last executing test programs: 1.677482012s ago: executing program 4 (id=7937): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000680)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080)) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd"], 0xfdef) 1.464086559s ago: executing program 3 (id=7945): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00'}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x0, 0x17, &(0x7f0000000180)=ANY=[], 0x0}, 0x90) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x13, &(0x7f0000000580)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0xd, 0x4, 0x4, 0x9, 0x0, r1}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r2, &(0x7f0000000300), 0x20000000}, 0x20) close(r0) bpf$MAP_LOOKUP_ELEM(0x3, &(0x7f0000000300)={r2, &(0x7f0000000240), 0x0}, 0x20) 1.463909849s ago: executing program 3 (id=7947): bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x6, &(0x7f0000000240)=ANY=[@ANYBLOB="05000000000000007b110800000000008510000002000000850000000000000095003300000000009500a5660e0000009f3be7f40752ed289350a3b5257dfc7e5429619ce459a63169ccb691d1a8f1ab83013d"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000}, 0x70) 1.46057094s ago: executing program 3 (id=7948): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x0, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00'}, 0x3d) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x5460, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="b7020000f53f6314bfa300000000000024020000fffeff7f7a03f0fff0ffffff79a4f0ff00000000b7060000ffffffff2e64050000000000750afaff07cd02020404000000247d60b7030000070a00006a0a00fe0000000c850000005b000000b70000000000002995000000000000001da5ad3548ebb63d18c5071c7e821c9b767ac8308fbcd5c5e4a5ad1065b572c2c9ff215ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1a15750ab9a780001000000000000d4bf20c2bd152d814f01f2cd519e078d4ffab418e4682b2aec5e4a35629e8ef040c50287c37a7f4182f32333b08c6e497687e10a4daea5cac0ceafdbb126eb02a1f5104d16ddb64963d84d91814cd5817e0b8f6f5e6ee7a39e180b5a18ed786b782ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a6211e52bb3598e9b5d4f22d8c19f958e8b34de35949a7a48ce18799ee53da177a81ea65e652c1d71b7ee86a75b0100000042127a8f84538a9a311c757f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d32e3f4ee367c5a769c0a606636c9f4a4413c098f4fcc96623b7c373b0ef04d55b846b094bf97e2ef5987b6e09a6a7cab79bffda141f65e7d9ebe3be70c436432b70a80cce69df30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48e7565efff2dbbb512218c98442406333c890923a797e00b75481739952fe87fde27ce81893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7025759d4b45576c205c70631e8ad585951950e521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7fd0d9338923789a1edcd8043fe83919088383268324a25df14010c8ed6b8d43400eaa00ff9bc46e1cfecbdc0e451ac53b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404e0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37deee7a60b903d2d9fe9d451cafcc8dc389671c2d08b6e264150a6b9445b00cee4585af04fa69e0380be0d66649dcf3bf8a906b029faca75ce34c41aec7aa86e596119109ea8b3f7c65c902499227c087301643baab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628e3e77a0de32e356521df06f995cb57f97052fc4158250ccecfb67ea8faf509593fadc7eafb613327b052397af1ede94d87590ce90a0a7579766f0e5eb09d38ac46e99e7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6e0b67f62a83a256474c97c925d9d447175b535c87dbdeb0dcca5303eed6689ea91e1665c691df736368dde47e6672e93a314c5f60e7b68c2242bd0f0d8c66449d8687dcf2d0f76668b2b9bf8b32b99b7daf34b2d825d192ade90a1162acfe9749d516d014cef5f99126324ea02baea5808c430985749901b09e4902a6f5addc0103756b894418e4591c624a9b206abbfb888d413d923b0d7c9d997d6d8e64787c4d397f57a15b6e0b4212b6cb55b9c207bbe08f483b1bea05f41b9a1d3af087047c568ae6ebfc0bb5ec10b6290dc757a4903a88fb2c035b2349b6d2f0c051b8b7718384eebd5fc19928cea713ff09e179c308fbe9bd64374d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad1030a79517a88de7596429a20793e12616aa32b3e720c6521fbe93963e9536d16f3db211fca7dd99c0a0125ff8ef534b93dcb34e1da2c008a9f2a29e30823bf0ec3639cadaf9be9608358e1e5ab17eea477b1754f78f45468c9568471667f82f5e250b979b9f2bd0d1b6bc03d11811ac6eec9a3ecd9e3c3299ee5eb3c6cac8fbd06514b7ee743ece79c04566d02a08fd5fcabbab3d129c0cced3ce11dafa380700000000000000c114d0b423e64c6157fac5e4e2168f33541daeff9983d0e488a78bef538f870b84798272b2101e0abf1cd64500b79e01e11d727389653bd80a39d5bbe2e23d2f5ff10047423429981bd9b4ce680e174c266391e3e7689452654e5cd5ada6e025327a1942b5a068f15fa58eaa267d4e0881783dddbdd777f8be0824ffdf6d06c621880dbbe9534f15e8c2e364d3ec67deb6ab9f2a0f03212972dbd38500000008173553a67be48633103809eee0be51d67d7ce230b389607b4c3b18da1c48f3180f2e0d79e54565fdd9a099b5b5ba2761905b88b7cbfc39c35dd153609da3da263438f12769602c2195245ff83e249119d4f6cabfbdef84ada19ef4a67ed66d7043036515d0be5a231f99e71aba5d5ae04676eff3e85f0844c41bbcfde7a931d1ec55c01f703bfd1b97756bfe55a91f6b379f34a018906339771157c66dbd7471d1beec7f029ef552cf5e92a1a0db21b59355763967ce26a577bc514b6d22a09c385c5ba6caf524e1688fc0f29f8bb35ae7bc8eb5ba51aebdf7d972c3267cedbe77ed70d9c539bc455a6f88b39196c8a224b0acf4d796fea59a07baa34cc270fb096ef330fbebdf872d7d0bc4f9a963355c554abc5cdb91464faabcd09cd9a53f5d1b2ea7e96f428f7cd6735c19c61dc9942d30bf29ef85ed01c2fcd6060aa40eeff971477b4fde48507b7bad95a496540adff7e4a72fd1f94d7c703ab1525c946c54e0da3d7ebfcc8cea2e84c3b310aaea5a1627df898c00a9aaf2d88a36afa4c5b1816384310600001c33125ad7f7970beeb256aec06e39fc6c66544e1d1dc5fea4b68a82e3568ca30aea9a1d097f06f11dc362f4bae5ef57c67686a15855cd351bf26f40fb1348cfce79897682228e6d9643530c81bab27bf7b1c4a76a5be180bb830cf06827c3f38a9c9c580c732c30aaceda78b0297de35a922b1375b129655beb31899e26052cc216f832fdb0a0015f93c9cff77f59cda1ec5f3e358848756cebb074266a47e39ae26e80e8c65aaf73c24925458520a9ca98760d1005c9f81846459ae6d5baa4f02807939ddc29c3520f7c58ed9bc5a569c7a1bc33cf4f330a18276ffb4550b9166c3939e8041094bec034aa0ec6638b74fe34f0f1ec6903a1135808d5d8d26c9203c3f87e66c407b7c5c0888d4558dd657cc0213efad68e76fdd7b23e68064fd4b271ed79c50abacdd2871b0c1f8c971df59a5a1901ddf804bed43e391f882d2a45c51cdbba86b2a1b7c0c4923642a731ea4dcbad2b6ebbebe787a8e28e781d75beee924b3b1e390750f316648133922c021f98fd2d5d71a7a3679397ef6cf432837b7e264831ec01c4c3146ba0caac3b13d55945ec00e978a1c1712cd51187936200606c9cd6877b2f72125295c54721f8e15df2ae282a8becb99a726fd92acc92141e1f574b4b0b3c992a61af3372d0d9217776b1a42cd2cee816a70bf1ddd69b590d53e28ba356e74b38e23e50d898e95cdc7cc809e462c884b53f672aab1411ecfd4c91e7a9782fc6763f0efd4bcbaf1fc3a00000000000000000000000000000000500000000000000000000000048e510340087caf22439d5304bd704a6a78a512269a9b1cbd13bea78c807bbc73853ae187cbb768673e9d1bf74a3b0a6c234accd8506adf314f4c5e08174540b69d3c0da660052b43b86baf49e7ac64d9c21598b1e01dc1e1b5a53626b090496dbf7af441e397016c3c094d5c91ffe0a7ceacfd225ed9a6c905f79ad7052747dd6cceef4c310e0e935311118bc6bf0e5ca6c7cca7d5c03be570308da8a40578b4db14961fbccf6e2f2d56e9509c434126515b56d032e20c12e830d1bc64826fc9b318da5911e466878dbb81edeff69363fb75af5cd80536f14d2eaa7764db23acdbd394bbbbccfd8b129258bb0a93cee1d44f8665172c06933d20f184b78b435462c52a85149451ffd564c56a7cbf11a1127c77242915e43b2bc"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x0, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) 1.312074641s ago: executing program 2 (id=7951): ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x40082406, &(0x7f0000000080)='mem\x00\x10\x00\x00\x00\x00\x00\x00I\xa2l') r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000003c0)={r0, 0x58, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0}}, 0x10) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r3, @ANYBLOB], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000200), 0x2, 0x0) write$cgroup_subtree(r5, &(0x7f00000004c0)=ANY=[@ANYBLOB="04630bb200000010bc64bfd5a8f7c8bd00000000"], 0x5) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x5, &(0x7f00000001c0)=@framed={{}, [@ldst={0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1a7fbb}, @ldst={0x6, 0x0, 0x6, 0x0, 0x0, 0xfffffffffffffffe, 0xa000000}]}, &(0x7f0000000000)='syzkaller\x00', 0x5, 0xf4240, &(0x7f0000000100)=""/147}, 0x80) r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000400)={&(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000680)=""/150, 0xba, 0x96, 0x0, 0x2}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000880)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000001000000000000000200000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000850000006a00000018590000020000000000000000000000186b00000d00000000000000ffff0000bf91000000000000b70200000100000085000000856d07265e000000000000009500000000000000"], &(0x7f0000000000)='GPL\x00', 0xfffffffe, 0x0, &(0x7f0000000200), 0x41000, 0x44, '\x00', r2, 0x0, r6, 0x8, &(0x7f0000000580)={0x9, 0x5}, 0x8, 0x10, &(0x7f0000000740)={0x3, 0x4, 0x7fffffff, 0x80}, 0x10, 0x0, 0x0, 0x6, &(0x7f00000007c0)=[0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, r0, r0], &(0x7f0000000800)=[{0x4, 0x4, 0x8, 0x3}, {0x3, 0x3, 0x1}, {0x0, 0x1, 0x7, 0x3}, {0x2, 0x3, 0x10, 0x8}, {0x5, 0x2, 0xc, 0xb}, {0x5, 0x3, 0x8}]}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10) 1.224895299s ago: executing program 4 (id=7954): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r2}, 0x10) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 1.166291324s ago: executing program 1 (id=7956): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000140)=@base={0xa, 0x16, 0xb3, 0x7f}, 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000040), 0x0}, 0x20) 1.099899809s ago: executing program 4 (id=7958): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x2, &(0x7f0000000200)=@raw=[@jmp={0x7, 0x0, 0x8}, @exit], &(0x7f00000000c0)='syzkaller\x00', 0x4, 0x9c, &(0x7f0000000000)=""/156}, 0x90) 1.040206024s ago: executing program 1 (id=7959): bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0}, 0x10) recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0xc8, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0xfffffff9}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) close(r1) recvmsg$unix(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x0, 0x0, 0x8}, 0x48) write$cgroup_subtree(r2, &(0x7f0000000000), 0xe) 1.000701748s ago: executing program 4 (id=7961): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 974.509839ms ago: executing program 1 (id=7962): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x3, 0x0, 0xc}], {0x95, 0x0, 0x0, 0x1a03d3}}, &(0x7f0000000040)='syzkaller\x00', 0x5}, 0x90) 868.136778ms ago: executing program 1 (id=7963): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='net_prio.prioidx\x00', 0x26e1, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1f, 0x4, 0x1, 0x8000bf22, 0x2000, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20) perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000380), 0xffffd6c0, r2}, 0x38) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfff8) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'veth1\x00', 0x20}) close(r0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x84, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0xca, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f00000005c0)=ANY=[@ANYRES32=r3, @ANYBLOB="037e6ec75659a5ff490ca12e8b0ffa689933a0534528aaf0c0ad9de76f5140e54f1f16", @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000300008500000014000000850000000500000095"], &(0x7f0000000400)='GPL\x00', 0x8a20, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000580)=0x1) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0x7, 0x0, &(0x7f0000000100)="e0b9547ed387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) 536.585726ms ago: executing program 3 (id=7964): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x10, &(0x7f0000000080)=@framed={{}, [@snprintf={{}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x5}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x6a}}]}, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 513.634367ms ago: executing program 3 (id=7965): bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10) bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x2, 0x8, 0x8}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000600), &(0x7f0000000280), 0x82, r0}, 0x38) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r1}, 0x10) r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000000)={'pim6reg1\x00', 0x2}) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r3}, 0x10) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast}) 506.181088ms ago: executing program 0 (id=7966): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xb, 0x16, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48) 500.631378ms ago: executing program 1 (id=7967): r0 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000840)={'syzkaller0\x00', 0xca58c30f81b6079f}) bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x12, 0x4, 0x4, 0x401}, 0x48) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000007c0)={0xffffffffffffffff, 0xe0, &(0x7f00000006c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, &(0x7f00000002c0)=[0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0x5, 0x6, &(0x7f0000000300)=[0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000380)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x0, 0x65, &(0x7f0000000440)=[{}, {}, {}, {}, {}], 0x28, 0x10, &(0x7f0000000500), &(0x7f0000000640), 0x8, 0x3b, 0x8, 0x8, &(0x7f0000000680)}}, 0x10) bpf$BPF_PROG_DETACH(0x9, &(0x7f00000000c0)={@ifindex=r2, 0xffffffffffffffff, 0x1e}, 0x20) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, 0xffffffffffffffff) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r3, 0x8914, &(0x7f0000000080)) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x7, 0x4, 0x500, 0x80000001, 0x24}, 0x48) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x4, 0x1, 0x0, 0x1000000, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffb}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x2, 0x80, 0x0, 0x2, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000900)={r4, 0x18000000000002a0, 0x55, 0x0, &(0x7f00000003c0)="763e9e147583ddd0569ba56a888e55b0906c5e74f377a47798f5d0b401040000cdb8563e71c572d0f420e997c97951ba0a0554b5073e03bd408cbf1e113e4e69ef579054273b10e4f55f26a9f9e13b59af0f6dbd77", 0x0, 0xff, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) openat$cgroup_type(0xffffffffffffffff, &(0x7f00000003c0), 0x2, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x2, 0x80, 0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) r5 = perf_event_open(&(0x7f0000000480)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5d31, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0xff5}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$BPF_PROG_GET_FD_BY_ID(0xd, &(0x7f00000012c0)={0xffffffffffffffff}, 0x4) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000180)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30) ioctl$PERF_EVENT_IOC_PERIOD(r5, 0x40082404, &(0x7f0000000140)=0x8700000000000000) r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r7 = openat$cgroup_subtree(r6, &(0x7f0000000080), 0x2, 0x0) write$cgroup_subtree(r7, &(0x7f0000000540)=ANY=[@ANYBLOB="2b637975419dd6944729d20bee834d06e6729b79dbff12e26456b8caac740021ffa0fd73f0c2c5bf5b8b13a5a855651e022e5164561e78002a502eb6d01071095c1c2a1a1ec7becf502d2943fd563f219422c15690be8eded1a12bcdd89befd6a2b3a8d5074eb82f5a5999585e8ba29e9f449367976b6d0151daa63ee5b838a5ab29c7718aaa5a21beeb83dd626d4d902201278f38b1cbb3271002ff65ee933e2154eee0aac9ebaba16dc13f5c9f5007a4a6eff106e98b73e9fa05ae356fdc8d30445d7ab30ec6ffb348cae218f386605498"], 0x5) 444.242563ms ago: executing program 0 (id=7968): bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r1}, 0x10) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='task_newtask\x00', r2}, 0x10) syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) 387.797207ms ago: executing program 2 (id=7969): bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa10000000000000701"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x75}]}, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x6, 0xa}, 0x48) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x19, 0x4, 0x4, 0x9, 0x0, 0x1}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000500)='workqueue_queue_work\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{r0}, &(0x7f0000000000), &(0x7f0000000200)=r1}, 0x20) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001980)={0x0, 0x5, &(0x7f00000002c0)=@raw=[@tail_call], 0x0}, 0x90) 387.499648ms ago: executing program 0 (id=7970): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x5, 0x4, &(0x7f0000000000)=@framed={{}, [@jmp={0x3, 0x0, 0xc, 0x0, 0x2}], {0x95, 0x0, 0x0, 0x1a03d3}}, &(0x7f0000000040)='syzkaller\x00', 0x5, 0xfa, &(0x7f0000000140)=""/250}, 0x90) 312.263104ms ago: executing program 0 (id=7971): ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x5452, 0x0) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340), 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000005c0)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x18, &(0x7f0000000b00)=@framed={{0x18, 0x2}, [@printk={@li}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 312.083314ms ago: executing program 2 (id=7972): ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b34, 0x0) write$cgroup_pressure(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f00000003c0)={0x2, 0x80, 0xa3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x11, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000038000000000000000000000095"], &(0x7f00000003c0)='GPL\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x10, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}, {}, {}, {0x7, 0x0, 0xb, 0x7}}, @printk]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000640)={{r1}, &(0x7f0000000380), &(0x7f0000000600)=r0}, 0x20) 312.001084ms ago: executing program 0 (id=7973): bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x8, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="850000002300000066000000000000001600000000000000950096f964375a00"], &(0x7f0000000140)='GPL\x00', 0x8, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffff4e}, 0x23) 311.894544ms ago: executing program 2 (id=7974): bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={0x0}, 0x0, 0x0, 0xb}, 0x0, 0xaffffff7ffffffff, 0xffffffffffffffff, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r0, 0x5452, &(0x7f0000000780)='\x02;\xe5\b\x00\x1c\x9c\x00\x00\x00\x00\x00\x00\x91\xecB\xdcZ\xe5\xbd$\x05\x90\xa9\xf3\xc7\xcb\xb7\xf0\xa1;#\x989\xe9\x12\xdf^6\xfc\xf3\x01\x02\xbc\xbf\xc0\xf0\x10\xee\xd3\\yy\xa4\xf9\xe8\x00\xdd\xe97 0_\xe4]W\xf7~\xacVK\xc9t\x9e+:\x85\xef\x94\x0e\x19\x9cV[N.\xeb\x9fJ>\xd9\x99\x88\xd8\xdd\xb8Y\xc3$\xc6\x93\v\x04REY\xf4\xea\xf2\xcd\xcd.\x16\x861\xa1\v\x8d\x8e\x84R\xa6\x83\x84\xc0\x01e\xc3\xc8\xcc?\xc8?