2019/04/08 12:14:03 fuzzer started 2019/04/08 12:14:04 dialing manager at 127.0.0.1:42287 2019/04/08 12:14:04 syscalls: 212 2019/04/08 12:14:04 code coverage: support is not implemented in syzkaller 2019/04/08 12:14:04 comparison tracing: support is not implemented in syzkaller 2019/04/08 12:14:04 extra coverage: support is not implemented in syzkaller 2019/04/08 12:14:04 setuid sandbox: support is not implemented in syzkaller 2019/04/08 12:14:04 namespace sandbox: support is not implemented in syzkaller 2019/04/08 12:14:04 Android sandbox: support is not implemented in syzkaller 2019/04/08 12:14:04 fault injection: support is not implemented in syzkaller 2019/04/08 12:14:04 leak checking: support is not implemented in syzkaller 2019/04/08 12:14:04 net packet injection: support is not implemented in syzkaller 2019/04/08 12:14:04 net device setup: support is not implemented in syzkaller 12:14:04 executing program 0: r0 = openat$dev_kmesg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/kmesg\x00', 0xb, 0x1, 0x0) fcntl$F_GETFD(r0, 0x1) mmap(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x4, 0x10012, r0, 0x9) openat$net_ipselftab(0xffffffffffffff9c, &(0x7f0000000040)='/net/ipselftab\x00', 0xf, 0x1, 0x0) close(r0) r1 = openat$net_udp_clone(0xffffffffffffff9c, &(0x7f0000000080)='/net/udp/clone\x00', 0xf, 0x3, 0x0) r2 = openat$proc_self_args(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/args\x00', 0x10, 0x3, 0x0) openat$net_icmp_clone(0xffffffffffffff9c, &(0x7f0000000100)='/net/icmp/clone\x00', 0x10, 0x3, 0x0) openat$net_tcp_2_ctl(0xffffffffffffff9c, &(0x7f0000000140)='/net/tcp/2/ctl\x00', 0xf, 0x3, 0x0) openat$net_empty(0xffffffffffffff9c, &(0x7f0000000180)='/net/.empty\x00', 0xc, 0x3, 0x0) fd2path(r2, &(0x7f00000001c0)=""/4096, 0x1000) openat$dev_pid(0xffffffffffffff9c, &(0x7f00000011c0)='/dev/pid\x00', 0x9, 0x1, 0x0) openat$proc_self_core(0xffffffffffffff9c, &(0x7f0000001200)='/proc/self/core\x00', 0x10, 0x1, 0x0) r3 = openat$net_udp_stats(0xffffffffffffff9c, &(0x7f0000001240)='/net/udp/stats\x00', 0xf, 0x1, 0x0) openat$net_tcp_2_err(0xffffffffffffff9c, &(0x7f0000001280)='/net/tcp/2/err\x00', 0xf, 0x3, 0x0) nmount(r3, &(0x7f00000012c0)='./file0\x00', 0x8, 0x2) openat$net_iproute(0xffffffffffffff9c, &(0x7f0000001300)='/net/iproute\x00', 0xd, 0x3, 0x0) openat$net_ether0_clone(0xffffffffffffff9c, &(0x7f0000001340)='/net/ether0/clone\x00', 0x12, 0x3, 0x0) nmount(r1, &(0x7f0000001380)='./file0\x00', 0x8, 0x15) openat$prof_kpctl(0xffffffffffffff9c, &(0x7f00000013c0)='/prof/kpctl\x00', 0xc, 0x3, 0x0) openat$dev_killkid(0xffffffffffffff9c, &(0x7f0000001400)='/dev/killkid\x00', 0xd, 0x3, 0x0) r4 = openat$net_tcp_2_listen(0xffffffffffffff9c, &(0x7f0000001440)='/net/tcp/2/listen\x00', 0x12, 0x3, 0x0) openat$dev_hostdomain(0xffffffffffffff9c, &(0x7f0000001480)='/dev/hostdomain\x00', 0x10, 0x3, 0x0) openat$net_ipifc_1_snoop(0xffffffffffffff9c, &(0x7f00000014c0)='/net/ipifc/1/snoop\x00', 0x13, 0x1, 0x0) openat$dev_sdctl(0xffffffffffffff9c, &(0x7f0000001500)='/dev/sdctl\x00', 0xb, 0x3, 0x0) openat$net_ether0_clone(0xffffffffffffff9c, &(0x7f0000001540)='/net/ether0/clone\x00', 0x12, 0x3, 0x0) openat$net_ipifc_0_local(0xffffffffffffff9c, &(0x7f0000001580)='/net/ipifc/0/local\x00', 0x13, 0x1, 0x0) openat$proc_self_wait(0xffffffffffffff9c, &(0x7f00000015c0)='/proc/self/wait\x00', 0x10, 0x1, 0x0) openat$dev_hostdomain(0xffffffffffffff9c, &(0x7f0000001600)='/dev/hostdomain\x00', 0x10, 0x3, 0x0) fwstat(r4, &(0x7f0000001640)=""/231, 0xe7, 0x0) 12:14:04 executing program 1: vmm_ctl$VMM_CTL_GET_EXITS(0x1) r0 = openat$proc_self_user(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/user\x00', 0x10, 0x1, 0x0) r1 = openat$dev_zero(0xffffffffffffff9c, &(0x7f0000000040)='/dev/zero\x00', 0xa, 0x1, 0x0) fcntl$F_DUPFD(r0, 0x0, r1, 0x1) r2 = openat$net_ether0_1_stats(0xffffffffffffff9c, &(0x7f0000000080)='/net/ether0/1/stats\x00', 0x14, 0x1, 0x0) openat$net_udp_0_remote(0xffffffffffffff9c, &(0x7f00000000c0)='/net/udp/0/remote\x00', 0x12, 0x1, 