000000000000040000000000000000a57c00000100000000000000000000000000000000000000000000007810e4070913142c1a143d077810e4070913142c1a143d077810e4070913142cd31a143d070100000000000000000000000000000000000000002a4c696e75782055444646530000000000000000000000040500000000000010000000000000000000000000083f00"/192, 0xc0, 0x154000}, {&(0x7f0000012a00)="01000300590001001369f001e00700000100000000000000084c696e757855444600000000000000000000000000000000000000000000090100010003000300010000000100000008313233343536373831323334353637384c696e757855444600"/128, 0x80, 0x1f8000}, {&(0x7f0000012b00)="0000000000000019004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000004f53544120436f6d7072657373656420556e69636f64650000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002a4c696e7578206d6b756466667300000000000000000004050000000000007810e4070913142c1a143d07002a4c696e7578205544464653000000000000000000000004050000", 0xe0, 0x1f80c0}, {&(0x7f0000012c00)="00000000000000000100"/32, 0x20, 0x1f81e0}, {&(0x7f0000012d00)="0600030069000100800ee801e107000002000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084c696e7578554446000000", 0x60, 0x1f8400}, {&(0x7f0000012e00)="000000000000000000000000000000000000000900040000002a4f5354412055444620436f6d706c69616e74000000000102000000000000000400001000000000000000000000004000000001000000002a4c696e75782055444646530000000000000000000000040500"/128, 0x80, 0x1f84c0}, {&(0x7f0000012f00)="00000000000000000000000000000000004000008000000002400000002a554446205370617261626c6520506172746974696f6e010204050000000001000000100002003802000070000000f00700"/96, 0x60, 0xffff}, {&(0x7f0000013000)="05000300ae0001003a91f001e20700000500000001000000002b4e53523033000000000000000000000000000000000000000000000000000004000000000000", 0x40, 0x1f8800}, {&(0x7f0000013100)="0000000000000000000000000000000000000000000000000400000010050000d0020000002a4c696e7578205544464653000000000000000000000004050000", 0x40, 0x1f88a0}, {&(0x7f0000013200)="070003008c000100f2753000e3070000060000000500000000e4000027000000002c00007500000000c0010090000000003c00000101000000280000f5070000", 0x40, 0x1f8c00}, {&(0x7f0000000040)="040003007d0001003168f001e407000004000000002a554446204c5620496e666f00000000000000000000000102040500000000004f53544120436f6d7072657373656420556e69636f646500000000000000000000000000000000000000000000000000000000000000000000000000000000084c696e7578554446000000", 0x80, 0x1f9000}, {&(0x7f0000013400)="0000000000000000000000000000000000000009084c696e7578206d6b756466667320322e32000000000000000000000000000000000012084c696e757820756466746f6f6c7320322e3200000000000000000000000000000000130868747470733a2f2f6769746875622e636f6d2f70616c692f756466746f6f6c732f0022002a4c696e757820554446465300000000000000000000000405000000000000", 0xa0, 0x1f90e0}, {&(0x7f0000013500)="08000300e90001000000f001e50700"/32, 0x20, 0x1f9400}, {&(0x7f0000013600)="00000300790001001b392802f0070000002a5544462053706172696e67205461626c65000000000001020405000000004000000000000000ffffffff10010000ffffffff20010000ffffffff30010000ffffffff40010000ffffffff50010000ffffffff60010000ffffffff70010000ffffffff80010000ffffffff90010000ffffffffa0010000ffffffffb0010000ffffffffc0010000ffffffffd0010000ffffffffe0010000fffffffff0010000ffffffff00020000ffffffff10020000ffffffff20020000ffffffff30020000ffffffff40020000ffffffff50020000ffffffff60020000ffffffff70020000ffffffff80020000ffffffff90020000ffffffffa0020000ffffffffb0020000ffffffffc0020000ffffffffd0020000ffffffffe0020000fffffffff0020000ffffffff00030000ffffffff10030000ffffffff20030000ffffffff30030000ffffffff40030000ffffffff50030000ffffffff60030000ffffffff70030000ffffffff80030000ffffffff90030000ffffffffa0030000ffffffffb0030000ffffffffc0030000ffffffffd0030000ffffffffe0030000fffffffff0030000ffffffff00040000ffffffff10040000ffffffff20040000ffffffff30040000ffffffff40040000ffffffff50040000ffffffff60040000ffffffff70040000ffffffff80040000ffffffff90040000ffffffffa0040000ffffffffb0040000ffffffffc0040000ffffffffd0040000ffffffffe0040000fffffffff0040000ffffffff000500"/576, 0x240, 0x1fc000}, {&(0x7f0000013900)="020003003d00010077c9f001ff070000004000006000000000400000e0070000", 0x20, 0x1ffc00}], 0x0, &(0x7f0000013a00))