\x19\xb2\xa2\xe1\xac<\xe9f\x11\xff3\xc7S\x03U\xe0\xd8t\xe3%96\x00'/168) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x40082404, &(0x7f0000000200)=0x7fff) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000040)={0x2, 0x0, @broadcast}, 0x10, 0x0}, 0x0) ioctl$PERF_EVENT_IOC_MODIFY_ATTRIBUTES(r0, 0x4008240b, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="280100"], 0x128}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$inet(r1, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0) recvmsg$unix(0xffffffffffffffff, 0x0, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.swap.events\x00', 0x275a, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff}) setsockopt$sock_attach_bpf(r3, 0x1, 0x25, &(0x7f0000000100)=r2, 0x4) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x15, 0x0, 0x0) gettid() 311.714634ms ago: executing program 0 (id=7975): bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x0, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000001500000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='hrtimer_start\x00'}, 0x3d) bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(0xffffffffffffffff, 0x5460, 0x0) bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, 0x0, 0x0) perf_event_open(&(0x7f0000000100)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x200000, 0x10, &(0x7f0000000000), 0x143}, 0x48) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x0, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) 297.801735ms ago: executing program 2 (id=7976): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000680)={'syzkaller0\x00', 0x84aebfbd6349b7f2}) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f}) socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000080)) r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r3}, 0x10) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) write$cgroup_subtree(r0, &(0x7f0000000440)=ANY=[@ANYBLOB="8fedcb5d07081175f37538e486dd63"], 0xfdef) 231.881231ms ago: executing program 1 (id=7977): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='net_prio.prioidx\x00', 0x26e1, 0x0) bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1f, 0x4, 0x1, 0x8000bf22, 0x2000, 0xffffffffffffffff, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x1}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000440)={{r1, 0xffffffffffffffff}, &(0x7f00000003c0), &(0x7f0000000400)}, 0x20) perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000380), 0xffffd6c0, r2}, 0x38) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfff8) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000001c0)={'veth1\x00', 0x20}) close(r0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x84, '\x00', 0x0, 0x16, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8}, 0x90) perf_event_open(&(0x7f00000002c0)={0x2, 0x80, 0xca, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r3 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000280)=@bpf_lsm={0x6, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000400000000000000000000f195"], &(0x7f0000000140)='GPL\x00'}, 0x80) bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x7}, 0x48) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xc, 0xd, &(0x7f00000005c0)=ANY=[@ANYRES32=r3, @ANYBLOB="037e6ec75659a5ff490ca12e8b0ffa689933a0534528aaf0c0ad9de76f5140e54f1f16", @ANYBLOB="0000000000000000b7080000000000007b5af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000300008500000014000000850000000500000095"], &(0x7f0000000400)='GPL\x00', 0x8a20, 0x0, 0x0, 0x41100, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) ioctl$TUNSETCARRIER(0xffffffffffffffff, 0x400454e2, &(0x7f0000000580)=0x1) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r4, 0x0, 0x7, 0x0, &(0x7f0000000100)="e0b9547ed387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000000080)={'pimreg0\x00', 0x7c2}) 226.239571ms ago: executing program 3 (id=7978): write$cgroup_int(0xffffffffffffffff, &(0x7f0000000140)=0x9, 0x12) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x7}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_BTF_GET_NEXT_ID(0x17, &(0x7f0000000180), 0x8) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000040)={'sit0\x00', @local}) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10) perf_event_open(&(0x7f00000012c0)={0x1, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200, 0x420, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000e00)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'sit0\x00', @random="4f33e363a4b1"}) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10) r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.controllers\x00', 0x7a05, 0x1700) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x100002, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0, r4}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90) recvmsg(0xffffffffffffffff, &(0x7f0000000500)={&(0x7f0000000040)=@hci, 0x80, &(0x7f0000000100)=[{&(0x7f0000000400)=""/248, 0x200105d0}], 0x1}, 0x1f00) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r5}, 0x10) 27.296798ms ago: executing program 4 (id=7979): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180200000020702500000000002020207b1af8ff00000000bfa100000000000007010000dbffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000980)=ANY=[], &(0x7f0000000000)='GPL\x00'}, 0x90) 12.183219ms ago: executing program 4 (id=7980): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0x8, 0xe}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="1801000000bae3000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000640)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001e40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) 0s ago: executing program 2 (id=7981): bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, &(0x7f00000002c0)=@ringbuf={{0x18, 0x8}, {{}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [], {{0x7, 0x1, 0x7, 0x8}, {0x6, 0x0, 0x5, 0x8}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) kernel console output (not intermixed with test programs): dge0 entered promiscuous mode [ 773.046770][T18610] device syzkaller0 entered promiscuous mode [ 773.434895][T18623] bridge0: port 2(bridge_slave_1) entered disabled state [ 773.442014][T18623] bridge0: port 1(bridge_slave_0) entered disabled state [ 774.329304][T18648] FAULT_INJECTION: forcing a failure. [ 774.329304][T18648] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 774.432453][T18648] CPU: 1 PID: 18648 Comm: syz.4.6062 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 774.443922][T18648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 774.453913][T18648] Call Trace: [ 774.457037][T18648] [ 774.459812][T18648] dump_stack_lvl+0x151/0x1b7 [ 774.464326][T18648] ? io_uring_drop_tctx_refs+0x190/0x190 [ 774.469796][T18648] dump_stack+0x15/0x17 [ 774.473784][T18648] should_fail+0x3c6/0x510 [ 774.478039][T18648] should_fail_usercopy+0x1a/0x20 [ 774.482896][T18648] _copy_to_user+0x20/0x90 [ 774.487155][T18648] simple_read_from_buffer+0xc7/0x150 [ 774.492356][T18648] proc_fail_nth_read+0x1a3/0x210 [ 774.497337][T18648] ? proc_fault_inject_write+0x390/0x390 [ 774.502804][T18648] ? fsnotify_perm+0x470/0x5d0 [ 774.507404][T18648] ? security_file_permission+0x86/0xb0 [ 774.512787][T18648] ? proc_fault_inject_write+0x390/0x390 [ 774.518352][T18648] vfs_read+0x27d/0xd40 [ 774.522337][T18648] ? kernel_read+0x1f0/0x1f0 [ 774.526759][T18648] ? __kasan_check_write+0x14/0x20 [ 774.531706][T18648] ? mutex_lock+0xb6/0x1e0 [ 774.535960][T18648] ? wait_for_completion_killable_timeout+0x10/0x10 [ 774.542385][T18648] ? __fdget_pos+0x2e7/0x3a0 [ 774.546807][T18648] ? ksys_read+0x77/0x2c0 [ 774.550982][T18648] ksys_read+0x199/0x2c0 [ 774.555054][T18648] ? bpf_trace_run1+0x1c0/0x1c0 [ 774.559751][T18648] ? vfs_write+0x1110/0x1110 [ 774.564179][T18648] ? debug_smp_processor_id+0x17/0x20 [ 774.569373][T18648] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 774.575276][T18648] __x64_sys_read+0x7b/0x90 [ 774.579617][T18648] do_syscall_64+0x3d/0xb0 [ 774.583868][T18648] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 774.589596][T18648] RIP: 0033:0x7fc4ef8b797c [ 774.593858][T18648] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 774.613377][T18648] RSP: 002b:00007fc4eeb3a040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 774.621621][T18648] RAX: ffffffffffffffda RBX: 00007fc4efa48f60 RCX: 00007fc4ef8b797c [ 774.629435][T18648] RDX: 000000000000000f RSI: 00007fc4eeb3a0b0 RDI: 0000000000000007 [ 774.637249][T18648] RBP: 00007fc4eeb3a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 774.645060][T18648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 774.653041][T18648] R13: 000000000000000b R14: 00007fc4efa48f60 R15: 00007ffca6bb6db8 [ 774.660956][T18648] [ 777.290712][T18681] bridge0: port 2(bridge_slave_1) entered disabled state [ 777.297723][T18681] bridge0: port 1(bridge_slave_0) entered disabled state [ 777.308781][T18682] bridge0: port 2(bridge_slave_1) entered blocking state [ 777.315689][T18682] bridge0: port 2(bridge_slave_1) entered forwarding state [ 777.322802][T18682] bridge0: port 1(bridge_slave_0) entered blocking state [ 777.329655][T18682] bridge0: port 1(bridge_slave_0) entered forwarding state [ 777.336948][T18682] device bridge0 entered promiscuous mode [ 778.965438][T18714] bridge0: port 2(bridge_slave_1) entered disabled state [ 778.972511][T18714] bridge0: port 1(bridge_slave_0) entered disabled state [ 779.002381][T18714] device bridge0 left promiscuous mode [ 779.095114][T18714] bridge0: port 2(bridge_slave_1) entered blocking state [ 779.102089][T18714] bridge0: port 2(bridge_slave_1) entered forwarding state [ 779.109211][T18714] bridge0: port 1(bridge_slave_0) entered blocking state [ 779.115982][T18714] bridge0: port 1(bridge_slave_0) entered forwarding state [ 779.303267][T18714] device bridge0 entered promiscuous mode [ 780.091879][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 780.260445][T18757] bridge0: port 2(bridge_slave_1) entered disabled state [ 780.267424][T18757] bridge0: port 1(bridge_slave_0) entered disabled state [ 780.303495][T18757] device bridge0 left promiscuous mode [ 781.496276][T18797] bridge0: port 2(bridge_slave_1) entered disabled state [ 781.503336][T18797] bridge0: port 1(bridge_slave_0) entered disabled state [ 782.551574][T18832] bridge0: port 3(veth0) entered disabled state [ 782.557747][T18832] bridge0: port 2(bridge_slave_1) entered disabled state [ 782.564709][T18832] bridge0: port 1(bridge_slave_0) entered disabled state [ 782.590282][T18832] device bridge0 left promiscuous mode [ 783.980920][T18873] bridge0: port 3(veth0) entered blocking state [ 783.987061][T18873] bridge0: port 3(veth0) entered forwarding state [ 783.993406][T18873] bridge0: port 2(bridge_slave_1) entered blocking state [ 784.000289][T18873] bridge0: port 2(bridge_slave_1) entered forwarding state [ 784.007439][T18873] bridge0: port 1(bridge_slave_0) entered blocking state [ 784.014332][T18873] bridge0: port 1(bridge_slave_0) entered forwarding state [ 784.023717][T18873] device bridge0 entered promiscuous mode [ 784.195374][T18887] device syzkaller0 entered promiscuous mode [ 784.210646][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 785.243405][T18910] bridge0: port 3(veth0) entered disabled state [ 785.249676][T18910] bridge0: port 2(bridge_slave_1) entered disabled state [ 785.256554][T18910] bridge0: port 1(bridge_slave_0) entered disabled state [ 785.265443][T18910] device bridge0 left promiscuous mode [ 785.274059][T18911] bridge0: port 3(veth0) entered blocking state [ 785.280172][T18911] bridge0: port 3(veth0) entered forwarding state [ 785.286536][T18911] bridge0: port 2(bridge_slave_1) entered blocking state [ 785.293408][T18911] bridge0: port 2(bridge_slave_1) entered forwarding state [ 785.300479][T18911] bridge0: port 1(bridge_slave_0) entered blocking state [ 785.307309][T18911] bridge0: port 1(bridge_slave_0) entered forwarding state [ 785.314452][T18911] device bridge0 entered promiscuous mode [ 786.969219][T18945] bridge0: port 2(bridge_slave_1) entered blocking state [ 786.976169][T18945] bridge0: port 2(bridge_slave_1) entered forwarding state [ 786.983249][T18945] bridge0: port 1(bridge_slave_0) entered blocking state [ 786.990101][T18945] bridge0: port 1(bridge_slave_0) entered forwarding state [ 787.015401][T18945] device bridge0 entered promiscuous mode [ 787.433804][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 788.415906][T18986] bridge0: port 2(bridge_slave_1) entered disabled state [ 788.423294][T18986] bridge0: port 1(bridge_slave_0) entered disabled state [ 788.437244][T18986] device bridge0 left promiscuous mode [ 788.479776][T18986] bridge0: port 2(bridge_slave_1) entered blocking state [ 788.486680][T18986] bridge0: port 2(bridge_slave_1) entered forwarding state [ 788.493916][T18986] bridge0: port 1(bridge_slave_0) entered blocking state [ 788.500766][T18986] bridge0: port 1(bridge_slave_0) entered forwarding state [ 788.598775][T18986] device bridge0 entered promiscuous mode [ 789.578219][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 789.845960][T19018] bridge0: port 2(bridge_slave_1) entered blocking state [ 789.852867][T19018] bridge0: port 2(bridge_slave_1) entered forwarding state [ 789.859971][T19018] bridge0: port 1(bridge_slave_0) entered blocking state [ 789.866767][T19018] bridge0: port 1(bridge_slave_0) entered forwarding state [ 789.874692][T19018] device bridge0 entered promiscuous mode [ 790.652718][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 792.016640][T19050] bridge0: port 3(veth0) entered disabled state [ 792.022881][T19050] bridge0: port 2(bridge_slave_1) entered disabled state [ 792.029726][T19050] bridge0: port 1(bridge_slave_0) entered disabled state [ 792.119339][T19050] device bridge0 left promiscuous mode [ 792.135817][T19054] bridge0: port 3(veth0) entered blocking state [ 792.142021][T19054] bridge0: port 3(veth0) entered forwarding state [ 792.148329][T19054] bridge0: port 2(bridge_slave_1) entered blocking state [ 792.155118][T19054] bridge0: port 2(bridge_slave_1) entered forwarding state [ 792.162205][T19054] bridge0: port 1(bridge_slave_0) entered blocking state [ 792.168992][T19054] bridge0: port 1(bridge_slave_0) entered forwarding state [ 792.176793][T19054] device bridge0 entered promiscuous mode [ 793.333239][T19088] bridge0: port 2(bridge_slave_1) entered disabled state [ 793.340160][T19088] bridge0: port 1(bridge_slave_0) entered disabled state [ 793.351934][T19088] device bridge0 left promiscuous mode [ 793.421173][T19088] bridge0: port 2(bridge_slave_1) entered blocking state [ 793.428063][T19088] bridge0: port 2(bridge_slave_1) entered forwarding state [ 793.435201][T19088] bridge0: port 1(bridge_slave_0) entered blocking state [ 793.442138][T19088] bridge0: port 1(bridge_slave_0) entered forwarding state [ 793.551838][T19088] device bridge0 entered promiscuous mode [ 794.983409][T19136] bridge0: port 2(bridge_slave_1) entered disabled state [ 794.990329][T19136] bridge0: port 1(bridge_slave_0) entered disabled state [ 795.008035][T19136] device bridge0 left promiscuous mode [ 795.032390][T19136] bridge0: port 2(bridge_slave_1) entered blocking state [ 795.039438][T19136] bridge0: port 2(bridge_slave_1) entered forwarding state [ 795.046597][T19136] bridge0: port 1(bridge_slave_0) entered blocking state [ 795.053471][T19136] bridge0: port 1(bridge_slave_0) entered forwarding state [ 795.089993][T19136] device bridge0 entered promiscuous mode [ 795.822939][T19158] FAULT_INJECTION: forcing a failure. [ 795.822939][T19158] name failslab, interval 1, probability 0, space 0, times 0 [ 795.876646][T19158] CPU: 1 PID: 19158 Comm: syz.0.6242 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 795.887941][T19158] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 795.897836][T19158] Call Trace: [ 795.900957][T19158] [ 795.903735][T19158] dump_stack_lvl+0x151/0x1b7 [ 795.908252][T19158] ? io_uring_drop_tctx_refs+0x190/0x190 [ 795.913721][T19158] dump_stack+0x15/0x17 [ 795.917709][T19158] should_fail+0x3c6/0x510 [ 795.921965][T19158] __should_failslab+0xa4/0xe0 [ 795.926567][T19158] ? security_file_alloc+0x29/0x120 [ 795.931598][T19158] should_failslab+0x9/0x20 [ 795.935940][T19158] slab_pre_alloc_hook+0x37/0xd0 [ 795.940713][T19158] ? security_file_alloc+0x29/0x120 [ 795.945746][T19158] kmem_cache_alloc+0x44/0x200 [ 795.950345][T19158] security_file_alloc+0x29/0x120 [ 795.955213][T19158] __alloc_file+0xb2/0x2a0 [ 795.959458][T19158] alloc_empty_file+0x95/0x180 [ 795.964059][T19158] path_openat+0xfe/0x2f40 [ 795.968310][T19158] ? __stack_depot_save+0x167/0x470 [ 795.973348][T19158] ? __kasan_slab_alloc+0xc3/0xe0 [ 795.978298][T19158] ? __kasan_slab_alloc+0xb1/0xe0 [ 795.983167][T19158] ? slab_post_alloc_hook+0x53/0x2c0 [ 795.988283][T19158] ? kmem_cache_alloc+0xf5/0x200 [ 795.993060][T19158] ? getname_flags+0xba/0x520 [ 795.997644][T19158] ? getname+0x19/0x20 [ 796.001553][T19158] ? do_sys_openat2+0xd7/0x830 [ 796.006162][T19158] ? __x64_sys_openat+0x243/0x290 [ 796.011012][T19158] ? do_syscall_64+0x3d/0xb0 [ 796.015441][T19158] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 796.021347][T19158] ? do_filp_open+0x460/0x460 [ 796.025859][T19158] do_filp_open+0x21c/0x460 [ 796.030203][T19158] ? vfs_tmpfile+0x2c0/0x2c0 [ 796.034629][T19158] do_sys_openat2+0x13f/0x830 [ 796.039132][T19158] ? __kasan_check_write+0x14/0x20 [ 796.044078][T19158] ? mutex_unlock+0xb2/0x260 [ 796.048508][T19158] ? wait_for_completion_killable_timeout+0x10/0x10 [ 796.054930][T19158] ? do_sys_open+0x220/0x220 [ 796.059356][T19158] ? __kasan_check_write+0x14/0x20 [ 796.064307][T19158] ? fput_many+0x160/0x1b0 [ 796.068557][T19158] ? fput+0x1a/0x20 [ 796.072207][T19158] __x64_sys_openat+0x243/0x290 [ 796.076890][T19158] ? __ia32_sys_open+0x270/0x270 [ 796.081663][T19158] ? debug_smp_processor_id+0x17/0x20 [ 796.086866][T19158] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 796.092773][T19158] ? exit_to_user_mode_prepare+0x39/0xa0 [ 796.098241][T19158] do_syscall_64+0x3d/0xb0 [ 796.102490][T19158] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 796.108132][T19158] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 796.113856][T19158] RIP: 0033:0x7f785e165e99 [ 796.118110][T19158] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 796.137645][T19158] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 796.145884][T19158] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 796.153696][T19158] RDX: 0000000000200002 RSI: 0000000020000000 RDI: ffffffffffffff9c [ 796.161504][T19158] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 796.169317][T19158] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 