syzkaller login: [ 280.457267][ T1861] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 280.521360][ T1861] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 298.454287][ T1861] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:30695' (ECDSA) to the list of known hosts. 1970/01/01 00:05:43 fuzzer started 1970/01/01 00:05:58 dialing manager at localhost:34989 [ 364.736411][ T2034] cgroup: Unknown subsys name 'net' [ 366.210829][ T2034] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:05 syscalls: 2853 1970/01/01 00:06:05 code coverage: enabled 1970/01/01 00:06:05 comparison tracing: enabled 1970/01/01 00:06:05 extra coverage: enabled 1970/01/01 00:06:05 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:06:05 setuid sandbox: enabled 1970/01/01 00:06:05 namespace sandbox: enabled 1970/01/01 00:06:05 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:05 fault injection: enabled 1970/01/01 00:06:05 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:05 net packet injection: enabled 1970/01/01 00:06:05 net device setup: enabled 1970/01/01 00:06:05 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:05 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:05 USB emulation: enabled 1970/01/01 00:06:05 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:05 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:05 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:06:06 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:06:11 fetching corpus: 50, signal 25793/29456 (executing program) 1970/01/01 00:06:15 fetching corpus: 100, signal 39279/44446 (executing program) 1970/01/01 00:06:18 fetching corpus: 149, signal 47543/54191 (executing program) 1970/01/01 00:06:21 fetching corpus: 199, signal 54475/62522 (executing program) 1970/01/01 00:06:23 fetching corpus: 248, signal 59170/68595 (executing program) 1970/01/01 00:06:25 fetching corpus: 297, signal 66399/77095 (executing program) 1970/01/01 00:06:28 fetching corpus: 347, signal 70899/82836 (executing program) 1970/01/01 00:06:30 fetching corpus: 397, signal 75023/88132 (executing program) 1970/01/01 00:06:32 fetching corpus: 447, signal 79378/93686 (executing program) 1970/01/01 00:06:35 fetching corpus: 497, signal 86160/101371 (executing program) 1970/01/01 00:06:38 fetching corpus: 547, signal 89657/105956 (executing program) 1970/01/01 00:06:42 fetching corpus: 596, signal 93328/110621 (executing program) 1970/01/01 00:06:45 fetching corpus: 646, signal 96498/114763 (executing program) 1970/01/01 00:06:48 fetching corpus: 696, signal 99546/118800 (executing program) 1970/01/01 00:06:51 fetching corpus: 746, signal 103368/123443 (executing program) 1970/01/01 00:06:53 fetching corpus: 795, signal 105489/126566 (executing program) 1970/01/01 00:06:56 fetching corpus: 845, signal 108400/130351 (executing program) 1970/01/01 00:06:59 fetching corpus: 895, signal 110994/133778 (executing program) 1970/01/01 00:07:01 fetching corpus: 945, signal 113260/136915 (executing program) 1970/01/01 00:07:05 fetching corpus: 995, signal 116351/140704 (executing program) 1970/01/01 00:07:07 fetching corpus: 1045, signal 118185/143356 (executing program) 1970/01/01 00:07:09 fetching corpus: 1094, signal 120098/146118 (executing program) 1970/01/01 00:07:13 fetching corpus: 1144, signal 122035/148819 (executing program) 1970/01/01 00:07:15 fetching corpus: 1194, signal 123997/151505 (executing program) 1970/01/01 00:07:18 fetching corpus: 1244, signal 125443/153808 (executing program) 1970/01/01 00:07:20 fetching corpus: 1294, signal 126859/156061 (executing program) 1970/01/01 00:07:23 fetching corpus: 1344, signal 128281/158221 (executing program) 1970/01/01 00:07:26 fetching corpus: 1394, signal 129841/160540 (executing program) 1970/01/01 00:07:29 fetching corpus: 1443, signal 132410/163579 (executing program) 1970/01/01 00:07:31 fetching corpus: 1493, signal 134193/166027 (executing program) 1970/01/01 00:07:34 fetching corpus: 1543, signal 135736/168230 (executing program) 1970/01/01 00:07:36 fetching corpus: 1593, signal 137085/170258 (executing program) 1970/01/01 00:07:39 fetching corpus: 1643, signal 138856/172589 (executing program) 1970/01/01 00:07:42 fetching corpus: 1692, signal 140205/174582 (executing program) 1970/01/01 00:07:45 fetching corpus: 1741, signal 141617/176604 (executing program) 1970/01/01 00:07:47 fetching corpus: 1791, signal 142812/178461 (executing program) 1970/01/01 00:07:51 fetching corpus: 1841, signal 144520/180629 (executing program) 1970/01/01 00:07:54 fetching corpus: 1891, signal 145966/182621 (executing program) 1970/01/01 00:07:58 fetching corpus: 1941, signal 147043/184317 (executing program) 1970/01/01 00:08:01 fetching corpus: 1991, signal 148280/186145 (executing program) 1970/01/01 00:08:04 fetching corpus: 2041, signal 149590/187983 (executing program) 1970/01/01 00:08:06 fetching corpus: 2091, signal 150930/189802 (executing program) 1970/01/01 00:08:08 fetching corpus: 2141, signal 151778/191302 (executing program) 1970/01/01 00:08:11 fetching corpus: 2191, signal 153014/193015 (executing program) 1970/01/01 00:08:14 fetching corpus: 2240, signal 154262/194728 (executing program) 1970/01/01 00:08:17 fetching corpus: 2290, signal 