[  351.225911][ T8835] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  351.233868][ T8835] UDF-fs: Scanning with blocksize 512 failed
[  351.337174][ T8835] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 1296
[  351.348157][ T8835] UDF-fs: error (device loop0): udf_read_inode: (ino 1296) failed !bh
[  351.356544][ T8835] =====================================================
[  351.363573][ T8835] BUG: KMSAN: uninit-value in udf_evict_inode+0x380/0x7a0
[  351.370680][ T8835] CPU: 1 PID: 8835 Comm: syz-executor.0 Not tainted 5.9.0-rc8-syzkaller #0
[  351.379247][ T8835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.389358][ T8835] Call Trace:
[  351.392718][ T8835]  dump_stack+0x21c/0x280
[  351.397128][ T8835]  kmsan_report+0xf7/0x1e0
[  351.401571][ T8835]  __msan_warning+0x55/0x90
[  351.406090][ T8835]  udf_evict_inode+0x380/0x7a0
[  351.410916][ T8835]  ? inode_wait_for_writeback+0x2e7/0x320
[  351.416657][ T8835]  ? kmsan_get_metadata+0x116/0x180
[  351.421870][ T8835]  ? kzalloc+0x60/0x60
[  351.425948][ T8835]  evict+0x4ca/0xeb0
[  351.429857][ T8835]  iput+0xc44/0xf60
[  351.433681][ T8835]  iget_failed+0x2c3/0x380
[  351.438104][ T8835]  __udf_iget+0x15ae/0x4630
[  351.442618][ T8835]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  351.448773][ T8835]  ? kmsan_internal_set_origin+0x85/0xc0
[  351.454413][ T8835]  udf_fill_partdesc_info+0xe64/0x1510
[  351.459869][ T8835]  udf_process_sequence+0x46b0/0x6df0
[  351.465251][ T8835]  udf_check_anchor_block+0x50b/0x880
[  351.470643][ T8835]  udf_scan_anchors+0x27c/0xc60
[  351.475511][ T8835]  ? __msan_poison_alloca+0xec/0x110
[  351.480819][ T8835]  ? __msan_poison_alloca+0xec/0x110
[  351.486093][ T8835]  ? udf_get_last_block+0x340/0x3b0
[  351.491288][ T8835]  ? kmsan_get_metadata+0x116/0x180
[  351.496489][ T8835]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  351.502282][ T8835]  udf_load_vrs+0x33c/0x1560
[  351.506904][ T8835]  udf_fill_super+0x11f5/0x3280
[  351.511737][ T8835]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  351.517531][ T8835]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  351.523740][ T8835]  mount_bdev+0x619/0x900
[  351.528055][ T8835]  ? udf_mount+0xe0/0xe0
[  351.532287][ T8835]  udf_mount+0xc9/0xe0
[  351.536391][ T8835]  legacy_get_tree+0x163/0x2e0
[  351.541138][ T8835]  ? lvid_get_unique_id+0x400/0x400
[  351.546338][ T8835]  ? legacy_parse_monolithic+0x310/0x310
[  351.551951][ T8835]  vfs_get_tree+0xd8/0x5d0
[  351.556366][ T8835]  path_mount+0x3dde/0x5db0
[  351.560871][ T8835]  do_mount+0x1c6/0x220
[  351.565665][ T8835]  __se_compat_sys_mount+0x7bb/0xaa0
[  351.570936][ T8835]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  351.576983][ T8835]  __ia32_compat_sys_mount+0x62/0x80
[  351.582298][ T8835]  __do_fast_syscall_32+0x129/0x180
[  351.587527][ T8835]  do_fast_syscall_32+0x6a/0xc0
[  351.592373][ T8835]  do_SYSENTER_32+0x73/0x90
[  351.596934][ T8835]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.603252][ T8835] RIP: 0023:0xf7ffc549