0x0) openat$proc_self_status(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/status\x00', 0x12, 0x1, 0x0) openat$dev_user(0xffffffffffffff9c, &(0x7f0000000140)='/dev/user\x00', 0xa, 0x3, 0x0) openat$dev_sysstat(0xffffffffffffff9c, &(0x7f0000000180)='/dev/sysstat\x00', 0xd, 0x3, 0x0) openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x8, 0xa0000, 0x7) fcntl$F_GETFD(r2, 0x1) openat$prof_kpdata(0xffffffffffffff9c, &(0x7f0000000200)='/prof/kpdata\x00', 0xd, 0x3, 0x0) openat$net_ipifc_0_err(0xffffffffffffff9c, &(0x7f0000000240)='/net/ipifc/0/err\x00', 0x11, 0x3, 0x0) openat$dev_pid(0xffffffffffffff9c, &(0x7f0000000280)='/dev/pid\x00', 0x9, 0x1, 0x0) pop_ctx(&(0x7f00000002c0)="640fbc3b16fbd0d687f08aa6f6d64c70e7fc8332fae476f97dafd85f9ec45c8c4aa1a87f5d87693dde06c9ab22fdaed60ab0ec449bf3804328e0a38777217a88969130d95d2d7b952570669b7ef4dd06427b77f3021be1cd3d143d9cc3e62404860620660119d06f54bfeafe0e95ff77cecd502319b02ac2ecaf4de785167b2e5819081994e6583c652cf8518e1c2eaa15dcce883a375ba014d895e21ba7d5d45dbb1175c1031a02d185a491b83f58c4cabdf2a4825bd0135d75637c6fa18683e4e6dda28e066b12bc807804c2d217a40149cb418cc2d17c") openat$net_udp_0_err(0xffffffffffffff9c, &(0x7f00000003c0)='/net/udp/0/err\x00', 0xf, 0x3, 0x0) r3 = openat$net_tcp_0_local(0xffffffffffffff9c, &(0x7f0000000400)='/net/tcp/0/local\x00', 0x11, 0x1, 0x0) openat$proc_self_segment(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/segment\x00', 0x13, 0x1, 0x0) symlink(&(0x7f0000000480)='./file0\x00', 0x8, &(0x7f00000004c0)='./file0\x00', 0x8) fd2path(r3, &(0x7f0000000500)=""/42, 0x2a) r4 = openat$net_udp_0_listen(0xffffffffffffff9c, &(0x7f0000000540)='/net/udp/0/listen\x00', 0x12, 0x3, 0x0) openat$prof_kpdata(0xffffffffffffff9c, &(0x7f0000000580)='/prof/kpdata\x00', 0xd, 0x3, 0x0) openat$prof_mpstat(0xffffffffffffff9c, &(0x7f00000005c0)='/prof/mpstat\x00', 0xd, 0x3, 0x0) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x0, 0x10, 0xffffffffffffff9c, 0x800) openat$proc_self_notepg(0xffffffffffffff9c, &(0x7f0000000600)='/proc/self/notepg\x00', 0x12, 0x1, 0x0) openat$proc_self_fd(0xffffffffffffff9c, &(0x7f0000000640)='/proc/self/fd\x00', 0xe, 0x1, 0x0) read(r4, &(0x7f0000000680)=""/121, 0x79) openat$net_ether0_clone(0xffffffffffffff9c, &(0x7f0000000700)='/net/ether0/clone\x00', 0x12, 0x3, 0x0) openat$net_tcp_2_listen(0xffffffffffffff9c, &(0x7f0000000740)='/net/tcp/2/listen\x00', 0x12, 0x3, 0x0) openat$net_log(0xffffffffffffff9c, &(0x7f0000000780)='/net/log\x00', 0x9, 0x3, 0x0) 12:14:04 executing program 2: r0 = openat$prof_kptrace_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/prof/kptrace_ctl\x00', 0x12, 0x3, 0x0) llseek(r0, 0x3, 0xff, &(0x7f0000000040), 0x2) openat$dev_bintime(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bintime\x00', 0xd, 0x3, 0x0) openat$net_ipifc_1_status(0xffffffffffffff9c, &(0x7f00000000c0)='/net/ipifc/1/status\x00', 0x14, 0x1, 0x0) r1 = openat$dev_sysname(0xffffffffffffff9c, &(0x7f0000000100)='/dev/sysname\x00', 0xd, 0x3, 0x0) fcntl$F_SYNC(r0, 0x65) openat$dev_klog(0xffffffffffffff9c, &(0x7f0000000140)='/dev/klog\x00', 0xa, 0x1, 0x0) r2 = openat$net_udp_0_status(0xffffffffffffff9c, &(0x7f0000000180)='/net/udp/0/status\x00', 0x12, 0x1, 0x0) openat$dev_sdctl(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/sdctl\x00', 0xb, 0x3, 0x0) openat$proc_self_segment(0xffffffffffffff9c, &(0x7f0000000200)='/proc/self/segment\x00', 0x13, 0x1, 0x0) openat$net_ipifc_1_status(0xffffffffffffff9c, &(0x7f0000000240)='/net/ipifc/1/status\x00', 0x14, 0x1, 0x0) openat$proc_self_strace(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/strace\x00', 0x12, 0x1, 0x0) openat$net_ipifc_0_ctl(0xffffffffffffff9c, &(0x7f00000002c0)='/net/ipifc/0/ctl\x00', 0x11, 0x3, 0x0) fcntl$F_SYNC(r1, 0x65) openat$prof_kpctl(0xffffffffffffff9c, &(0x7f0000000300)='/prof/kpctl\x00', 0xc, 0x3, 0x0) tcgetattr(r2, &(0x7f0000000340)) openat$net_tcp_2_data(0xffffffffffffff9c, &(0x7f0000000380)='/net/tcp/2/data\x00', 0x10, 0x3, 0x0) r3 = openat$net_ether0_addr(0xffffffffffffff9c, &(0x7f00000003c0)='/net/ether0/addr\x00', 