./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3048917807 <...> Warning: Permanently added '10.128.1.10' (ED25519) to the list of known hosts. execve("./syz-executor3048917807", ["./syz-executor3048917807"], 0x7ffc703518b0 /* 10 vars */) = 0 brk(NULL) = 0x555557a8c000 brk(0x555557a8cd00) = 0x555557a8cd00 arch_prctl(ARCH_SET_FS, 0x555557a8c380) = 0 set_tid_address(0x555557a8c650) = 5831 set_robust_list(0x555557a8c660, 24) = 0 rseq(0x555557a8cca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3048917807", 4096) = 28 getrandom("\x5e\x8f\x6b\xff\x10\x08\xa6\xf6", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555557a8cd00 brk(0x555557aadd00) = 0x555557aadd00 brk(0x555557aae000) = 0x555557aae000 mprotect(0x7fe56e79a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5832 attached [pid 5832] set_robust_list(0x555557a8c660, 24 [pid 5831] <... clone resumed>, child_tidptr=0x555557a8c650) = 5832 [pid 5832] <... set_robust_list resumed>) = 0 [pid 5832] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5832] getppid() = 0 [pid 5832] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5832] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5832] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5832] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5832] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5832] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5832] unshare(CLONE_NEWNS) = 0 [pid 5832] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5832] unshare(CLONE_NEWIPC) = 0 [pid 5832] unshare(CLONE_NEWCGROUP) = 0 [pid 5832] unshare(CLONE_NEWUTS) = 0 [pid 5832] unshare(CLONE_SYSVSEM) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "16777216", 8) = 8 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "536870912", 9) = 9 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "1024", 4) = 4 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "8192", 4) = 4 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "1024", 4) = 4 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "1024", 4) = 4 [pid 5832] close(3) = 0 [pid 5832] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5832] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5832] close(3) = 0 [pid 5832] getpid() = 1 [pid 5832] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 12]) = 0 [pid 5832] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x58\x00\x00\x00\x24\x00\x0b\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00\x00\xf1\xff\x08\x00\x01\x00\x73\x66\x62\x00\x2c\x00\x02\x00\x28\x00\x01\x00\xa3\x01\x00\x00\x5c\x65\x00\x00\x04\x00\x00\x00\x40\x00\x00\x00\xff\xff\xff\x7f\xff\xff\xff\x7f\x80\x00\x00\x00\xff\xff\xff\xff\x01\x00\x00\x00", iov_len=88}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor) [pid 5832] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base=NULL, iov_len=0}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor) [pid 5832] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x64\x58\x01\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, MSG_NOSIGNAL) = -1 EINVAL (Invalid argument) [pid 5832] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 5832] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=32}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_NOSIGNAL}, MSG_DONTROUTE) = -1 EBADF (Bad file descriptor) [pid 