155407/196374 (executing program) 1970/01/01 00:08:19 fetching corpus: 2340, signal 156535/197966 (executing program) 1970/01/01 00:08:21 fetching corpus: 2390, signal 157464/199458 (executing program) 1970/01/01 00:08:24 fetching corpus: 2439, signal 158428/200957 (executing program) 1970/01/01 00:08:27 fetching corpus: 2489, signal 159632/202575 (executing program) 1970/01/01 00:08:28 fetching corpus: 2539, signal 160503/203950 (executing program) 1970/01/01 00:08:31 fetching corpus: 2589, signal 161367/205322 (executing program) 1970/01/01 00:08:33 fetching corpus: 2639, signal 162725/206935 (executing program) 1970/01/01 00:08:35 fetching corpus: 2687, signal 163741/208327 (executing program) 1970/01/01 00:08:37 fetching corpus: 2737, signal 164715/209715 (executing program) 1970/01/01 00:08:40 fetching corpus: 2787, signal 165770/211103 (executing program) 1970/01/01 00:08:42 fetching corpus: 2836, signal 166515/212315 (executing program) 1970/01/01 00:08:47 fetching corpus: 2886, signal 167253/213537 (executing program) 1970/01/01 00:08:50 fetching corpus: 2935, signal 167976/214716 (executing program) 1970/01/01 00:08:51 fetching corpus: 2985, signal 168738/215897 (executing program) 1970/01/01 00:08:54 fetching corpus: 3034, signal 169641/217165 (executing program) 1970/01/01 00:08:56 fetching corpus: 3084, signal 170640/218476 (executing program) 1970/01/01 00:08:58 fetching corpus: 3134, signal 171322/219593 (executing program) 1970/01/01 00:09:01 fetching corpus: 3184, signal 172082/220731 (executing program) 1970/01/01 00:09:03 fetching corpus: 3234, signal 172970/221957 (executing program) 1970/01/01 00:09:05 fetching corpus: 3284, signal 174017/223268 (executing program) 1970/01/01 00:09:08 fetching corpus: 3333, signal 174467/224224 (executing program) 1970/01/01 00:09:10 fetching corpus: 3383, signal 175136/225284 (executing program) 1970/01/01 00:09:12 fetching corpus: 3433, signal 175935/226406 (executing program) 1970/01/01 00:09:14 fetching corpus: 3482, signal 176456/227402 (executing program) 1970/01/01 00:09:17 fetching corpus: 3532, signal 177167/228471 (executing program) 1970/01/01 00:09:20 fetching corpus: 3582, signal 177939/229520 (executing program) 1970/01/01 00:09:21 fetching corpus: 3632, signal 178526/230451 (executing program) 1970/01/01 00:09:23 fetching corpus: 3682, signal 179308/231480 (executing program) 1970/01/01 00:09:25 fetching corpus: 3732, signal 180123/232511 (executing program) 1970/01/01 00:09:28 fetching corpus: 3782, signal 180720/233436 (executing program) 1970/01/01 00:09:30 fetching corpus: 3831, signal 182209/234762 (executing program) 1970/01/01 00:09:33 fetching corpus: 3881, signal 182928/235733 (executing program) 1970/01/01 00:09:36 fetching corpus: 3931, signal 183576/236685 (executing program) 1970/01/01 00:09:40 fetching corpus: 3980, signal 184433/237764 (executing program) 1970/01/01 00:09:42 fetching corpus: 4028, signal 185246/238761 (executing program) 1970/01/01 00:09:44 fetching corpus: 4076, signal 185873/239685 (executing program) 1970/01/01 00:09:46 fetching corpus: 4126, signal 186522/240599 (executing program) 1970/01/01 00:09:49 fetching corpus: 4176, signal 187200/241422 (executing program) 1970/01/01 00:09:51 fetching corpus: 4226, signal 187870/242315 (executing program) 1970/01/01 00:09:54 fetching corpus: 4276, signal 188462/243138 (executing program) 1970/01/01 00:09:57 fetching corpus: 4325, signal 189295/244074 (executing program) 1970/01/01 00:10:00 fetching corpus: 4375, signal 190026/244944 (executing program) 1970/01/01 00:10:03 fetching corpus: 4425, signal 190641/245770 (executing program) 1970/01/01 00:10:08 fetching corpus: 4474, signal 191230/246578 (executing program) 1970/01/01 00:10:11 fetching corpus: 4523, signal 191813/247397 (executing program) 1970/01/01 00:10:14 fetching corpus: 4572, signal 192432/248195 (executing program) 1970/01/01 00:10:17 fetching corpus: 4622, signal 193202/249018 (executing program) 1970/01/01 00:10:20 fetching corpus: 4672, signal 193944/249871 (executing program) 1970/01/01 00:10:22 fetching corpus: 4722, signal 195061/250801 (executing program) 1970/01/01 00:10:25 fetching corpus: 4772, signal 195573/251547 (executing program) 1970/01/01 00:10:28 fetching corpus: 4822, signal 196351/252336 (executing program) 1970/01/01 00:10:31 fetching corpus: 4871, signal 197377/253206 (executing program) 1970/01/01 00:10:33 fetching corpus: 4919, signal 198094/253969 (executing program) 1970/01/01 00:10:35 fetching corpus: 4969, signal 198604/254647 (executing program) 1970/01/01 00:10:37 fetching corpus: 5019, signal 199556/255478 (executing program) 1970/01/01 00:10:40 fetching corpus: 5069, signal 200041/256142 (executing program) 1970/01/01 00:10:42 fetching corpus: 5119, signal 200787/256874 (executing program) 1970/01/01 00:10:44 fetching corpus: 5169, signal 201377/257573 (executing program) 1970/01/01 00:10:46 fetching corpus: 5218, signal 201858/258182 (executing program) 1970/01/01 00:10:49 fetching corpus: 5268, signal 202404/258831 (executing program) 1970/01/01 00:10:51 fetching corpus: 5318, signal 202880/259506 (executing program) 1970/01/01 00:10:53 fetching corpus: 5368, signal 203553/260149 (executing