[  351.607300][ T8835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  351.626904][ T8835] RSP: 002b:00000000f55f5f20 EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  351.635338][ T8835] RAX: ffffffffffffffda RBX: 00000000f55f5f7c RCX: 0000000020000100
[  351.643298][ T8835] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000f55f5fbc
[  351.651264][ T8835] RBP: 00000000f55f5f7c R08: 0000000000000000 R09: 0000000000000000
[  351.659234][ T8835] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  351.667302][ T8835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  351.675277][ T8835] 
[  351.677600][ T8835] Uninit was stored to memory at:
[  351.682619][ T8835]  kmsan_internal_chain_origin+0xad/0x130
[  351.688328][ T8835]  __msan_chain_origin+0x4d/0x90
[  351.693257][ T8835]  udf_alloc_inode+0x252/0x280
[  351.698014][ T8835]  iget_locked+0x37d/0x13c0
[  351.702526][ T8835]  __udf_iget+0x14c/0x4630
[  351.706921][ T8835]  udf_fill_partdesc_info+0xe64/0x1510
[  351.712372][ T8835]  udf_process_sequence+0x46b0/0x6df0
[  351.717735][ T8835]  udf_check_anchor_block+0x50b/0x880
[  351.723095][ T8835]  udf_scan_anchors+0x27c/0xc60
[  351.727946][ T8835]  udf_load_vrs+0x33c/0x1560
[  351.732539][ T8835]  udf_fill_super+0x11f5/0x3280
[  351.737391][ T8835]  mount_bdev+0x619/0x900
[  351.741717][ T8835]  udf_mount+0xc9/0xe0
[  351.745805][ T8835]  legacy_get_tree+0x163/0x2e0
[  351.750566][ T8835]  vfs_get_tree+0xd8/0x5d0
[  351.754975][ T8835]  path_mount+0x3dde/0x5db0
[  351.759490][ T8835]  do_mount+0x1c6/0x220
[  351.763658][ T8835]  __se_compat_sys_mount+0x7bb/0xaa0
[  351.768937][ T8835]  __ia32_compat_sys_mount+0x62/0x80
[  351.774217][ T8835]  __do_fast_syscall_32+0x129/0x180
[  351.779603][ T8835]  do_fast_syscall_32+0x6a/0xc0
[  351.784433][ T8835]  do_SYSENTER_32+0x73/0x90
[  351.788922][ T8835]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.795237][ T8835] 
[  351.797541][ T8835] Uninit was created at:
[  351.801766][ T8835]  kmsan_save_stack_with_flags+0x3c/0x90
[  351.807378][ T8835]  kmsan_alloc_page+0xce/0x1d0
[  351.812177][ T8835]  __alloc_pages_nodemask+0x84e/0x1040
[  351.817617][ T8835]  alloc_pages_current+0x79b/0xb40
[  351.822723][ T8835]  allocate_slab+0x34b/0x11c0
[  351.827400][ T8835]  ___slab_alloc+0xd35/0x1940
[  351.832065][ T8835]  kmem_cache_alloc+0x869/0xc70
[  351.836896][ T8835]  udf_alloc_inode+0x60/0x280
[  351.841568][ T8835]  iget_locked+0x37d/0x13c0
[  351.846049][ T8835]  __udf_iget+0x14c/0x4630
[  351.850453][ T8835]  udf_fill_partdesc_info+0xe64/0x1510
[  351.855902][ T8835]  udf_process_sequence+0x46b0/0x6df0
[  351.861254][ T8835]  udf_check_anchor_block+0x50b/0x880
[  351.866623][ T8835]  udf_scan_anchors+0x27c/0xc60
[  351.871450][ T8835]  udf_load_vrs+0x33c/0x1560
[  351.876038][ T8835]  udf_fill_super+0x11f5/0x3280
[  351.880895][ T8835]  mount_bdev+0x619/0x900
[  351.885203][ T8835]  udf_mount+0xc9/0xe0
[  351.889280][ T8835]  legacy_get_tree+0x163/0x2e0
[  351.894022][ T8835]  vfs_get_tree+0xd8/0x5d0
[  351.898417][ T8835]  path_mount+0x3dde/0x5db0
[  351.902900][ T8835]  do_mount+0x1c6/0x220
[  351.907033][ T8835]  __se_compat_sys_mount+0x7bb/0xaa0
[  351.912298][ T8835]  __ia32_compat_sys_mount+0x62/0x80
[  351.917562][ T8835]  __do_fast_syscall_32+0x129/0x180
[  351.922787][ T8835]  do_fast_syscall_32+0x6a/0xc0
[  351.927644][ T8835]  do_SYSENTER_32+0x73/0x90
[  351.932149][ T8835]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  351.938456][ T8835] =====================================================
[  351.945384][ T8835] Disabling lock debugging due to kernel taint
[  351.951657][ T8835] Kernel panic - not syncing: panic_on_warn set ...
