Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '[localhost]:15238' (ECDSA) to the list of known hosts. 2020/12/09 13:42:25 fuzzer started 2020/12/09 13:42:26 dialing manager at 10.0.2.10:42503 2020/12/09 13:42:26 syscalls: 3449 2020/12/09 13:42:26 code coverage: enabled 2020/12/09 13:42:26 comparison tracing: enabled 2020/12/09 13:42:26 extra coverage: enabled 2020/12/09 13:42:26 setuid sandbox: enabled 2020/12/09 13:42:26 namespace sandbox: enabled 2020/12/09 13:42:26 Android sandbox: /sys/fs/selinux/policy does not exist 2020/12/09 13:42:26 fault injection: enabled 2020/12/09 13:42:26 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/12/09 13:42:26 net packet injection: enabled 2020/12/09 13:42:26 net device setup: enabled 2020/12/09 13:42:26 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/12/09 13:42:26 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/12/09 13:42:26 USB emulation: enabled 2020/12/09 13:42:26 hci packet injection: enabled 2020/12/09 13:42:26 wifi device emulation: enabled 13:43:58 executing program 0: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$vfat(&(0x7f0000000000)='vfat\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, &(0x7f00000005c0), 0x0, &(0x7f00000006c0)={[{@rodir='rodir'}, {@fat=@umask={'umask'}}]}) 13:43:58 executing program 1: r0 = getpid() capget(&(0x7f0000000000)={0x20071026, r0}, &(0x7f0000000040)) 13:43:58 executing program 2: r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8943, &(0x7f0000000000)={'sit0\x00'}) 13:43:58 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000100)={'filter\x00', 0x7, 0x4, 0x4a0, 0xe8, 0x1d0, 0x0, 0xe8, 0x3b8, 0x3b8, 0x4, 0x0, {[{{@arp={@loopback, @empty, 0x0, 0x0, 0x0, 0x0, {@mac=@link_local}, {@mac=@multicast}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'bond0\x00', 'team_slave_1\x00'}, 0xc0, 0xe8}, @unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00'}}, {{@uncond, 0xc0, 0xe8}, @unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}, {{@uncond, 0xc0, 0x1e8}, @unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x0, 0x0, 'system_u:system_r:kernel_t:s0\x00'}}}], {{[], 0xc0, 0xe8}, {0x28}}}}, 0x4f0) syzkaller login: [ 195.169263][ T9080] IPVS: ftp: loaded support on port[0] = 21 [ 195.276371][ T9082] IPVS: ftp: loaded support on port[0] = 21 [ 195.288118][ T9080] chnl_net:caif_netlink_parms(): no params data found [ 195.359566][ T9080] bridge0: port 1(bridge_slave_0) entered blocking state [ 195.374312][ T9080] bridge0: port 1(bridge_slave_0) entered disabled state [ 195.391687][ T9080] device bridge_slave_0 entered promiscuous mode [ 195.426409][ T9080] bridge0: port 2(bridge_slave_1) entered blocking state [ 195.445670][ T9080] bridge0: port 2(bridge_slave_1) entered disabled state [ 195.480826][ T9080] device bridge_slave_1 entered promiscuous mode [ 195.521391][ T9080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 195.559851][ T9080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 195.562246][ T9084] IPVS: ftp: loaded support on port[0] = 21 [ 195.635789][ T9080] team0: Port device team_slave_0 added [ 195.649852][ T9080] team0: Port device team_slave_1 added [ 195.652785][ T9086] IPVS: ftp: loaded support on port[0] = 21 [ 195.687096][ T9080] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 195.705618][ T9080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.764061][ T9080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 195.788679][ T9080] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 195.802914][ T9080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 195.858421][ T9080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 195.917252][ T9082] chnl_net:caif_netlink_parms(): no params data found [ 196.007931][ T9080] device hsr_slave_0 entered promiscuous mode [ 196.032464][ T9080] device hsr_slave_1 entered promiscuous mode [ 196.123659][ T9082] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.153467][ T9082] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.175583][ T9082] device bridge_slave_0 entered promiscuous mode [ 196.195414][ T9082] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.216191][ T9082] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.231880][ T9082] device bridge_slave_1 entered promiscuous mode [ 196.293160][ T9082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 196.323007][ T9082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 196.361403][ T9084] chnl_net:caif_netlink_parms(): no params data found [ 196.382867][ T9082] team0: Port device team_slave_0 added [ 196.404764][ T9082] team0: Port device team_slave_1 added [ 196.452963][ T9086] chnl_net:caif_netlink_parms(): no params data found [ 196.482325][ T9082] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 196.497736][ T9082] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.540171][ T9082] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 196.566687][ T9082] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 196.585824][ T9082] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 196.630517][ T9082] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 196.710431][ T9084] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.723352][ T9084] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.736881][ T9084] device bridge_slave_0 entered promiscuous mode [ 196.750797][ T9082] device hsr_slave_0 entered promiscuous mode [ 196.762679][ T9082] device hsr_slave_1 entered promiscuous mode [ 196.774443][ T9082] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 196.788315][ T9082] Cannot create hsr debugfs directory [ 196.800986][ T9084] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.813239][ T9084] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.827932][ T9084] device bridge_slave_1 entered promiscuous mode [ 196.874694][ T9084] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 196.911244][ T9084] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 196.934276][ T9080] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 196.971467][ T9080] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 196.994313][ T9084] team0: Port device team_slave_0 added [ 197.006921][ T9086] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.019597][ T9086] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.033366][ T9086] device bridge_slave_0 entered promiscuous mode [ 197.046739][ T9080] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 197.064498][ T9080] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 197.081677][ T9084] team0: Port device team_slave_1 added [ 197.095613][ T9086] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.109050][ T9086] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.121971][ T9086] device bridge_slave_1 entered promiscuous mode [ 197.152686][ T9086] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.173660][ T1724] Bluetooth: hci0: command 0x0409 tx timeout [ 197.181778][ T9084] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 197.198391][ T9084] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.264069][ T9084] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 197.288356][ T9086] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 197.313416][ T9084] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 197.328816][ T1721] Bluetooth: hci1: command 0x0409 tx timeout [ 197.329081][ T9084] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.405586][ T9084] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 197.461775][ T9086] team0: Port device team_slave_0 added [ 197.466117][ T28] Bluetooth: hci2: command 0x0409 tx timeout [ 197.497639][ T9086] team0: Port device team_slave_1 added [ 197.522828][ T9084] device hsr_slave_0 entered promiscuous mode [ 197.537721][ T9084] device hsr_slave_1 entered promiscuous mode [ 197.554520][ T9084] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 197.573550][ T9084] Cannot create hsr debugfs directory [ 197.599858][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 197.616843][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.636214][ T3353] Bluetooth: hci3: command 0x0409 tx timeout [ 197.674552][ T9086] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 197.681029][ T9086] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 197.726510][ T9086] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 197.782891][ T9086] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 197.881108][ T9086] device hsr_slave_0 entered promiscuous mode [ 197.903875][ T9086] device hsr_slave_1 entered promiscuous mode [ 197.919345][ T9086] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 197.936218][ T9086] Cannot create hsr debugfs directory [ 197.996816][ T9082] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 198.015047][ T9082] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 198.040572][ T9082] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 198.060968][ T9082] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 198.112135][ T9080] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.148901][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 198.166782][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 198.189403][ T9080] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.220443][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 198.238866][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 198.257404][ T1724] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.273352][ T1724] bridge0: port 1(bridge_slave_0) entered forwarding state [ 198.301490][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 198.324332][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 198.343431][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 198.363475][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.383241][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 198.404195][ T9084] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 198.427484][ T9084] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 198.443852][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 198.476993][ T9084] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 198.498100][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 198.537059][ T9084] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 198.558816][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 198.577428][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 198.596442][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 198.614397][ T9086] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 198.636870][ T9086] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 198.655345][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 198.682918][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 198.723568][ T9086] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 198.740088][ T9086] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 198.759395][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 198.782780][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 198.804528][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 198.824795][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 198.851478][ T9080] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 198.889875][ T9082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 198.932751][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 198.950592][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 198.971803][ T9082] 8021q: adding VLAN 0 to HW filter on device team0 [ 198.995006][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 199.013723][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 199.037742][ T9080] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 199.055079][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 199.075124][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 199.096363][ T1721] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.116797][ T1721] bridge0: port 1(bridge_slave_0) entered forwarding state [ 199.150043][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 199.170797][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 199.190284][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 199.208980][ T9113] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.223872][ T9113] bridge0: port 2(bridge_slave_1) entered forwarding state [ 199.236185][ T5] Bluetooth: hci0: command 0x041b tx timeout [ 199.253328][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 199.276848][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 199.306431][ T9084] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.323078][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 199.343781][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 199.363024][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 199.397767][ T3353] Bluetooth: hci1: command 0x041b tx timeout [ 199.406882][ T9080] device veth0_vlan entered promiscuous mode [ 199.432915][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 199.454000][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 199.471531][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 199.494944][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 199.513918][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 199.530667][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 199.556454][ T9113] Bluetooth: hci2: command 0x041b tx timeout [ 199.561721][ T9086] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.613934][ T9086] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.632411][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 199.651255][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 199.673254][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 199.689837][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 199.705332][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 199.721302][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 199.738365][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 199.756935][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 199.777639][ T1721] Bluetooth: hci3: command 0x041b tx timeout [ 199.779578][ T9084] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.812657][ T9080] device veth1_vlan entered promiscuous mode [ 199.837620][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 199.854844][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 199.872059][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 199.892209][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 199.910219][ T9112] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.924287][ T9112] bridge0: port 1(bridge_slave_0) entered forwarding state [ 199.949373][ T9082] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 199.973293][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 199.989234][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 200.008297][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 200.025499][ T3519] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.040959][ T3519] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.058057][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 200.075364][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 200.091887][ T3519] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.106410][ T3519] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.124331][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 200.156110][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 200.174733][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 200.191099][ T18] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.204907][ T18] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.220238][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 200.239256][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 200.262741][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 200.281069][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 200.306172][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 200.324318][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 200.340860][ T9080] device veth0_macvtap entered promiscuous mode [ 200.360111][ T9080] device veth1_macvtap entered promiscuous mode [ 200.384031][ T9082] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.409182][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 200.425783][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 200.442646][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 200.458883][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 200.476653][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 200.494278][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 200.511695][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 