5832] sendmmsg(4, [{msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x58\x00\x00\x00\x24\x00\x0b\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00\x00\xf1\xff\x08\x00\x01\x00\x73\x66\x62\x00\x2c\x00\x02\x00\x28\x00\x01\x00\xa3\x01\x00\x00\x5c\x65\x00\x00\x04\x00\x00\x00\x40\x00\x00\x00\xff\xff\xff\x7f\xff\xff\xff\x7f\x80\x00\x00\x00\xff\xff\xff\xff\x01\x00\x00\x00", iov_len=88}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=88}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x20\x00\x00\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=68}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x20\x00\x00\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=68}, {msg_hdr={msg_name=0xd27002c00000044, msg_namelen=7388461, msg_iov=0x100000000, msg_iovlen=14, msg_control=0x10009ffe00008, msg_controllen=2003790950, msg_flags=MSG_DONTROUTE|MSG_PROBE|MSG_SENDPAGE_NOTLAST}}, {msg_hdr={msg_name=0x20, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name={sa_family=AF_IUCV, sa_data="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"}, msg_namelen=32, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=32}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_NOSIGNAL}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=0xc, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, ...], 159, 0) = 3 [pid 5832] exit_group(1) = ? [ 73.770671][ T3014] ------------[ cut here ]------------ [ 73.776277][ T3014] UBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23 [ 73.783641][ T3014] shift exponent 9445 is too large for 32-bit type 'u32' (aka 'unsigned int') [ 73.792740][ T3014] CPU: 1 UID: 0 PID: 3014 Comm: kworker/u8:8 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0 [ 73.803684][ T3014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 73.813756][ T3014] Workqueue: ipv6_addrconf addrconf_dad_work [ 73.819796][ T3014] Call Trace: [ 73.823081][ T3014] [ 73.826027][ T3014] dump_stack_lvl+0x241/0x360 [ 73.830738][ T3014] ? __pfx_dump_stack_lvl+0x10/0x10 [ 73.836031][ T3014] ? __pfx__printk+0x10/0x10 [ 73.840622][ T3014] ? lockdep_unlock+0x16a/0x300 [ 73.845495][ T3014] __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 [ 73.851934][ T3014] ? rcu_read_lock_bh_held+0x7e/0x120 [ 73.857346][ T3014] flow_classify+0x24d5/0x25b0 [ 73.862162][ T3014] ? __pfx_flow_classify+0x10/0x10 [ 73.867276][ T3014] ? lockdep_unlock+0x16a/0x300 [ 73.872154][ T3014] ? rcu_lockdep_current_cpu_online+0x37/0x120 [ 73.878318][ T3014] tcf_classify+0x420/0x1160 [ 73.882918][ T3014] sfb_enqueue+0x3ad/0x18b0 [ 73.887433][ T3014] ? do_raw_spin_lock+0x14f/0x370 [ 73.892464][ T3014] ? __pfx_sfb_enqueue+0x10/0x10 [ 73.897414][ T3014] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 73.902830][ T3014] dev_qdisc_enqueue+0x4b/0x290 [ 73.907694][ T3014] __dev_queue_xmit+0xf0e/0x3f50 [ 73.912650][ T3014] ? __dev_queue_xmit+0x2f4/0x3f50 [ 73.917784][ T3014] ? __pfx___dev_queue_xmit+0x10/0x10 [ 73.923356][ T3014] ? mark_lock+0x9a/0x360 [ 73.927696][ T3014] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 73.933688][ T3014] ? ip_finish_output2+0xa14/0x1390 [ 73.938895][ T3014] ? ip_finish_output2+0x45f/0x1390 [ 73.944095][ T3014] ip_finish_output2+0xd41/0x1390 [ 73.949125][ T3014] ? ip_finish_output2+0x45f/0x1390 [ 73.954335][ T3014] ? __pfx_ip_finish_output+0x10/0x10 [ 73.959714][ T3014] ? __pfx_ip_finish_output2+0x10/0x10 [ 73.965182][ T3014] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 73.970040][ T3014] ? __ip_finish_output+0x349/0x400 [ 73.975242][ T3014] iptunnel_xmit+0x55d/0x9b0 [ 73.979848][ T3014] udp_tunnel_xmit_skb+0x262/0x3b0 [ 73.984971][ T3014] geneve_xmit+0x21dc/0x2d00 [ 73.989589][ T3014] ? validate_xmit_xfrm+0xc1/0x1270 [ 73.994792][ T3014] ? geneve_xmit+0x13a/0x2d00 [ 73.999490][ T3014] ? __pfx_geneve_xmit+0x10/0x10 [ 74.004444][ T3014] ? netif_skb_features+0x8b6/0xc90 [ 74.009744][ T3014] ? validate_xmit_skb+0x9b8/0xff0 [ 74.014862][ T3014] dev_hard_start_xmit+0x27a/0x7d0 [ 74.019992][ T3014] __dev_queue_xmit+0x1b73/0x3f50 [ 74.025032][ T3014] ? __dev_queue_xmit+0x2f4/0x3f50 [ 74.030145][ T3014] ? __pfx___dev_queue_xmit+0x10/0x10 [ 74.035582][ T3014] ? neigh_resolve_output+0x450/0x740 [ 74.040955][ T3014] ? read_seqbegin+0x157/0x2b0 [ 74.045728][ T3014] ? lockdep_hardirqs_on+0x99/0x150 [ 74.050936][ T3014] ? read_seqbegin+0x208/0x2b0 [ 74.055710][ T3014] ? __pfx_read_seqbegin+0x10/0x10 [ 74.060831][ T3014] ? neigh_resolve_output+0x2e5/0x740 [ 74.066205][ T3014] ? eth_header+0x11c/0x1f0 [ 74.070709][ T3014] ? __asan_memcpy+0x40/0x70 [ 74.075302][ T3014] ? eth_header+0x11c/0x1f0 [ 74.079816][ T3014] ? __pfx_eth_header+0x10/0x10 [ 74.084669][ T3014] ? neigh_resolve_output+0x61f/0x740 [ 74.090055][ T3014] ip6_finish_output2+0x12c7/0x17b0 [ 74.095276][ T3014] ? ip6_mtu+0x81/0x3f0 [ 74.099434][ T3014] ? ip6_finish_output2+0x63a/0x17b0 [ 74.104769][ T3014] ? __pfx_ip6_finish_output2+0x10/0x10 [ 74.110324][ T3014] ? ip6_mtu+0x81/0x3f0 [ 74.114496][ T3014] ip6_finish_output+0x41e/0x840 [ 74.119451][ T3014] ndisc_send_skb+0xb30/0x1450 [ 74.124242][ T3014] ? ndisc_send_skb+0x563/0x1450 [ 74.129286][ T3014] ? __pfx_ndisc_send_skb+0x10/0x10 [ 74.134496][ T3014] ? skb_put+0x114/0x1f0 [ 74.138760][ T3014] ? __pfx_ndisc_ns_create+0x10/0x10 [ 74.144061][ T3014] ndisc_send_ns+0xcc/0x160 [ 74.148578][ T3014] ? __pfx_ndisc_send_ns+0x10/0x10 [ 74.153705][ T3014] addrconf_dad_work+0xb45/0x16f0 [ 74.158757][ T3014] ? __pfx_addrconf_dad_work+0x10/0x10 [ 74.164224][ T3014] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.170570][ T3014] ? process_scheduled_works+0x976/0x1840 [ 74.176387][ T3014] process_scheduled_works+0xa66/0x1840 [ 74.181962][ T3014] ? __pfx_process_scheduled_works+0x10/0x10 [ 74.187966][ T3014] ? assign_work+0x364/0x3d0 [ 74.193000][ T3014] worker_thread+0x870/0xd30 [ 74.197600][ T3014] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 74.203514][ T3014] ? __kthread_parkme+0x169/0x1d0 [ 74.208547][ T3014] ? __pfx_worker_thread+0x10/0x10 [ 74.213663][ T3014] kthread+0x2f0/0x390 [ 74.217740][ T3014] ? __pfx_worker_thread+0x10/0x10 [ 74.222853][ T3014] ? __pfx_kthread+0x10/0x10 [ 74.227539][ T3014] ret_from_fork+0x4b/0x80 [ 74.231958][ T3014] ? __pfx_kthread+0x10/0x10 [ 74.236561][ T3014] ret_from_fork_asm+0x1a/0x30 [ 74.241339][ T3014] [ 74.244586][ T3014] ---[ end trace ]--- [ 74.248593][ T3014] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 74.255811][ T3014] CPU: 1 UID: 0 PID: 3014 Comm: kworker/u8:8 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0 [ 74.266683][ T3014] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 74.276833][ T3014] Workqueue: ipv6_addrconf addrconf_dad_work [ 74.282824][ T3014] Call Trace: [ 74.286094][ T3014] [ 74.289014][ T3014] dump_stack_lvl+0x241/0x360 [ 74.293698][ T3014] ? __pfx_dump_stack_lvl+0x10/0x10 [ 74.298890][ T3014] ? __pfx__printk+0x10/0x10 [ 74.303482][ T3014] ? lockdep_hardirqs_on+0x99/0x150 [ 74.308676][ T3014] ? vscnprintf+0x5d/0x90 [ 74.313001][ T3014] panic+0x349/0x880 [ 74.316892][ T3014] ? check_panic_on_warn+0x21/0xb0 [ 74.321996][ T3014] ? __pfx_panic+0x10/0x10 [ 74.326536][ T3014] ? _printk+0xd5/0x120 [ 74.330720][ T3014] ? __pfx__printk+0x10/0x10 [ 74.335323][ T3014] ? lockdep_unlock+0x16a/0x300 [ 74.340203][ T3014] check_panic_on_warn+0x86/0xb0 [ 74.345163][ T3014] __ubsan_handle_shift_out_of_bounds+0x3e7/0x420 [ 74.351611][ T3014] ? rcu_read_lock_bh_held+0x7e/0x120 [ 74.357012][ T3014] flow_classify+0x24d5/0x25b0 [ 74.361798][ T3014] ? __pfx_flow_classify+0x10/0x10 [ 74.367048][ T3014] ? lockdep_unlock+0x16a/0x300 [ 74.371925][ T3014] ? rcu_lockdep_current_cpu_online+0x37/0x120 [ 74.378194][ T3014] tcf_classify+0x420/0x1160 [ 74.383094][ T3014] sfb_enqueue+0x3ad/0x18b0 [ 74.387703][ T3014] ? do_raw_spin_lock+0x14f/0x370 [ 74.392829][ T3014] ? __pfx_sfb_enqueue+0x10/0x10 [ 74.397795][ T3014] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 74.403276][ T3014] dev_qdisc_enqueue+0x4b/0x290 [ 74.408140][ T3014] __dev_queue_xmit+0xf0e/0x3f50 [ 74.413108][ T3014] ? __dev_queue_xmit+0x2f4/0x3f50 [ 74.418253][ T3014] ? __pfx___dev_queue_xmit+0x10/0x10 [ 74.423674][ T3014] ? mark_lock+0x9a/0x360 [ 74.428095][ T3014] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 74.434102][ T3014] ? ip_finish_output2+0xa14/0x1390 [ 74.439395][ T3014] ? ip_finish_output2+0x45f/0x1390 [ 74.444607][ T3014] ip_finish_output2+0xd41/0x1390 [ 74.449631][ T3014] ? ip_finish_output2+0x45f/0x1390 [ 74.454827][ T3014] ? __pfx_ip_finish_output+0x10/0x10 [ 74.460314][ T3014] ? __pfx_ip_finish_output2+0x10/0x10 [ 74.465812][ T3014] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 74.470678][ T3014] ? __ip_finish_output+0x349/0x400 [ 74.475875][ T3014] iptunnel_xmit+0x55d/0x9b0 [ 74.480488][ T3014] udp_tunnel_xmit_skb+0x262/0x3b0 [ 74.485628][ T3014] geneve_xmit+0x21dc/0x2d00 [ 74.490231][ T3014] ? validate_xmit_xfrm+0xc1/0x1270 [ 74.495447][ T3014] ? geneve_xmit+0x13a/0x2d00 [ 74.500141][ T3014] ? __pfx_geneve_xmit+0x10/0x10 [ 74.505097][ T3014] ? netif_skb_features+0x8b6/0xc90 [ 74.510338][ T3014] ? validate_xmit_skb+0x9b8/0xff0 [ 74.515502][ T3014] dev_hard_start_xmit+0x27a/0x7d0 [ 74.520650][ T3014] __dev_queue_xmit+0x1b73/0x3f50 [ 74.525692][ T3014] ? __dev_queue_xmit+0x2f4/0x3f50 [ 74.530808][ T3014] ? __pfx___dev_queue_xmit+0x10/0x10 [ 74.536177][ T3014] ? neigh_resolve_output+0x450/0x740 [ 74.541557][ T3014] ? read_seqbegin+0x157/0x2b0 [ 74.546327][ T3014] ? lockdep_hardirqs_on+0x99/0x150 [ 74.551545][ T3014] ? read_seqbegin+0x208/0x2b0 [ 74.556392][ T3014] ? __pfx_read_seqbegin+0x10/0x10 [ 74.561528][ T3014] ? neigh_resolve_output+0x2e5/0x740 [ 74.569256][ T3014] ? eth_header+0x11c/0x1f0 [ 74.573760][ T3014] ? __asan_memcpy+0x40/0x70 [ 74.578343][ T3014] ? eth_header+0x11c/0x1f0 [ 74.582845][ T3014] ? __pfx_eth_header+0x10/0x10 [ 74.587682][ T3014] ? neigh_resolve_output+0x61f/0x740 [ 74.593065][ T3014] ip6_finish_output2+0x12c7/0x17b0 [ 74.598266][ T3014] ? ip6_mtu+0x81/0x3f0 [ 74.602435][ T3014] ? ip6_finish_output2+0x63a/0x17b0 [ 74.607718][ T3014] ? __pfx_ip6_finish_output2+0x10/0x10 [ 74.613282][ T3014] ? ip6_mtu+0x81/0x3f0 [ 74.617451][ T3014] ip6_finish_output+0x41e/0x840 [ 74.622386][ T3014] ndisc_send_skb+0xb30/0x1450 [ 74.627144][ T3014] ? ndisc_send_skb+0x563/0x1450 [ 74.632080][ T3014] ? __pfx_ndisc_send_skb+0x10/0x10 [ 74.637271][ T3014] ? skb_put+0x114/0x1f0 [ 74.641539][ T3014] ? __pfx_ndisc_ns_create+0x10/0x10 [ 74.646837][ T3014] ndisc_send_ns+0xcc/0x160 [ 74.651337][ T3014] ? __pfx_ndisc_send_ns+0x10/0x10 [ 74.656447][ T3014] addrconf_dad_work+0xb45/0x16f0 [ 74.661537][ T3014] ? __pfx_addrconf_dad_work+0x10/0x10 [ 74.666992][ T3014] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 74.673495][ T3014] ? process_scheduled_works+0x976/0x1840 [ 74.679209][ T3014] process_scheduled_works+0xa66/0x1840 [ 74.686947][ T3014] ? __pfx_process_scheduled_works+0x10/0x10 [ 74.692940][ T3014] ? assign_work+0x364/0x3d0 [ 74.697529][ T3014] worker_thread+0x870/0xd30 [ 74.702135][ T3014] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 74.708036][ T3014] ? __kthread_parkme+0x169/0x1d0 [ 74.713064][ T3014] ? __pfx_worker_thread+0x10/0x10 [ 74.718170][ T3014] kthread+0x2f0/0x390 [ 74.722239][ T3014] ? __pfx_worker_thread+0x10/0x10 [ 74.727344][ T3014] ? __pfx_kthread+0x10/0x10 [ 74.731931][ T3014] ret_from_fork+0x4b/0x80 [ 74.736404][ T3014] ? __pfx_kthread+0x10/0x10 [ 74.740990][ T3014] ret_from_fork_asm+0x1a/0x30 [ 74.745751][ T3014] [ 74.749037][ T3014] Kernel Offset: disabled [ 74.753403][ T3014] Rebooting in 86400 seconds..