796.177133][T19158] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 796.185040][T19158] [ 798.179713][T19212] device syzkaller0 entered promiscuous mode [ 798.309664][T19223] bridge0: port 2(bridge_slave_1) entered disabled state [ 798.316626][T19223] bridge0: port 1(bridge_slave_0) entered disabled state [ 798.380591][T19223] device bridge0 left promiscuous mode [ 798.449381][T19223] bridge0: port 2(bridge_slave_1) entered blocking state [ 798.456272][T19223] bridge0: port 2(bridge_slave_1) entered forwarding state [ 798.463410][T19223] bridge0: port 1(bridge_slave_0) entered blocking state [ 798.470253][T19223] bridge0: port 1(bridge_slave_0) entered forwarding state [ 798.478063][T19223] device bridge0 entered promiscuous mode [ 799.605509][T19257] bridge0: port 2(bridge_slave_1) entered disabled state [ 799.612446][T19257] bridge0: port 1(bridge_slave_0) entered disabled state [ 799.697944][T19257] device bridge0 left promiscuous mode [ 799.837528][T19259] bridge0: port 2(bridge_slave_1) entered blocking state [ 799.844459][T19259] bridge0: port 2(bridge_slave_1) entered forwarding state [ 799.851539][T19259] bridge0: port 1(bridge_slave_0) entered blocking state [ 799.858432][T19259] bridge0: port 1(bridge_slave_0) entered forwarding state [ 799.932118][T19259] device bridge0 entered promiscuous mode [ 800.127793][T19269] bridge0: port 2(bridge_slave_1) entered disabled state [ 800.134818][T19269] bridge0: port 1(bridge_slave_0) entered disabled state [ 800.162117][T19269] device bridge0 left promiscuous mode [ 800.201530][T19278] syz.2.6279[19278] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 800.201609][T19278] syz.2.6279[19278] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 800.222792][T19269] bridge0: port 2(bridge_slave_1) entered blocking state [ 800.240893][T19269] bridge0: port 2(bridge_slave_1) entered forwarding state [ 800.248214][T19269] bridge0: port 1(bridge_slave_0) entered blocking state [ 800.255106][T19269] bridge0: port 1(bridge_slave_0) entered forwarding state [ 800.272033][T19269] device bridge0 entered promiscuous mode [ 801.339238][T19299] device syzkaller0 entered promiscuous mode [ 801.715707][T19320] bridge0: port 2(bridge_slave_1) entered disabled state [ 801.722836][T19320] bridge0: port 1(bridge_slave_0) entered disabled state [ 801.776196][T19320] device bridge0 left promiscuous mode [ 801.804425][T19321] bridge0: port 2(bridge_slave_1) entered blocking state [ 801.811297][T19321] bridge0: port 2(bridge_slave_1) entered forwarding state [ 801.818435][T19321] bridge0: port 1(bridge_slave_0) entered blocking state [ 801.825298][T19321] bridge0: port 1(bridge_slave_0) entered forwarding state [ 801.834636][T19321] device bridge0 entered promiscuous mode [ 803.116055][T19343] device syzkaller0 entered promiscuous mode [ 805.360005][T19402] device syzkaller0 entered promiscuous mode [ 805.781856][ T30] audit: type=1400 audit(1721664380.673:146): avc: denied { ioctl } for pid=19426 comm="syz.1.6323" path="socket:[80843]" dev="sockfs" ino=80843 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1 [ 805.861763][T19427] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready [ 807.478358][T19456] FAULT_INJECTION: forcing a failure. [ 807.478358][T19456] name failslab, interval 1, probability 0, space 0, times 0 [ 807.524746][T19458] FAULT_INJECTION: forcing a failure. [ 807.524746][T19458] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 807.543447][T19456] CPU: 1 PID: 19456 Comm: syz.2.6330 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 807.554654][T19456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 807.564635][T19456] Call Trace: [ 807.567758][T19456] [ 807.570535][T19456] dump_stack_lvl+0x151/0x1b7 [ 807.575134][T19456] ? io_uring_drop_tctx_refs+0x190/0x190 [ 807.580602][T19456] ? __kasan_slab_alloc+0xc3/0xe0 [ 807.585462][T19456] ? __kasan_slab_alloc+0xb1/0xe0 [ 807.590326][T19456] ? slab_post_alloc_hook+0x53/0x2c0 [ 807.595446][T19456] ? dup_task_struct+0x53/0xc60 [ 807.600130][T19456] ? copy_process+0x5c4/0x3290 [ 807.604728][T19456] ? kernel_clone+0x21e/0x9e0 [ 807.609328][T19456] dump_stack+0x15/0x17 [ 807.613318][T19456] should_fail+0x3c6/0x510 [ 807.617575][T19456] __should_failslab+0xa4/0xe0 [ 807.622180][T19456] should_failslab+0x9/0x20 [ 807.626510][T19456] slab_pre_alloc_hook+0x37/0xd0 [ 807.631286][T19456] kmem_cache_alloc_trace+0x48/0x210 [ 807.636408][T19456] ? __get_vm_area_node+0x117/0x360 [ 807.641451][T19456] __get_vm_area_node+0x117/0x360 [ 807.646487][T19456] __vmalloc_node_range+0xe2/0x8d0 [ 807.651430][T19456] ? copy_process+0x5c4/0x3290 [ 807.656026][T19456] ? slab_post_alloc_hook+0x72/0x2c0 [ 807.661142][T19456] ? dup_task_struct+0x53/0xc60 [ 807.665915][T19456] ? dup_task_struct+0x53/0xc60 [ 807.670603][T19456] dup_task_struct+0x416/0xc60 [ 807.675203][T19456] ? copy_process+0x5c4/0x3290 [ 807.680238][T19456] ? __kasan_check_write+0x14/0x20 [ 807.685186][T19456] copy_process+0x5c4/0x3290 [ 807.689794][T19456] ? __kasan_check_write+0x14/0x20 [ 807.694816][T19456] ? proc_fail_nth_write+0x20b/0x290 [ 807.699942][T19456] ? selinux_file_permission+0x2c4/0x570 [ 807.705409][T19456] ? fsnotify_perm+0x6a/0x5d0 [ 807.709920][T19456] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 807.714867][T19456] ? vfs_write+0x9ec/0x1110 [ 807.719205][T19456] ? kmem_cache_free+0x2c3/0x2e0 [ 807.723991][T19456] kernel_clone+0x21e/0x9e0 [ 807.728320][T19456] ? file_end_write+0x1c0/0x1c0 [ 807.733008][T19456] ? create_io_thread+0x1e0/0x1e0 [ 807.737864][T19456] ? mutex_unlock+0xb2/0x260 [ 807.742293][T19456] ? __mutex_lock_slowpath+0x10/0x10 [ 807.747503][T19456] __x64_sys_clone+0x23f/0x290 [ 807.752105][T19456] ? __do_sys_vfork+0x130/0x130 [ 807.756872][T19456] ? ksys_write+0x260/0x2c0 [ 807.761214][T19456] ? debug_smp_processor_id+0x17/0x20 [ 807.766543][T19456] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 807.772422][T19456] ? exit_to_user_mode_prepare+0x39/0xa0 [ 807.777888][T19456] do_syscall_64+0x3d/0xb0 [ 807.782141][T19456] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 807.787868][T19456] RIP: 0033:0x7fd64585ae99 [ 807.792122][T19456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 807.811748][T19456] RSP: 002b:00007fd644adbff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 807.819992][T19456] RAX: ffffffffffffffda RBX: 00007fd6459eaf60 RCX: 00007fd64585ae99 [ 807.827888][T19456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 807.835798][T19456] RBP: 00007fd644adc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 807.843608][T19456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 807.851419][T19456] R13: 000000000000000b R14: 00007fd6459eaf60 R15: 00007ffff5ee49e8 [ 807.859245][T19456] [ 807.862198][T19458] CPU: 0 PID: 19458 Comm: syz.4.6332 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 807.873300][T19458] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 807.883193][T19458] Call Trace: [ 807.886328][T19458] [ 807.889091][T19458] dump_stack_lvl+0x151/0x1b7 [ 807.893611][T19458] ? io_uring_drop_tctx_refs+0x190/0x190 [ 807.899074][T19458] ? vsnprintf+0x1dc/0x1c70 [ 807.903412][T19458] dump_stack+0x15/0x17 [ 807.907414][T19458] should_fail+0x3c6/0x510 [ 807.911657][T19458] should_fail_usercopy+0x1a/0x20 [ 807.916519][T19458] _copy_from_user+0x20/0xd0 [ 807.920941][T19458] kstrtouint_from_user+0xca/0x2a0 [ 807.925887][T19458] ? kstrtol_from_user+0x310/0x310 [ 807.930838][T19458] ? snprintf+0xd6/0x120 [ 807.934919][T19458] ? check_stack_object+0x114/0x130 [ 807.939953][T19458] ? __kasan_check_read+0x11/0x20 [ 807.944894][T19458] ? _copy_to_user+0x78/0x90 [ 807.949324][T19458] proc_fail_nth_write+0xa6/0x290 [ 807.954186][T19458] ? selinux_file_permission+0x2c4/0x570 [ 807.959651][T19458] ? proc_fail_nth_read+0x210/0x210 [ 807.964684][T19458] ? fsnotify_perm+0x6a/0x5d0 [ 807.969199][T19458] ? security_file_permission+0x86/0xb0 [ 807.974579][T19458] ? proc_fail_nth_read+0x210/0x210 [ 807.979613][T19458] vfs_write+0x406/0x1110 [ 807.983784][T19458] ? file_end_write+0x1c0/0x1c0 [ 807.988478][T19458] ? __kasan_check_write+0x14/0x20 [ 807.993412][T19458] ? mutex_lock+0xb6/0x1e0 [ 807.997667][T19458] ? wait_for_completion_killable_timeout+0x10/0x10 [ 808.004096][T19458] ? __fdget_pos+0x2e7/0x3a0 [ 808.008514][T19458] ? ksys_write+0x77/0x2c0 [ 808.012776][T19458] ksys_write+0x199/0x2c0 [ 808.016938][T19458] ? __ia32_sys_read+0x90/0x90 [ 808.021544][T19458] ? debug_smp_processor_id+0x17/0x20 [ 808.026743][T19458] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 808.032821][T19458] __x64_sys_write+0x7b/0x90 [ 808.037329][T19458] do_syscall_64+0x3d/0xb0 [ 808.041582][T19458] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 808.047400][T19458] RIP: 0033:0x7fc4ef8b7a1f [ 808.051653][T19458] Code: 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 29 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 31 44 89 c7 48 89 44 24 08 e8 7c 8c 02 00 48 [ 808.071092][T19458] RSP: 002b:00007fc4eeb3a040 EFLAGS: 00000293 ORIG_RAX: 0000000000000001 [ 808.079337][T19458] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc4ef8b7a1f [ 808.087237][T19458] RDX: 0000000000000001 RSI: 00007fc4eeb3a0b0 RDI: 0000000000000007 [ 808.095048][T19458] RBP: 00007fc4eeb3a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 808.102856][T19458] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000001 [ 808.110669][T19458] R13: 000000000000000b R14: 00007fc4efa48f60 R15: 00007ffca6bb6db8 [ 808.118605][T19458] [ 808.247106][T19464] device pim6reg1 entered promiscuous mode [ 808.344702][T19456] syz.2.6330: vmalloc error: size 32768, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz2,mems_allowed=0 [ 808.359893][T19456] CPU: 1 PID: 19456 Comm: syz.2.6330 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 808.371084][T19456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 808.380974][T19456] Call Trace: [ 808.384097][T19456] [ 808.386874][T19456] dump_stack_lvl+0x151/0x1b7 [ 808.391390][T19456] ? io_uring_drop_tctx_refs+0x190/0x190 [ 808.396857][T19456] ? pr_cont_kernfs_name+0xf0/0x100 [ 808.402115][T19456] dump_stack+0x15/0x17 [ 808.406097][T19456] warn_alloc+0x21a/0x390 [ 808.410348][T19456] ? should_failslab+0x9/0x20 [ 808.414858][T19456] ? zone_watermark_ok_safe+0x270/0x270 [ 808.420248][T19456] ? __get_vm_area_node+0x347/0x360 [ 808.425277][T19456] __vmalloc_node_range+0x2c1/0x8d0 [ 808.430340][T19456] ? slab_post_alloc_hook+0x72/0x2c0 [ 808.435430][T19456] ? dup_task_struct+0x53/0xc60 [ 808.440114][T19456] ? dup_task_struct+0x53/0xc60 [ 808.444804][T19456] dup_task_struct+0x416/0xc60 [ 808.449401][T19456] ? copy_process+0x5c4/0x3290 [ 808.454117][T19456] ? __kasan_check_write+0x14/0x20 [ 808.459059][T19456] copy_process+0x5c4/0x3290 [ 808.463490][T19456] ? __kasan_check_write+0x14/0x20 [ 808.468529][T19456] ? proc_fail_nth_write+0x20b/0x290 [ 808.473647][T19456] ? selinux_file_permission+0x2c4/0x570 [ 808.479119][T19456] ? fsnotify_perm+0x6a/0x5d0 [ 808.483636][T19456] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 808.488574][T19456] ? vfs_write+0x9ec/0x1110 [ 808.493013][T19456] ? kmem_cache_free+0x2c3/0x2e0 [ 808.497788][T19456] kernel_clone+0x21e/0x9e0 [ 808.502130][T19456] ? file_end_write+0x1c0/0x1c0 [ 808.506813][T19456] ? create_io_thread+0x1e0/0x1e0 [ 808.511673][T19456] ? mutex_unlock+0xb2/0x260 [ 808.516099][T19456] ? __mutex_lock_slowpath+0x10/0x10 [ 808.521220][T19456] __x64_sys_clone+0x23f/0x290 [ 808.525819][T19456] ? __do_sys_vfork+0x130/0x130 [ 808.530505][T19456] ? ksys_write+0x260/0x2c0 [ 808.534851][T19456] ? debug_smp_processor_id+0x17/0x20 [ 808.540055][T19456] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 808.546042][T19456] ? exit_to_user_mode_prepare+0x39/0xa0 [ 808.551517][T19456] do_syscall_64+0x3d/0xb0 [ 808.555768][T19456] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 808.561493][T19456] RIP: 0033:0x7fd64585ae99 [ 808.565747][T19456] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 808.585270][T19456] RSP: 002b:00007fd644adbff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 808.593518][T19456] RAX: ffffffffffffffda RBX: 00007fd6459eaf60 RCX: 00007fd64585ae99 [ 808.601326][T19456] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 808.609142][T19456] RBP: 00007fd644adc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 808.616953][T19456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 808.624764][T19456] R13: 000000000000000b R14: 00007fd6459eaf60 R15: 00007ffff5ee49e8 [ 808.632580][T19456] [ 808.636094][T19456] Mem-Info: [ 808.639038][T19456] active_anon:132 inactive_anon:13147 isolated_anon:0 [ 808.639038][T19456] active_file:14346 inactive_file:6619 isolated_file:0 [ 808.639038][T19456] unevictable:0 dirty:134 writeback:0 [ 808.639038][T19456] slab_reclaimable:7004 slab_unreclaimable:73318 [ 808.639038][T19456] mapped:13348 shmem:10613 pagetables:450 bounce:0 [ 808.639038][T19456] kernel_misc_reclaimable:0 [ 808.639038][T19456] free:1562041 free_pcp:21263 free_cma:0 [ 808.694918][T19456] Node 0 active_anon:528kB inactive_anon:50188kB active_file:57384kB inactive_file:26476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:53392kB dirty:536kB writeback:0kB shmem:39952kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB kernel_stack:6136kB pagetables:1800kB all_unreclaimable? no [ 808.729503][T19475] bridge0: port 2(bridge_slave_1) entered disabled state [ 808.736466][T19475] bridge0: port 1(bridge_slave_0) entered disabled state [ 808.744920][T19456] DMA32 free:2976724kB min:62592kB low:78240kB high:93888kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:3145324kB managed:2981396kB mlocked:0kB bounce:0kB free_pcp:4672kB local_pcp:4672kB free_cma:0kB [ 808.771953][T19475] device bridge0 left promiscuous mode [ 808.791781][T19456] lowmem_reserve[]: 0 3941 3941 [ 808.798791][T19456] Normal free:3294520kB min:84860kB low:106072kB high:127284kB reserved_highatomic:0KB active_anon:528kB inactive_anon:36988kB active_file:57384kB inactive_file:26476kB unevictable:0kB writepending:536kB present:5242880kB managed:4035840kB mlocked:0kB bounce:0kB free_pcp:73076kB local_pcp:20896kB free_cma:0kB [ 808.828357][T19477] bridge0: port 2(bridge_slave_1) entered blocking state [ 808.835254][T19477] bridge0: port 2(bridge_slave_1) entered forwarding state [ 808.842382][T19477] bridge0: port 1(bridge_slave_0) entered blocking state [ 808.849231][T19477] bridge0: port 1(bridge_slave_0) entered forwarding state [ 808.859262][T19456] lowmem_reserve[]: 0 0 0 [ 808.863673][T19456] DMA32: 3*4kB (M) 1*8kB (M) 2*16kB (M) 3*32kB (M) 3*64kB (M) 3*128kB (M) 3*256kB (M) 3*512kB (M) 4*1024kB (UM) 4*2048kB (UM) 723*4096kB (M) = 2976724kB [ 808.879940][T19477] device bridge0 entered promiscuous mode [ 808.885603][T19456] Normal: 3964*4kB (UME) 3267*8kB (UME) 550*16kB (UME) 632*32kB (UME) 1550*64kB (UME) 627*128kB (UE) 160*256kB (UME) 22*512kB (UM) 5*1024kB (UME) 2*2048kB (ME) 729*4096kB (M) = 3297896kB [ 808.912005][T19456] 26679 total pagecache pages [ 808.920986][T19456] 0 pages in swap cache [ 808.929579][T19456] Swap cache stats: add 0, delete 0, find 0/0 [ 808.948366][T19456] Free swap = 124996kB [ 808.958982][T19456] Total swap = 124996kB [ 808.969812][T19456] 2097051 pages RAM [ 808.980161][T19456] 0 pages HighMem/MovableOnly [ 808.996710][T19456] 342742 pages reserved [ 809.010434][T19456] 0 pages cma reserved [ 810.119206][T19509] bridge0: port 2(bridge_slave_1) entered disabled state [ 810.126156][T19509] bridge0: port 1(bridge_slave_0) entered disabled state [ 810.160176][T19509] device bridge0 left promiscuous mode [ 810.179375][T19509] bridge0: port 2(bridge_slave_1) entered blocking state [ 810.186288][T19509] bridge0: port 2(bridge_slave_1) entered forwarding state [ 810.193564][T19509] bridge0: port 1(bridge_slave_0) entered blocking state [ 810.200583][T19509] bridge0: port 1(bridge_slave_0) entered forwarding state [ 810.271948][T19509] device bridge0 entered promiscuous mode [ 810.930283][T19525] device pim6reg1 entered promiscuous mode [ 813.020107][T19580] FAULT_INJECTION: forcing a failure. [ 813.020107][T19580] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 813.035710][T19580] CPU: 1 PID: 19580 Comm: syz.0.6367 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 813.047002][T19580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 813.056985][T19580] Call Trace: [ 813.060105][T19580] [ 813.062985][T19580] dump_stack_lvl+0x151/0x1b7 [ 813.067498][T19580] ? io_uring_drop_tctx_refs+0x190/0x190 [ 813.072967][T19580] dump_stack+0x15/0x17 [ 813.076972][T19580] should_fail+0x3c6/0x510 [ 813.081213][T19580] should_fail_usercopy+0x1a/0x20 [ 813.086071][T19580] copy_page_from_iter+0x2eb/0x640 [ 813.091019][T19580] pipe_write+0x92b/0x1930 [ 813.095277][T19580] ? pipe_read+0x1040/0x1040 [ 813.099694][T19580] ? selinux_file_permission+0x450/0x570 [ 813.105165][T19580] ? fsnotify_perm+0x6a/0x5d0 [ 813.109676][T19580] ? iov_iter_init+0x53/0x190 [ 813.114190][T19580] vfs_write+0xd5d/0x1110 [ 813.118356][T19580] ? kmem_cache_free+0x116/0x2e0 [ 813.123134][T19580] ? file_end_write+0x1c0/0x1c0 [ 813.127820][T19580] ? __fdget_pos+0x209/0x3a0 [ 813.132240][T19580] ? ksys_write+0x77/0x2c0 [ 813.136506][T19580] ksys_write+0x199/0x2c0 [ 813.140680][T19580] ? __ia32_sys_read+0x90/0x90 [ 813.145263][T19580] ? debug_smp_processor_id+0x17/0x20 [ 813.150470][T19580] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 813.156371][T19580] __x64_sys_write+0x7b/0x90 [ 813.160799][T19580] do_syscall_64+0x3d/0xb0 [ 813.165053][T19580] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 813.170864][T19580] RIP: 0033:0x7f785e165e99 [ 813.175122][T19580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 813.194646][T19580] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 813.203019][T19580] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 813.210828][T19580] RDX: 000000000000fdef RSI: 0000000020000000 RDI: 0000000000000000 [ 813.218638][T19580] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 813.226452][T19580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 813.234261][T19580] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 813.242080][T19580] [ 813.265434][T19572] bridge0: port 1(bridge_slave_0) entered blocking state [ 813.292086][T19572] bridge0: port 1(bridge_slave_0) entered disabled state [ 813.328564][T19572] device bridge_slave_0 entered promiscuous mode [ 813.344558][T19572] bridge0: port 2(bridge_slave_1) entered blocking state [ 813.351507][T19572] bridge0: port 2(bridge_slave_1) entered disabled state [ 813.427865][T19572] device bridge_slave_1 entered promiscuous mode [ 813.678617][T19572] bridge0: port 2(bridge_slave_1) entered blocking state [ 813.685541][T19572] bridge0: port 2(bridge_slave_1) entered forwarding state [ 813.692634][T19572] bridge0: port 1(bridge_slave_0) entered blocking state [ 813.699485][T19572] bridge0: port 1(bridge_slave_0) entered forwarding state [ 813.815435][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 813.854972][ T1327] bridge0: port 1(bridge_slave_0) entered disabled state [ 813.905581][ T1327] bridge0: port 2(bridge_slave_1) entered disabled state [ 813.974860][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 814.002167][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 814.009411][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 814.098055][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 814.148862][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 814.155856][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 814.243850][ T10] device bridge_slave_1 left promiscuous mode [ 814.250237][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 814.307609][ T10] device bridge_slave_0 left promiscuous mode [ 814.331915][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 814.379188][ T10] device veth1_macvtap left promiscuous mode [ 814.389094][ T10] device veth0_vlan left promiscuous mode [ 814.914442][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 814.923955][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 814.934004][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 814.954192][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 814.969631][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 815.030968][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 815.067749][T19572] device veth0_vlan entered promiscuous mode [ 815.075976][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 815.092885][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 815.158979][T19572] device veth1_macvtap entered promiscuous mode [ 815.167826][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 815.175531][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 815.183098][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 815.232171][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 815.240276][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 815.262988][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 815.272072][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 815.280733][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 815.298595][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 817.642615][T19682] device syzkaller0 entered promiscuous mode [ 818.534611][T19706] bridge0: port 3(veth0_to_batadv) entered blocking state [ 818.612126][T19706] bridge0: port 3(veth0_to_batadv) entered disabled state [ 818.676473][T19706] device veth0_to_batadv entered promiscuous mode [ 818.725564][T19706] bridge0: port 3(veth0_to_batadv) entered blocking state [ 818.733233][T19706] bridge0: port 3(veth0_to_batadv) entered forwarding state [ 820.842918][T19777] FAULT_INJECTION: forcing a failure. [ 820.842918][T19777] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 820.872755][T19774] device syzkaller0 entered promiscuous mode [ 820.897735][T19777] CPU: 0 PID: 19777 Comm: syz.0.6422 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 820.908975][T19777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 820.918873][T19777] Call Trace: [ 820.921992][T19777] [ 820.924783][T19777] dump_stack_lvl+0x151/0x1b7 [ 820.929292][T19777] ? io_uring_drop_tctx_refs+0x190/0x190 [ 820.934766][T19777] dump_stack+0x15/0x17 [ 820.938743][T19777] should_fail+0x3c6/0x510 [ 820.942999][T19777] should_fail_usercopy+0x1a/0x20 [ 820.947856][T19777] _copy_from_user+0x20/0xd0 [ 820.952279][T19777] __sys_bpf+0x1e9/0x760 [ 820.956359][T19777] ? fput_many+0x160/0x1b0 [ 820.960611][T19777] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 820.965824][T19777] ? debug_smp_processor_id+0x17/0x20 [ 820.971028][T19777] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 820.977021][T19777] __x64_sys_bpf+0x7c/0x90 [ 820.981272][T19777] do_syscall_64+0x3d/0xb0 [ 820.985522][T19777] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 820.991249][T19777] RIP: 0033:0x7f785e165e99 [ 820.995505][T19777] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 821.014951][T19777] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 821.023197][T19777] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 821.030999][T19777] RDX: 0000000000000050 RSI: 0000000020002300 RDI: 000000000000000a [ 821.038814][T19777] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 821.046624][T19777] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 821.054434][T19777] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 821.062251][T19777] [ 826.969038][T19975] FAULT_INJECTION: forcing a failure. [ 826.969038][T19975] name failslab, interval 1, probability 0, space 0, times 0 [ 826.990338][T19975] CPU: 0 PID: 19975 Comm: syz.3.6490 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 827.001550][T19975] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 827.011451][T19975] Call Trace: [ 827.014568][T19975] [ 827.017349][T19975] dump_stack_lvl+0x151/0x1b7 [ 827.021858][T19975] ? io_uring_drop_tctx_refs+0x190/0x190 [ 827.027327][T19975] dump_stack+0x15/0x17 [ 827.031316][T19975] should_fail+0x3c6/0x510 [ 827.035586][T19975] __should_failslab+0xa4/0xe0 [ 827.040170][T19975] ? __alloc_skb+0xbe/0x550 [ 827.044512][T19975] should_failslab+0x9/0x20 [ 827.048851][T19975] slab_pre_alloc_hook+0x37/0xd0 [ 827.053627][T19975] ? __alloc_skb+0xbe/0x550 [ 827.057971][T19975] kmem_cache_alloc+0x44/0x200 [ 827.062568][T19975] __alloc_skb+0xbe/0x550 [ 827.066730][T19975] alloc_skb_with_frags+0xa6/0x680 [ 827.071680][T19975] ? 0xffffffffa002a48c [ 827.075669][T19975] ? is_bpf_text_address+0x172/0x190 [ 827.080789][T19975] ? stack_trace_save+0x1c0/0x1c0 [ 827.085656][T19975] sock_alloc_send_pskb+0x915/0xa50 [ 827.090689][T19975] ? sock_kzfree_s+0x60/0x60 [ 827.095111][T19975] ? stack_trace_snprint+0xf0/0xf0 [ 827.100058][T19975] ? __kasan_check_write+0x14/0x20 [ 827.105010][T19975] tun_get_user+0xf1b/0x3aa0 [ 827.109438][T19975] ? _kstrtoull+0x3a0/0x4a0 [ 827.113777][T19975] ? tun_do_read+0x1ef0/0x1ef0 [ 827.118373][T19975] ? kstrtouint_from_user+0x20a/0x2a0 [ 827.123578][T19975] ? kstrtol_from_user+0x310/0x310 [ 827.128530][T19975] ? bpf_trace_run3+0x123/0x250 [ 827.133212][T19975] ? avc_policy_seqno+0x1b/0x70 [ 827.137898][T19975] ? selinux_file_permission+0x2c4/0x570 [ 827.143367][T19975] tun_chr_write_iter+0x1e1/0x2e0 [ 827.148226][T19975] vfs_write+0xd5d/0x1110 [ 827.152522][T19975] ? kmem_cache_free+0x2c3/0x2e0 [ 827.157276][T19975] ? file_end_write+0x1c0/0x1c0 [ 827.162054][T19975] ? __fdget_pos+0x209/0x3a0 [ 827.166563][T19975] ? ksys_write+0x77/0x2c0 [ 827.170817][T19975] ksys_write+0x199/0x2c0 [ 827.174981][T19975] ? __ia32_sys_read+0x90/0x90 [ 827.179579][T19975] ? debug_smp_processor_id+0x17/0x20 [ 827.184794][T19975] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 827.190692][T19975] __x64_sys_write+0x7b/0x90 [ 827.195117][T19975] do_syscall_64+0x3d/0xb0 [ 827.199520][T19975] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 827.205184][T19975] RIP: 0033:0x7fc497afbe99 [ 827.209436][T19975] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 827.228904][T19975] RSP: 002b:00007fc496d7d048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 827.237124][T19975] RAX: ffffffffffffffda RBX: 00007fc497c8bf60 RCX: 00007fc497afbe99 [ 827.244935][T19975] RDX: 000000000000fdef RSI: 0000000020000000 RDI: 00000000000000c8 [ 827.252745][T19975] RBP: 00007fc496d7d0a0 R08: 0000000000000000 R09: 0000000000000000 [ 827.260731][T19975] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 827.268545][T19975] R13: 000000000000000b R14: 00007fc497c8bf60 R15: 00007ffcad709258 [ 827.276402][T19975] [ 827.527766][ T30] audit: type=1400 audit(1721664402.423:147): avc: denied { create } for pid=19999 comm="syz.0.6498" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 831.814676][T20078] FAULT_INJECTION: forcing a failure. [ 831.814676][T20078] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 831.854419][T20078] CPU: 1 PID: 20078 Comm: syz.1.6521 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 831.865868][T20078] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 831.875763][T20078] Call Trace: [ 831.878886][T20078] [ 831.881663][T20078] dump_stack_lvl+0x151/0x1b7 [ 831.886180][T20078] ? io_uring_drop_tctx_refs+0x190/0x190 [ 831.891646][T20078] dump_stack+0x15/0x17 [ 831.895637][T20078] should_fail+0x3c6/0x510 [ 831.899891][T20078] should_fail_usercopy+0x1a/0x20 [ 831.904748][T20078] copy_fpstate_to_sigframe+0x708/0x9a0 [ 831.910137][T20078] ? fpregs_set+0x6f0/0x6f0 [ 831.914469][T20078] ? kmem_cache_free+0x116/0x2e0 [ 831.919244][T20078] ? ____kasan_slab_free+0x131/0x160 [ 831.924367][T20078] ? __kasan_slab_free+0x11/0x20 [ 831.929229][T20078] ? slab_free_freelist_hook+0xbd/0x190 [ 831.934606][T20078] ? fpu__alloc_mathframe+0x89/0x150 [ 831.939948][T20078] get_sigframe+0x378/0x4b0 [ 831.944284][T20078] ? memcpy+0x56/0x70 [ 831.948109][T20078] ? restore_sigcontext+0x710/0x710 [ 831.953153][T20078] arch_do_signal_or_restart+0x2ad/0x1680 [ 831.958697][T20078] ? __send_signal+0xc92/0xcb0 [ 831.963384][T20078] ? get_sigframe_size+0x10/0x10 [ 831.968157][T20078] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 831.973792][T20078] ? force_sig_info_to_task+0x31c/0x440 [ 831.979175][T20078] ? force_sig+0x114/0x1d0 [ 831.983425][T20078] ? send_sig+0x60/0x60 [ 831.987419][T20078] exit_to_user_mode_loop+0xa0/0xe0 [ 831.992454][T20078] exit_to_user_mode_prepare+0x5a/0xa0 [ 831.997748][T20078] irqentry_exit_to_user_mode+0x9/0x20 [ 832.003041][T20078] irqentry_exit+0x12/0x40 [ 832.007294][T20078] exc_general_protection+0x327/0x4b0 [ 832.012503][T20078] ? debug_smp_processor_id+0x17/0x20 [ 832.017709][T20078] ? syscall_exit_to_user_mode+0x34/0x160 [ 832.023266][T20078] asm_exc_general_protection+0x27/0x30 [ 832.028645][T20078] RIP: 0033:0x7f0bd608e7b9 [ 832.032898][T20078] Code: f8 77 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 89 f8 48 89 fa c5 f9 ef c0 25 ff 0f 00 00 3d e0 0f 00 00 0f 87 27 01 00 00 fd 74 0f c5 fd d7 c1 85 c0 74 5b f3 0f bc c0 e9 30 01 00 00 66 [ 832.052546][T20078] RSP: 002b:00007f0bd53367d8 EFLAGS: 00010283 [ 832.058446][T20078] RAX: 0000000000000999 RBX: 00007f0bd5336d40 RCX: 00007f0bd6205160 [ 832.066261][T20078] RDX: 9999999999999999 RSI: 00007f0bd612336c RDI: 9999999999999999 [ 832.074155][T20078] RBP: 000000000000000b R08: 0000000000000000 R09: 0000000000000000 [ 832.081967][T20078] R10: 00000000ffffffff R11: 0000000000000000 R12: 0000000000000073 [ 832.089781][T20078] R13: 00007f0bd5336ec0 R14: 9999999999999999 R15: 0000000000000000 [ 832.097595][T20078] [ 833.868935][ T30] audit: type=1400 audit(1721664408.763:148): avc: denied { tracepoint } for pid=20128 comm="syz.4.6533" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=perf_event permissive=1 [ 835.544672][T20173] syz.2.6549[20173] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 835.544752][T20173] syz.2.6549[20173] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 836.491449][T20196] FAULT_INJECTION: forcing a failure. [ 836.491449][T20196] name failslab, interval 1, probability 0, space 0, times 0 [ 836.515188][T20196] CPU: 1 PID: 20196 Comm: syz.0.6555 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 836.526359][T20196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 836.536253][T20196] Call Trace: [ 836.539377][T20196] [ 836.542151][T20196] dump_stack_lvl+0x151/0x1b7 [ 836.546665][T20196] ? io_uring_drop_tctx_refs+0x190/0x190 [ 836.552134][T20196] dump_stack+0x15/0x17 [ 836.556126][T20196] should_fail+0x3c6/0x510 [ 836.560393][T20196] __should_failslab+0xa4/0xe0 [ 836.564991][T20196] ? __alloc_skb+0xbe/0x550 [ 836.569317][T20196] should_failslab+0x9/0x20 [ 836.573662][T20196] slab_pre_alloc_hook+0x37/0xd0 [ 836.578435][T20196] ? __alloc_skb+0xbe/0x550 [ 836.582857][T20196] kmem_cache_alloc+0x44/0x200 [ 836.587460][T20196] __alloc_skb+0xbe/0x550 [ 836.591627][T20196] ip_frag_next+0xe2/0xa20 [ 836.595882][T20196] ? ip_fragment+0x210/0x210 [ 836.600305][T20196] ip_do_fragment+0x7e7/0x1e10 [ 836.604908][T20196] ? ip_fragment+0x210/0x210 [ 836.609329][T20196] ? ip_frag_next+0xa20/0xa20 [ 836.613847][T20196] ip_fragment+0x123/0x210 [ 836.618187][T20196] __ip_finish_output+0x29c/0x360 [ 836.623049][T20196] ip_finish_output+0x31/0x210 [ 836.627650][T20196] ? ip_output+0x3e1/0x420 [ 836.631907][T20196] ip_output+0x1d6/0x420 [ 836.635985][T20196] ? ip_finish_output+0x210/0x210 [ 836.640833][T20196] ? ____kasan_slab_free+0x131/0x160 [ 836.645959][T20196] ? ip_mc_finish_output+0x3c0/0x3c0 [ 836.651072][T20196] ? prandom_u32+0x24c/0x290 [ 836.655547][T20196] ip_local_out+0x92/0xb0 [ 836.659666][T20196] iptunnel_xmit+0x4b7/0x8a0 [ 836.664095][T20196] ip_tunnel_xmit+0x1e1e/0x2760 [ 836.668956][T20196] ? ip_tunnel_xmit+0x131/0x2760 [ 836.673731][T20196] ? tnl_update_pmtu+0xba0/0xba0 [ 836.678503][T20196] ? skb_push+0xa7/0x120 [ 836.682578][T20196] ? skb_network_protocol+0x578/0x770 [ 836.687794][T20196] ? gre_build_header+0x233/0x7a0 [ 836.692658][T20196] ipgre_xmit+0x87a/0xc30 [ 836.696826][T20196] dev_hard_start_xmit+0x228/0x620 [ 836.701767][T20196] __dev_queue_xmit+0x18b4/0x2e70 [ 836.706625][T20196] ? dev_queue_xmit+0x20/0x20 [ 836.711135][T20196] ? __kasan_check_write+0x14/0x20 [ 836.716080][T20196] ? skb_release_data+0x1c3/0xa80 [ 836.720951][T20196] ? __kasan_check_write+0x14/0x20 [ 836.725887][T20196] ? pskb_expand_head+0xc8f/0x1240 [ 836.730836][T20196] dev_queue_xmit+0x17/0x20 [ 836.735196][T20196] __bpf_redirect+0x690/0xe60 [ 836.739692][T20196] bpf_clone_redirect+0x24d/0x390 [ 836.744650][T20196] bpf_prog_973cd02a7a0e8181+0x56/0xc24 [ 836.750039][T20196] ? swiotlb_map+0x370/0x7c0 [ 836.754444][T20196] ? __stack_depot_save+0x34/0x470 [ 836.759407][T20196] ? __kasan_slab_alloc+0xc3/0xe0 [ 836.764247][T20196] ? __kasan_slab_alloc+0xb1/0xe0 [ 836.769111][T20196] ? slab_post_alloc_hook+0x53/0x2c0 [ 836.774230][T20196] ? kmem_cache_alloc+0xf5/0x200 [ 836.779004][T20196] ? __build_skb+0x2a/0x300 [ 836.783343][T20196] ? build_skb+0x25/0x1f0 [ 836.787511][T20196] ? bpf_prog_test_run_skb+0x38e/0x1420 [ 836.792893][T20196] ? bpf_prog_test_run+0x3b0/0x630 [ 836.797836][T20196] ? __sys_bpf+0x525/0x760 [ 836.802091][T20196] ? __x64_sys_bpf+0x7c/0x90 [ 836.806515][T20196] ? do_syscall_64+0x3d/0xb0 [ 836.810944][T20196] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 836.816851][T20196] ? ktime_get+0x12f/0x160 [ 836.821099][T20196] bpf_test_run+0x478/0xa10 [ 836.825447][T20196] ? convert___skb_to_skb+0x570/0x570 [ 836.830649][T20196] ? eth_type_trans+0x2c6/0x600 [ 836.835336][T20196] ? eth_get_headlen+0x240/0x240 [ 836.840136][T20196] ? convert___skb_to_skb+0x44/0x570 [ 836.845313][T20196] bpf_prog_test_run_skb+0xb41/0x1420 [ 836.850522][T20196] ? __kasan_check_write+0x14/0x20 [ 836.855472][T20196] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 836.861198][T20196] ? __kasan_check_write+0x14/0x20 [ 836.866143][T20196] ? fput_many+0x160/0x1b0 [ 836.870401][T20196] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 836.876124][T20196] bpf_prog_test_run+0x3b0/0x630 [ 836.880901][T20196] ? bpf_prog_query+0x220/0x220 [ 836.885586][T20196] ? selinux_bpf+0xd2/0x100 [ 836.889923][T20196] ? security_bpf+0x82/0xb0 [ 836.894264][T20196] __sys_bpf+0x525/0x760 [ 836.898346][T20196] ? fput_many+0x160/0x1b0 [ 836.902597][T20196] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 836.907806][T20196] ? debug_smp_processor_id+0x17/0x20 [ 836.913010][T20196] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 836.918914][T20196] __x64_sys_bpf+0x7c/0x90 [ 836.923167][T20196] do_syscall_64+0x3d/0xb0 [ 836.927421][T20196] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 836.933235][T20196] RIP: 0033:0x7f785e165e99 [ 836.937487][T20196] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 836.957013][T20196] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 836.965260][T20196] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 836.973072][T20196] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a [ 836.980883][T20196] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 836.988692][T20196] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 836.996506][T20196] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 837.004320][T20196] [ 838.206009][T20233] bridge0: port 2(bridge_slave_1) entered blocking state [ 838.212906][T20233] bridge0: port 2(bridge_slave_1) entered forwarding state [ 838.220013][T20233] bridge0: port 1(bridge_slave_0) entered blocking state [ 838.226884][T20233] bridge0: port 1(bridge_slave_0) entered forwarding state [ 838.312064][T20233] device bridge0 entered promiscuous mode [ 838.338500][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 839.749449][ T30] audit: type=1400 audit(1721664414.643:149): avc: denied { create } for pid=20257 comm="syz.3.6572" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 842.781929][T20320] bridge0: port 2(bridge_slave_1) entered disabled state [ 842.788909][T20320] bridge0: port 1(bridge_slave_0) entered disabled state [ 842.812092][T20320] device bridge0 left promiscuous mode [ 842.888050][T20323] bridge0: port 2(bridge_slave_1) entered blocking state [ 842.894960][T20323] bridge0: port 2(bridge_slave_1) entered forwarding state [ 842.902141][T20323] bridge0: port 1(bridge_slave_0) entered blocking state [ 842.908991][T20323] bridge0: port 1(bridge_slave_0) entered forwarding state [ 842.925278][T20323] device bridge0 entered promiscuous mode [ 846.711876][T20405] device pim6reg1 entered promiscuous mode [ 846.851649][ T30] audit: type=1400 audit(1721664421.743:150): avc: denied { create } for pid=20409 comm="syz.0.6613" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 848.404386][T20454] bridge0: port 2(bridge_slave_1) entered disabled state [ 848.411336][T20454] bridge0: port 1(bridge_slave_0) entered disabled state [ 848.418543][T20454] device bridge0 left promiscuous mode [ 848.477506][T20454] bridge0: port 2(bridge_slave_1) entered blocking state [ 848.484428][T20454] bridge0: port 2(bridge_slave_1) entered forwarding state [ 848.491499][T20454] bridge0: port 1(bridge_slave_0) entered blocking state [ 848.498291][T20454] bridge0: port 1(bridge_slave_0) entered forwarding state [ 848.505487][T20454] device bridge0 entered promiscuous mode [ 849.513908][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 850.941522][ T30] audit: type=1400 audit(1721664425.833:151): avc: denied { create } for pid=20482 