200.528114][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 200.544693][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 200.559251][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 200.586875][ T9080] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 200.619258][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 200.637352][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 200.653494][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 200.673229][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 200.691565][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 200.708918][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 200.726633][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 200.745298][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 200.763865][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 200.787129][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 200.805084][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 200.822689][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 200.852784][ T9080] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 200.884059][ T9086] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 200.908909][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 200.932045][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 200.950375][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 200.976714][ T9116] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 201.000490][ T9080] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.020590][ T9080] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.042045][ T9080] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.064721][ T9080] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 201.131153][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 201.151919][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 201.179817][ T9086] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.202554][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 201.218667][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 201.238055][ T9084] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 201.264896][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 201.286815][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 201.304111][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 201.306343][ T3353] Bluetooth: hci0: command 0x040f tx timeout [ 201.322813][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 201.361961][ T9082] device veth0_vlan entered promiscuous mode [ 201.403912][ T9082] device veth1_vlan entered promiscuous mode [ 201.438775][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 201.440654][ T9111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.457316][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 201.466332][ T3353] Bluetooth: hci1: command 0x040f tx timeout [ 201.476644][ T9111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.496861][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 201.542908][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 201.575445][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 201.591691][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 201.608605][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 201.627045][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 201.636711][ T9113] Bluetooth: hci2: command 0x040f tx timeout [ 201.653435][ T9111] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 201.661902][ T9084] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.678346][ T9111] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 201.712166][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 201.728316][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 201.744868][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 201.761356][ T9086] device veth0_vlan entered promiscuous mode [ 201.782186][ T9086] device veth1_vlan entered promiscuous mode [ 201.822607][ T9080] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 201.824044][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 201.868959][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 201.887742][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 201.901702][ T9121] FAT-fs (loop0): bogus number of reserved sectors [ 201.906717][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 201.920998][ T9121] FAT-fs (loop0): Can't find a valid FAT filesystem [ 201.957908][ T1721] Bluetooth: hci3: command 0x040f tx timeout [ 201.993408][ T9082] device veth0_macvtap entered promiscuous mode [ 202.023900][ T9086] device veth0_macvtap entered promiscuous mode [ 202.043133][ T9084] device veth0_vlan entered promiscuous mode 13:44:06 executing program 0: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r0, 0x40086602, 0x0) [ 202.060704][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 202.084798][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready 13:44:06 executing program 0: perf_event_open(&(0x7f0000000180)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f00000013c0)={[{@nr_inodes={'nr_inodes', 0x3d, [0x6d, 0x0]}}]}) open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) [ 202.104984][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 202.124240][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready 13:44:06 executing program 0: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x1200, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000001c0)={0x0, 0x252a, 0x0, 0x3000000, [], [{}, {0x0, 0x0, 0x80000001}]}) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) [ 202.143235][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 202.164864][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 202.184795][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 202.204519][ T9135] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.206191][ T9086] device veth1_macvtap entered promiscuous mode [ 202.251474][ T9082] device veth1_macvtap entered promiscuous mode 13:44:06 executing program 0: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x1200, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000001c0)={0x0, 0x252a, 0x0, 0x3000000, [], [{}, {0x0, 0x0, 0x80000001}]}) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) [ 202.270195][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 202.286643][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 202.287810][ T3195] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.302227][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 202.336405][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 202.361509][ T1721] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 202.387307][ T9084] device veth1_vlan entered promiscuous mode [ 202.412005][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.443202][ T9143] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.443502][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 13:44:07 executing program 0: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x1200, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000001c0)={0x0, 0x252a, 0x0, 0x3000000, [], [{}, {0x0, 0x0, 0x80000001}]}) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) [ 202.490202][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.510217][ T1189] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.512737][ T9086] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 202.553342][ T9086] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.577580][ T9086] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 202.594833][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 202.612480][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 202.633747][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 202.644747][ T9149] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.654467][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 202.693449][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 202.713239][ T1189] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 202.735464][ T9082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.760382][ T9082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.782111][ T9082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 202.807178][ T9082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 202.832795][ T9082] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 202.852450][ T9086] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.872601][ T9086] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.893349][ T9086] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.912737][ T9086] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 202.935670][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 202.957674][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 202.977213][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 203.000429][ T9113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 203.026531][ T9084] device veth0_macvtap entered promiscuous mode [ 203.052108][ T9082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 203.083384][ T9082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.111712][ T9082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 203.137409][ T9082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.167645][ T9082] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 203.193680][ T9084] device veth1_macvtap entered promiscuous mode [ 203.212695][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 203.230344][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 203.249556][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 203.270557][ T3353] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 203.295348][ T9082] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.318320][ T9082] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.340091][ T9082] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.361757][ T9082] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.387040][ T3353] Bluetooth: hci0: command 0x0419 tx timeout [ 203.419032][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 203.447058][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.469744][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 203.498178][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.521135][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 203.543064][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.566727][ T9116] Bluetooth: hci1: command 0x0419 tx timeout [ 203.567309][ T9084] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 203.609447][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 203.630899][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 203.656998][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 203.680549][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.701272][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 203.723267][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.726554][ T9113] Bluetooth: hci2: command 0x0419 tx timeout [ 203.742944][ T9084] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 203.775421][ T9084] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 203.803196][ T9084] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 203.825108][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 203.844375][ T1724] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 203.877034][ T9111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 203.883862][ T9084] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.893571][ T9111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 203.910444][ T9084] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.941684][ T9084] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.958668][ T9084] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 203.988542][ T9115] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 204.007347][ T9111] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.024025][ T9111] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.027957][ T2980] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.041019][ T9096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.041044][ T9096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.092552][ T2980] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.093720][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 204.106292][ T9115] Bluetooth: hci3: command 0x0419 tx timeout [ 204.139661][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 204.157911][ T3519] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 204.216946][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.239822][ T9154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 204.244287][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.259664][ T9156] capability: warning: `syz-executor.1' uses deprecated v2 capabilities in a way that may be insecure 13:44:08 executing program 1: syz_mount_image$hfsplus(&(0x7f0000000000)='hfsplus\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f00000005c0), 0x0, &(0x7f0000000680)) [ 204.269331][ T9154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 204.285547][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 204.341587][ T9163] hfsplus: unable to find HFS+ superblock [ 204.368785][ T9112] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 204.474489][ T9163] hfsplus: unable to find HFS+ superblock 13:44:09 executing program 2: r0 = syz_open_dev$evdev(&(0x7f0000000000)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGBITSW(r0, 0x80044584, 0x0) 13:44:09 executing program 0: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x1200, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, &(0x7f00000001c0)={0x0, 0x252a, 0x0, 0x3000000, [], [{}, {0x0, 0x0, 0x80000001}]}) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, 0x0) 13:44:09 executing program 3: syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r4}]}, 0x3c}}, 0x0) 13:44:09 executing program 1: r0 = creat(&(0x7f0000000000)='./bus\x00', 0x0) ioctl$FS_IOC_GETFSMAP(r0, 0xc0c0583b, &(0x7f0000000780)={0x0, 0x252a, 0x5, 0x3000000, [], [{}, {0x801, 0x0, 0x80000001}], [[], [], [], [], []]}) [ 204.543493][ T9174] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 13:44:09 executing program 1: openat$nvram(0xffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x967482, 0x0) 13:44:09 executing program 2: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000010000)="601c6d6b646f736617e43c00088020000200000004f8000020004000000000000000000001", 0x25}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) fcntl$setstatus(r0, 0x4, 0x6900) ftruncate(r0, 0x800) lseek(r0, 0x1200, 0x0) r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0) rmdir(0x0) sendfile(r0, r1, 0x0, 0x8400fffffffa) r2 = creat(&(0x7f0000000000)='./bus\x00', 0x0) bind$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @empty}, 0x10) ioctl$FS_IOC_GETFSMAP(0xffffffffffffffff, 0xc0c0583b, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001340)={@loopback, @remote}, 0x8) ioctl$BTRFS_IOC_SUBVOL_CREATE(r2, 0x5000940e, 0x0) 13:44:09 executing program 0: r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_group_source_req(r0, 0x29, 0x2b, &(0x7f0000000400)={0x0, {{0xa, 0x0, 0x0, @mcast1}}, {{0xa, 0x0, 0x0, @ipv4={[], [], @dev}}}}, 0x108) [ 204.620662][ T266] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) [ 204.645364][ T9186] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 13:44:09 executing program 1: r0 = syz_open_dev$dri(&(0x7f0000000100)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_MAP_DUMB(r0, 0x80086601, &(0x7f0000000040)) 13:44:09 executing program 3: syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r4}]}, 0x3c}}, 0x0) 13:44:09 executing program 0: r0 = open(&(0x7f0000000040)='./bus\x00', 0x1410c2, 0x0) mmap(&(0x7f0000008000/0x600000)=nil, 0x600000, 0x800002, 0x11, r0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x1000f4) write(r2, &(0x7f00000001c0), 0xfffffef3) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:44:09 executing program 2: r0 = socket$inet6(0xa, 0x80001, 0x0) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) 13:44:09 executing program 1: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000300)="601c6d6b646f736617e43c00088020000200000004f8f0", 0x17}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) [ 204.826532][ T266] FAT-fs (loop2): Invalid FSINFO signature: 0x00000000, 0x00000000 (sector = 1) 13:44:09 executing program 0: r0 = open(&(0x7f0000000040)='./bus\x00', 0x1410c2, 0x0) mmap(&(0x7f0000008000/0x600000)=nil, 0x600000, 0x800002, 0x11, r0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x1000f4) write(r2, &(0x7f00000001c0), 