0x11, 0x3, 0x0) openat$dev_ppid(0xffffffffffffff9c, &(0x7f0000000400)='/dev/ppid\x00', 0xa, 0x1, 0x0) fork() openat$net_ipifc_clone(0xffffffffffffff9c, &(0x7f0000000440)='/net/ipifc/clone\x00', 0x11, 0x3, 0x0) openat$net_tcp_2_ctl(0xffffffffffffff9c, &(0x7f0000000480)='/net/tcp/2/ctl\x00', 0xf, 0x3, 0x0) openat$net_iproute(0xffffffffffffff9c, &(0x7f00000004c0)='/net/iproute\x00', 0xd, 0x3, 0x0) openat$proc_self_syscall(0xffffffffffffff9c, &(0x7f0000000500)='/proc/self/syscall\x00', 0x13, 0x1, 0x0) openat$net_ipifc_clone(0xffffffffffffff9c, &(0x7f0000000540)='/net/ipifc/clone\x00', 0x11, 0x3, 0x0) r4 = proc_create(&(0x7f0000000580)='./file0\x00', 0x8, &(0x7f00000005c0)='@.(\x00', 0x4, 0x0) fchdir(r4, r3) fwstat(r3, &(0x7f0000000600)=""/165, 0xa5, 0x0) openat$net_ipifc_1_status(0xffffffffffffff9c, &(0x7f00000006c0)='/net/ipifc/1/status\x00', 0x14, 0x1, 0x0) rmdir(&(0x7f0000000700)='./file0\x00', 0x8) 12:14:04 executing program 3: openat$proc_self_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/ctl\x00', 0xf, 0x3, 0x0) openat$net_ether0_addr(0xffffffffffffff9c, &(0x7f0000000040)='/net/ether0/addr\x00', 0x11, 0x3, 0x0) openat$net_tcp_2_local(0xffffffffffffff9c, &(0x7f0000000080)='/net/tcp/2/local\x00', 0x11, 0x1, 0x0) openat$dev_capuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/capuse\x00', 0xc, 0x3, 0x0) openat$dev_caphash(0xffffffffffffff9c, &(0x7f0000000100)='/dev/caphash\x00', 0xd, 0x3, 0x0) r0 = openat$proc_self_strace(0xffffffffffffff9c, &(0x7f0000000140)='/proc/self/strace\x00', 0x12, 0x1, 0x0) openat$net_ipifc_1_err(0xffffffffffffff9c, &(0x7f0000000180)='/net/ipifc/1/err\x00', 0x11, 0x3, 0x0) r1 = openat$dev_hostdomain(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hostdomain\x00', 0x10, 0x3, 0x0) openat$net_tcp_stats(0xffffffffffffff9c, &(0x7f0000000200)='/net/tcp/stats\x00', 0xf, 0x1, 0x0) openat$dev_ppid(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ppid\x00', 0xa, 0x1, 0x0) vmm_ctl$VMM_CTL_GET_FLAGS(0x3) openat$net_ether0_ifstats(0xffffffffffffff9c, &(0x7f0000000280)='/net/ether0/ifstats\x00', 0x14, 0x1, 0x0) fcntl$F_SETFD(r0, 0x2, 0x1) openat$net_ether0_0_stats(0xffffffffffffff9c, &(0x7f00000002c0)='/net/ether0/0/stats\x00', 0x14, 0x1, 0x0) r2 = openat$net_tcp_0_ctl(0xffffffffffffff9c, &(0x7f0000000300)='/net/tcp/0/ctl\x00', 0xf, 0x3, 0x0) r3 = openat$net_ether0_2_ifstats(0xffffffffffffff9c, &(0x7f0000000340)='/net/ether0/2/ifstats\x00', 0x16, 0x1, 0x0) fcntl$F_GETFD(r2, 0x1) openat$prof_mpstat_raw(0xffffffffffffff9c, &(0x7f0000000380)='/prof/mpstat-raw\x00', 0x11, 0x3, 0x0) openat$net_icmp_stats(0xffffffffffffff9c, &(0x7f00000003c0)='/net/icmp/stats\x00', 0x10, 0x1, 0x0) vmm_ctl$VMM_CTL_GET_FLAGS(0x3) r4 = openat$proc_self_profile(0xffffffffffffff9c, &(0x7f0000000400)='/proc/self/profile\x00', 0x13, 0x1, 0x0) openat$proc_self_segment(0xffffffffffffff9c, &(0x7f0000000440)='/proc/self/segment\x00', 0x13, 0x1, 0x0) openat$prof_kprintx(0xffffffffffffff9c, &(0x7f0000000480)='/prof/kprintx\x00', 0xe, 0x3, 0x0) fchdir(0xffffffffffffffff, r1) openat$net_ipifc_1_local(0xffffffffffffff9c, &(0x7f00000004c0)='/net/ipifc/1/local\x00', 0x13, 0x1, 0x0) openat$prof_kpdata(0xffffffffffffff9c, &(0x7f0000000500)='/prof/kpdata\x00', 0xd, 0x3, 0x0) abort_sysc(0x1) openat$prof_mpstat_raw(0xffffffffffffff9c, &(0x7f0000000540)='/prof/mpstat-raw\x00', 0x11, 0x3, 0x0) fcntl$F_GETFD(r3, 0x1) read(r4, &(0x7f0000000580)=""/182, 0xb6) 12:14:04 executing program 4: r0 = openat$net_ipifc_0_local(0xffffffffffffff9c, &(0x7f0000000000)='/net/ipifc/0/local\x00', 0x13, 0x1, 0x0) fcntl$F_SYNC(r0, 0x65) openat$net_tcp_1_remote(0xffffffffffffff9c, &(0x7f0000000040)='/net/tcp/1/remote\x00', 0x12, 0x1, 0x0) read(r0, &(0x7f0000000080)=""/4096, 0x1000) r1 = openat$net_icmpv6_clone(0xffffffffffffff9c, &(0x7f0000001080)='/net/icmpv6/clone\x00', 0x12, 0x3, 0x0) openat$net_tcp_0_status(0xffffffffffffff9c, &(0x7f00000010c0)='/net/tcp/0/status\x00', 0x12, 0x1, 0x0) openat$dev_empty(0xffffffffffffff9c, &(0x7f0000001100)='/dev/.empty\x00', 