program) 1970/01/01 00:10:55 fetching corpus: 5418, signal 204005/260736 (executing program) 1970/01/01 00:10:58 fetching corpus: 5467, signal 204814/261464 (executing program) 1970/01/01 00:11:00 fetching corpus: 5517, signal 205180/262024 (executing program) 1970/01/01 00:11:04 fetching corpus: 5567, signal 206289/262709 (executing program) 1970/01/01 00:11:07 fetching corpus: 5617, signal 206909/263282 (executing program) 1970/01/01 00:11:10 fetching corpus: 5666, signal 207453/263879 (executing program) 1970/01/01 00:11:13 fetching corpus: 5716, signal 208084/264495 (executing program) 1970/01/01 00:11:16 fetching corpus: 5765, signal 208542/265047 (executing program) 1970/01/01 00:11:19 fetching corpus: 5815, signal 209084/265661 (executing program) 1970/01/01 00:11:21 fetching corpus: 5864, signal 209566/266196 (executing program) 1970/01/01 00:11:22 fetching corpus: 5913, signal 210381/266773 (executing program) 1970/01/01 00:11:24 fetching corpus: 5963, signal 210917/267300 (executing program) 1970/01/01 00:11:26 fetching corpus: 6013, signal 211444/267840 (executing program) 1970/01/01 00:11:29 fetching corpus: 6062, signal 211875/268338 (executing program) 1970/01/01 00:11:32 fetching corpus: 6111, signal 212486/268846 (executing program) 1970/01/01 00:11:35 fetching corpus: 6161, signal 213030/269344 (executing program) 1970/01/01 00:11:39 fetching corpus: 6210, signal 213429/269810 (executing program) 1970/01/01 00:11:42 fetching corpus: 6258, signal 213915/270300 (executing program) 1970/01/01 00:11:44 fetching corpus: 6307, signal 214378/270806 (executing program) 1970/01/01 00:11:46 fetching corpus: 6357, signal 215080/271244 (executing program) 1970/01/01 00:11:48 fetching corpus: 6407, signal 215670/271733 (executing program) 1970/01/01 00:11:50 fetching corpus: 6457, signal 216156/272196 (executing program) 1970/01/01 00:11:54 fetching corpus: 6506, signal 216653/272663 (executing program) 1970/01/01 00:11:56 fetching corpus: 6556, signal 217140/273113 (executing program) 1970/01/01 00:11:59 fetching corpus: 6606, signal 217561/273545 (executing program) 1970/01/01 00:12:01 fetching corpus: 6656, signal 218280/273971 (executing program) 1970/01/01 00:12:03 fetching corpus: 6704, signal 218749/274383 (executing program) 1970/01/01 00:12:06 fetching corpus: 6753, signal 219365/274781 (executing program) 1970/01/01 00:12:09 fetching corpus: 6803, signal 219715/275005 (executing program) 1970/01/01 00:12:12 fetching corpus: 6852, signal 220228/275005 (executing program) 1970/01/01 00:12:15 fetching corpus: 6902, signal 220714/275007 (executing program) 1970/01/01 00:12:18 fetching corpus: 6952, signal 221190/275007 (executing program) 1970/01/01 00:12:21 fetching corpus: 7000, signal 221565/275007 (executing program) 1970/01/01 00:12:24 fetching corpus: 7050, signal 221986/275007 (executing program) 1970/01/01 00:12:27 fetching corpus: 7099, signal 222663/275008 (executing program) 1970/01/01 00:12:30 fetching corpus: 7148, signal 223054/275008 (executing program) 1970/01/01 00:12:34 fetching corpus: 7198, signal 223480/275018 (executing program) 1970/01/01 00:12:36 fetching corpus: 7248, signal 223810/275032 (executing program) 1970/01/01 00:12:38 fetching corpus: 7298, signal 224257/275032 (executing program) 1970/01/01 00:12:40 fetching corpus: 7347, signal 224670/275032 (executing program) 1970/01/01 00:12:41 fetching corpus: 7396, signal 225055/275032 (executing program) 1970/01/01 00:12:43 fetching corpus: 7446, signal 225626/275041 (executing program) 1970/01/01 00:12:45 fetching corpus: 7496, signal 225998/275041 (executing program) 1970/01/01 00:12:48 fetching corpus: 7546, signal 226384/275041 (executing program) 1970/01/01 00:12:51 fetching corpus: 7596, signal 226718/275041 (executing program) 1970/01/01 00:12:54 fetching corpus: 7646, signal 227336/275051 (executing program) 1970/01/01 00:12:56 fetching corpus: 7695, signal 227726/275051 (executing program) 1970/01/01 00:12:58 fetching corpus: 7744, signal 228362/275051 (executing program) 1970/01/01 00:13:01 fetching corpus: 7793, signal 228859/275051 (executing program) 1970/01/01 00:13:02 fetching corpus: 7843, signal 229230/275062 (executing program) 1970/01/01 00:13:05 fetching corpus: 7893, signal 229735/275062 (executing program) 1970/01/01 00:13:08 fetching corpus: 7942, signal 230101/275063 (executing program) 1970/01/01 00:13:09 fetching corpus: 7991, signal 230371/275063 (executing program) 1970/01/01 00:13:11 fetching corpus: 8040, signal 230806/275063 (executing program) 1970/01/01 00:13:13 fetching corpus: 8089, signal 231490/275063 (executing program) 1970/01/01 00:13:16 fetching corpus: 8138, signal 231909/275063 (executing program) 1970/01/01 00:13:18 fetching corpus: 8188, signal 232374/275063 (executing program) 1970/01/01 00:13:21 fetching corpus: 8237, signal 232694/275063 (executing program) 1970/01/01 00:13:23 fetching corpus: 8286, signal 232958/275063 (executing program) 1970/01/01 00:13:25 fetching corpus: 8335, signal 233461/275064 (executing program) 1970/01/01 00:13:28 fetching corpus: 8385, signal 233970/275064 (executing program) 1970/01/01 00:13:30 fetching corpus: 8434, signal 234348/275064 (executing program) 1970/01/01 00:13:33 