comm="syz.0.6638" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=phonet_socket permissive=1 [ 851.005972][T20483] syz.0.6638[20483] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 851.006052][T20483] syz.0.6638[20483] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 851.284864][T20491] bridge0: port 3(veth0_to_batadv) entered disabled state [ 851.303266][T20491] bridge0: port 2(bridge_slave_1) entered disabled state [ 851.310265][T20491] bridge0: port 1(bridge_slave_0) entered disabled state [ 851.432019][T20502] bridge0: port 3(veth0_to_batadv) entered blocking state [ 851.439101][T20502] bridge0: port 3(veth0_to_batadv) entered forwarding state [ 851.446413][T20502] bridge0: port 2(bridge_slave_1) entered blocking state [ 851.453295][T20502] bridge0: port 2(bridge_slave_1) entered forwarding state [ 851.460390][T20502] bridge0: port 1(bridge_slave_0) entered blocking state [ 851.467178][T20502] bridge0: port 1(bridge_slave_0) entered forwarding state [ 851.536373][T20502] device bridge0 entered promiscuous mode [ 852.418802][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 852.517967][T20531] FAULT_INJECTION: forcing a failure. [ 852.517967][T20531] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 852.543047][T20531] CPU: 1 PID: 20531 Comm: syz.4.6656 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 852.554350][T20531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 852.564242][T20531] Call Trace: [ 852.567358][T20531] [ 852.570134][T20531] dump_stack_lvl+0x151/0x1b7 [ 852.574645][T20531] ? io_uring_drop_tctx_refs+0x190/0x190 [ 852.580114][T20531] ? native_set_ldt+0x360/0x360 [ 852.584802][T20531] dump_stack+0x15/0x17 [ 852.588789][T20531] should_fail+0x3c6/0x510 [ 852.593046][T20531] should_fail_alloc_page+0x5a/0x80 [ 852.598076][T20531] prepare_alloc_pages+0x15c/0x700 [ 852.603031][T20531] ? __alloc_pages+0x8f0/0x8f0 [ 852.607628][T20531] ? __alloc_pages_bulk+0xe40/0xe40 [ 852.612661][T20531] ? pcpu_chunk_refresh_hint+0x802/0x930 [ 852.618127][T20531] __alloc_pages+0x18c/0x8f0 [ 852.622555][T20531] ? prep_new_page+0x110/0x110 [ 852.627168][T20531] ? pcpu_chunk_relocate+0x20a/0x430 [ 852.632277][T20531] pcpu_populate_chunk+0x18c/0xe30 [ 852.637224][T20531] pcpu_alloc+0x984/0x13e0 [ 852.641476][T20531] __alloc_percpu_gfp+0x27/0x30 [ 852.646162][T20531] bpf_map_alloc_percpu+0xe6/0x160 [ 852.651116][T20531] htab_map_alloc+0xba0/0x1440 [ 852.655715][T20531] map_create+0x411/0x2050 [ 852.659997][T20531] __sys_bpf+0x296/0x760 [ 852.664042][T20531] ? fput_many+0x160/0x1b0 [ 852.668293][T20531] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 852.673505][T20531] ? debug_smp_processor_id+0x17/0x20 [ 852.678709][T20531] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 852.684620][T20531] __x64_sys_bpf+0x7c/0x90 [ 852.688969][T20531] do_syscall_64+0x3d/0xb0 [ 852.693212][T20531] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 852.698959][T20531] RIP: 0033:0x7f1f629f7e99 [ 852.703186][T20531] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 852.722626][T20531] RSP: 002b:00007f1f61c79048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 852.730875][T20531] RAX: ffffffffffffffda RBX: 00007f1f62b87f60 RCX: 00007f1f629f7e99 [ 852.738685][T20531] RDX: 0000000000000048 RSI: 0000000020000840 RDI: 0000000000000000 [ 852.746496][T20531] RBP: 00007f1f61c790a0 R08: 0000000000000000 R09: 0000000000000000 [ 852.754307][T20531] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 852.762117][T20531] R13: 000000000000000b R14: 00007f1f62b87f60 R15: 00007ffe39b0ccd8 [ 852.769935][T20531] [ 852.845359][T20541] bridge0: port 2(bridge_slave_1) entered disabled state [ 852.852307][T20541] bridge0: port 1(bridge_slave_0) entered disabled state [ 852.859531][T20541] device bridge0 left promiscuous mode [ 852.866223][T20544] bridge0: port 2(bridge_slave_1) entered blocking state [ 852.873114][T20544] bridge0: port 2(bridge_slave_1) entered forwarding state [ 852.880238][T20544] bridge0: port 1(bridge_slave_0) entered blocking state [ 852.887155][T20544] bridge0: port 1(bridge_slave_0) entered forwarding state [ 852.901422][T20544] device bridge0 entered promiscuous mode [ 854.692539][T20583] bridge0: port 2(bridge_slave_1) entered disabled state [ 854.699486][T20583] bridge0: port 1(bridge_slave_0) entered disabled state [ 854.706836][T20583] device bridge0 left promiscuous mode [ 854.763516][T20583] bridge0: port 2(bridge_slave_1) entered blocking state [ 854.770723][T20583] bridge0: port 2(bridge_slave_1) entered forwarding state [ 854.777916][T20583] bridge0: port 1(bridge_slave_0) entered blocking state [ 854.784784][T20583] bridge0: port 1(bridge_slave_0) entered forwarding state [ 854.795935][T20583] device bridge0 entered promiscuous mode [ 855.075386][T20601] FAULT_INJECTION: forcing a failure. [ 855.075386][T20601] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 855.152986][T20601] CPU: 1 PID: 20601 Comm: syz.0.6680 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 855.164193][T20601] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 855.174088][T20601] Call Trace: [ 855.177220][T20601] [ 855.180112][T20601] dump_stack_lvl+0x151/0x1b7 [ 855.184621][T20601] ? io_uring_drop_tctx_refs+0x190/0x190 [ 855.190091][T20601] dump_stack+0x15/0x17 [ 855.194078][T20601] should_fail+0x3c6/0x510 [ 855.198335][T20601] should_fail_usercopy+0x1a/0x20 [ 855.203189][T20601] _copy_to_user+0x20/0x90 [ 855.207445][T20601] simple_read_from_buffer+0xc7/0x150 [ 855.212653][T20601] proc_fail_nth_read+0x1a3/0x210 [ 855.217513][T20601] ? proc_fault_inject_write+0x390/0x390 [ 855.223090][T20601] ? fsnotify_perm+0x470/0x5d0 [ 855.227671][T20601] ? security_file_permission+0x86/0xb0 [ 855.233055][T20601] ? proc_fault_inject_write+0x390/0x390 [ 855.238521][T20601] vfs_read+0x27d/0xd40 [ 855.242521][T20601] ? kernel_read+0x1f0/0x1f0 [ 855.247057][T20601] ? __kasan_check_write+0x14/0x20 [ 855.251999][T20601] ? mutex_lock+0xb6/0x1e0 [ 855.256249][T20601] ? wait_for_completion_killable_timeout+0x10/0x10 [ 855.262666][T20601] ? __fdget_pos+0x2e7/0x3a0 [ 855.267089][T20601] ? ksys_read+0x77/0x2c0 [ 855.271256][T20601] ksys_read+0x199/0x2c0 [ 855.275427][T20601] ? bpf_trace_run1+0x1c0/0x1c0 [ 855.280199][T20601] ? vfs_write+0x1110/0x1110 [ 855.284624][T20601] ? debug_smp_processor_id+0x17/0x20 [ 855.289830][T20601] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 855.295738][T20601] __x64_sys_read+0x7b/0x90 [ 855.300072][T20601] do_syscall_64+0x3d/0xb0 [ 855.304327][T20601] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 855.310062][T20601] RIP: 0033:0x7f785e16497c [ 855.314309][T20601] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 855.333760][T20601] RSP: 002b:00007f785d3e7040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 855.341994][T20601] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e16497c [ 855.349805][T20601] RDX: 000000000000000f RSI: 00007f785d3e70b0 RDI: 0000000000000007 [ 855.357627][T20601] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 855.365425][T20601] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 855.373235][T20601] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 855.381059][T20601] [ 855.771902][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 856.138031][T20615] syz.2.6682[20615] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.138115][T20615] syz.2.6682[20615] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.188484][T20618] syz.2.6682[20618] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.290626][T20618] syz.2.6682[20618] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.352532][T20621] syz.2.6682[20621] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.443694][T20621] syz.2.6682[20621] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 856.508161][T20627] bridge0: port 2(bridge_slave_1) entered disabled state [ 856.526384][T20627] bridge0: port 1(bridge_slave_0) entered disabled state [ 856.582011][T20627] device bridge0 left promiscuous mode [ 856.695830][T20627] bridge0: port 2(bridge_slave_1) entered blocking state [ 856.702835][T20627] bridge0: port 2(bridge_slave_1) entered forwarding state [ 856.710048][T20627] bridge0: port 1(bridge_slave_0) entered blocking state [ 856.717015][T20627] bridge0: port 1(bridge_slave_0) entered forwarding state [ 856.871890][T20627] device bridge0 entered promiscuous mode [ 858.537531][T20663] device sit0 entered promiscuous mode [ 858.769199][T20678] bridge0: port 3(veth0) entered disabled state [ 858.775386][T20678] bridge0: port 2(bridge_slave_1) entered disabled state [ 858.782223][T20678] bridge0: port 1(bridge_slave_0) entered disabled state [ 858.936336][T20678] device bridge0 left promiscuous mode [ 858.981623][T20680] bridge0: port 3(veth0) entered blocking state [ 858.987735][T20680] bridge0: port 3(veth0) entered forwarding state [ 858.994106][T20680] bridge0: port 2(bridge_slave_1) entered blocking state [ 859.000962][T20680] bridge0: port 2(bridge_slave_1) entered forwarding state [ 859.008098][T20680] bridge0: port 1(bridge_slave_0) entered blocking state [ 859.014874][T20680] bridge0: port 1(bridge_slave_0) entered forwarding state [ 859.219399][T20680] device bridge0 entered promiscuous mode [ 859.549813][T20685] device wg2 entered promiscuous mode [ 859.857992][T20709] bridge0: port 2(bridge_slave_1) entered disabled state [ 859.864975][T20709] bridge0: port 1(bridge_slave_0) entered disabled state [ 859.918229][T20709] device bridge0 left promiscuous mode [ 859.936745][T20714] bridge0: port 2(bridge_slave_1) entered blocking state [ 859.943664][T20714] bridge0: port 2(bridge_slave_1) entered forwarding state [ 859.950834][T20714] bridge0: port 1(bridge_slave_0) entered blocking state [ 859.957645][T20714] bridge0: port 1(bridge_slave_0) entered forwarding state [ 860.011973][T20714] device bridge0 entered promiscuous mode [ 860.024176][T20722] bridge0: port 3(veth0) entered disabled state [ 860.030337][T20722] bridge0: port 2(bridge_slave_1) entered disabled state [ 860.037218][T20722] bridge0: port 1(bridge_slave_0) entered disabled state [ 860.121893][T20722] device bridge0 left promiscuous mode [ 860.187034][T20725] bridge0: port 3(veth0) entered blocking state [ 860.193132][T20725] bridge0: port 3(veth0) entered forwarding state [ 860.199471][T20725] bridge0: port 2(bridge_slave_1) entered blocking state [ 860.206344][T20725] bridge0: port 2(bridge_slave_1) entered forwarding state [ 860.213462][T20725] bridge0: port 1(bridge_slave_0) entered blocking state [ 860.220308][T20725] bridge0: port 1(bridge_slave_0) entered forwarding state [ 860.402253][T20725] device bridge0 entered promiscuous mode [ 861.675019][T20768] bridge0: port 2(bridge_slave_1) entered disabled state [ 861.681965][T20768] bridge0: port 1(bridge_slave_0) entered disabled state [ 861.690928][T20772] FAULT_INJECTION: forcing a failure. [ 861.690928][T20772] name failslab, interval 1, probability 0, space 0, times 0 [ 861.703323][T20768] device bridge0 left promiscuous mode [ 861.704177][T20772] CPU: 1 PID: 20772 Comm: syz.4.6734 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 861.720022][T20772] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 861.729911][T20772] Call Trace: [ 861.733034][T20772] [ 861.735812][T20772] dump_stack_lvl+0x151/0x1b7 [ 861.740328][T20772] ? io_uring_drop_tctx_refs+0x190/0x190 [ 861.745794][T20772] ? __perf_event_task_sched_in+0x219/0x2a0 [ 861.751616][T20772] ? perf_pmu_sched_task+0x190/0x190 [ 861.756731][T20772] dump_stack+0x15/0x17 [ 861.760725][T20772] should_fail+0x3c6/0x510 [ 861.764981][T20772] __should_failslab+0xa4/0xe0 [ 861.769586][T20772] ? __alloc_skb+0xbe/0x550 [ 861.773914][T20772] should_failslab+0x9/0x20 [ 861.778258][T20772] slab_pre_alloc_hook+0x37/0xd0 [ 861.783029][T20772] ? __alloc_skb+0xbe/0x550 [ 861.787369][T20772] kmem_cache_alloc+0x44/0x200 [ 861.791971][T20772] __alloc_skb+0xbe/0x550 [ 861.796141][T20772] alloc_skb_with_frags+0xa6/0x680 [ 861.801085][T20772] ? memcpy+0x56/0x70 [ 861.804905][T20772] sock_alloc_send_pskb+0x915/0xa50 [ 861.809941][T20772] ? sock_kzfree_s+0x60/0x60 [ 861.814359][T20772] ? avc_has_perm+0x16f/0x260 [ 861.818871][T20772] ? __kernel_text_address+0x9b/0x110 [ 861.824086][T20772] unix_dgram_sendmsg+0x6fd/0x2090 [ 861.829034][T20772] ? unix_dgram_poll+0x710/0x710 [ 861.833802][T20772] ? kmem_cache_free+0x116/0x2e0 [ 861.838581][T20772] ? ____kasan_slab_free+0x126/0x160 [ 861.843694][T20772] ? __kasan_slab_free+0x11/0x20 [ 861.848468][T20772] ? slab_free_freelist_hook+0xbd/0x190 [ 861.853855][T20772] ? security_socket_sendmsg+0x82/0xb0 [ 861.859143][T20772] ? unix_dgram_poll+0x710/0x710 [ 861.863920][T20772] ____sys_sendmsg+0x59e/0x8f0 [ 861.868522][T20772] ? __sys_sendmsg_sock+0x40/0x40 [ 861.873383][T20772] ? import_iovec+0xe5/0x120 [ 861.877810][T20772] ___sys_sendmsg+0x252/0x2e0 [ 861.882320][T20772] ? __sys_sendmsg+0x260/0x260 [ 861.886927][T20772] ? __fdget+0x1bc/0x240 [ 861.890996][T20772] __se_sys_sendmsg+0x19a/0x260 [ 861.895684][T20772] ? __x64_sys_sendmsg+0x90/0x90 [ 861.900452][T20772] ? ksys_write+0x260/0x2c0 [ 861.904795][T20772] ? debug_smp_processor_id+0x17/0x20 [ 861.910004][T20772] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 861.915909][T20772] __x64_sys_sendmsg+0x7b/0x90 [ 861.920543][T20772] do_syscall_64+0x3d/0xb0 [ 861.924755][T20772] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 861.930485][T20772] RIP: 0033:0x7f1f629f7e99 [ 861.934737][T20772] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 861.954181][T20772] RSP: 002b:00007f1f61c79048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 861.962429][T20772] RAX: ffffffffffffffda RBX: 00007f1f62b87f60 RCX: 00007f1f629f7e99 [ 861.970241][T20772] RDX: 0000000000000000 RSI: 0000000020000340 RDI: 0000000000000004 [ 861.978045][T20772] RBP: 00007f1f61c790a0 R08: 0000000000000000 R09: 0000000000000000 [ 861.985863][T20772] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 861.993756][T20772] R13: 000000000000000b R14: 00007f1f62b87f60 R15: 00007ffe39b0ccd8 [ 862.001583][T20772] [ 862.035079][T20770] bridge0: port 2(bridge_slave_1) entered blocking state [ 862.041940][T20770] bridge0: port 2(bridge_slave_1) entered forwarding state [ 862.049055][T20770] bridge0: port 1(bridge_slave_0) entered blocking state [ 862.055843][T20770] bridge0: port 1(bridge_slave_0) entered forwarding state [ 862.064020][T20770] device bridge0 entered promiscuous mode [ 862.859703][T20803] Â: renamed from pim6reg1 [ 862.869192][T20803] FAULT_INJECTION: forcing a failure. [ 862.869192][T20803] name failslab, interval 1, probability 0, space 0, times 0 [ 862.962146][T20803] CPU: 1 PID: 20803 Comm: syz.2.6745 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 862.973358][T20803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 862.983254][T20803] Call Trace: [ 862.986373][T20803] [ 862.989150][T20803] dump_stack_lvl+0x151/0x1b7 [ 862.993669][T20803] ? io_uring_drop_tctx_refs+0x190/0x190 [ 862.999138][T20803] dump_stack+0x15/0x17 [ 863.003126][T20803] should_fail+0x3c6/0x510 [ 863.007377][T20803] __should_failslab+0xa4/0xe0 [ 863.011985][T20803] should_failslab+0x9/0x20 [ 863.016316][T20803] slab_pre_alloc_hook+0x37/0xd0 [ 863.021095][T20803] ? alloc_uevent_skb+0x80/0x230 [ 863.025865][T20803] __kmalloc_track_caller+0x6c/0x260 [ 863.030983][T20803] ? alloc_uevent_skb+0x80/0x230 [ 863.035766][T20803] ? alloc_uevent_skb+0x80/0x230 [ 863.040534][T20803] __alloc_skb+0x10c/0x550 [ 863.044875][T20803] alloc_uevent_skb+0x80/0x230 [ 863.049471][T20803] kobject_uevent_net_broadcast+0x188/0x590 [ 863.055201][T20803] kobject_uevent_env+0x525/0x700 [ 863.060090][T20803] kobject_rename+0x44f/0x520 [ 863.064572][T20803] ? kobject_init_and_add+0x190/0x190 [ 863.069787][T20803] ? sysfs_rename_link_ns+0x17b/0x1b0 [ 863.074987][T20803] device_rename+0x16d/0x190 [ 863.079418][T20803] dev_change_name+0x344/0x9c0 [ 863.084020][T20803] ? __ww_mutex_lock_interruptible_slowpath+0x20/0x20 [ 863.090612][T20803] ? avc_denied+0x1b0/0x1b0 [ 863.094962][T20803] ? dev_alloc_name+0x130/0x130 [ 863.099654][T20803] dev_ifsioc+0x24c/0x10c0 [ 863.103893][T20803] ? dev_ioctl+0xe70/0xe70 [ 863.108149][T20803] ? mutex_lock+0x135/0x1e0 [ 863.112481][T20803] ? wait_for_completion_killable_timeout+0x10/0x10 [ 863.118935][T20803] ? security_capable+0x87/0xb0 [ 863.123593][T20803] dev_ioctl+0x35c/0xe70 [ 863.127677][T20803] sock_do_ioctl+0x34f/0x5a0 [ 863.132101][T20803] ? sock_show_fdinfo+0xa0/0xa0 [ 863.136789][T20803] ? selinux_file_ioctl+0x3cc/0x540 [ 863.141826][T20803] sock_ioctl+0x455/0x740 [ 863.145983][T20803] ? sock_poll+0x400/0x400 [ 863.150235][T20803] ? __fget_files+0x31e/0x380 [ 863.154755][T20803] ? security_file_ioctl+0x84/0xb0 [ 863.159701][T20803] ? sock_poll+0x400/0x400 [ 863.163948][T20803] __se_sys_ioctl+0x114/0x190 [ 863.168464][T20803] __x64_sys_ioctl+0x7b/0x90 [ 863.172892][T20803] do_syscall_64+0x3d/0xb0 [ 863.177141][T20803] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 863.182869][T20803] RIP: 0033:0x7fd64585ae99 [ 863.187125][T20803] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 863.206998][T20803] RSP: 002b:00007fd644adc048 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 863.215246][T20803] RAX: ffffffffffffffda RBX: 00007fd6459eaf60 RCX: 00007fd64585ae99 [ 863.223058][T20803] RDX: 0000000020000800 RSI: 0000000000008923 RDI: 0000000000000005 [ 863.230871][T20803] RBP: 00007fd644adc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 863.238764][T20803] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 863.246666][T20803] R13: 000000000000000b R14: 00007fd6459eaf60 R15: 00007ffff5ee49e8 [ 863.254490][T20803] [ 863.965722][T20838] device syzkaller0 entered promiscuous mode [ 866.106572][T20910] device syzkaller0 entered promiscuous mode [ 866.276368][T20910] device pim6reg1 entered promiscuous mode [ 866.679753][ T30] audit: type=1400 audit(1721664441.573:152): avc: denied { create } for pid=20922 comm="syz.3.6785" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 867.262183][T20959] FAULT_INJECTION: forcing a failure. [ 867.262183][T20959] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 867.293837][T20959] CPU: 1 PID: 20959 Comm: syz.0.6797 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 867.305054][T20959] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 867.315035][T20959] Call Trace: [ 867.318246][T20959] [ 867.321027][T20959] dump_stack_lvl+0x151/0x1b7 [ 867.325536][T20959] ? io_uring_drop_tctx_refs+0x190/0x190 [ 867.331089][T20959] ? do_syscall_64+0x3d/0xb0 [ 867.335523][T20959] dump_stack+0x15/0x17 [ 867.339619][T20959] should_fail+0x3c6/0x510 [ 867.343959][T20959] should_fail_usercopy+0x1a/0x20 [ 867.348823][T20959] _copy_from_iter+0x22f/0xdc0 [ 867.353419][T20959] ? copy_mc_pipe_to_iter+0x760/0x760 [ 867.358627][T20959] ? __check_object_size+0x73/0x3d0 [ 867.363658][T20959] ? __virt_addr_valid+0x1db/0x2f0 [ 867.368611][T20959] ? __check_object_size+0x2ec/0x3d0 [ 867.373729][T20959] kernfs_fop_write_iter+0x1a0/0x410 [ 867.378937][T20959] vfs_write+0xd5d/0x1110 [ 867.383096][T20959] ? irqentry_exit_cond_resched+0x2a/0x30 [ 867.388659][T20959] ? irqentry_exit+0x30/0x40 [ 867.393082][T20959] ? file_end_write+0x1c0/0x1c0 [ 867.397765][T20959] ? mutex_lock+0xb6/0x1e0 [ 867.402147][T20959] ? wait_for_completion_killable_timeout+0x10/0x10 [ 867.408547][T20959] ? __fdget_pos+0x2e7/0x3a0 [ 867.413070][T20959] ? ksys_write+0x77/0x2c0 [ 867.417342][T20959] ksys_write+0x199/0x2c0 [ 867.421500][T20959] ? __ia32_sys_read+0x90/0x90 [ 867.426095][T20959] ? debug_smp_processor_id+0x17/0x20 [ 867.431300][T20959] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 867.437202][T20959] __x64_sys_write+0x7b/0x90 [ 867.441624][T20959] do_syscall_64+0x3d/0xb0 [ 867.445878][T20959] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 867.451519][T20959] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 867.457475][T20959] RIP: 0033:0x7f785e165e99 [ 867.461719][T20959] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 867.481268][T20959] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 867.489504][T20959] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 867.497315][T20959] RDX: 0000000000000005 RSI: 00000000200001c0 RDI: 0000000000000007 [ 867.505124][T20959] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 867.512939][T20959] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 867.520750][T20959] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 867.528569][T20959] [ 868.489327][T20984] bridge0: port 1(bridge_slave_0) entered blocking state [ 868.539821][T20984] bridge0: port 1(bridge_slave_0) entered disabled state [ 868.552568][T20984] device bridge_slave_0 entered promiscuous mode [ 868.568592][T20984] bridge0: port 2(bridge_slave_1) entered blocking state [ 868.581947][T20984] bridge0: port 2(bridge_slave_1) entered disabled state [ 868.590121][T20984] device bridge_slave_1 entered promiscuous mode [ 868.915420][ T10] device veth0 left promiscuous mode [ 868.920658][ T10] bridge0: port 3(veth0) entered disabled state [ 868.937852][ T10] device bridge_slave_1 left promiscuous mode [ 868.945470][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 868.958523][ T10] device bridge_slave_0 left promiscuous mode [ 868.969057][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 868.983891][ T10] device veth1_macvtap left promiscuous mode [ 868.994289][ T10] device veth0_vlan left promiscuous mode [ 869.452780][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 869.462161][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 869.534145][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 869.542773][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 869.550893][ T311] bridge0: port 1(bridge_slave_0) entered blocking state [ 869.557815][ T311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 869.581982][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 869.600394][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 869.609154][ T311] bridge0: port 2(bridge_slave_1) entered blocking state [ 869.616030][ T311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 869.633476][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 869.641396][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 869.725248][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 869.733618][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 869.742269][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 869.749582][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 869.772332][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 869.790577][T20984] device veth0_vlan entered promiscuous mode [ 869.839251][T20984] device veth1_macvtap entered promiscuous mode [ 869.852570][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 869.870800][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 869.879171][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 869.926530][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 869.935049][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 869.953305][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 869.974590][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 870.201869][T21034] bridge0: port 2(bridge_slave_1) entered disabled state [ 870.209195][T21034] bridge0: port 1(bridge_slave_0) entered disabled state [ 870.231451][T21034] device bridge0 left promiscuous mode [ 872.155611][T21105] bridge0: port 3(veth0_to_batadv) entered disabled state [ 872.162752][T21105] bridge0: port 2(bridge_slave_1) entered disabled state [ 872.169570][T21105] bridge0: port 1(bridge_slave_0) entered disabled state [ 872.233595][T21105] device bridge0 left promiscuous mode [ 872.476047][T21110] device syzkaller0 entered promiscuous mode [ 872.738022][T21125] FAULT_INJECTION: forcing a failure. [ 872.738022][T21125] name failslab, interval 1, probability 0, space 0, times 0 [ 872.773498][T21125] CPU: 1 PID: 21125 Comm: syz.4.6853 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 872.784711][T21125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 872.794606][T21125] Call Trace: [ 872.797727][T21125] [ 872.800505][T21125] dump_stack_lvl+0x151/0x1b7 [ 872.805015][T21125] ? io_uring_drop_tctx_refs+0x190/0x190 [ 872.810482][T21125] ? kmem_cache_free+0x116/0x2e0 [ 872.815346][T21125] ? kasan_set_track+0x5d/0x70 [ 872.820032][T21125] ? kasan_set_free_info+0x23/0x40 [ 872.824976][T21125] ? ____kasan_slab_free+0x126/0x160 [ 872.830097][T21125] ? __kasan_slab_free+0x11/0x20 [ 872.834869][T21125] ? kmem_cache_free+0x116/0x2e0 [ 872.839645][T21125] ? putname+0xfa/0x150 [ 872.843640][T21125] dump_stack+0x15/0x17 [ 872.847631][T21125] should_fail+0x3c6/0x510 [ 872.851973][T21125] __should_failslab+0xa4/0xe0 [ 872.856574][T21125] should_failslab+0x9/0x20 [ 872.860919][T21125] slab_pre_alloc_hook+0x37/0xd0 [ 872.865687][T21125] __kmalloc+0x6d/0x270 [ 872.869677][T21125] ? bpf_test_init+0x101/0x1b0 [ 872.874278][T21125] bpf_test_init+0x101/0x1b0 [ 872.878887][T21125] bpf_prog_test_run_skb+0x268/0x1420 [ 872.884097][T21125] ? __kasan_check_write+0x14/0x20 [ 872.889044][T21125] ? proc_fail_nth_write+0x20b/0x290 [ 872.894164][T21125] ? selinux_file_permission+0x2c4/0x570 [ 872.899629][T21125] ? proc_fail_nth_read+0x210/0x210 [ 872.904664][T21125] ? fsnotify_perm+0x6a/0x5d0 [ 872.909190][T21125] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 872.914906][T21125] ? __kasan_check_write+0x14/0x20 [ 872.919854][T21125] ? fput_many+0x160/0x1b0 [ 872.924103][T21125] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 872.929837][T21125] bpf_prog_test_run+0x3b0/0x630 [ 872.934610][T21125] ? bpf_prog_query+0x220/0x220 [ 872.939292][T21125] ? selinux_bpf+0xd2/0x100 [ 872.943633][T21125] ? security_bpf+0x82/0xb0 [ 872.947977][T21125] __sys_bpf+0x525/0x760 [ 872.952057][T21125] ? fput_many+0x160/0x1b0 [ 872.956308][T21125] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 872.961517][T21125] ? debug_smp_processor_id+0x17/0x20 [ 872.966719][T21125] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 872.972628][T21125] __x64_sys_bpf+0x7c/0x90 [ 872.976875][T21125] do_syscall_64+0x3d/0xb0 [ 872.981132][T21125] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 872.986866][T21125] RIP: 0033:0x7f1f629f7e99 [ 872.991111][T21125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 873.011098][T21125] RSP: 002b:00007f1f61c79048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 873.019365][T21125] RAX: ffffffffffffffda RBX: 00007f1f62b87f60 RCX: 00007f1f629f7e99 [ 873.027150][T21125] RDX: 0000000000000050 RSI: 0000000020002300 RDI: 000000000000000a [ 873.034962][T21125] RBP: 00007f1f61c790a0 R08: 0000000000000000 R09: 0000000000000000 [ 873.042861][T21125] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 873.050670][T21125] R13: 000000000000000b R14: 00007f1f62b87f60 R15: 00007ffe39b0ccd8 [ 873.058489][T21125] [ 873.206328][T21134] bridge0: port 2(bridge_slave_1) entered disabled state [ 873.213439][T21134] bridge0: port 1(bridge_slave_0) entered disabled state [ 873.222461][T21133] FAULT_INJECTION: forcing a failure. [ 873.222461][T21133] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 873.312773][T21134] device bridge0 left promiscuous mode [ 873.357254][T21133] CPU: 0 PID: 21133 Comm: syz.2.6857 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 873.368463][T21133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 873.378362][T21133] Call Trace: [ 873.381483][T21133] [ 873.384465][T21133] dump_stack_lvl+0x151/0x1b7 [ 873.388979][T21133] ? io_uring_drop_tctx_refs+0x190/0x190 [ 873.394448][T21133] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 873.400088][T21133] dump_stack+0x15/0x17 [ 873.404076][T21133] should_fail+0x3c6/0x510 [ 873.408333][T21133] should_fail_usercopy+0x1a/0x20 [ 873.413193][T21133] _copy_to_user+0x20/0x90 [ 873.417446][T21133] simple_read_from_buffer+0xc7/0x150 [ 873.422651][T21133] proc_fail_nth_read+0x1a3/0x210 [ 873.427613][T21133] ? proc_fault_inject_write+0x390/0x390 [ 873.433077][T21133] ? fsnotify_perm+0x470/0x5d0 [ 873.437680][T21133] ? security_file_permission+0x86/0xb0 [ 873.443059][T21133] ? proc_fault_inject_write+0x390/0x390 [ 873.448662][T21133] vfs_read+0x27d/0xd40 [ 873.452654][T21133] ? kernel_read+0x1f0/0x1f0 [ 873.457077][T21133] ? __kasan_check_write+0x14/0x20 [ 873.462022][T21133] ? mutex_lock+0xb6/0x1e0 [ 873.466278][T21133] ? wait_for_completion_killable_timeout+0x10/0x10 [ 873.472703][T21133] ? __fdget_pos+0x2e7/0x3a0 [ 873.477127][T21133] ? ksys_read+0x77/0x2c0 [ 873.481296][T21133] ksys_read+0x199/0x2c0 [ 873.485373][T21133] ? vfs_write+0x1110/0x1110 [ 873.489806][T21133] ? debug_smp_processor_id+0x17/0x20 [ 873.495007][T21133] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 873.500908][T21133] __x64_sys_read+0x7b/0x90 [ 873.505248][T21133] do_syscall_64+0x3d/0xb0 [ 873.509501][T21133] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 873.515228][T21133] RIP: 0033:0x7f666409e97c [ 873.519483][T21133] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 c9 8c 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 1f 8d 02 00 48 [ 873.538921][T21133] RSP: 002b:00007f6663321040 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 873.547168][T21133] RAX: ffffffffffffffda RBX: 00007f666422ff60 RCX: 00007f666409e97c [ 873.555067][T21133] RDX: 000000000000000f RSI: 00007f66633210b0 RDI: 0000000000000007 [ 873.562879][T21133] RBP: 00007f66633210a0 R08: 0000000000000000 R09: 0000000000000000 [ 873.570704][T21133] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 873.578702][T21133] R13: 000000000000000b R14: 00007f666422ff60 R15: 00007ffe8ca04bb8 [ 873.586521][T21133] [ 874.908011][T21172] device syzkaller0 entered promiscuous mode [ 875.287981][T21184] bridge0: port 3(ip6gretap0) entered blocking state [ 875.300745][T21184] bridge0: port 3(ip6gretap0) entered disabled state [ 875.333261][T21184] device ip6gretap0 entered promiscuous mode [ 875.363132][T21190] syz.0.6875[21190] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 875.363209][T21190] syz.0.6875[21190] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 875.385140][T21191] syz.0.6875[21191] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 875.404771][T21191] syz.0.6875[21191] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 877.768979][T21238] FAULT_INJECTION: forcing a failure. [ 877.768979][T21238] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 877.800535][T21237] device veth1_macvtap left promiscuous mode [ 877.840934][T21237] device macsec0 entered promiscuous mode [ 877.844084][T21238] CPU: 1 PID: 21238 Comm: syz.1.6885 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 877.857686][T21238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 877.867666][T21238] Call Trace: [ 877.870791][T21238] [ 877.873747][T21238] dump_stack_lvl+0x151/0x1b7 [ 877.878261][T21238] ? io_uring_drop_tctx_refs+0x190/0x190 [ 877.883726][T21238] dump_stack+0x15/0x17 [ 877.887803][T21238] should_fail+0x3c6/0x510 [ 877.892057][T21238] should_fail_usercopy+0x1a/0x20 [ 877.896916][T21238] copy_page_from_iter+0x2eb/0x640 [ 877.901868][T21238] pipe_write+0x92b/0x1930 [ 877.906267][T21238] ? pipe_read+0x1040/0x1040 [ 877.910679][T21238] ? selinux_file_permission+0x450/0x570 [ 877.916150][T21238] ? fsnotify_perm+0x6a/0x5d0 [ 877.920663][T21238] ? iov_iter_init+0x53/0x190 [ 877.925177][T21238] vfs_write+0xd5d/0x1110 [ 877.929339][T21238] ? kmem_cache_free+0x116/0x2e0 [ 877.934116][T21238] ? file_end_write+0x1c0/0x1c0 [ 877.938804][T21238] ? __fdget_pos+0x209/0x3a0 [ 877.943226][T21238] ? ksys_write+0x77/0x2c0 [ 877.947480][T21238] ksys_write+0x199/0x2c0 [ 877.951647][T21238] ? __ia32_sys_read+0x90/0x90 [ 877.956248][T21238] ? debug_smp_processor_id+0x17/0x20 [ 877.961453][T21238] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 877.967360][T21238] __x64_sys_write+0x7b/0x90 [ 877.971869][T21238] do_syscall_64+0x3d/0xb0 [ 877.976124][T21238] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 877.981848][T21238] RIP: 0033:0x7f0bd60b5e99 [ 877.986102][T21238] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 878.005631][T21238] RSP: 002b:00007f0bd5337048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 878.013876][T21238] RAX: ffffffffffffffda RBX: 00007f0bd6245f60 RCX: 00007f0bd60b5e99 [ 878.021685][T21238] RDX: 000000000000ffc0 RSI: 0000000020000000 RDI: 0000000000000000 [ 878.029497][T21238] RBP: 00007f0bd53370a0 R08: 0000000000000000 R09: 0000000000000000 [ 878.037310][T21238] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 878.045124][T21238] R13: 000000000000000b R14: 00007f0bd6245f60 R15: 00007ffce721f3c8 [ 878.052939][T21238] [ 885.184841][T21372] device syzkaller0 entered promiscuous mode [ 886.575427][T21419] FAULT_INJECTION: forcing a failure. [ 886.575427][T21419] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 886.752080][T21419] CPU: 1 PID: 21419 Comm: syz.4.6942 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 886.763290][T21419] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 886.773180][T21419] Call Trace: [ 886.776304][T21419] [ 886.779082][T21419] dump_stack_lvl+0x151/0x1b7 [ 886.783595][T21419] ? io_uring_drop_tctx_refs+0x190/0x190 [ 886.789063][T21419] ? __kasan_check_write+0x14/0x20 [ 886.794011][T21419] ? __alloc_skb+0x355/0x550 [ 886.798438][T21419] dump_stack+0x15/0x17 [ 886.802427][T21419] should_fail+0x3c6/0x510 [ 886.806685][T21419] should_fail_usercopy+0x1a/0x20 [ 886.811563][T21419] _copy_from_iter+0x22f/0xdc0 [ 886.816148][T21419] ? copy_mc_pipe_to_iter+0x760/0x760 [ 886.821353][T21419] ? __check_object_size+0x2ec/0x3d0 [ 886.826470][T21419] skb_copy_datagram_from_iter+0x100/0x6d0 [ 886.832115][T21419] tun_get_user+0x112d/0x3aa0 [ 886.836622][T21419] ? kasan_set_track+0x4b/0x70 [ 886.841225][T21419] ? kasan_set_free_info+0x23/0x40 [ 886.846180][T21419] ? _kstrtoull+0x3a0/0x4a0 [ 886.850516][T21419] ? tun_do_read+0x1ef0/0x1ef0 [ 886.855112][T21419] ? kstrtouint_from_user+0x20a/0x2a0 [ 886.860402][T21419] ? strncpy_from_kernel_nofault+0x169/0x1e0 [ 886.866323][T21419] ? kstrtol_from_user+0x310/0x310 [ 886.871267][T21419] ? bpf_probe_read_compat_str+0x131/0x180 [ 886.876954][T21419] ? avc_policy_seqno+0x1b/0x70 [ 886.881592][T21419] ? selinux_file_permission+0x2c4/0x570 [ 886.887152][T21419] tun_chr_write_iter+0x1e1/0x2e0 [ 886.892013][T21419] vfs_write+0xd5d/0x1110 [ 886.896191][T21419] ? kmem_cache_free+0x2c3/0x2e0 [ 886.900950][T21419] ? file_end_write+0x1c0/0x1c0 [ 886.905644][T21419] ? __fdget_pos+0x209/0x3a0 [ 886.910061][T21419] ? ksys_write+0x77/0x2c0 [ 886.914315][T21419] ksys_write+0x199/0x2c0 [ 886.918480][T21419] ? __ia32_sys_read+0x90/0x90 [ 886.923080][T21419] ? debug_smp_processor_id+0x17/0x20 [ 886.928288][T21419] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 886.934200][T21419] __x64_sys_write+0x7b/0x90 [ 886.938615][T21419] do_syscall_64+0x3d/0xb0 [ 886.942870][T21419] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 886.948786][T21419] RIP: 0033:0x7f1f629f7e99 [ 886.953036][T21419] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 886.972480][T21419] RSP: 002b:00007f1f61c79048 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 886.980724][T21419] RAX: ffffffffffffffda RBX: 00007f1f62b87f60 RCX: 00007f1f629f7e99 [ 886.988532][T21419] RDX: 000000000000fdef RSI: 0000000020000300 RDI: 00000000000000c8 [ 886.996351][T21419] RBP: 00007f1f61c790a0 R08: 0000000000000000 R09: 0000000000000000 [ 887.004159][T21419] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 887.011973][T21419] R13: 000000000000000b R14: 00007f1f62b87f60 R15: 00007ffe39b0ccd8 [ 887.019789][T21419] [ 889.221005][T21484] FAULT_INJECTION: forcing a failure. [ 889.221005][T21484] name failslab, interval 1, probability 0, space 0, times 0 [ 889.282914][T21484] CPU: 0 PID: 21484 Comm: syz.2.6959 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 889.294228][T21484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 889.304115][T21484] Call Trace: [ 889.307319][T21484] [ 889.310094][T21484] dump_stack_lvl+0x151/0x1b7 [ 889.314609][T21484] ? io_uring_drop_tctx_refs+0x190/0x190 [ 889.320078][T21484] ? kmem_cache_free+0x116/0x2e0 [ 889.324850][T21484] dump_stack+0x15/0x17 [ 889.328840][T21484] should_fail+0x3c6/0x510 [ 889.333096][T21484] __should_failslab+0xa4/0xe0 [ 889.337700][T21484] ? dup_task_struct+0x53/0xc60 [ 889.342389][T21484] should_failslab+0x9/0x20 [ 889.346717][T21484] slab_pre_alloc_hook+0x37/0xd0 [ 889.351503][T21484] ? dup_task_struct+0x53/0xc60 [ 889.356305][T21484] kmem_cache_alloc+0x44/0x200 [ 889.360898][T21484] dup_task_struct+0x53/0xc60 [ 889.365411][T21484] ? __kasan_check_write+0x14/0x20 [ 889.370361][T21484] copy_process+0x5c4/0x3290 [ 889.374790][T21484] ? __kasan_check_write+0x14/0x20 [ 889.379730][T21484] ? proc_fail_nth_write+0x20b/0x290 [ 889.384851][T21484] ? selinux_file_permission+0x2c4/0x570 [ 889.390324][T21484] ? fsnotify_perm+0x6a/0x5d0 [ 889.394840][T21484] ? pidfd_show_fdinfo+0x2b0/0x2b0 [ 889.399780][T21484] ? vfs_write+0x9ec/0x1110 [ 889.404122][T21484] ? kmem_cache_free+0x116/0x2e0 [ 889.408896][T21484] kernel_clone+0x21e/0x9e0 [ 889.413233][T21484] ? file_end_write+0x1c0/0x1c0 [ 889.417925][T21484] ? create_io_thread+0x1e0/0x1e0 [ 889.422785][T21484] ? mutex_unlock+0xb2/0x260 [ 889.427207][T21484] ? __mutex_lock_slowpath+0x10/0x10 [ 889.432328][T21484] __x64_sys_clone+0x23f/0x290 [ 889.436931][T21484] ? __do_sys_vfork+0x130/0x130 [ 889.441612][T21484] ? ksys_write+0x260/0x2c0 [ 889.445954][T21484] ? debug_smp_processor_id+0x17/0x20 [ 889.451159][T21484] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 889.457197][T21484] ? exit_to_user_mode_prepare+0x39/0xa0 [ 889.462617][T21484] do_syscall_64+0x3d/0xb0 [ 889.466871][T21484] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 889.472599][T21484] RIP: 0033:0x7f666409fe99 [ 889.476860][T21484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 889.496404][T21484] RSP: 002b:00007f6663320ff8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038 [ 889.504649][T21484] RAX: ffffffffffffffda RBX: 00007f666422ff60 RCX: 00007f666409fe99 [ 889.512635][T21484] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 889.520452][T21484] RBP: 00007f66633210a0 R08: 0000000000000000 R09: 0000000000000000 [ 889.528360][T21484] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 889.536171][T21484] R13: 000000000000000b R14: 00007f666422ff60 R15: 00007ffe8ca04bb8 [ 889.543992][T21484] [ 893.161505][T21529] FAULT_INJECTION: forcing a failure. [ 893.161505][T21529] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 893.192638][T21529] CPU: 1 PID: 21529 Comm: syz.4.6974 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 893.203847][T21529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 893.213741][T21529] Call Trace: [ 893.216865][T21529] [ 893.219654][T21529] dump_stack_lvl+0x151/0x1b7 [ 893.224158][T21529] ? io_uring_drop_tctx_refs+0x190/0x190 [ 893.229636][T21529] dump_stack+0x15/0x17 [ 893.233617][T21529] should_fail+0x3c6/0x510 [ 893.237872][T21529] should_fail_usercopy+0x1a/0x20 [ 893.242735][T21529] _copy_from_user+0x20/0xd0 [ 893.247156][T21529] ___sys_recvmsg+0x150/0x690 [ 893.251678][T21529] ? __sys_recvmsg+0x260/0x260 [ 893.256281][T21529] ? __fdget+0x1bc/0x240 [ 893.260347][T21529] __x64_sys_recvmsg+0x1dc/0x2b0 [ 893.265210][T21529] ? ___sys_recvmsg+0x690/0x690 [ 893.269896][T21529] ? kvm_sched_clock_read+0x18/0x40 [ 893.274932][T21529] ? debug_smp_processor_id+0x17/0x20 [ 893.280142][T21529] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 893.286041][T21529] ? exit_to_user_mode_prepare+0x39/0xa0 [ 893.291514][T21529] do_syscall_64+0x3d/0xb0 [ 893.295758][T21529] ? sysvec_apic_timer_interrupt+0x55/0xc0 [ 893.301406][T21529] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 893.307137][T21529] RIP: 0033:0x7f1f629f7e99 [ 893.311643][T21529] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 893.331087][T21529] RSP: 002b:00007f1f61c79048 EFLAGS: 00000246 ORIG_RAX: 000000000000002f [ 893.339331][T21529] RAX: ffffffffffffffda RBX: 00007f1f62b87f60 RCX: 00007f1f629f7e99 [ 893.347141][T21529] RDX: 0000000000001f00 RSI: 0000000020000500 RDI: 0000000000000006 [ 893.354950][T21529] RBP: 00007f1f61c790a0 R08: 0000000000000000 R09: 0000000000000000 [ 893.362847][T21529] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 893.370663][T21529] R13: 000000000000000b R14: 00007f1f62b87f60 R15: 00007ffe39b0ccd8 [ 893.378482][T21529] [ 894.456724][T21558] device syzkaller0 entered promiscuous mode [ 908.314947][T21938] FAULT_INJECTION: forcing a failure. [ 908.314947][T21938] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 908.361562][T21938] CPU: 1 PID: 21938 Comm: syz.1.7098 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 908.372780][T21938] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 908.382667][T21938] Call Trace: [ 908.385790][T21938] [ 908.388566][T21938] dump_stack_lvl+0x151/0x1b7 [ 908.393335][T21938] ? io_uring_drop_tctx_refs+0x190/0x190 [ 908.398813][T21938] dump_stack+0x15/0x17 [ 908.402794][T21938] should_fail+0x3c6/0x510 [ 908.407052][T21938] should_fail_alloc_page+0x5a/0x80 [ 908.412174][T21938] prepare_alloc_pages+0x15c/0x700 [ 908.417118][T21938] ? __alloc_pages_bulk+0xe40/0xe40 [ 908.422147][T21938] ? __kernel_text_address+0x9b/0x110 [ 908.427368][T21938] __alloc_pages+0x18c/0x8f0 [ 908.431781][T21938] ? prep_new_page+0x110/0x110 [ 908.436390][T21938] ? stack_trace_snprint+0xf0/0xf0 [ 908.441335][T21938] kmalloc_order+0x4a/0x160 [ 908.445672][T21938] kmalloc_order_trace+0x1a/0xb0 [ 908.450540][T21938] __kmalloc+0x19c/0x270 [ 908.454625][T21938] iovec_from_user+0x8a/0x330 [ 908.459130][T21938] ? __copy_msghdr_from_user+0x424/0x7c0 [ 908.464600][T21938] __import_iovec+0x6d/0x420 [ 908.469035][T21938] ? __ia32_sys_shutdown+0x70/0x70 [ 908.473978][T21938] import_iovec+0xe5/0x120 [ 908.478227][T21938] ___sys_sendmsg+0x215/0x2e0 [ 908.482744][T21938] ? __sys_sendmsg+0x260/0x260 [ 908.487357][T21938] ? __fdget+0x1bc/0x240 [ 908.491423][T21938] __se_sys_sendmsg+0x19a/0x260 [ 908.496106][T21938] ? __x64_sys_sendmsg+0x90/0x90 [ 908.500879][T21938] ? ksys_write+0x260/0x2c0 [ 908.505226][T21938] ? debug_smp_processor_id+0x17/0x20 [ 908.510426][T21938] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 908.516326][T21938] __x64_sys_sendmsg+0x7b/0x90 [ 908.520924][T21938] do_syscall_64+0x3d/0xb0 [ 908.525177][T21938] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 908.530904][T21938] RIP: 0033:0x7f0bd60b5e99 [ 908.535159][T21938] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 908.554600][T21938] RSP: 002b:00007f0bd5337048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 908.562866][T21938] RAX: ffffffffffffffda RBX: 00007f0bd6245f60 RCX: 00007f0bd60b5e99 [ 908.570658][T21938] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000007 [ 908.578465][T21938] RBP: 00007f0bd53370a0 R08: 0000000000000000 R09: 0000000000000000 [ 908.586280][T21938] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 908.594090][T21938] R13: 000000000000000b R14: 00007f0bd6245f60 R15: 00007ffce721f3c8 [ 908.601907][T21938] [ 912.192071][T22054] FAULT_INJECTION: forcing a failure. [ 912.192071][T22054] name failslab, interval 1, probability 0, space 0, times 0 [ 912.231833][T22054] CPU: 1 PID: 22054 Comm: syz.0.7134 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 912.243137][T22054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 912.253024][T22054] Call Trace: [ 912.256177][T22054] [ 912.258929][T22054] dump_stack_lvl+0x151/0x1b7 [ 912.263455][T22054] ? io_uring_drop_tctx_refs+0x190/0x190 [ 912.268994][T22054] ? do_syscall_64+0x3d/0xb0 [ 912.273429][T22054] dump_stack+0x15/0x17 [ 912.277411][T22054] should_fail+0x3c6/0x510 [ 912.281666][T22054] __should_failslab+0xa4/0xe0 [ 912.286265][T22054] should_failslab+0x9/0x20 [ 912.290605][T22054] slab_pre_alloc_hook+0x37/0xd0 [ 912.295375][T22054] ? skb_ensure_writable+0x2d0/0x440 [ 912.300498][T22054] __kmalloc_track_caller+0x6c/0x260 [ 912.305828][T22054] ? skb_ensure_writable+0x2d0/0x440 [ 912.310948][T22054] ? skb_ensure_writable+0x2d0/0x440 [ 912.316068][T22054] pskb_expand_head+0x113/0x1240 [ 912.320843][T22054] ? __kasan_check_write+0x14/0x20 [ 912.325793][T22054] skb_ensure_writable+0x2d0/0x440 [ 912.330738][T22054] bpf_clone_redirect+0x117/0x390 [ 912.335600][T22054] bpf_prog_64e505a7b7f97a05+0x55/0x154 [ 912.340989][T22054] ? swiotlb_map+0x270/0x7c0 [ 912.345410][T22054] ? __stack_depot_save+0x34/0x470 [ 912.350352][T22054] ? __kasan_slab_alloc+0xc3/0xe0 [ 912.355303][T22054] ? __kasan_slab_alloc+0xb1/0xe0 [ 912.360271][T22054] ? slab_post_alloc_hook+0x53/0x2c0 [ 912.365397][T22054] ? kmem_cache_alloc+0xf5/0x200 [ 912.370170][T22054] ? __build_skb+0x2a/0x300 [ 912.374504][T22054] ? build_skb+0x25/0x1f0 [ 912.378674][T22054] ? bpf_prog_test_run_skb+0x38e/0x1420 [ 912.384052][T22054] ? bpf_prog_test_run+0x3b0/0x630 [ 912.389098][T22054] ? __sys_bpf+0x525/0x760 [ 912.393267][T22054] ? __x64_sys_bpf+0x7c/0x90 [ 912.397679][T22054] ? do_syscall_64+0x3d/0xb0 [ 912.402106][T22054] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 912.408040][T22054] ? __kasan_check_read+0x11/0x20 [ 912.412870][T22054] ? bpf_test_timer_continue+0x140/0x460 [ 912.418339][T22054] bpf_test_run+0x478/0xa10 [ 912.422778][T22054] ? convert___skb_to_skb+0x570/0x570 [ 912.428093][T22054] ? __build_skb+0x2a/0x300 [ 912.432433][T22054] ? eth_type_trans+0x2c6/0x600 [ 912.437120][T22054] ? eth_get_headlen+0x240/0x240 [ 912.441904][T22054] ? bpf_prog_test_run_skb+0x7bd/0x1420 [ 912.447273][T22054] ? convert___skb_to_skb+0x44/0x570 [ 912.452398][T22054] ? memcpy+0x56/0x70 [ 912.456213][T22054] bpf_prog_test_run_skb+0xb41/0x1420 [ 912.461421][T22054] ? __kasan_check_write+0x14/0x20 [ 912.466378][T22054] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 912.472105][T22054] ? __kasan_check_write+0x14/0x20 [ 912.477050][T22054] ? fput_many+0x160/0x1b0 [ 912.481301][T22054] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 912.487024][T22054] bpf_prog_test_run+0x3b0/0x630 [ 912.491801][T22054] ? bpf_prog_query+0x220/0x220 [ 912.496496][T22054] ? selinux_bpf+0xd2/0x100 [ 912.500826][T22054] ? security_bpf+0x82/0xb0 [ 912.505615][T22054] __sys_bpf+0x525/0x760 [ 912.509856][T22054] ? fput_many+0x160/0x1b0 [ 912.514279][T22054] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 912.519582][T22054] ? debug_smp_processor_id+0x17/0x20 [ 912.524782][T22054] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 912.530721][T22054] __x64_sys_bpf+0x7c/0x90 [ 912.534941][T22054] do_syscall_64+0x3d/0xb0 [ 912.539313][T22054] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 912.545108][T22054] RIP: 0033:0x7f785e165e99 [ 912.549433][T22054] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 912.568896][T22054] RSP: 002b:00007f785d3e7048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 912.577116][T22054] RAX: ffffffffffffffda RBX: 00007f785e2f5f60 RCX: 00007f785e165e99 [ 912.584926][T22054] RDX: 0000000000000028 RSI: 00000000200000c0 RDI: 000000000000000a [ 912.592738][T22054] RBP: 00007f785d3e70a0 R08: 0000000000000000 R09: 0000000000000000 [ 912.600652][T22054] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 912.608548][T22054] R13: 000000000000000b R14: 00007f785e2f5f60 R15: 00007ffc4fedcef8 [ 912.616367][T22054] [ 913.939035][T22082] bridge0: port 1(bridge_slave_0) entered blocking state [ 914.022935][T22082] bridge0: port 1(bridge_slave_0) entered disabled state [ 914.062352][T22082] device bridge_slave_0 entered promiscuous mode [ 914.152739][T22082] bridge0: port 2(bridge_slave_1) entered blocking state [ 914.159716][T22082] bridge0: port 2(bridge_slave_1) entered disabled state [ 914.320221][T22082] device bridge_slave_1 entered promiscuous mode [ 915.000629][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 915.008457][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 915.020429][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 915.028895][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 915.037037][ T311] bridge0: port 1(bridge_slave_0) entered blocking state [ 915.043912][ T311] bridge0: port 1(bridge_slave_0) entered forwarding state [ 915.079089][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 915.087040][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 915.095572][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 915.104268][ T311] bridge0: port 2(bridge_slave_1) entered blocking state [ 915.111125][ T311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 915.129036][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 915.137065][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 915.164273][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 915.173863][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 915.182714][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 915.190139][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 915.199136][T22082] device veth0_vlan entered promiscuous mode [ 915.252784][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 915.265085][T22082] device veth1_macvtap entered promiscuous mode [ 915.423386][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 915.432775][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 915.843500][ T317] device bridge_slave_1 left promiscuous mode [ 915.849502][ T317] bridge0: port 2(bridge_slave_1) entered disabled state [ 915.941349][ T317] device bridge_slave_0 left promiscuous mode [ 915.956067][ T317] bridge0: port 1(bridge_slave_0) entered disabled state [ 915.972624][ T317] device veth1_macvtap left promiscuous mode [ 964.050929][T23275] bridge0: port 1(bridge_slave_0) entered blocking state [ 964.063278][T23275] bridge0: port 1(bridge_slave_0) entered disabled state [ 964.075991][T23275] device bridge_slave_0 entered promiscuous mode [ 964.086057][T23282] FAULT_INJECTION: forcing a failure. [ 964.086057][T23282] name failslab, interval 1, probability 0, space 0, times 0 [ 964.126762][T23282] CPU: 0 PID: 23282 Comm: syz.3.7499 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 964.137970][T23282] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 964.147861][T23282] Call Trace: [ 964.151074][T23282] [ 964.153939][T23282] dump_stack_lvl+0x151/0x1b7 [ 964.158455][T23282] ? io_uring_drop_tctx_refs+0x190/0x190 [ 964.163915][T23282] ? do_syscall_64+0x3d/0xb0 [ 964.168345][T23282] dump_stack+0x15/0x17 [ 964.172333][T23282] should_fail+0x3c6/0x510 [ 964.176594][T23282] __should_failslab+0xa4/0xe0 [ 964.181194][T23282] should_failslab+0x9/0x20 [ 964.185528][T23282] slab_pre_alloc_hook+0x37/0xd0 [ 964.190299][T23282] ? skb_ensure_writable+0x2d0/0x440 [ 964.195426][T23282] __kmalloc_track_caller+0x6c/0x260 [ 964.200541][T23282] ? skb_ensure_writable+0x2d0/0x440 [ 964.205750][T23282] ? skb_ensure_writable+0x2d0/0x440 [ 964.210868][T23282] pskb_expand_head+0x113/0x1240 [ 964.215732][T23282] ? __kasan_check_write+0x14/0x20 [ 964.220676][T23282] skb_ensure_writable+0x2d0/0x440 [ 964.225711][T23282] bpf_clone_redirect+0x117/0x390 [ 964.230575][T23282] bpf_prog_208b094576c80b22+0x56/0x28c [ 964.236123][T23282] ? swiotlb_map+0x270/0x7c0 [ 964.240550][T23282] ? __stack_depot_save+0x34/0x470 [ 964.245499][T23282] ? __kasan_slab_alloc+0xc3/0xe0 [ 964.250356][T23282] ? __kasan_slab_alloc+0xb1/0xe0 [ 964.255217][T23282] ? slab_post_alloc_hook+0x53/0x2c0 [ 964.260338][T23282] ? kmem_cache_alloc+0xf5/0x200 [ 964.265113][T23282] ? __build_skb+0x2a/0x300 [ 964.269450][T23282] ? build_skb+0x25/0x1f0 [ 964.273620][T23282] ? bpf_prog_test_run_skb+0x38e/0x1420 [ 964.278997][T23282] ? bpf_prog_test_run+0x3b0/0x630 [ 964.283945][T23282] ? __sys_bpf+0x525/0x760 [ 964.288200][T23282] ? __x64_sys_bpf+0x7c/0x90 [ 964.292623][T23282] ? do_syscall_64+0x3d/0xb0 [ 964.297051][T23282] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 964.302958][T23282] ? ktime_get+0x12f/0x160 [ 964.307208][T23282] bpf_test_run+0x478/0xa10 [ 964.311550][T23282] ? convert___skb_to_skb+0x570/0x570 [ 964.316760][T23282] ? skb_header_pointer+0x98/0x120 [ 964.321798][T23282] ? eth_type_trans+0x3b4/0x600 [ 964.326475][T23282] ? eth_get_headlen+0x240/0x240 [ 964.331249][T23282] ? convert___skb_to_skb+0x44/0x570 [ 964.336374][T23282] bpf_prog_test_run_skb+0xb41/0x1420 [ 964.341915][T23282] ? __kasan_check_write+0x14/0x20 [ 964.346862][T23282] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 964.352585][T23282] ? __kasan_check_write+0x14/0x20 [ 964.357536][T23282] ? fput_many+0x160/0x1b0 [ 964.361792][T23282] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 964.367515][T23282] bpf_prog_test_run+0x3b0/0x630 [ 964.372298][T23282] ? bpf_prog_query+0x220/0x220 [ 964.376974][T23282] ? selinux_bpf+0xd2/0x100 [ 964.381323][T23282] ? security_bpf+0x82/0xb0 [ 964.385654][T23282] __sys_bpf+0x525/0x760 [ 964.389746][T23282] ? fput_many+0x160/0x1b0 [ 964.393985][T23282] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 964.399202][T23282] ? debug_smp_processor_id+0x17/0x20 [ 964.404520][T23282] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 964.410421][T23282] __x64_sys_bpf+0x7c/0x90 [ 964.414697][T23282] do_syscall_64+0x3d/0xb0 [ 964.418926][T23282] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 964.424656][T23282] RIP: 0033:0x7f65a806ce99 [ 964.428907][T23282] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 964.448350][T23282] RSP: 002b:00007f65a72ee048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 964.456591][T23282] RAX: ffffffffffffffda RBX: 00007f65a81fcf60 RCX: 00007f65a806ce99 [ 964.464404][T23282] RDX: 000000000000001e RSI: 0000000020000080 RDI: 000000000000000a [ 964.472215][T23282] RBP: 00007f65a72ee0a0 R08: 0000000000000000 R09: 0000000000000000 [ 964.480026][T23282] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 964.487836][T23282] R13: 000000000000000b R14: 00007f65a81fcf60 R15: 00007ffc37f8ce48 [ 964.495657][T23282] [ 964.526796][T23275] bridge0: port 2(bridge_slave_1) entered blocking state [ 964.533750][T23275] bridge0: port 2(bridge_slave_1) entered disabled state [ 964.540862][T23275] device bridge_slave_1 entered promiscuous mode [ 964.624464][T23276] bridge0: port 1(bridge_slave_0) entered blocking state [ 964.631461][T23276] bridge0: port 1(bridge_slave_0) entered disabled state [ 964.638782][T23276] device bridge_slave_0 entered promiscuous mode [ 964.658792][T21205] device ip6gretap0 left promiscuous mode [ 964.664497][T21205] bridge0: port 3(ip6gretap0) entered disabled state [ 964.700979][T23276] bridge0: port 2(bridge_slave_1) entered blocking state [ 964.707882][T23276] bridge0: port 2(bridge_slave_1) entered disabled state [ 964.715225][T23276] device bridge_slave_1 entered promiscuous mode [ 965.060049][ T2169] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 965.067376][ T2169] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 965.078240][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 965.086576][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 965.095859][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 965.102748][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 965.110321][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 965.119042][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 965.127484][ T26] bridge0: port 2(bridge_slave_1) entered blocking state [ 965.134368][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state [ 965.209162][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 965.217107][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 965.225282][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 965.233449][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 965.240931][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 965.251514][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 965.260150][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 965.268494][ T984] bridge0: port 1(bridge_slave_0) entered blocking state [ 965.275400][ T984] bridge0: port 1(bridge_slave_0) entered forwarding state [ 965.282920][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 