0xc, 0x3, 0x0) openat$net_ether0_2_stats(0xffffffffffffff9c, &(0x7f0000001140)='/net/ether0/2/stats\x00', 0x14, 0x1, 0x0) openat$proc_self_strace_traceset(0xffffffffffffff9c, &(0x7f0000001180)='/proc/self/strace_traceset\x00', 0x1b, 0x3, 0x0) r2 = openat$prof_kpdata(0xffffffffffffff9c, &(0x7f00000011c0)='/prof/kpdata\x00', 0xd, 0x3, 0x0) openat$proc_self_vmstatus(0xffffffffffffff9c, &(0x7f0000001200)='/proc/self/vmstatus\x00', 0x14, 0x1, 0x0) openat$net_ether0_clone(0xffffffffffffff9c, &(0x7f0000001240)='/net/ether0/clone\x00', 0x12, 0x3, 0x0) fd2path(r1, &(0x7f0000001280)=""/106, 0x6a) fd2path(r2, &(0x7f0000001300)=""/249, 0xf9) r3 = openat$dev_osversion(0xffffffffffffff9c, &(0x7f0000001400)='/dev/osversion\x00', 0xf, 0x1, 0x0) openat$net_iprouter(0xffffffffffffff9c, &(0x7f0000001440)='/net/iprouter\x00', 0xe, 0x3, 0x0) openat$net_ipifc_1_listen(0xffffffffffffff9c, &(0x7f0000001480)='/net/ipifc/1/listen\x00', 0x14, 0x3, 0x0) openat$net_tcp_2_remote(0xffffffffffffff9c, &(0x7f00000014c0)='/net/tcp/2/remote\x00', 0x12, 0x1, 0x0) openat$net_ether0_1_type(0xffffffffffffff9c, &(0x7f0000001500)='/net/ether0/1/type\x00', 0x13, 0x1, 0x0) openat$prof_mpstat(0xffffffffffffff9c, &(0x7f0000001540)='/prof/mpstat\x00', 0xd, 0x3, 0x0) openat$proc_self_vmstatus(0xffffffffffffff9c, &(0x7f0000001580)='/proc/self/vmstatus\x00', 0x14, 0x1, 0x0) openat$net_tcp_1_err(0xffffffffffffff9c, &(0x7f00000015c0)='/net/tcp/1/err\x00', 0xf, 0x3, 0x0) openat$net_ipifc_0_data(0xffffffffffffff9c, &(0x7f0000001600)='/net/ipifc/0/data\x00', 0x12, 0x3, 0x0) openat$net_tcp_clone(0xffffffffffffff9c, &(0x7f0000001640)='/net/tcp/clone\x00', 0xf, 0x3, 0x0) openat$net_udp_0_err(0xffffffffffffff9c, &(0x7f0000001680)='/net/udp/0/err\x00', 0xf, 0x3, 0x0) openat$net_tcp_0_local(0xffffffffffffff9c, &(0x7f00000016c0)='/net/tcp/0/local\x00', 0x11, 0x1, 0x0) openat$proc_self_syscall(0xffffffffffffff9c, &(0x7f0000001700)='/proc/self/syscall\x00', 0x13, 0x1, 0x0) fchdir(0x0, r3) openat$net_icmp_stats(0xffffffffffffff9c, &(0x7f0000001740)='/net/icmp/stats\x00', 0x10, 0x1, 0x0) openat$dev_capuse(0xffffffffffffff9c, &(0x7f0000001780)='/dev/capuse\x00', 0xc, 0x3, 0x0) 12:14:04 executing program 5: openat$net_ndb(0xffffffffffffff9c, &(0x7f0000000000)='/net/ndb\x00', 0x9, 0x3, 0x0) r0 = openat$net_tcp_2_ctl(0xffffffffffffff9c, &(0x7f0000000040)='/net/tcp/2/ctl\x00', 0xf, 0x3, 0x0) nmount(r0, &(0x7f0000000080)='./file0\x00', 0x8, 0x2) openat$proc_self_strace_traceset(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/self/strace_traceset\x00', 0x1b, 0x3, 0x0) r1 = openat$net_empty(0xffffffffffffff9c, &(0x7f0000000100)='/net/.empty\x00', 0xc, 0x3, 0x0) r2 = openat$net_iproute(0xffffffffffffff9c, &(0x7f0000000140)='/net/iproute\x00', 0xd, 0x3, 0x0) openat$net_ether0_0_stats(0xffffffffffffff9c, &(0x7f0000000180)='/net/ether0/0/stats\x00', 0x14, 0x1, 0x0) write(r0, &(0x7f00000001c0)="2e1ee034f909206160381077dd5e7c5ad12cc8de2486ff9e67eedaf0c8e0f6d939083c2f4b059d3092896431663b5d35a2170592b9ac7b9d2fb18a1118e1f1e6152e293686c323fd4c384dc84595f0f1b3e3a693041941ec8d1ac35519cf4616f89dc31a8fdd3dc6635dc4fa2acb3be4d049cc4c23912d82d968a134e2783cfab83c96a16d76c37cb6c0d2ab0a7980e0", 0x90) openat$net_tcp_0_data(0xffffffffffffff9c, &(0x7f0000000280)='/net/tcp/0/data\x00', 0x10, 0x3, 0x0) openat$net_udp_0_local(0xffffffffffffff9c, &(0x7f00000002c0)='/net/udp/0/local\x00', 0x11, 0x1, 0x0) r3 = openat$net_tcp_1_local(0xffffffffffffff9c, &(0x7f0000000300)='/net/tcp/1/local\x00', 0x11, 0x1, 0x0) r4 = proc_create(&(0x7f0000000340)='./file0\x00', 0x8, &(0x7f0000000380)='/\x00', 0x2, 0x0) dup_fds_to(r4, &(0x7f00000003c0), 0x0) openat$dev_time(0xffffffffffffff9c, &(0x7f0000000400)='/dev/time\x00', 0xa, 0x3, 0x0) openat$dev_pgrpid(0xffffffffffffff9c, &(0x7f0000000440)='/dev/pgrpid\x00', 0xc, 0x1, 0x0) mprotect(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x2000000) tcgetattr(r1, &(0x7f0000000480)) populate_va(&(0x7f0000ffc000/0x4000)=nil, 