fetching corpus: 8483, signal 234741/275067 (executing program) 1970/01/01 00:13:35 fetching corpus: 8533, signal 235239/275067 (executing program) 1970/01/01 00:13:36 fetching corpus: 8583, signal 235585/275067 (executing program) 1970/01/01 00:13:39 fetching corpus: 8632, signal 235902/275067 (executing program) 1970/01/01 00:13:41 fetching corpus: 8682, signal 236148/275067 (executing program) 1970/01/01 00:13:44 fetching corpus: 8731, signal 236663/275067 (executing program) 1970/01/01 00:13:46 fetching corpus: 8780, signal 237111/275067 (executing program) 1970/01/01 00:13:48 fetching corpus: 8830, signal 237349/275073 (executing program) 1970/01/01 00:13:50 fetching corpus: 8880, signal 237722/275073 (executing program) 1970/01/01 00:13:51 fetching corpus: 8930, signal 238108/275073 (executing program) 1970/01/01 00:13:54 fetching corpus: 8979, signal 238494/275073 (executing program) 1970/01/01 00:13:59 fetching corpus: 9029, signal 238863/275075 (executing program) 1970/01/01 00:14:01 fetching corpus: 9079, signal 239270/275077 (executing program) 1970/01/01 00:14:03 fetching corpus: 9128, signal 239577/275077 (executing program) 1970/01/01 00:14:04 fetching corpus: 9178, signal 239849/275077 (executing program) 1970/01/01 00:14:07 fetching corpus: 9228, signal 240361/275078 (executing program) 1970/01/01 00:14:09 fetching corpus: 9276, signal 240791/275100 (executing program) 1970/01/01 00:14:11 fetching corpus: 9326, signal 241201/275100 (executing program) 1970/01/01 00:14:14 fetching corpus: 9376, signal 241533/275101 (executing program) 1970/01/01 00:14:17 fetching corpus: 9425, signal 241829/275101 (executing program) 1970/01/01 00:14:20 fetching corpus: 9474, signal 242371/275101 (executing program) 1970/01/01 00:14:22 fetching corpus: 9522, signal 242684/275105 (executing program) 1970/01/01 00:14:24 fetching corpus: 9572, signal 243013/275105 (executing program) 1970/01/01 00:14:26 fetching corpus: 9621, signal 243362/275105 (executing program) 1970/01/01 00:14:29 fetching corpus: 9671, signal 243688/275105 (executing program) 1970/01/01 00:14:31 fetching corpus: 9719, signal 243961/275109 (executing program) 1970/01/01 00:14:36 fetching corpus: 9769, signal 244353/275124 (executing program) 1970/01/01 00:14:40 fetching corpus: 9817, signal 244884/275124 (executing program) 1970/01/01 00:14:42 fetching corpus: 9867, signal 245385/275124 (executing program) 1970/01/01 00:14:45 fetching corpus: 9916, signal 245742/275124 (executing program) 1970/01/01 00:14:47 fetching corpus: 9966, signal 246164/275124 (executing program) 1970/01/01 00:14:49 fetching corpus: 10015, signal 246608/275124 (executing program) 1970/01/01 00:14:51 fetching corpus: 10065, signal 246984/275124 (executing program) 1970/01/01 00:14:53 fetching corpus: 10115, signal 247312/275127 (executing program) 1970/01/01 00:14:57 fetching corpus: 10165, signal 247689/275127 (executing program) 1970/01/01 00:14:59 fetching corpus: 10214, signal 247996/275127 (executing program) 1970/01/01 00:15:01 fetching corpus: 10262, signal 248394/275127 (executing program) 1970/01/01 00:15:03 fetching corpus: 10310, signal 248662/275127 (executing program) 1970/01/01 00:15:06 fetching corpus: 10360, signal 249032/275128 (executing program) 1970/01/01 00:15:08 fetching corpus: 10409, signal 249353/275131 (executing program) 1970/01/01 00:15:10 fetching corpus: 10459, signal 249594/275131 (executing program) 1970/01/01 00:15:14 fetching corpus: 10508, signal 250016/275136 (executing program) 1970/01/01 00:15:16 fetching corpus: 10558, signal 250341/275136 (executing program) 1970/01/01 00:15:19 fetching corpus: 10608, signal 250653/275138 (executing program) 1970/01/01 00:15:21 fetching corpus: 10657, signal 250954/275141 (executing program) 1970/01/01 00:15:23 fetching corpus: 10707, signal 251277/275142 (executing program) 1970/01/01 00:15:25 fetching corpus: 10757, signal 251612/275142 (executing program) 1970/01/01 00:15:27 fetching corpus: 10807, signal 251958/275142 (executing program) 1970/01/01 00:15:29 fetching corpus: 10856, signal 252309/275142 (executing program) 1970/01/01 00:15:31 fetching corpus: 10906, signal 252592/275144 (executing program) 1970/01/01 00:15:36 fetching corpus: 10956, signal 252859/275144 (executing program) 1970/01/01 00:15:38 fetching corpus: 11005, signal 253086/275156 (executing program) 1970/01/01 00:15:40 fetching corpus: 11054, signal 253377/275160 (executing program) 1970/01/01 00:15:43 fetching corpus: 11104, signal 253654/275160 (executing program) 1970/01/01 00:15:44 fetching corpus: 11153, signal 253939/275161 (executing program) 1970/01/01 00:15:47 fetching corpus: 11203, signal 254363/275161 (executing program) 1970/01/01 00:15:49 fetching corpus: 11252, signal 254640/275161 (executing program) 1970/01/01 00:15:52 fetching corpus: 11300, signal 254947/275161 (executing program) 1970/01/01 00:15:54 fetching corpus: 11349, signal 255257/275161 (executing program) 1970/01/01 00:15:57 fetching corpus: 11398, signal 255586/275161 (executing program) 1970/01/01 00:15:59 fetching corpus: 11448, signal 255885/275162 (executing program) 1970/01/01 00:16:01 fetching corpus: 11495, signal 256218/275162 (executing program) 1970/01/01 00:16:05 