0xfffffef3) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:44:09 executing program 1: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000300)="601c6d6b646f736617e43c00088020000200000004f8f0", 0x17}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) 13:44:09 executing program 0: r0 = open(&(0x7f0000000040)='./bus\x00', 0x1410c2, 0x0) mmap(&(0x7f0000008000/0x600000)=nil, 0x600000, 0x800002, 0x11, r0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x1000f4) write(r2, &(0x7f00000001c0), 0xfffffef3) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:44:09 executing program 2: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x0, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) getsockopt$IPT_SO_GET_REVISION_MATCH(r0, 0x0, 0x42, &(0x7f0000000000)={'icmp\x00'}, &(0x7f0000000040)=0x1e) 13:44:09 executing program 3: syz_open_procfs(0x0, &(0x7f0000000100)='syscall\x00') r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket(0x1, 0x803, 0x0) getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14) sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb, 0x1, 'bridge\x00'}, {0x4}}}, @IFLA_MASTER={0x8, 0x3, r4}]}, 0x3c}}, 0x0) 13:44:09 executing program 0: r0 = open(&(0x7f0000000040)='./bus\x00', 0x1410c2, 0x0) mmap(&(0x7f0000008000/0x600000)=nil, 0x600000, 0x800002, 0x11, r0, 0x0) pipe(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = creat(&(0x7f0000000080)='./bus\x00', 0x0) fallocate(r3, 0x0, 0x0, 0x1000f4) write(r2, &(0x7f00000001c0), 0xfffffef3) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 13:44:09 executing program 1: syz_mount_image$vfat(&(0x7f00000002c0)='vfat\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x2, &(0x7f0000000200)=[{&(0x7f0000000300)="601c6d6b646f736617e43c00088020000200000004f8f0", 0x17}, {0x0, 0x0, 0x200000000011000}], 0x0, &(0x7f0000000240)=ANY=[]) chdir(&(0x7f0000000040)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) 13:44:09 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x400086) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x205, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40305829, 0x0) close(r0) [ 205.128514][ C3] hrtimer: interrupt took 31259 ns 13:44:09 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x400086) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x205, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40305829, 0x0) close(r0) 13:44:10 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x400086) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x205, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40305829, 0x0) close(r0) 13:44:10 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) clone(0x0, 0x0, 0x0, 0x0, 0x0) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) write$cgroup_int(r0, &(0x7f0000000200), 0x400086) perf_event_open(&(0x7f00000002c0)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x205, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x40305829, 0x0) close(r0) [ 256.500947][ T8977] cron invoked oom-killer: gfp_mask=0x100cca(GFP_HIGHUSER_MOVABLE), order=0, oom_score_adj=0 [ 256.527164][ T8977] CPU: 1 PID: 8977 Comm: cron Not tainted 5.10.0-rc7-syzkaller #0 [ 256.536382][ T8977] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 256.536382][ T8977] Call Trace: [ 256.536382][ T8977] dump_stack+0x107/0x163 [ 256.536382][ T8977] dump_header+0x106/0x624 [ 256.536382][ T8977] oom_kill_process.cold+0x10/0x15 [ 256.536382][ T8977] out_of_memory+0x10f1/0x13f0 [ 256.536382][ T8977] ? oom_killer_disable+0x270/0x270 [ 256.536382][ T8977] ? mutex_trylock+0x246/0x2c0 [ 256.536382][ T8977] ? __alloc_pages_slowpath.constprop.0+0xc33/0x2510 [ 256.536382][ T8977] __alloc_pages_slowpath.constprop.0+0x1e95/0x2510 [ 256.536382][ T8977] ? warn_alloc+0x120/0x120 [ 256.536382][ T8977] ? fs_reclaim_release+0x90/0xd0 [ 256.536382][ T8977] __alloc_pages_nodemask+0x5f0/0x730 [ 256.536382][ T8977] ? __alloc_pages_slowpath.constprop.0+0x2510/0x2510 [ 256.536382][ T8977] ? find_get_entry+0x26c/0x570 [ 256.536382][ T8977] alloc_pages_current+0x191/0x2a0 [ 256.536382][ T8977] __page_cache_alloc+0x2ce/0x360 [ 256.536382][ T8977] ? read_pages+0x8d0/0x8d0 [ 256.536382][ T8977] pagecache_get_page+0x392/0x1460 [ 256.536382][ T8977] filemap_fault+0x1a37/0x2940 [ 256.536382][ T8977] ? read_cache_page_gfp+0x30/0x30 [ 256.536382][ T8977] ? delete_from_page_cache+0x240/0x240 [ 256.536382][ T8977] ? count_memcg_event_mm.part.0+0x151/0x280 [ 256.536382][ T8977] ext4_filemap_fault+0x87/0xc0 [ 256.536382][ T8977] __do_fault+0x10d/0x4d0 [ 256.536382][ T8977] handle_mm_fault+0x3198/0x55d0 [ 256.536382][ T8977] ? vm_iomap_memory+0x190/0x190 [ 256.536382][ T8977] ? vmacache_update+0xce/0x140 [ 256.536382][ T8977] do_user_addr_fault+0x55b/0xb40 [ 256.536382][ T8977] exc_page_fault+0x9e/0x180 [ 256.536382][ T8977] ? asm_exc_page_fault+0x8/0x30 [ 256.536382][ T8977] asm_exc_page_fault+0x1e/0x30 [ 256.536382][ T8977] RIP: 0033:0x40320a [ 256.536382][ T8977] Code: Unable to access opcode bytes at RIP 0x4031e0. [ 256.536382][ T8977] RSP: 002b:00007fffb800c0f0 EFLAGS: 00010206 [ 256.536382][ T8977] RAX: 0000000000000000 RBX: 000000000198d058 RCX: 00007f53934aae40 [ 256.536382][ T8977] RDX: 0000000000000000 RSI: 00007fffb800c0b0 RDI: 00007fffb800c0b0 [ 256.536382][ T8977] RBP: 0000000000000000 R08: 00007fffb800bf10 R09: 0000000000000000 [ 256.536382][ T8977] R10: 0000000000000008 R11: 0000000000000246 R12: 00000000004033c4 [ 256.536382][ T8977] R13: 00007fffb800c210 R14: 0000000000000000 R15: 0000000000000000 [ 257.179522][ T8977] Mem-Info: [ 257.187439][ T8977] active_anon:4078 inactive_anon:115439 isolated_anon:0 [ 257.187439][ T8977] active_file:341 inactive_file:252 isolated_file:33 [ 257.187439][ T8977] unevictable:0 dirty:88 writeback:33 [ 257.187439][ T8977] slab_reclaimable:12892 slab_unreclaimable:129857 [ 257.187439][ T8977] mapped:35324 shmem:611 pagetables:1007 bounce:0 [ 257.187439][ T8977] free:10152 free_pcp:1660 free_cma:0 [ 257.272127][ T8977] Node 0 active_anon:16304kB inactive_anon:205652kB active_file:160kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:148kB dirty:52kB writeback:52kB shmem:1844kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 77824kB writeback_tmp:0kB kernel_stack:8960kB all_unreclaimable? yes [ 257.340556][ T8977] Node 1 active_anon:8kB inactive_anon:256104kB active_file:1076kB inactive_file:1004kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:140948kB dirty:300kB writeback:80kB shmem:600kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:1088kB all_unreclaimable? no [ 257.405462][ T8977] Node 0 DMA free:2148kB min:2780kB low:2960kB high:3140kB reserved_highatomic:0KB active_anon:0kB inactive_anon:12896kB active_file:12kB inactive_file:0kB unevictable:0kB writepending:12kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 257.470954][ T8977] lowmem_reserve[]: 0 468 468 468 468 [ 257.483204][ T8977] Node 0 DMA32 free:8308kB min:22196kB low:27744kB high:33292kB reserved_highatomic:2048KB active_anon:16304kB inactive_anon:192756kB active_file:148kB inactive_file:4kB unevictable:0kB writepending:92kB present:1032192kB managed:486276kB mlocked:0kB pagetables:1928kB bounce:0kB free_pcp:2316kB local_pcp:736kB free_cma:0kB [ 257.553434][ T8977] lowmem_reserve[]: 0 0 0 0 0 [ 257.564446][ T8977] Node 1 DMA32 free:27624kB min:65128kB low:76288kB high:87448kB reserved_highatomic:4096KB active_anon:8kB inactive_anon:256104kB active_file:1348kB inactive_file:1004kB unevictable:0kB writepending:380kB present:1048436kB managed:965508kB mlocked:0kB pagetables:2100kB bounce:0kB free_pcp:4192kB local_pcp:1500kB free_cma:0kB [ 257.680232][ T8977] lowmem_reserve[]: 0 0 0 0 0 [ 257.698613][ T8977] Node 0 DMA: 1*4kB (U) 0*8kB 2*16kB (E) 4*32kB (UE) 1*64kB (E) 1*128kB (E) 1*256kB (E) 1*512kB (E) 1*1024kB (U) 0*2048kB 0*4096kB = 2148kB [ 257.742035][ T8977] Node 0 DMA32: 37*4kB (MH) 52*8kB (UME) 26*16kB (UME) 29*32kB (UME) 18*64kB (UMEH) 17*128kB (UMH) 6*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 8308kB [ 257.778650][ T8977] Node 1 DMA32: 225*4kB (UMH) 77*8kB (UME) 52*16kB (M) 56*32kB (UMEH) 39*64kB (M) 34*128kB (UMH) 18*256kB (UM) 17*512kB (UM) 2*1024kB (M) 0*2048kB 0*4096kB = 26348kB [ 257.819406][ T8977] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 257.840741][ T8977] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 257.861194][ T8977] 1199 total pagecache