0x57) openat$net_ipifc_1_snoop(0xffffffffffffff9c, &(0x7f00000004c0)='/net/ipifc/1/snoop\x00', 0x13, 0x1, 0x0) rename(&(0x7f0000000500)='./file0\x00', 0x8, &(0x7f0000000540)='./file0\x00', 0x8) openat$net_ether0_ifstats(0xffffffffffffff9c, &(0x7f0000000580)='/net/ether0/ifstats\x00', 0x14, 0x1, 0x0) openat$net_ether0_2_ctl(0xffffffffffffff9c, &(0x7f00000005c0)='/net/ether0/2/ctl\x00', 0x12, 0x3, 0x0) openat$net_udp_0_remote(0xffffffffffffff9c, &(0x7f0000000600)='/net/udp/0/remote\x00', 0x12, 0x1, 0x0) fcntl$F_GETFD(r2, 0x1) change_to_m() self_notify(0x4, 0xa, &(0x7f0000001640)={0x0, 0x5, 0x3, &(0x7f0000000640)="8a069c5e60771f91ff3ec953871e39a219dc902c263a114aacf9c8b7d603daea01b0c9ed29ccb2a3cc1e9ce1c9ba08a5bb64e05bb43d386627f6aacba88b7e02bee4eeb1020bab82ec403164dd6b0eaa2cc999447e39bbe48a1abd63ba3d29af0acdcfb724798dfc32d62802d5fc8ef43fac14ff1f1bd83ac6161cac88b0d22d6e9b9c95c41b2dcf06cdbb973f9c8a57c0dd0c2dda5b2df0746c606870cd9c4cfc48cf8593add6dc01974ecba01cd7685ed5c2d1eae5977442c52026e183e4de79050a067fdf0c51f28559f0151ddb58929863a41061f66d0b359c76a6826edda1884f071e2d97fb172baae36f36076dd0b053788dfb4cebb6a8785eb999d81551f46dd85fc92a37a242bd329075f083865e7b528a049e2040cd89709e11d7f0fedc6b3334d3ca19c5df233171306bbe6ec9ac08e83f9a27d0d299e42e467f854950f87089d31e6c6030160c2ce19bf6df1d6148822fd389a77240cfcbcb46fe730dc0727e8776ea2f90b8eef544a15a15462a055a3b7f1fb6df52c53286879f0d209dfb154d450ec1893919f8c1fe9b73048b8d49a7c1c1d3200fa8255960df708f242326781f477f51a926ccce929677c884b356dd7a230093c5d1a409be0c4bd711bd89277c38e2b9889cdda1568fe8f286eb840c9e01bc476ad9621a4bf6c6de4a7cc1cf7ce89fa6f4a347afff2abf57047b8428c06020eb9ef276e3bf428be1d45aa7af4aafbdeefe04f7b2a382efccc6b2d71f09eda47c8bd84154542caa687c4f54d22715b2f6b86983e8f39fbe265546e4d285a41e2bc7ed7aea92aecd818fcd22a2560c12bbc23d8bc7e359a624c92f6f8acad01388630c75c75026fc7b7bc2c0a1c0d3c870c5c7ee056e5fdb033ae6ad8fd222e4f8478ef1cf2fa20adf3354d10ddf4c3e52c11b803a2b4304ed7c51394db46d046c55e2a476c3bc7f61b58e99f42aad010584ec1333038da90ad4a35de25caa623db56364f57d9d64467fa92de3daacf928959acd33fdfdb860d731d96161424efe65114dafcfc52b84884a06b2dba4ce78dfa976ed720cd3d20c24d7eec0f055ff0e6570e3fcfc728edd97295a04c2f86eb73e0f4e4c1d184eb3bf403e238d74de15e088db901c88f9d34691e471fc73fd6ca1f51dade6c50e0c8db14b3f334b4f6c5fecf1c694280e2d74737ccd9dd0c90f36248158625e20fa1cc86f8d0cb48a1a7cd664dd344d14fc29f999c26d13d0bbf382654ad78577ce06c75ec200a051e163d9c6f56c3c46376eb978a997020829b9bf5c8e9e6cb6e81c936b34af1ed736ef6200c07493fc5e052557ba149e1a7881c3406ca3dae1a938bd6c7ed11f42d550b85a32769a697d522ad3cd8c3a1b2baaa7054f93e38e4cdae4ad03908c4beec72055d20b1e555bec7e1f7022cc88185ed24b4a42c9b712d2f1c773afc4de210403d6cde29bf7f5339df7363f42fe26db33037a73c4f7423375a37e0555bd405b47cd5a97f42a0b3ce6bd760546fd7af281de6a780f0ee557522fe52e43ddd7cfbc411373c4108ace5c2d33ded93ff2b30eeb1c85ec2c89b19c34dded896ebb8619e3c3e344337ba1cb131e4bfbb38e112e79e6cc0114c6d348038766ea9ea9fd48d692f54001c723d8ee7474f659bb654ccc65b493928c1c403f1dc8c3caf6a3a3510a5c1ffb830bbee978466be114c2b7455966985c2bcd90f028ce9d0227ee491466691f55a36ada7d3f4642e50ac35526ba0d7ad44f2ae2fdf6b28481a91c7ad7a85a7216e31de7c3f941e24d676f024c98d6f89aa7943a338c748e226abcd59607caa47f46abc71c7575b449ca3538066376ed709a5315f9a1997df7628ad0b0a0deba44a06f174f50772deb580d8f45ca12f7cc5be59e4800c504ac0ec7a150a496fd9858eb0a2ed4b4a622874dbc2e4de646d13562bd1c1e89dee8a562970be88f14c9c4b30ca1f7d55c40adcad46501db31f7f2bcdfefa09329109317ecbf966ec6d45b57b8bafffa64563f9f1af6bc58034d8e786e1722bfc363b8a75712618dc3c00700980edded91d2001a24fbb4697d19184c7a4bf62dd1855dea26957aa77a94852567525d3b9f59f6a95493ecebe0ed5b6ac89c7ee0982448e3894b93f653b24209a38b94f9baad3b6879097514105b3276891b731719193dc96fc2c02bd257a0ccecf4472b8f07a42efc423ae1ab4eb8041845ed94b78a9a838f6a7dfddf6ac3c526e285dbb4a8a20a8f2044836d061e841c1adfdcc31cb378636151e96752b8da040e6acd4d1c0be112ec936e4e0f6a4ab27dde9992c8278b248a11e9de3b04d259f35c618804c3d866117eac8656fd39568aa64c939c9cf5982efdf6063d34d97956f5e790a40215f55737a57cab2cad879de842d83c25fbe02e6981688e1beba6a1f6fbffb516c69373984db94c72