fetching corpus: 11545, signal 256581/275162 (executing program) 1970/01/01 00:16:07 fetching corpus: 11595, signal 256877/275162 (executing program) 1970/01/01 00:16:09 fetching corpus: 11645, signal 257309/275162 (executing program) 1970/01/01 00:16:11 fetching corpus: 11694, signal 257581/275167 (executing program) 1970/01/01 00:16:13 fetching corpus: 11744, signal 257954/275167 (executing program) 1970/01/01 00:16:16 fetching corpus: 11794, signal 258258/275169 (executing program) 1970/01/01 00:16:19 fetching corpus: 11844, signal 258497/275169 (executing program) 1970/01/01 00:16:21 fetching corpus: 11894, signal 258706/275169 (executing program) 1970/01/01 00:16:23 fetching corpus: 11941, signal 259001/275169 (executing program) 1970/01/01 00:16:25 fetching corpus: 11991, signal 259254/275169 (executing program) 1970/01/01 00:16:26 fetching corpus: 12039, signal 259489/275169 (executing program) 1970/01/01 00:16:29 fetching corpus: 12089, signal 259769/275169 (executing program) 1970/01/01 00:16:31 fetching corpus: 12139, signal 260003/275170 (executing program) 1970/01/01 00:16:34 fetching corpus: 12189, signal 260290/275172 (executing program) 1970/01/01 00:16:36 fetching corpus: 12239, signal 260557/275172 (executing program) 1970/01/01 00:16:40 fetching corpus: 12289, signal 260885/275172 (executing program) 1970/01/01 00:16:44 fetching corpus: 12339, signal 261226/275174 (executing program) 1970/01/01 00:16:47 fetching corpus: 12389, signal 261440/275174 (executing program) 1970/01/01 00:16:50 fetching corpus: 12439, signal 261703/275177 (executing program) 1970/01/01 00:16:52 fetching corpus: 12489, signal 261945/275177 (executing program) 1970/01/01 00:16:54 fetching corpus: 12539, signal 262202/275177 (executing program) 1970/01/01 00:16:56 fetching corpus: 12589, signal 262512/275179 (executing program) 1970/01/01 00:16:58 fetching corpus: 12639, signal 262749/275179 (executing program) 1970/01/01 00:16:59 fetching corpus: 12689, signal 263003/275179 (executing program) 1970/01/01 00:17:02 fetching corpus: 12739, signal 263372/275179 (executing program) 1970/01/01 00:17:05 fetching corpus: 12788, signal 263760/275179 (executing program) 1970/01/01 00:17:08 fetching corpus: 12837, signal 263998/275180 (executing program) 1970/01/01 00:17:11 fetching corpus: 12887, signal 264319/275180 (executing program) 1970/01/01 00:17:13 fetching corpus: 12935, signal 264529/275180 (executing program) 1970/01/01 00:17:16 fetching corpus: 12984, signal 264824/275182 (executing program) 1970/01/01 00:17:19 fetching corpus: 13034, signal 265121/275182 (executing program) 1970/01/01 00:17:21 fetching corpus: 13084, signal 265423/275182 (executing program) 1970/01/01 00:17:23 fetching corpus: 13133, signal 265657/275184 (executing program) 1970/01/01 00:17:27 fetching corpus: 13183, signal 266574/275184 (executing program) 1970/01/01 00:17:31 fetching corpus: 13231, signal 267026/275184 (executing program) 1970/01/01 00:17:33 fetching corpus: 13280, signal 267279/275184 (executing program) 1970/01/01 00:17:35 fetching corpus: 13330, signal 267541/275189 (executing program) 1970/01/01 00:17:37 fetching corpus: 13380, signal 267918/275196 (executing program) 1970/01/01 00:17:40 fetching corpus: 13430, signal 268197/275196 (executing program) 1970/01/01 00:17:41 fetching corpus: 13480, signal 268503/275198 (executing program) 1970/01/01 00:17:43 fetching corpus: 13530, signal 268818/275198 (executing program) 1970/01/01 00:17:46 fetching corpus: 13580, signal 269102/275199 (executing program) 1970/01/01 00:17:48 fetching corpus: 13630, signal 269570/275199 (executing program) 1970/01/01 00:17:51 fetching corpus: 13679, signal 269819/275201 (executing program) 1970/01/01 00:17:55 fetching corpus: 13728, signal 270170/275201 (executing program) 1970/01/01 00:17:57 fetching corpus: 13777, signal 270439/275201 (executing program) 1970/01/01 00:17:59 fetching corpus: 13824, signal 270669/275201 (executing program) 1970/01/01 00:18:01 fetching corpus: 13872, signal 270909/275201 (executing program) 1970/01/01 00:18:03 fetching corpus: 13922, signal 271131/275214 (executing program) 1970/01/01 00:18:05 fetching corpus: 13971, signal 271452/275214 (executing program) 1970/01/01 00:18:07 fetching corpus: 14019, signal 271665/275214 (executing program) 1970/01/01 00:18:09 fetching corpus: 14068, signal 271987/275218 (executing program) 1970/01/01 00:18:12 fetching corpus: 14118, signal 272279/275218 (executing program) 1970/01/01 00:18:15 fetching corpus: 14167, signal 272625/275246 (executing program) 1970/01/01 00:18:18 fetching corpus: 14216, signal 272863/275246 (executing program) 1970/01/01 00:18:19 fetching corpus: 14238, signal 272975/275246 (executing program) 1970/01/01 00:18:19 fetching corpus: 14238, signal 272975/275246 (executing program) 1970/01/01 00:20:19 starting 2 fuzzer processes 00:20:19 executing program 0: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) fcntl$notify(r0, 0x402, 0x20) 00:20:19 executing program 1: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='uid_map\x00') preadv(r0, &(0x7f0000000100)=[{&(0x7f0000000340)=""/4096, 0x1000}], 0x1, 0x6, 0x0) [ 1251.708030][ T2058] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1251.790518][ T2058] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1254.446110][ T2059] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1254.574047][ T2059] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1264.347918][ T2058] device hsr_slave_0 entered promiscuous mode [ 1264.396983][ T2058] device hsr_slave_1 entered promiscuous mode [ 1269.119184][ T2059] device hsr_slave_0 entered promiscuous mode [ 1269.187144][ T2059] device hsr_slave_1 entered promiscuous mode [ 1269.215577][ T2059] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1269.220045][ T2059] Cannot create hsr debugfs directory [ 1279.680092][ T2058] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1280.377402][ T2058] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1281.219442][ T2058] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1281.559569][ T2058] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1284.167699][ T2059] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1284.460455][ T2059] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1284.706848][ T2059] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1284.906295][ T2059] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1295.756406][ T2058] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1296.337221][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1296.439628][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1297.961241][ T2059] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1298.728923][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1298.789156][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1305.390617][ T2126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1305.460444][ T2126] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1305.699009][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1305.750989][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1306.014781][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1306.356808][ T2654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1306.570481][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1306.618516][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1306.959346][ T2378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1307.028695][ T2378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1307.236274][ T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1307.565036][ T2378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1307.595151][ T2378] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1307.764127][ T2378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1307.959092][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1307.988956][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1308.278598][ T2058] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1308.836339][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1308.903933][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1309.289636][ T2654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1309.330567][ T2654] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1309.600370][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1309.628285][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1309.719853][ T2059] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1310.390801][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1310.395793][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1330.895219][ T2654] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1330.957976][ T2654] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1331.109692][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1331.176643][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1339.256244][ T2058] device veth0_vlan entered promiscuous mode [ 1339.316632][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1339.348855][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1339.377004][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1339.399645][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1339.580183][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1339.609501][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1339.626709][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1339.644017][ T2695] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1339.736581][ T2059] device veth0_vlan entered promiscuous mode [ 1340.090123][ T2058] device veth1_vlan entered promiscuous mode [ 1340.257877][ T2059] device veth1_vlan entered promiscuous mode [ 1342.001272][ T2122] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1342.065325][ T2122] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1342.236478][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1342.285766][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1342.451401][ T2058] device veth0_macvtap entered promiscuous mode [ 1342.555780][ T2059] device veth0_macvtap entered promiscuous mode [ 1342.875489][ T2058] device veth1_macvtap entered promiscuous mode [ 1342.950007][ T2059] device veth1_macvtap entered promiscuous mode [ 1343.181526][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1343.217663][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1343.251572][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1344.540372][ T2126] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1344.604905][ T2126] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1344.740899][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1344.819934][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1345.129930][ T2745] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1345.178937][ T2745] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1345.345713][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1345.408661][ T1795] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1345.648564][ T2059] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.675022][ T2059] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.676517][ T2059] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.677815][ T2059] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.870041][ T2058] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.871639][ T2058] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.889095][ T2058] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1345.890743][ T2058] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 00:22:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file1\x00', &(0x7f0000000680), &(0x7f00000006c0), 0x2, 0x0) sendfile(r1, r0, 0x0, 0x7ffffffd) ftruncate(0xffffffffffffffff, 0x0) 00:22:32 executing program 0: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f00000001c0)={0xfffc}) [ 1356.419623][ T26] audit: type=1804 audit(1355.010:2): pid=2753 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/syzkaller-testdir1450720529/syzkaller.7inmIG/1/file1" dev="vda" ino=644 res=1 errno=0 00:22:36 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file1\x00', &(0x7f0000000680), &(0x7f00000006c0), 0x2, 0x0) sendfile(r1, r0, 0x0, 0x7ffffffd) ftruncate(0xffffffffffffffff, 0x0) 00:22:36 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}}, 0x90) [ 1360.233883][ T26] audit: type=1804 audit(1358.830:3): pid=2757 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/syzkaller-testdir1450720529/syzkaller.7inmIG/2/file1" dev="vda" ino=644 res=1 errno=0 00:22:39 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}}, 0x90) 00:22:40 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file1\x00', &(0x7f0000000680), &(0x7f00000006c0), 0x2, 0x0) sendfile(r1, r0, 0x0, 0x7ffffffd) ftruncate(0xffffffffffffffff, 0x0) [ 1364.224085][ T26] audit: type=1804 audit(1362.810:4): pid=2762 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/syzkaller-testdir1450720529/syzkaller.7inmIG/3/file1" dev="vda" ino=644 res=1 errno=0 00:22:43 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}}, 0x90) 00:22:44 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x0, 0x0) sendfile(r1, r2, 0x0, 0x0) syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff) sendmsg$NL80211_CMD_GET_MPP(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0) lsetxattr$trusted_overlay_origin(&(0x7f0000000000)='./file1\x00', &(0x7f0000000680), &(0x7f00000006c0), 0x2, 0x0) sendfile(r1, r0, 0x0, 0x7ffffffd) ftruncate(0xffffffffffffffff, 0x0) 00:22:46 executing program 0: r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000000c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @private0}}}, 0x90) [ 1368.769826][ T26] audit: type=1804 audit(1367.350:5): pid=2766 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/syzkaller-testdir1450720529/syzkaller.7inmIG/4/file1" dev="vda" ino=636 res=1 errno=0 00:22:50 executing program 1: bpf$MAP_CREATE(0x0, &(0x7f0000000dc0)=@base={0xf}, 0x48) 00:22:50 executing program 0: r0 = memfd_secret(0x0) ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) writev(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)='R', 0x1}], 0x1) 00:22:52 executing program 1: r0 = fsopen(&(0x7f0000000000)='proc\x00', 0x0) r1 = socket$alg(0x26, 0x5, 0x0) bind$alg(r1, &(0x7f0000000680)={0x26, 'hash\x00', 0x0, 0x0, 'crc32-generic\x00'}, 0x58) accept(r1, 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 00:22:53 executing program 0: r0 = memfd_secret(0x0) ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) writev(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)='R', 0x1}], 0x1) 00:22:56 executing program 1: r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0) ioctl$TCSETS(r0, 0x5402, &(0x7f00000000c0)={0x0, 0x5, 0x0, 0x3b, 0x0, "9c7858aab7b30100008051ff00"}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000000)) 00:22:57 executing program 0: r0 = memfd_secret(0x0) ioctl$NS_GET_PARENT(r0, 0x5460, 0xec000) r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) writev(r1, &(0x7f0000000200)=[{&(0x7f00000001c0)='R', 0x1}], 0x1) [ 1380.155220][ T2778] ================================================================== [ 1380.159934][ T2778] BUG: KASAN: wild-memory-access in klist_next+0x11c/0x312 [ 1380.161624][ T2778] Read of size 8 at addr 00fd77b3050cb77b by task syz-executor.1/2778 [ 1380.164415][ T2778] [ 1380.166893][ T2778] CPU: 0 PID: 2778 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1380.169116][ T2778] Hardware name: riscv-virtio,qemu (DT) [ 1380.171106][ T2778] Call Trace: [ 1380.172326][ T2778] [] dump_backtrace+0x2e/0x3c [ 1380.174380][ T2778] [] show_stack+0x34/0x40 [ 1380.175895][ T2778] [] dump_stack_lvl+0xe4/0x150 [ 1380.177987][ T2778] [] kasan_report+0x1de/0x1e0 [ 1380.179477][ T2778] [] __asan_load8+0x6e/0x96 [ 1380.180912][ T2778] [] klist_next+0x11c/0x312 [ 1380.182277][ T2778] [] class_find_device+0x144/0x21a [ 1380.183677][ T2778] [] alloc_tty_struct+0x4a8/0x540 [ 1380.184721][ T2778] [] tty_init_dev.part.0+0x26/0x362 [ 1380.185646][ T2778] [] tty_open+0x8b0/0xb12 [ 1380.186583][ T2778] [] chrdev_open+0x1d4/0x478 [ 1380.187424][ T2778] [] do_dentry_open+0x2a4/0x7d4 [ 1380.188320][ T2778] [] vfs_open+0x52/0x5e [ 1380.189190][ T2778] [] path_openat+0x12b6/0x189e [ 1380.190082][ T2778] [] do_filp_open+0x10e/0x22a [ 1380.190931][ T2778] [] do_sys_openat2+0x174/0x31e [ 1380.191854][ T2778] [] sys_openat+0xdc/0x164 [ 1380.193076][ T2778] [] ret_from_syscall+0x0/0x2 [ 1380.194519][ T2778] ================================================================== [ 1380.195476][ T2778] Disabling lock debugging due to kernel taint [ 1380.196666][ T2778] Unable to handle kernel paging request at virtual address 00fd77b3050cb77b [ 1380.198261][ T2778] Oops [#1] [ 1380.198755][ T2778] Modules linked in: [ 1380.199436][ T2778] CPU: 0 PID: 2778 Comm: syz-executor.1 Tainted: G B 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1380.200355][ T2778] Hardware name: riscv-virtio,qemu (DT) [ 1380.200878][ T2778] epc : klist_next+0x11c/0x312 [ 1380.201624][ T2778] ra : klist_next+0x11c/0x312 [ 1380.202625][ T2778] epc : ffffffff80c1a8fe ra : ffffffff80c1a8fe sp : ffffaf80106e7430 [ 1380.203817][ T2778] gp : ffffffff85863ac0 tp : ffffaf800f0e3080 t0 : ffffffff86bcb657 [ 1380.204719][ T2778] t1 : fffff5ef0b53910c t2 : 0000000000000000 s0 : ffffaf80106e7490 [ 1380.205685][ T2778] s1 : ffffaf80106e74c0 a0 : 0000000000000001 a1 : 0000000000000003 [ 1380.206668][ T2778] a2 : 1ffff5f001e1c611 a3 : ffffffff831afd3a a4 : 0000000000000000 [ 1380.207379][ T2778] a5 : ffffaf800f0e4080 a6 : 0000000000f00000 a7 : ffffaf805a9c8863 [ 1380.208095][ T2778] s2 : 00fd77b3050cb77b s3 : 0000000000000001 s4 : ffffaf800c3938c0 [ 1380.208759][ T2778] s5 : ffffaf80106e74c8 s6 : 0000000000000022 s7 : 0000000000000000 [ 1380.209474][ T2778] s8 : ffffaf80095e1180 s9 : ffffaf800f254010 s10: ffffaf800f2543f8 [ 1380.210148][ T2778] s11: ffffaf800f077ba8 t3 : 0000000061736944 t4 : fffff5ef0b53910c [ 1380.211099][ T2778] t5 : fffff5ef0b53910d t6 : ffffaf80106e6e78 [ 1380.211914][ T2778] status: 0000000000000100 badaddr: 00fd77b3050cb77b cause: 000000000000000d [ 1380.213139][ T2778] [] class_find_device+0x144/0x21a [ 1380.213964][ T2778] [] alloc_tty_struct+0x4a8/0x540 [ 1380.215099][ T2778] [] tty_init_dev.part.0+0x26/0x362 [ 1380.216839][ T2778] [] tty_open+0x8b0/0xb12 [ 1380.218184][ T2778] [] chrdev_open+0x1d4/0x478 [ 1380.219608][ T2778] [] do_dentry_open+0x2a4/0x7d4 [ 1380.220529][ T2778] [] vfs_open+0x52/0x5e [ 1380.221521][ T2778] [] path_openat+0x12b6/0x189e [ 1380.223064][ T2778] [] do_filp_open+0x10e/0x22a [ 1380.224231][ T2778] [] do_sys_openat2+0x174/0x31e [ 1380.225400][ T2778] [] sys_openat+0xdc/0x164 [ 1380.226682][ T2778] [] ret_from_syscall+0x0/0x2 [ 1380.230802][ T2778] ---[ end trace 0000000000000000 ]--- [ 1380.233102][ T2778] Kernel panic - not syncing: Fatal exception [ 1380.234275][ T2778] SMP: stopping secondary CPUs [ 1380.236068][ T2778] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:25:36 Registers: info registers vcpu 0 pc ffffffff80c2b612 mhartid 0000000000000000 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475b38 sepc ffffffff803dbfe2 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff8011c7fa x2/sp ffffaf80106e6eb0 x3/gp ffffffff85863ac0 x4/tp ffffaf800f0e3080 x5/t0 ffffaf80106e6f60 x6/t1 fffff5ef020dcdec x7/t2 0000000000000000 x8/s0 ffffaf80106e6ee0 x9/s1 ffffffff86bcb640 x10/a0 ffffffff86bcb640 x11/a1 000000000000000a x12/a2 0000000000000000 x13/a3 ffffffff8011c7ec x14/a4 ffff8f8010d9bd68 x15/a5 00000000000101ad x16/a6 ffffaf80106e6f67 x17/a7 ffffaf80106e6f65 x18/s2 ffffffff86bcb641 x19/s3 ffffffff86bcb640 x20/s4 000000000000000a x21/s5 0000000000000017 x22/s6 0000000000000000 x23/s7 0000000000000400 x24/s8 ffffaf80106e6f50 x25/s9 0000000000000000 x26/s10 00000000000003e7 x27/s11 ffffaf80106e71a0 x28/t3 0000000000000054 x29/t4 fffff5ef020dcdec x30/t5 fffff5ef020dcded x31/t6 ffffaf80106e6f66 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff8010b22c mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80475af4 sepc ffffffff801165e0 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff831a18d8 x2/sp ffffaf802439f1b0 x3/gp ffffffff85863ac0 x4/tp ffffaf800eb53080 x5/t0 0000000000046000 x6/t1 cb6beb19dea0fb00 x7/t2 00007fffd0a971b7 x8/s0 ffffaf802439f1c0 x9/s1 0000000000001000 x10/a0 0000000000000120 x11/a1 ffffffffffffffff x12/a2 1ffff5f001d6a611 x13/a3 ffffffff80146d84 x14/a4 0000000000010003 x15/a5 0000000000000000 x16/a6 0000000000f00000 x17/a7 ffffffff8010219e x18/s2 ffffaf802439f2e0 x19/s3 ffffffff84b73ec0 x20/s4 0000000000000001 x21/s5 ffffffff8343c840 x22/s6 ffffffffffffffff x23/s7 ffffaf800eb53080 x24/s8 ffffffff86c1a620 x25/s9 1ffff5f004873e4c x26/s10 ffffffff84b73e00 x27/s11 ffffffff80102298 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f004873e1c x31/t6 0000000000040000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000