pages [ 257.873486][ T8977] 0 pages in swap cache [ 257.885709][ T8977] Swap cache stats: add 0, delete 0, find 0/0 [ 257.900605][ T8977] Free swap = 0kB [ 257.908818][ T8977] Total swap = 0kB [ 257.917030][ T8977] 524155 pages RAM [ 257.924979][ T8977] 0 pages HighMem/MovableOnly [ 257.935554][ T8977] 157232 pages reserved [ 257.952667][ T8977] 0 pages cma reserved [ 257.967438][ T8977] Unreclaimable slab info: [ 257.982415][ T8977] Name Used Total [ 257.997916][ T8977] pid_2 39KB 39KB [ 258.010795][ T8977] bio-3 7KB 7KB [ 258.026772][ T8977] batadv_tt_change_cache 16KB 16KB [ 258.043677][ T8977] batadv_tl_cache 16KB 16KB [ 258.057807][ T8977] TIPC 61KB 61KB [ 258.075820][ T8977] SCTPv6 127KB 127KB [ 258.095453][ T8977] DCCPv6 126KB 126KB [ 258.114592][ T8977] DCCP 126KB 126KB [ 258.131041][ T8977] RXRPC 121KB 121KB [ 258.144018][ T8977] rxrpc_call_jar 126KB 126KB [ 258.163175][ T8977] bridge_fdb_cache 15KB 15KB [ 258.183521][ T8977] fib6_nodes 116KB 116KB [ 258.214703][ T8977] ip6_dst_cache 265KB 328KB [ 258.230341][ T8977] RAWv6 157KB 157KB [ 258.250586][ T8977] UDPv6 124KB 124KB [ 258.271003][ T8977] TCPv6 122KB 122KB [ 258.294192][ T8977] nf_conntrack 31KB 31KB [ 258.308712][ T8977] t10_alua_lu_gp_cache 7KB 7KB [ 258.325356][ T8977] scsi_sense_cache 48KB 48KB [ 258.339116][ T8977] sd_ext_cdb 3KB 3KB [ 258.352963][ T8977] virtio_scsi_cmd 16KB 16KB [ 258.366117][ T8977] sgpool-128 29KB 29KB [ 258.380015][ T8977] sgpool-64 31KB 31KB [ 258.393000][ T8977] sgpool-32 283KB 472KB [ 258.410781][ T8977] sgpool-16 312KB 312KB [ 258.429242][ T8977] sgpool-8 218KB 218KB [ 258.442683][ T8977] mqueue_inode_cache 93KB 93KB [ 258.456241][ T8977] f2fs_bio_post_read_ctx 16KB 16KB [ 258.472459][ T8977] jfs_mp 7KB 7KB [ 258.485600][ T8977] cifs_small_rq 16KB 16KB [ 258.499485][ T8977] cifs_request 67KB 67KB [ 258.512949][ T8977] cifs_mpx_ids 8KB 8KB [ 258.526382][ T8977] nfs_commit_data 31KB 31KB [ 258.541642][ T8977] nfs_write_data 63KB 63KB [ 258.555315][ T8977] ext4_system_zone 3KB 3KB [ 258.570129][ T8977] ext4_io_end_vec 15KB 15KB [ 258.584894][ T8977] ext4_bio_post_read_ctx 15KB 15KB [ 258.600003][ T8977] bio-2 7KB 7KB [ 258.613914][ T8977] pid_namespace 23KB 23KB [ 258.628049][ T8977] rpc_buffers 31KB 31KB [ 258.641746][ T8977] rpc_tasks 7KB 7KB [ 258.655629][ T8977] UNIX 718KB 961KB [ 258.669074][ T8977] UDP-Lite 31KB 31KB [ 258.682744][ T8977] tcp_bind_bucket 12KB 12KB [ 258.696015][ T8977] ip_fib_trie 28KB 28KB [ 258.710177][ T8977] ip_fib_alias 86KB 86KB [ 258.724768][ T8977] ip_dst_cache 32KB 32KB [ 258.740617][ T8977] RAW 156KB 156KB [ 258.754108][ T8977] UDP 126KB 126KB [ 258.767355][ T8977] request_sock_TCP 7KB 7KB [ 258.780998][ T8977] TCP 117KB 117KB [ 258.794265][ T8977] hugetlbfs_inode_cache 31KB 31KB [ 258.807649][ T8977] fscache_cookie_jar 15KB 15KB [ 258.820888][ T8977] bio-1 15KB 15KB [ 258.834614][ T8977] eventpoll_pwq 31KB 31KB [ 258.847580][ T8977] eventpoll_epi 55KB 55KB [ 258.860943][ T8977] inotify_inode_mark 15KB 15KB [ 258.874987][ T8977] bio_crypt_ctx 7KB 7KB [ 258.889199][ T8977] request_queue 270KB 280KB [ 258.903872][ T8977] blkdev_ioc 31KB 31KB [ 258.919283][ T8977] bio-0 210KB 304KB [ 258.933570][ T8977] biovec-max 892KB 892KB [ 258.946889][ T8977] biovec-64 472KB 630KB [ 258.959685][ T8977] biovec-16 257KB 257KB [ 258.973580][ T8977] bio_integrity_payload 15KB 15KB [ 258.989020][ T8977] khugepaged_mm_slot 15KB 15KB [ 259.004550][ T8977] uid_cache 32KB 32KB [ 259.018655][ T8977] dmaengine-unmap-2 4KB 4KB [ 259.032332][ T8977] QIPCRTR 31KB 31KB [ 259.045706][ T8977] audit_buffer 15KB 15KB [ 259.060014][ T8977] skbuff_ext_cache 40KB 40KB [ 259.074181][ T8977] skbuff_fclone_cache 421KB 484KB [ 259.089565][ T8977] skbuff_head_cache 8011KB 8020KB [ 259.105324][ T8977] configfs_dir_cache 16KB 16KB [ 259.119776][ T8977] file_lock_cache 141KB 141KB [ 259.132914][ T8977] file_lock_ctx 11KB 11KB [ 259.146776][ T8977] fsnotify_mark_connector 16KB 16KB [ 259.168947][ T8977] net_namespace 89KB 89KB [ 259.200159][ T8977] task_delay_info 324KB 419KB [ 259.224597][ T8977] taskstats 63KB 63KB [ 259.243822][ T8977] proc_dir_entry 593KB 593KB [ 259.257606][ T8977] pde_opener 15KB 15KB [ 259.271417][ T8977] seq_file 296KB 335KB [ 259.284977][ T8977] sigqueue 231452KB 231469KB [ 259.299503][ T8977] shmem_inode_cache 5878KB 5878KB [ 259.316627][ T8977] kernfs_iattrs_cache 23KB 23KB [ 259.330978][ T8977] kernfs_node_cache 21397KB 21418KB [ 259.346332][ T8977] mnt_cache 63KB 63KB [ 259.359377][ T8977] filp 695KB 843KB [ 259.372466][ T8977] names_cache 238KB 535KB [ 259.385296][ T8977] iint_cache 78KB 78KB [ 259.400059][ T8977] lsm_inode_cache 1381KB 1466KB [ 259.412779][ T9242] syz-executor.0: page allocation failure: order:0, mode:0xa20(GFP_ATOMIC), nodemask=(null),cpuset=syz0 [ 259.413371][ T8977] lsm_file_cache 189KB 192KB [ 259.413442][ T8977] key_jar 63KB 63KB [ 259.413451][ T8977] uts_namespace 31KB 31KB [ 259.413459][ T8977] nsproxy 15KB 15KB [ 259.413476][ T8977] vm_area_struct 517KB 831KB [ 259.415963][ T9242] ,mems_allowed=0-1 [ 259.415963][ T9242] CPU: 3 PID: 9242 Comm: syz-executor.0 Not tainted 5.10.0-rc7-syzkaller #0 [ 259.415963][ T9242] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 259.415963][ T9242] Call Trace: [ 259.415963][ T9242] dump_stack+0x107/0x163 [ 259.415963][ T9242] warn_alloc.cold+0x87/0x17a [ 259.415963][ T9242] ? zone_watermark_ok_safe+0x2a0/0x2a0 [ 259.415963][ T9242] ? wakeup_kswapd+0x15b/0x640 [ 259.415963][ T9242] ? __zone_watermark_ok+0x440/0x440 [ 259.415963][ T9242] ? wake_all_kswapds+0x143/0x2c0 [ 259.415963][ T9242] __alloc_pages_slowpath.constprop.0+0x2026/0x2510 [ 259.415963][ T9242] ? __lock_acquire+0x16b7/0x5500 [ 259.415963][ T9242] ? warn_alloc+0x120/0x120 [ 259.415963][ T9242] ? __lock_acquire+0x16b7/0x5500 [ 259.415963][ T9242] ? __zone_watermark_ok+0x440/0x440 [ 259.415963][ T9242] __alloc_pages_nodemask+0x5f0/0x730 [ 259.415963][ T9242] ? __alloc_pages_slowpath.constprop.0+0x2510/0x2510 [ 259.415963][ T9242] ? __slab_alloc.constprop.0+0x52/0xe0 [ 259.415963][ T9242] alloc_pages_current+0x191/0x2a0 [ 259.415963][ T9242] allocate_slab+0x2d9/0x4e0 [ 259.415963][ T9242] ___slab_alloc+0x476/0x790 [ 259.415963][ T9242] ? __sigqueue_alloc+0x236/0x550 [ 259.415963][ T9242] ? find_held_lock+0x2d/0x110 [ 259.415963][ T9242] ? __sigqueue_alloc+0x236/0x550 [ 259.415963][ T9242] ? __slab_alloc.constprop.0+0x52/0xe0 [ 259.415963][ T9242] __slab_alloc.constprop.0+0x52/0xe0 [ 259.415963][ T9242] ? __sigqueue_alloc+0x236/0x550 [ 259.415963][ T9242] kmem_cache_alloc+0x36e/0x440 [ 259.415963][ T9242] __sigqueue_alloc+0x236/0x550 [ 259.415963][ T9242] __send_signal+0x62d/0xf90 [ 259.415963][ T9242] force_sig_info_to_task+0x2a0/0x3a0 [ 259.415963][ T9242] force_sig_fault+0xb0/0xf0 [ 259.415963][ T9242] ? force_sig_fault_to_task+0xe0/0xe0 [ 259.415963][ T9242] ? pgtable_bad+0x90/0x90 [ 259.415963][ T9242] ? _down_write_nest_lock+0x150/0x150 [ 259.415963][ T9242] __bad_area_nosemaphore+0x2f3/0x400 [ 259.415963][ T9242] do_user_addr_fault+0x7d7/0xb40 [ 259.415963][ T9242] exc_page_fault+0x9e/0x180 [ 259.415963][ T9242] ? asm_exc_page_fault+0x8/0x30 [ 259.415963][ T9242] asm_exc_page_fault+0x1e/0x30 [ 259.504316][ T8977] mm_struct 489KB 577KB [ 259.520414][ T2980] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.520424][ T2980] cache: kmalloc-64, object size: 64, buffer size: 128, default order: 0, min order: 0 [ 259.520431][ T2980] node 0: slabs: 929, objs: 29728, free: 0 [ 259.520521][ T2980] node 1: slabs: 332, objs: 10624, free: 73 [ 259.415963][ T9242] RIP: 0023:0x804d836 [ 259.415963][ T9242] Code: e8 ef 5d 01 00 83 c4 10 85 c0 0f 84 7d 01 00 00 65 f0 83 2d e4 ff ff ff 01 8b 5c 24 08 e8 a2 03 01 00 8b 00 8b 54 24 0c 85 c0 <89> 42 54 8b 72 50 0f 85 16 01 00 00 83 fe ff 0f 85 0d 01 00 00 8b [ 259.415963][ T9242] RSP: 002b:00000000f555f100 EFLAGS: 00010202 [ 259.415963][ T9242] RAX: 000000000000000e RBX: 0000000000000000 RCX: 00000000f555f0f0 [ 259.415963][ T9242] RDX: 0000000000000000 RSI: 000000000818afa0 RDI: 000000000815e000 [ 259.415963][ T9242] RBP: 0000000000000004 R08: 0000000000000000 R09: 0000000000000000 [ 259.415963][ T9242] R10: 0000000000000000 R11: 0000000000000296 R12: 0000000000000000 [ 259.415963][ T9242] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 259.415963][ T9242] Mem-Info: [ 259.415963][ T9242] active_anon:4078 inactive_anon:115439 