a33475fc675c4c581afde8dff89cf9bae45f9896f1e060968c640c627cbc4168ce28eeb947da48563e7fe6892ceca71033593c107439538a94afefff2789e0ce8349c05358c3b151dfba8366940f9466f0600162dff92ddbf40fc9285988fe2431bc14c3e52db6f5ed4263ab59374fb89282588c307ac14defaa4977f7d22f95a5c21c95095c5dc51de1387ab69a50240648155cc2292b8bb5c4fb384a830ee7f20d9183f9efb8d9e0781ab637ed94bb316628f293e35cfd5f918700fe5a788e19cbfa8cd959ea8e948907ef39f126c51489a702d438ebaa2b3b6341f4c26123d2217a1bfa949f6ca46699ed343dd59736dc5b518f656089e2292e15af529df1d808c52bd4e4a418add27b02ac177d007f442b4b58a709172d80fec411ef8fb59ad4002cc0017477834bfa7b28501798218827e91e9e19e771343c3e8d797b207e4b7bfcd4d8f1fbe1a7117cc2e790e0679227aee42ac4cb76da6eece3ad28e0e03c562f3365571802898a70a3ee0d248b841a50623e236049812e4e8c4792ba802e00382555c3a5d73b3d40cba91538383057154fb798c63e27564c8b11cdc7ad21bc2d75db66f4fb7785260ba124dbd3e755bc120093e6d623b2fc6285a598d47754bdaa1d7de08cca0e85e0681e3eb5fc51d64082fcf51eb4cd8b5c4010abe22e6883c6f0eb640d8d8c4ca9477a3b27e18c4769169f817f90f9083b44a81f49b3baf4e4578debae6d3a18f3eb566f4bcb6526b3d8a87d7fbf5028890314b7560aeb78dff544ffb05c7ef4ca4e24682ff0c9e7bc64048a6dda83a0f8d47cc51fbe716ac25ac415c89f9ebda71b9467c6204277fb8aeeb88e553f5e360f5a3415dd8e8e0a3183dfc95fba6689dc680c4079d3471094fbe47d0eec062de456dc4c7a3d622aab9562df300a5b3b3358c614bd3f757279df5755c63a64c9ab789882f983afd901087781c28dea5c2077be27af849b27a3b75b04c4a0dfae09c55598e8aa3beac8f6812939ce0c33b13d381a2c0485376c6a6c8ad64106570ffdc300d2915b329e4719d6562e8425ad6416f4f88b2badf17ca02908c5d7d0b82f6c49b964863722ef80f9994731f5d000da8672a64dd74154ed7d356e38736c7a703b46583e809d673c0686af8a19afc82840fe0dbfb1cba06f3b139d72b62c71f68aa90cc37c5cd0a9f007c8b8decd6bb3a27b1000d023e4a73ef7b54d0f440d6c708c4c165ca0a29c8a0a57ec75b310d9794129e7351349b05fc823cb56189202e040a59349840b7f2f778a1456457d776574635b01439307971c6f98d4b754d71290b9134d6374c0ff6643fd4c5a8be02ba9a768d99dcc7f52efaf7198840058fa7ddeb8007ebbb9e58e3543cdbc2e50d9b2380d790d293f0258885a54c66cbe661a6529dafa1142a8c7160db06c4835f457e7e112cb6586412da3ba96f2741238b026000714e67718af2fd078f49403549f767687ca08c5a4ac96a9b69b68d451db2f506a5521e0b78cbb4ea091aa2f6c8d1c99c17c9385f1d4110bca295bab57a981d3b09c2fadfcc85f47ba316899d817f076da1cdd4f3aea0f04fd86edb5675c70f4575d0e92147910a83966b45838d5b2ffef041d215cdb32e1ef8a6b66e364b908dd7913f90cddbdee1a7a81c1f3aa2861f74e0f7859b31882e8d30a9d36d6de26b5c5595ca735d916b3691f1af85408b59e3c1c03153fc5790da78ea1beba37b1995d7c96de0c56384e019141d1cdc5ee4cfc6238c8d195622824987aca171562b80f7009700db3c38eac8d807ba690d7a2b9526608e32ce0b82805cb2f7806c1e21b42e648ce1800da0eb09bc1bc4c4da3be6fea3bb88ededa3d4a2cebffda603f7d4c32ff72b8ca5bf4d38301556066bcd5c2abb6f892135e9e54aa01fee84f38089569dc205837b82f404fa3e2d42fc52c3d59b6c29f2fffe99eb1533c9d2798c99dd7e9811b05d4fd6074270daa4835ab4b8cc782b28314b3d7f09f9114329d574124a80b664b90b8b2ab65f0236bd37de94e0caa50731a8b710b6a006da4bec8f7007f226cf64f5487ac1847d6af49996d97535c83e95bc1d68fa6456b645540d8a70d6d2b3b2d1d8107e2e7a16dc5e20ddc5e01d7ac51e003718176610e73587c92b052e6eca7a59cfdee2e7216a64b160725dfa5887be2849f1035badd3b177a51cc4be0793a44093074d6e0e05faf9a94d6f740b084db66ab19a0754dcb5f78557970fc5b9a088e24df240c546d68bd4f8a87cd0c90c7b23a9e667e3b60ce186a72cd05427fa7d44902e9dffb1a9d8ed7977fdaee2a2d417800c9e2db43aba35608e693172493ecf251c9b324f2a18f4183802bd2a03dd2b14f565e159d568c021883d15314bfe3447dbb2ad5af30dd32f8b9163075eb630955e7c4d407032be6166bf10aa5822549235b7647c19c1832ea8f26697c3d09ee09883b2e0d582b81116404bc500f1a0e6559445b69726234833f4f1bc59884646b9bf07fe6d9dc19ba1bf0f127d2a1f71caad8585d82d1d546c9d5cfbfb242d2d4cd5428dcffa7bd3dfff559f19afd7df318ea5819571a909092c5ee20c8e5c7eaac887a3ddc4578a02c308eb1161c3779de8ec14a2e9840260ed3247f3383583bf487c563de722d5d3e4b5cb91e482ee02e3d21f4b334204d9fadbe6b857203c109abc2165c84d6a6af7fb4fddac803354d17859ab395df0e96c46e546ec0d8f12b29f3a23fd38eb33c4a86c674c0d307b0bc1beb5f0243fbaa9630f1696ae542660a62de459ab95350f1cf60b53b07eb29168900455ce2a9b59bf1f443347886c0830e115e7301b40694fb67ddb131fbb3