965.291230][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 965.299827][ T984] bridge0: port 2(bridge_slave_1) entered blocking state [ 965.306701][ T984] bridge0: port 2(bridge_slave_1) entered forwarding state [ 965.314410][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 965.322565][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 965.398145][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 965.484981][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 965.596259][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 965.697941][T23275] device veth0_vlan entered promiscuous mode [ 965.715396][T23276] device veth0_vlan entered promiscuous mode [ 965.726217][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 965.737577][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 965.753816][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 965.779252][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 965.787530][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 965.795045][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 965.867774][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 965.894546][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 966.027359][ T2169] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 966.035369][ T2169] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 966.044121][T23276] device veth1_macvtap entered promiscuous mode [ 966.126906][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 966.136792][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 966.146133][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 966.154798][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 966.163175][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 966.173957][T23275] device veth1_macvtap entered promiscuous mode [ 966.206292][T21205] device bridge_slave_1 left promiscuous mode [ 966.229135][T21205] bridge0: port 2(bridge_slave_1) entered disabled state [ 966.271463][T21205] device bridge_slave_0 left promiscuous mode [ 966.288735][T21205] bridge0: port 1(bridge_slave_0) entered disabled state [ 966.306880][T21205] device bridge_slave_1 left promiscuous mode [ 966.313094][T21205] bridge0: port 2(bridge_slave_1) entered disabled state [ 966.320356][T21205] device bridge_slave_0 left promiscuous mode [ 966.327053][T21205] bridge0: port 1(bridge_slave_0) entered disabled state [ 966.336213][T21205] device veth1_macvtap left promiscuous mode [ 966.342353][T21205] device veth0_vlan left promiscuous mode [ 966.348256][T21205] device veth1_macvtap left promiscuous mode [ 966.672624][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 966.680242][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 966.762266][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 966.771658][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 966.780121][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 991.147026][T23718] ªªªªªª: renamed from vlan0 [ 1017.187954][T24199] FAULT_INJECTION: forcing a failure. [ 1017.187954][T24199] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1017.295918][T24199] CPU: 0 PID: 24199 Comm: syz.1.7783 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 1017.307128][T24199] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1017.317025][T24199] Call Trace: [ 1017.320142][T24199] [ 1017.322925][T24199] dump_stack_lvl+0x151/0x1b7 [ 1017.327437][T24199] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1017.332908][T24199] dump_stack+0x15/0x17 [ 1017.336898][T24199] should_fail+0x3c6/0x510 [ 1017.341158][T24199] should_fail_usercopy+0x1a/0x20 [ 1017.346024][T24199] _copy_from_iter+0x22f/0xdc0 [ 1017.350616][T24199] ? copy_mc_pipe_to_iter+0x760/0x760 [ 1017.355820][T24199] ? __check_object_size+0x2ec/0x3d0 [ 1017.360939][T24199] tipc_msg_build+0x96f/0x1230 [ 1017.365538][T24199] ? proc_tid_base_lookup+0x2b/0x30 [ 1017.370584][T24199] ? tipc_msg_fragment+0x760/0x760 [ 1017.375732][T24199] ? tipc_nametbl_lookup_mcast_nodes+0x424/0xa10 [ 1017.381893][T24199] __tipc_sendmsg+0x2203/0x3240 [ 1017.386585][T24199] ? avc_has_perm_noaudit+0x2dd/0x430 [ 1017.391782][T24199] ? local_bh_enable+0x30/0x30 [ 1017.396388][T24199] ? wait_woken+0x170/0x170 [ 1017.400723][T24199] ? avc_has_perm+0x16f/0x260 [ 1017.405238][T24199] ? __kernel_text_address+0x9b/0x110 [ 1017.410445][T24199] ? avc_has_perm_noaudit+0x430/0x430 [ 1017.415655][T24199] ? __kasan_check_write+0x14/0x20 [ 1017.420597][T24199] ? _raw_spin_lock_bh+0xa4/0x1b0 [ 1017.425468][T24199] ? _raw_spin_lock_irq+0x1b0/0x1b0 [ 1017.430502][T24199] ? __local_bh_enable_ip+0x58/0x80 [ 1017.435615][T24199] ? lock_sock_nested+0x266/0x300 [ 1017.440479][T24199] ? sock_init_data+0xc0/0xc0 [ 1017.444987][T24199] ? kmem_cache_free+0x116/0x2e0 [ 1017.449763][T24199] ? kasan_set_track+0x5d/0x70 [ 1017.454451][T24199] ? kasan_set_free_info+0x23/0x40 [ 1017.459397][T24199] ? check_stack_object+0x114/0x130 [ 1017.464496][T24199] tipc_sendmsg+0x55/0x70 [ 1017.468687][T24199] ? tipc_recvmsg+0x13b0/0x13b0 [ 1017.473459][T24199] ____sys_sendmsg+0x59e/0x8f0 [ 1017.478145][T24199] ? __sys_sendmsg_sock+0x40/0x40 [ 1017.483005][T24199] ? import_iovec+0xe5/0x120 [ 1017.487432][T24199] ___sys_sendmsg+0x252/0x2e0 [ 1017.492059][T24199] ? __sys_sendmsg+0x260/0x260 [ 1017.496658][T24199] ? __fdget+0x1bc/0x240 [ 1017.500722][T24199] __se_sys_sendmsg+0x19a/0x260 [ 1017.505412][T24199] ? __x64_sys_sendmsg+0x90/0x90 [ 1017.510180][T24199] ? ksys_write+0x260/0x2c0 [ 1017.514524][T24199] ? debug_smp_processor_id+0x17/0x20 [ 1017.519731][T24199] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1017.525634][T24199] __x64_sys_sendmsg+0x7b/0x90 [ 1017.530233][T24199] do_syscall_64+0x3d/0xb0 [ 1017.534488][T24199] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1017.540211][T24199] RIP: 0033:0x7f27dfd9ee99 [ 1017.544464][T24199] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1017.563905][T24199] RSP: 002b:00007f27df020048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1017.572152][T24199] RAX: ffffffffffffffda RBX: 00007f27dff2ef60 RCX: 00007f27dfd9ee99 [ 1017.579961][T24199] RDX: 0000000000000000 RSI: 0000000020004440 RDI: 0000000000000006 [ 1017.587772][T24199] RBP: 00007f27df0200a0 R08: 0000000000000000 R09: 0000000000000000 [ 1017.595584][T24199] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1017.603395][T24199] R13: 000000000000000b R14: 00007f27dff2ef60 R15: 00007ffe8183f588 [ 1017.611213][T24199] [ 1022.448990][T24285] bridge0: port 1(bridge_slave_0) entered blocking state [ 1022.458196][T24285] bridge0: port 1(bridge_slave_0) entered disabled state [ 1022.513898][T24285] device bridge_slave_0 entered promiscuous mode [ 1022.604960][T24285] bridge0: port 2(bridge_slave_1) entered blocking state [ 1022.621853][T24285] bridge0: port 2(bridge_slave_1) entered disabled state [ 1022.629444][T24285] device bridge_slave_1 entered promiscuous mode [ 1022.992446][ T317] device bridge_slave_1 left promiscuous mode [ 1023.000662][ T317] bridge0: port 2(bridge_slave_1) entered disabled state [ 1023.033227][ T317] device bridge_slave_0 left promiscuous mode [ 1023.045925][ T317] bridge0: port 1(bridge_slave_0) entered disabled state [ 1023.064165][ T317] device veth1_macvtap left promiscuous mode [ 1023.083390][ T317] device veth0_vlan left promiscuous mode [ 1023.796249][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 1023.803839][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 1023.996257][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1024.004610][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1024.013079][T18255] bridge0: port 1(bridge_slave_0) entered blocking state [ 1024.019945][T18255] bridge0: port 1(bridge_slave_0) entered forwarding state [ 1024.027838][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1024.038728][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1024.046802][T18255] bridge0: port 2(bridge_slave_1) entered blocking state [ 1024.053661][T18255] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1024.060823][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1024.069258][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1024.077318][ T1327] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 1024.141864][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1024.150131][T18255] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1024.268814][T24285] device veth0_vlan entered promiscuous mode [ 1024.292512][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1024.300318][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1024.409969][T24285] device veth1_macvtap entered promiscuous mode [ 1024.440130][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1024.487085][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1024.512172][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1024.520260][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1024.528552][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 1024.608812][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1024.661416][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1024.727779][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1024.825217][ T984] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1031.662908][T24498] device pim6reg1 entered promiscuous mode [ 1031.913488][T24507] device pim6reg1 entered promiscuous mode [ 1032.217753][T24518] syz.1.7880[24518] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1032.217838][T24518] syz.1.7880[24518] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1032.513846][T24517] device pim6reg1 entered promiscuous mode [ 1034.065224][T24559] syz.4.7894[24559] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1034.065301][T24559] syz.4.7894[24559] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 1034.082912][T24559] device pim6reg1 entered promiscuous mode [ 1034.725215][T24580] FAULT_INJECTION: forcing a failure. [ 1034.725215][T24580] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1034.739075][T24580] CPU: 1 PID: 24580 Comm: syz.1.7897 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 1034.750293][T24580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1034.760277][T24580] Call Trace: [ 1034.763382][T24580] [ 1034.766157][T24580] dump_stack_lvl+0x151/0x1b7 [ 1034.770669][T24580] ? io_uring_drop_tctx_refs+0x190/0x190 [ 1034.776138][T24580] ? bpf_test_run+0x8de/0xa10 [ 1034.780655][T24580] dump_stack+0x15/0x17 [ 1034.784646][T24580] should_fail+0x3c6/0x510 [ 1034.788897][T24580] should_fail_usercopy+0x1a/0x20 [ 1034.793758][T24580] _copy_to_user+0x20/0x90 [ 1034.798010][T24580] bpf_test_finish+0x297/0x5a0 [ 1034.802696][T24580] ? convert_skb_to___skb+0x360/0x360 [ 1034.807905][T24580] ? convert_skb_to___skb+0x208/0x360 [ 1034.813110][T24580] bpf_prog_test_run_skb+0xd4d/0x1420 [ 1034.818317][T24580] ? __kasan_check_write+0x14/0x20 [ 1034.823269][T24580] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 1034.828996][T24580] ? __kasan_check_write+0x14/0x20 [ 1034.833952][T24580] ? fput_many+0x160/0x1b0 [ 1034.838192][T24580] ? __bpf_prog_test_run_raw_tp+0x1d0/0x1d0 [ 1034.843930][T24580] bpf_prog_test_run+0x3b0/0x630 [ 1034.848782][T24580] ? bpf_prog_query+0x220/0x220 [ 1034.853468][T24580] ? selinux_bpf+0xd2/0x100 [ 1034.857807][T24580] ? security_bpf+0x82/0xb0 [ 1034.862148][T24580] __sys_bpf+0x525/0x760 [ 1034.866229][T24580] ? fput_many+0x160/0x1b0 [ 1034.870495][T24580] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1034.875690][T24580] ? debug_smp_processor_id+0x17/0x20 [ 1034.880926][T24580] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 1034.886798][T24580] __x64_sys_bpf+0x7c/0x90 [ 1034.891050][T24580] do_syscall_64+0x3d/0xb0 [ 1034.895305][T24580] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1034.901030][T24580] RIP: 0033:0x7f27dfd9ee99 [ 1034.905286][T24580] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1034.924944][T24580] RSP: 002b:00007f27df020048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1034.933346][T24580] RAX: ffffffffffffffda RBX: 00007f27dff2ef60 RCX: 00007f27dfd9ee99 [ 1034.941155][T24580] RDX: 0000000000000050 RSI: 0000000020000900 RDI: 000000000000000a [ 1034.948967][T24580] RBP: 00007f27df0200a0 R08: 0000000000000000 R09: 0000000000000000 [ 1034.956954][T24580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002 [ 1034.964761][T24580] R13: 000000000000000b R14: 00007f27dff2ef60 R15: 00007ffe8183f588 [ 1034.972580][T24580] [ 1038.787123][T24635] device syzkaller0 entered promiscuous mode [ 1038.875987][T24643] device pim6reg1 entered promiscuous mode [ 1039.169486][T24666] device syzkaller0 entered promiscuous mode [ 1039.190175][T24661] device sit0 entered promiscuous mode [ 1039.531412][T24677] device syzkaller0 entered promiscuous mode [ 1040.162808][T24725] device syzkaller0 entered promiscuous mode [ 1040.530636][T24741] device pim6reg1 entered promiscuous mode [ 1040.691960][T24760] device syzkaller0 entered promiscuous mode [ 1040.755762][T24766] device sit0 left promiscuous mode [ 1040.928904][T24766] device sit0 entered promiscuous mode [ 1040.971211][T24775] BUG: unable to handle page fault for address: ffffffffff600000 [ 1040.978766][T24775] #PF: supervisor read access in kernel mode [ 1040.984585][T24775] #PF: error_code(0x0001) - permissions violation [ 1040.990826][T24775] PGD 6812067 P4D 6812067 PUD 6814067 PMD 6816067 PTE 8000000006809165 [ 1040.998899][T24775] Oops: 0001 [#1] PREEMPT SMP KASAN [ 1041.003934][T24775] CPU: 1 PID: 24775 Comm: syz.2.7982 Tainted: G W 5.15.151-syzkaller-00059-g5356d2f17edf #0 [ 1041.015212][T24775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 1041.025112][T24775] RIP: 0010:copy_from_kernel_nofault+0x86/0x2e0 [ 1041.031273][T24775] Code: 48 89 55 d0 0f 85 ea 01 00 00 ff 02 bf 07 00 00 00 4c 89 ee e8 8b 92 d6 ff 49 83 fd 07 76 5c 4d 89 fe 49 83 c5 f8 49 83 c7 08 <49> 8b 1c 24 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 [ 1041.050715][T24775] RSP: 0018:ffffc90000bafb10 EFLAGS: 00010292 [ 1041.056697][T24775] RAX: 0000000000000002 RBX: 00007ffffffff000 RCX: ffff88813d6e4f00 [ 1041.064516][T24775] RDX: ffff88813d6e5a90 RSI: 0000000000000008 RDI: 0000000000000007 [ 1041.072410][T24775] RBP: ffffc90000bafb48 R08: ffffffff8199b285 R09: ffffed1027adc9e1 [ 1041.080224][T24775] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffffff600000 [ 1041.088033][T24775] R13: 0000000000000000 R14: ffffc90000bafba8 R15: ffffc90000bafbb0 [ 1041.095843][T24775] FS: 00007f66633216c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 1041.104614][T24775] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1041.111030][T24775] CR2: ffffffffff600000 CR3: 0000000120ce6000 CR4: 00000000003506a0 [ 1041.118849][T24775] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1041.126659][T24775] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 [ 1041.134465][T24775] Call Trace: [ 1041.137590][T24775] [ 1041.140663][T24775] ? __die_body+0x62/0xb0 [ 1041.144926][T24775] ? __die+0x7e/0x90 [ 1041.148758][T24775] ? page_fault_oops+0x7f9/0xa90 [ 1041.153514][T24775] ? kernelmode_fixup_or_oops+0x270/0x270 [ 1041.159065][T24775] ? security_file_alloc+0x29/0x120 [ 1041.164107][T24775] ? exc_page_fault+0x521/0x830 [ 1041.168782][T24775] ? errseq_sample+0x44/0x70 [ 1041.173218][T24775] ? asm_exc_page_fault+0x27/0x30 [ 1041.178075][T24775] ? copy_from_kernel_nofault+0x75/0x2e0 [ 1041.183541][T24775] ? copy_from_kernel_nofault+0x86/0x2e0 [ 1041.189013][T24775] bpf_probe_read_compat+0x112/0x180 [ 1041.194341][T24775] bpf_prog_baa065642a502c00+0x64/0x584 [ 1041.199824][T24775] __bpf_prog_test_run_raw_tp+0x126/0x1d0 [ 1041.205374][T24775] bpf_prog_test_run_raw_tp+0x4cd/0x6c0 [ 1041.210758][T24775] ? bpf_prog_test_run_tracing+0x710/0x710 [ 1041.216406][T24775] ? __kasan_check_write+0x14/0x20 [ 1041.221348][T24775] ? fput_many+0x160/0x1b0 [ 1041.225603][T24775] ? bpf_prog_test_run_tracing+0x710/0x710 [ 1041.231242][T24775] bpf_prog_test_run+0x3b0/0x630 [ 1041.236027][T24775] ? bpf_prog_query+0x220/0x220 [ 1041.241135][T24775] ? selinux_bpf+0xd2/0x100 [ 1041.245476][T24775] ? security_bpf+0x82/0xb0 [ 1041.249818][T24775] __sys_bpf+0x525/0x760 [ 1041.253896][T24775] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 1041.259109][T24775] ? __kasan_check_read+0x11/0x20 [ 1041.263960][T24775] __x64_sys_bpf+0x7c/0x90 [ 1041.268215][T24775] do_syscall_64+0x3d/0xb0 [ 1041.272467][T24775] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 1041.278194][T24775] RIP: 0033:0x7f666409fe99 [ 1041.282450][T24775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1041.301891][T24775] RSP: 002b:00007f6663321048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 1041.310221][T24775] RAX: ffffffffffffffda RBX: 00007f666422ff60 RCX: 00007f666409fe99 [ 1041.318029][T24775] RDX: 0000000000000050 RSI: 0000000020000680 RDI: 000000000000000a [ 1041.325933][T24775] RBP: 00007f666410ee5d R08: 0000000000000000 R09: 0000000000000000 [ 1041.333746][T24775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1041.341710][T24775] R13: 000000000000000b R14: 00007f666422ff60 R15: 00007ffe8ca04bb8 [ 1041.349526][T24775] [ 1041.352381][T24775] Modules linked in: [ 1041.356131][T24775] CR2: ffffffffff600000 [ 1041.360140][T24775] ---[ end trace 98973f77071a15ae ]--- [ 1041.365410][T24775] RIP: 0010:copy_from_kernel_nofault+0x86/0x2e0 [ 1041.371477][T24775] Code: 48 89 55 d0 0f 85 ea 01 00 00 ff 02 bf 07 00 00 00 4c 89 ee e8 8b 92 d6 ff 49 83 fd 07 76 5c 4d 89 fe 49 83 c5 f8 49 83 c7 08 <49> 8b 1c 24 4c 89 f0 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 80 [ 1041.390922][T24775] RSP: 0018:ffffc90000bafb10 EFLAGS: 00010292 [ 1041.396819][T24775] RAX: 0000000000000002 RBX: 00007ffffffff000 RCX: ffff88813d6e4f00 [ 1041.404644][T24775] RDX: ffff88813d6e5a90 RSI: 0000000000000008 RDI: 0000000000000007 [ 1041.412443][T24775] RBP: ffffc90000bafb48 R08: ffffffff8199b285 R09: ffffed1027adc9e1 [ 1041.420255][T24775] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffffff600000 [ 1041.428068][T24775] R13: 0000000000000000 R14: ffffc90000bafba8 R15: ffffc90000bafbb0 [ 1041.435884][T24775] FS: 00007f66633216c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 1041.444733][T24775] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1041.451250][T24775] CR2: ffffffffff600000 CR3: 0000000120ce6000 CR4: 00000000003506a0 [ 1041.459055][T24775] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 1041.466950][T24775] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000600 [ 1041.474775][T24775] Kernel panic - not syncing: Fatal exception [ 1041.480933][T24775] Kernel Offset: disabled [ 1041.485068][T24775] Rebooting in 86400 seconds..