isolated_anon:0 [ 259.415963][ T9242] active_file:309 inactive_file:234 isolated_file:32 [ 259.415963][ T9242] unevictable:0 dirty:88 writeback:33 [ 259.415963][ T9242] slab_reclaimable:12892 slab_unreclaimable:133558 [ 259.415963][ T9242] mapped:35245 shmem:611 pagetables:1007 bounce:0 [ 259.415963][ T9242] free:6791 free_pcp:1416 free_cma:0 [ 259.415963][ T9242] Node 0 active_anon:16304kB inactive_anon:205652kB active_file:160kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:148kB dirty:52kB writeback:52kB shmem:1844kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 77824kB writeback_tmp:0kB kernel_stack:8960kB all_unreclaimable? yes [ 259.415963][ T9242] Node 1 active_anon:8kB inactive_anon:256104kB active_file:1076kB inactive_file:932kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:140832kB dirty:300kB writeback:80kB shmem:600kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:1088kB all_unreclaimable? no [ 259.415963][ T9242] Node 0 DMA free:2148kB min:2780kB low:2960kB high:3140kB reserved_highatomic:0KB active_anon:0kB inactive_anon:12896kB active_file:12kB inactive_file:0kB unevictable:0kB writepending:12kB present:15992kB managed:15908kB mlocked:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 259.415963][ T9242] lowmem_reserve[]: 0 468 468 468 468 [ 259.415963][ T9242] Node 0 DMA32 free:8308kB min:22196kB low:27744kB high:33292kB reserved_highatomic:2048KB active_anon:16304kB inactive_anon:192756kB active_file:148kB inactive_file:4kB unevictable:0kB writepending:92kB present:1032192kB managed:486276kB mlocked:0kB pagetables:1928kB bounce:0kB free_pcp:2312kB local_pcp:384kB free_cma:0kB [ 259.415963][ T9242] lowmem_reserve[]: 0 0 0 0 0 [ 259.415963][ T9242] Node 1 DMA32 free:16708kB min:75368kB low:86528kB high:97688kB reserved_highatomic:2048KB active_anon:8kB inactive_anon:256104kB active_file:1076kB inactive_file:1060kB unevictable:0kB writepending:380kB present:1048436kB managed:965508kB mlocked:0kB pagetables:2100kB bounce:0kB free_pcp:3352kB local_pcp:248kB free_cma:0kB [ 259.415963][ T9242] lowmem_reserve[]: 0 0 0 0 0 [ 259.415963][ T9242] Node 0 DMA: 1*4kB (U) 0*8kB 2*16kB (E) 4*32kB (UE) 1*64kB (E) 1*128kB (E) 1*256kB (E) 1*512kB (E) 1*1024kB (U) 0*2048kB 0*4096kB = 2148kB [ 259.415963][ T9242] Node 0 DMA32: 37*4kB (MH) 52*8kB (UME) 26*16kB (UME) 29*32kB (UME) 18*64kB (UMEH) 17*128kB (UMH) 6*256kB (M) 1*512kB (M) 1*1024kB (M) 0*2048kB 0*4096kB = 8308kB [ 259.415963][ T9242] Node 1 DMA32: 198*4kB (UM) 62*8kB (UME) 46*16kB (M) [ 259.547067][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547253][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547260][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547305][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547327][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547337][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547345][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547353][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547378][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547387][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547395][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547404][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547429][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547440][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547447][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547454][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547468][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547474][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547481][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547487][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547499][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547505][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547511][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547517][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547529][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547536][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547546][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547552][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547565][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547572][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547578][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547583][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.547615][ T23] SLUB: Unable to allocate memory on node -1, gfp=0xa20(GFP_ATOMIC) [ 259.547622][ T23] cache: skbuff_head_cache, object size: 224, buffer size: 320, default order: 1, min order: 0 [ 259.547628][ T23] node 0: slabs: 127, objs: 3175, free: 0 [ 259.547634][ T23] node 1: slabs: 960, objs: 22765, free: 27 [ 259.562026][ T8977] fs_cache 264KB 288KB [ 259.566268][ C2] ------------[ cut here ]------------ [ 259.566332][ C2] HSR: Could not send supervision frame [ 259.568803][ C2] WARNING: CPU: 2 PID: 0 at net/hsr/hsr_device.c:299 send_hsr_supervision_frame+0x889/0xb40 [ 259.568808][ C2] Modules linked in: [ 259.568822][ C2] CPU: 2 PID: 0 Comm: swapper/2 Not tainted 5.10.0-rc7-syzkaller #0 [ 259.568828][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 259.568838][ C2] RIP: 0010:send_hsr_supervision_frame+0x889/0xb40 [ 259.568848][ C2] Code: 04 31 ff 89 de e8 57 84 cd f8 84 db 0f 85 8b fd ff ff e8 3a 8c cd f8 48 c7 c7 60 e5 6b 8a c6 05 d1 2c 36 04 01 e8 e3 fa 09 00 <0f> 0b e9 6c fd ff ff e8 1b 8c cd f8 41 be 42 00 00 00 ba 01 00 00 [ 259.568854][ C2] RSP: 0000:ffffc90000520c70 EFLAGS: 00010286 [ 259.568864][ C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 259.568870][ C2] RDX: ffff88801086c300 RSI: ffffffff8158c835 RDI: fffff520000a4180 [ 259.568876][ C2] RBP: 00000000000088fb R08: 0000000000000001 R09: ffffffff8ecc2747 [ 259.568882][ C2] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801cc45000 [ 259.568887][ C2] R13: 0000000000000000 R14: ffff8880189face8 R15: 0000000000000000 [ 259.568904][ C2] FS: 0000000000000000(0000) GS:ffff88802ce00000(0000) knlGS:0000000000000000 [ 259.568998][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 259.569004][ C2] CR2: 0000000000000054 CR3: 0000000021a07000 CR4: 0000000000350ee0 [ 259.569010][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 259.569016][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 259.569019][ C2] Call Trace: [ 259.569099][ C2] [ 259.569113][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569120][ C2] hsr_announce+0x122/0x320 [ 259.569129][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569146][ C2] call_timer_fn+0x1a5/0x6b0 [ 259.569195][ C2] ? add_timer_on+0x4a0/0x4a0 [ 259.569204][ C2] ? lock_downgrade+0x6d0/0x6d0 [ 259.569249][ C2] ? _raw_spin_unlock_irq+0x1f/0x40 [ 259.569258][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569268][ C2] __run_timers.part.0+0x67c/0xa50 [ 259.569283][ C2] ? call_timer_fn+0x6b0/0x6b0 [ 259.569299][ C2] ? sched_clock_cpu+0x17b/0x1f0 [ 259.569312][ C2] run_timer_softirq+0xb3/0x1d0 [ 259.569322][ C2] __do_softirq+0x2a0/0x9f6 [ 259.569337][ C2] asm_call_irq_on_stack+0xf/0x20 [ 259.569342][ C2] [ 259.569354][ C2] do_softirq_own_stack+0xaa/0xd0 [ 259.569369][ C2] irq_exit_rcu+0x132/0x200 [ 259.569381][ C2] sysvec_apic_timer_interrupt+0x4d/0x100 [ 259.569391][ C2] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 259.569400][ C2] RIP: 0010:default_idle+0xe/0x10 [ 259.569408][ C2] Code: ff ff ff 4c 89 e7 e8 11 a8 c9 f8 eb 93 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 e9 07 00 00 00 0f 00 2d b4 e7 5d 00 fb f4 cc 41 55 41 54 55 48 89 fd 53 e8 d2 27 88 f8 e8 9d b7 fd ff 48 [ 259.569414][ C2] RSP: 0000:ffffc9000040fdf8 EFLAGS: 00000206 [ 259.569423][ C2] RAX: 00000000000a464d RBX: ffff88801086c300 RCX: ffffffff88e58be0 [ 259.569428][ C2] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 259.569434][ C2] RBP: ffffed100210d860 R08: 0000000000000001 R09: ffff88802ce3586b [ 259.569440][ C2] R10: ffffed10059c6b0d R11: 0000000000000000 R12: 0000000000000002 [ 259.569445][ C2] R13: 0000000000000002 R14: ffffffff8cecaf88 R15: 0000000000000000 [ 259.569460][ C2] ? rcu_eqs_enter.constprop.0+0xe0/0x140 [ 259.569473][ C2] default_idle_call+0x87/0xd0 [ 259.569483][ C2] do_idle+0x3fa/0x590 [ 259.569494][ C2] ? arch_cpu_idle_exit+0x30/0x30 [ 259.569510][ C2] cpu_startup_entry+0x14/0x20 [ 259.569520][ C2] start_secondary+0x266/0x340 [ 259.569528][ C2] ? set_cpu_sibling_map+0x2460/0x2460 [ 259.569545][ C2] secondary_startup_64_no_verify+0xb0/0xbb [ 259.569561][ C2] Kernel panic - not syncing: panic_on_warn set ... [ 259.569591][ C2] CPU: 2 PID: 0 Comm: swapper/2 Not tainted 5.10.0-rc7-syzkaller #0 [ 259.569597][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 259.569599][ C2] Call Trace: [ 259.569603][ C2] [ 259.569614][ C2] dump_stack+0x107/0x163 [ 259.569626][ C2] panic+0x306/0x73d [ 259.569635][ C2] ? __warn_printk+0xf3/0xf3 [ 259.569649][ C2] ? __warn.cold+0x1a/0x44 [ 259.569656][ C2] ? __warn+0xf1/0x210 [ 259.569666][ C2] ? send_hsr_supervision_frame+0x889/0xb40 [ 259.569674][ C2] __warn.cold+0x35/0x44 [ 259.569682][ C2] ? send_hsr_supervision_frame+0x889/0xb40 [ 259.569690][ C2] ? send_hsr_supervision_frame+0x889/0xb40 [ 259.569700][ C2] report_bug+0x1bd/0x210 [ 259.569755][ C2] handle_bug+0x3c/0x60 [ 259.569763][ C2] exc_invalid_op+0x14/0x40 [ 259.569771][ C2] asm_exc_invalid_op+0x12/0x20 [ 259.569780][ C2] RIP: 0010:send_hsr_supervision_frame+0x889/0xb40 [ 259.569787][ C2] Code: 04 31 ff 89 de e8 57 84 cd f8 84 db 0f 85 8b fd ff ff e8 3a 8c cd f8 48 c7 c7 60 e5 6b 8a c6 05 d1 2c 36 04 01 e8 e3 fa 09 00 <0f> 0b e9 6c fd ff ff e8 1b 8c cd f8 41 be 42 00 00 00 ba 01 00 00 [ 259.569793][ C2] RSP: 0000:ffffc90000520c70 EFLAGS: 00010286 [ 259.569800][ C2] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 259.569806][ C2] RDX: ffff88801086c300 RSI: ffffffff8158c835 RDI: fffff520000a4180 [ 259.569811][ C2] RBP: 00000000000088fb R08: 0000000000000001 R09: ffffffff8ecc2747 [ 259.569817][ C2] R10: 0000000000000000 R11: 0000000000000001 R12: ffff88801cc45000 [ 259.569822][ C2] R13: 0000000000000000 R14: ffff8880189face8 R15: 0000000000000000 [ 259.569837][ C2] ? vprintk_func+0x95/0x1e0 [ 259.569850][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569857][ C2] hsr_announce+0x122/0x320 [ 259.569870][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569884][ C2] call_timer_fn+0x1a5/0x6b0 [ 259.569893][ C2] ? add_timer_on+0x4a0/0x4a0 [ 259.569899][ C2] ? lock_downgrade+0x6d0/0x6d0 [ 259.569913][ C2] ? _raw_spin_unlock_irq+0x1f/0x40 [ 259.569921][ C2] ? send_hsr_supervision_frame+0xb40/0xb40 [ 259.569931][ C2] __run_timers.part.0+0x67c/0xa50 [ 259.569944][ C2] ? call_timer_fn+0x6b0/0x6b0 [ 259.569957][ C2] ? sched_clock_cpu+0x17b/0x1f0 [ 259.569969][ C2] run_timer_softirq+0xb3/0x1d0 [ 259.569978][ C2] __do_softirq+0x2a0/0x9f6 [ 259.569992][ C2] asm_call_irq_on_stack+0xf/0x20 [ 259.569996][ C2] [ 259.570004][ C2] do_softirq_own_stack+0xaa/0xd0 [ 259.570012][ C2] irq_exit_rcu+0x132/0x200 [ 259.570021][ C2] sysvec_apic_timer_interrupt+0x4d/0x100 [ 259.570041][ C2] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 259.570048][ C2] RIP: 0010:default_idle+0xe/0x10 [ 259.570055][ C2] Code: ff ff ff 4c 89 e7 e8 11 a8 c9 f8 eb 93 0f 1f 44 00 00 66 2e 0f 1f 84 00 00 00 00 00 e9 07 00 00 00 0f 00 2d b4 e7 5d 00 fb f4 cc 41 55 41 54 55 48 89 fd 53 e8 d2 27 88 f8 e8 9d b7 fd ff 48 [ 259.570060][ C2] RSP: 0000:ffffc9000040fdf8 EFLAGS: 00000206 [ 259.570068][ C2] RAX: 00000000000a464d RBX: ffff88801086c300 RCX: ffffffff88e58be0 [ 259.570072][ C2] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 259.570077][ C2] RBP: ffffed100210d860 R08: 0000000000000001 R09: ffff88802ce3586b [ 259.570082][ C2] R10: ffffed10059c6b0d R11: 0000000000000000 R12: 0000000000000002 [ 259.570087][ C2] R13: 0000000000000002 R14: ffffffff8cecaf88 R15: 0000000000000000 [ 259.570099][ C2] ? rcu_eqs_enter.constprop.0+0xe0/0x140 [ 259.570111][ C2] default_idle_call+0x87/0xd0 [ 259.570118][ C2] do_idle+0x3fa/0x590 [ 259.570128][ C2] ? arch_cpu_idle_exit+0x30/0x30 [ 259.570142][ C2] cpu_startup_entry+0x14/0x20 [ 259.570149][ C2] start_secondary+0x266/0x340 [ 259.570156][ C2] ? set_cpu_sibling_map+0x2460/0x2460 [ 259.570169][ C2] secondary_startup_64_no_verify+0xb0/0xbb [ 259.415963][ T9242] 50*32kB (UME) 37*64kB (UM) 26*128kB (M) 10*256kB (UM) 9*512kB (UM) 0*1024kB 0*2048kB 0*4096kB = 16488kB [ 259.415963][ T9242] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 259.415963][ T9242] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 259.415963][ T9242] 1169 total pagecache pages [ 259.415963][ T9242] 0 pages in swap cache [ 259.415963][ T9242] Swap cache stats: add 0, delete 0, find 0/0 [ 259.415963][ T9242] Free swap = 0kB [ 259.415963][ T9242] Total swap = 0kB [ 259.415963][ T9242] 524155 pages RAM [ 259.415963][ T9242] 0 pages HighMem/MovableOnly [ 259.415963][ T9242] 157232 pages reserved [ 259.415963][ T9242] 0 pages cma reserved [ 259.576066][ C2] Kernel Offset: disabled [ 259.576066][ C2] Rebooting in 86400 seconds.. VM DIAGNOSIS: 13:45:07 Registers: info registers vcpu 0 RAX=ae03000200000121 RBX=ffff88802cc19460 RCX=ffffffff8127d518 RDX=dffffc0000000000 RSI=0000000000000008 RDI=ffffffff8cec9778 RBP=0000000000000000 RSP=ffffc90000007798 R8 =0000000000000000 R9 =ffffffff8cec977f R10=fffffbfff19d92ef R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8127d550 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802cc00000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000054 CR3=000000006b2c9000 CR4=00350ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000008 XMM02=00000374000000000000000b00000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=ae03000200000121 RBX=ffff88802cd19460 RCX=ffffffff8127d518 RDX=dffffc0000000000 RSI=0000000000000008 RDI=ffffffff8cec9778 RBP=0000000000000001 RSP=ffffc900004c8f68 R8 =0000000000000000 R9 =ffffffff8cec977f R10=fffffbfff19d92ef R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8127d550 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f5393dcd7a0 ffffffff 00c00000 GS =0000 ffff88802cd00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000003c000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000004031e0 CR3=0000000013269000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffff00000000ffffffffff000000 XMM01=00000000000000000000000000ffffff XMM02=00000000000000000000000000435455 XMM03=000000ff000000000000000000ff0000 XMM04=40404040404040404040404040404040 XMM05=5b5b5b5b5b5b5b5b5b5b5b5b5b5b5b5b XMM06=20202020202020202020202020202020 XMM07=00000020000000200000002000000020 XMM08=ff0000ffff0000ffff0000ffff0000ff XMM09=00000000000000000000002000000000 XMM10=ffff00ffffffffffffff00ffffffffff XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd RSI=ffffffff840e888c RDI=ffffffff8fad8ae0 RBP=ffffffff8fad8aa0 RSP=ffffc900005206f0 R8 =0000000000000000 R9 =ffffffff8cecaf8f R10=000000000000000a R11=2073656c75646f4d R12=0000000000000020 R13=fffffbfff1f5b1a7 R14=fffffbfff1f5b15e R15=dffffc0000000000 RIP=ffffffff840e88e0 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802ce00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000079000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000077000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000054 CR3=0000000021a07000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ff0000000000ff0000ff000000000000 XMM01=ffff00000000ff00ffffffff00000000 XMM02=00000000000000000000000000000000 XMM03=000000ff0000000000000000ff000000 XMM04=75722f766564752f62696c2f002f2a2f XMM05=5b6d626974627c2a5d392d305b646d7c XMM06=2d305b6d626974627c2a5d392d305b64 XMM07=312d6c65727276623a534f4942616553 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=ae03000200000121 RBX=ffff88802cf19460 RCX=ffffffff8127d518 RDX=dffffc0000000000 RSI=0000000000000008 RDI=ffffffff8cec9778 RBP=0000000000000003 RSP=ffffc90000578f68 R8 =0000000000000000 R9 =ffffffff8cec977f R10=fffffbfff19d92ef R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff8127d550 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0000 0000000000000000 ffffffff 00c00000 DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] FS =0000 0000000000000000 ffffffff 00c00000 GS =0063 ffff88802cf00000 ffffffff 00d0f300 DPL=3 DS [-WA] LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000b4000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000b2000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000000054 CR3=00000000158a8000 CR4=00350ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000008 XMM02=00000374000000000000000b00000000 XMM03=00000000000000000000000000000000 XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000