[  351.958237][ T8835] CPU: 1 PID: 8835 Comm: syz-executor.0 Tainted: G    B             5.9.0-rc8-syzkaller #0
[  351.968194][ T8835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  351.978343][ T8835] Call Trace:
[  351.981633][ T8835]  dump_stack+0x21c/0x280
[  351.986044][ T8835]  panic+0x4ca/0xed7
[  351.989947][ T8835]  ? add_taint+0x17c/0x210
[  351.994362][ T8835]  kmsan_report+0x1da/0x1e0
[  351.998880][ T8835]  __msan_warning+0x55/0x90
[  352.003399][ T8835]  udf_evict_inode+0x380/0x7a0
[  352.008173][ T8835]  ? inode_wait_for_writeback+0x2e7/0x320
[  352.013888][ T8835]  ? kmsan_get_metadata+0x116/0x180
[  352.019090][ T8835]  ? kzalloc+0x60/0x60
[  352.023146][ T8835]  evict+0x4ca/0xeb0
[  352.027041][ T8835]  iput+0xc44/0xf60
[  352.030855][ T8835]  iget_failed+0x2c3/0x380
[  352.035266][ T8835]  __udf_iget+0x15ae/0x4630
[  352.039763][ T8835]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  352.045930][ T8835]  ? kmsan_internal_set_origin+0x85/0xc0
[  352.051580][ T8835]  udf_fill_partdesc_info+0xe64/0x1510
[  352.057042][ T8835]  udf_process_sequence+0x46b0/0x6df0
[  352.062429][ T8835]  udf_check_anchor_block+0x50b/0x880
[  352.067803][ T8835]  udf_scan_anchors+0x27c/0xc60
[  352.072665][ T8835]  ? __msan_poison_alloca+0xec/0x110
[  352.077965][ T8835]  ? __msan_poison_alloca+0xec/0x110
[  352.083238][ T8835]  ? udf_get_last_block+0x340/0x3b0
[  352.088445][ T8835]  ? kmsan_get_metadata+0x116/0x180
[  352.093641][ T8835]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  352.099444][ T8835]  udf_load_vrs+0x33c/0x1560
[  352.104050][ T8835]  udf_fill_super+0x11f5/0x3280
[  352.108901][ T8835]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  352.114715][ T8835]  ? __msan_metadata_ptr_for_store_1+0x13/0x20
[  352.120865][ T8835]  mount_bdev+0x619/0x900
[  352.125183][ T8835]  ? udf_mount+0xe0/0xe0
[  352.129435][ T8835]  udf_mount+0xc9/0xe0
[  352.133521][ T8835]  legacy_get_tree+0x163/0x2e0
[  352.138293][ T8835]  ? lvid_get_unique_id+0x400/0x400
[  352.143487][ T8835]  ? legacy_parse_monolithic+0x310/0x310
[  352.149110][ T8835]  vfs_get_tree+0xd8/0x5d0
[  352.153525][ T8835]  path_mount+0x3dde/0x5db0
[  352.158038][ T8835]  do_mount+0x1c6/0x220
[  352.162193][ T8835]  __se_compat_sys_mount+0x7bb/0xaa0
[  352.167477][ T8835]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  352.173538][ T8835]  __ia32_compat_sys_mount+0x62/0x80
[  352.178830][ T8835]  __do_fast_syscall_32+0x129/0x180
[  352.184024][ T8835]  do_fast_syscall_32+0x6a/0xc0
[  352.188871][ T8835]  do_SYSENTER_32+0x73/0x90
[  352.193454][ T8835]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  352.199762][ T8835] RIP: 0023:0xf7ffc549
[  352.203820][ T8835] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  352.223411][ T8835] RSP: 002b:00000000f55f5f20 EFLAGS: 00000292 ORIG_RAX: 0000000000000015
[  352.231810][ T8835] RAX: ffffffffffffffda RBX: 00000000f55f5f7c RCX: 0000000020000100
[  352.239770][ T8835] RDX: 0000000020000000 RSI: 0000000000000000 RDI: 00000000f55f5fbc
[  352.247731][ T8835] RBP: 00000000f55f5f7c R08: 0000000000000000 R09: 0000000000000000
[  352.255690][ T8835] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  352.263651][ T8835] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  352.272993][ T8835] Kernel Offset: disabled
[  352.277313][ T8835] Rebooting in 86400 seconds..