d171da58e4f304c3e719702700b9a07a8ce2b2aa960a3fe98bdfd37744e9558f07c4fcd027e8c30b8f0a7d98de0cf7894f9621548251f7b2bf2423475f5b19aa7d9dc24997fb19c0e8501bc72aa4c25f7d3f98f2ff28febccdf20ca1d0c7ae8c194e5d4bb8a47a78d9816eb5889daedaed0219c6c049930cfa7bc91b317287ad0b2e1079e5970d03c6c63f3ebd59639a0c79386e04016c2d18e70374b6e7daa1ea0a71b1f15acee660048f6386e1a4aa9ae3e512090f500af15e76e2929ffcfe7f975b5f8e5d168149db4d79ae5e3a86eb1de903c9741001ed15d7c5b26cce226125006c1c31392d3f1bfca22d3bd1cd055a34a49b64c83ccdbf85e135854139e475b0a19ff781dfd83438398e008759c96ec8665afc76d617fbd8546b7d74cb4f3b1290dd8ec4561900cb378199d01a630ec728b63e54b516348ca3e201676ed1103239876de01e1b3b622d3569e455d98af5eecba95f1e7d396035d68ffe06bae6b2fb2782684dd8928b90063b639f0c0027396573bf6a6a0053"}, 0x1) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x8010, r3, 0x2) openat$proc_self_note(0xffffffffffffff9c, &(0x7f0000001680)='/proc/self/note\x00', 0x10, 0x1, 0x0) fcntl$F_GETFL(r1, 0x3) openat$net_ether0_1_type(0xffffffffffffff9c, &(0x7f00000016c0)='/net/ether0/1/type\x00', 0x13, 0x1, 0x0) 12:14:04 executing program 6: openat$proc_self_user(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/user\x00', 0x10, 0x1, 0x0) openat$net_iprouter(0xffffffffffffff9c, &(0x7f0000000040)='/net/iprouter\x00', 0xe, 0x3, 0x0) openat$proc_self_strace_traceset(0xffffffffffffff9c, &(0x7f0000000080)='/proc/self/strace_traceset\x00', 0x1b, 0x3, 0x0) r0 = openat$prof_kprintx(0xffffffffffffff9c, &(0x7f00000000c0)='/prof/kprintx\x00', 0xe, 0x3, 0x0) r1 = openat$net_tcp_2_listen(0xffffffffffffff9c, &(0x7f0000000100)='/net/tcp/2/listen\x00', 0x12, 0x3, 0x0) openat$dev_klog(0xffffffffffffff9c, &(0x7f0000000140)='/dev/klog\x00', 0xa, 0x1, 0x0) openat$net_ipifc_0_ctl(0xffffffffffffff9c, &(0x7f0000000180)='/net/ipifc/0/ctl\x00', 0x11, 0x3, 0x0) fcntl$F_GETFD(r1, 0x1) openat$dev_drivers(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/drivers\x00', 0xd, 0x1, 0x0) openat$prof_kprintx(0xffffffffffffff9c, &(0x7f0000000200)='/prof/kprintx\x00', 0xe, 0x3, 0x0) openat$net_tcp_2_status(0xffffffffffffff9c, &(0x7f0000000240)='/net/tcp/2/status\x00', 0x12, 0x1, 0x0) fcntl$F_SETFD(r0, 0x2, 0x1) openat$dev_stdout(0xffffffffffffff9c, &(0x7f0000000280)='/dev/stdout\x00', 0xc, 0x3, 0x0) openat$net_tcp_stats(0xffffffffffffff9c, &(0x7f00000002c0)='/net/tcp/stats\x00', 0xf, 0x1, 0x0) openat$net_tcp_0_err(0xffffffffffffff9c, &(0x7f0000000300)='/net/tcp/0/err\x00', 0xf, 0x3, 0x0) r2 = openat$proc_self_fd(0xffffffffffffff9c, &(0x7f0000000340)='/proc/self/fd\x00', 0xe, 0x1, 0x0) openat$net_ether0_0_ifstats(0xffffffffffffff9c, &(0x7f0000000380)='/net/ether0/0/ifstats\x00', 0x16, 0x1, 0x0) openat$dev_pgrpid(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/pgrpid\x00', 0xc, 0x1, 0x0) openat$net_ether0_1_type(0xffffffffffffff9c, &(0x7f0000000400)='/net/ether0/1/type\x00', 0x13, 0x1, 0x0) openat$dev_caphash(0xffffffffffffff9c, &(0x7f0000000440)='/dev/caphash\x00', 0xd, 0x3, 0x0) openat$dev_empty(0xffffffffffffff9c, &(0x7f0000000480)='/dev/.empty\x00', 0xc, 0x3, 0x0) openat$net_ether0_2_data(0xffffffffffffff9c, &(0x7f00000004c0)='/net/ether0/2/data\x00', 0x13, 0x3, 0x0) openat$dev_pgrpid(0xffffffffffffff9c, &(0x7f0000000500)='/dev/pgrpid\x00', 0xc, 0x1, 0x0) read(r2, &(0x7f0000000540)=""/62, 0x3e) openat$net_ether0_0_data(0xffffffffffffff9c, &(0x7f0000000580)='/net/ether0/0/data\x00', 0x13, 0x3, 0x0) openat$proc_self_maps(0xffffffffffffff9c, &(0x7f00000005c0)='/proc/self/maps\x00', 0x10, 0x1, 0x0) lstat(&(0x7f0000000600)='./file0\x00', 0x8, &(0x7f0000000640)) openat$dev_sysname(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/sysname\x00', 0xd, 0x3, 0x0) openat$proc_self_note(0xffffffffffffff9c, &(0x7f0000000700)='/proc/self/note\x00', 0x10, 0x1, 0x0) openat$net_tcp_2_remote(0xffffffffffffff9c, &(0x7f0000000740)='/net/tcp/2/remote\x00', 0x12, 0x1, 0x0) 12:14:04 executing program 7: vmm_ctl$VMM_CTL_SET_FLAGS(0x4, 0x7) r0 = openat$dev_stdout(0xffffffffffffff9c, &(0x7f0000000000)='/dev/stdout\x00', 0xc, 0x3, 0x0) r1 = proc_create(&(0x7f0000000040)='./file0\x00', 0x8, &(0x7f0000000080)='/dev/stdout\x00', 0xc, 0x1) waitpid(r1, &(0x7f00000000c0), 0x1) cache_invalidate() waitpid(r1, &(0x7f0000000100), 0x2) openat$net_udp_clone(0xffffffffffffff9c, &(0x7f0000000140)='/net/udp/clone\x00', 0xf, 0x3, 0x0) waitpid(r1, &(0x7f0000000180), 0x2) openat$net_tcp_1_err(0xffffffffffffff9c, &(0x7f00000001c0)='/net/tcp/1/err\x00', 0xf, 0x3, 0x0) waitpid(r1, &(0x7f0000000200), 0x1) openat$net_udp_0_remote(0xffffffffffffff9c, &(0x7f0000000240)='/net/udp/0/remote\x00', 0x12, 0x1, 0x0) openat$net_ether0_1_stats(0xffffffffffffff9c, &(0x7f0000000280)='/net/ether0/1/stats\x00', 0x14, 0x1, 0x0) wstat(&(0x7f00000002c0)='./file0\x00', 0x8, &(0x7f0000000300)=""/25, 0x19, 0x0) close(r0) openat$net_ether0_0_ctl(0xffffffffffffff9c, &(0x7f0000000340)='/net/ether0/0/ctl\x00', 0x12, 0x3, 0x0) r2 = openat$net_ipselftab(0xffffffffffffff9c, &(0x7f0000000380)='/net/ipselftab\x00', 0xf, 0x1, 0x0) r3 = openat$net_ipifc_0_ctl(0xffffffffffffff9c, &(0x7f00000003c0)='/net/ipifc/0/ctl\x00', 0x11, 0x3, 0x0) openat$dev_time(0xffffffffffffff9c, &(0x7f0000000400)='/dev/time\x00', 0xa, 0x3, 0x0) openat$net_tcp_stats(0xffffffffffffff9c, &(0x7f0000000440)='/net/tcp/stats\x00', 0xf, 0x1, 0x0) fchdir(r1, r3) openat$net_ipifc_0_remote(0xffffffffffffff9c, &(0x7f0000000480)='/net/ipifc/0/remote\x00', 0x14, 0x1, 0x0) r4 = openat$dev_stdout(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/stdout\x00', 0xc, 0x3, 0x0) openat$net_ndb(0xffffffffffffff9c, &(0x7f0000000500)='/net/ndb\x00', 0x9, 0x3, 0x0) openat$dev_urandom(0xffffffffffffff9c, &(0x7f0000000540)='/dev/urandom\x00', 0xd, 0x1, 0x0) openat$dev_stdout(0xffffffffffffff9c, &(0x7f0000000580)='/dev/stdout\x00', 0xc, 0x3, 0x0) fcntl$F_DUPFD(r2, 0x0, r4, 0x0) openat$net_udp_0_listen(0xffffffffffffff9c, &(0x7f00000005c0)='/net/udp/0/listen\x00', 0x12, 0x3, 0x0) openat$net_ipifc_0_ctl(0xffffffffffffff9c, &(0x7f0000000600)='/net/ipifc/0/ctl\x00', 0x11, 0x3, 0x0) openat$net_ndb(0xffffffffffffff9c, &(0x7f0000000640)='/net/ndb\x00', 0x9, 0x3, 0x0) openat$net_arp(0xffffffffffffff9c, &(0x7f0000000680)='/net/arp\x00', 0x9, 0x3, 0x0) 12:14:05 executing program 0: r0 = openat$net_udp_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/net/udp/stats\x00', 0xffffffffffffff6a, 0x1, 0x0) abort_sysc_fd(r0) 12:14:05 executing program 0: vmm_ctl$VMM_CTL_GET_FLAGS(0x3) syz_execute_func(&(0x7f0000000000)="660f3a61450066c4e1151578ecf240ca5300c401d85e8b00000000c4c2519214b7c481a1f854ed58660f707b0596c4e2492da0ee000000c46155d9366808000000") vmm_ctl$VMM_CTL_GET_EXITS(0x1) openat$prof_kptrace(0xffffffffffffff9c, &(0x7f0000000080)='/prof/kptrace\x00', 0xe, 0x3, 0x0) openat$dev_kprint(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kprint\x00', 0xc, 0x1, 0x0) proc_yield(0x1) r0 = proc_create(&(0x7f0000000100)='./file0\x00', 0x8, &(0x7f0000000140)='/dev/kprint\x00', 0xc, 0x1) proc_destroy(r0, 0x6) openat(0xffffffffffffffff, &(0x7f0000000180)='./file0\x00', 0x8, 0x100, 0x28) waitpid(r0, &(0x7f00000001c0), 0x2) r1 = proc_create(&(0x7f0000000200)='./file0\x00', 0x8, &(0x7f0000000240)='/prof/kptrace\x00', 0xe, 0x1) openat$net_ipifc_stats(0xffffffffffffff9c, &(0x7f0000000280)='/net/ipifc/stats\x00', 0x11, 0x1, 0x0) nbind(&(0x7f00000002c0)='./file0\x00', 0x8, &(0x7f0000000300)='./file0\x00', 0x8, 0x14) waitpid(r1, &(0x7f0000000340), 0x3) openat$dev_caphash(0xffffffffffffff9c, &(0x7f0000000380)='/dev/caphash\x00', 0xd, 0x3, 0x0) r2 = openat$net_ether0_0_type(0xffffffffffffff9c, &(0x7f00000003c0)='/net/ether0/0/type\x00', 0x13, 0x1, 0x0) openat$net_ipifc_1_ctl(0xffffffffffffff9c, &(0x7f0000000400)='/net/ipifc/1/ctl\x00', 0x11, 0x3, 0x0) r3 = proc_create(&(0x7f0000000440)='./file0\x00', 0x8, &(0x7f0000000480)='\x00', 0x1, 0x0) waitpid(r3, &(0x7f00000004c0), 0x1) openat$net_ether0_addr(0xffffffffffffff9c, &(0x7f0000000500)='/net/ether0/addr\x00', 0x11, 0x3, 0x0) read(r2, &(0x7f0000000540)=""/4096, 0x1000) openat$dev_time(0xffffffffffffff9c, &(0x7f0000001540)='/dev/time\x00', 0xa, 0x3, 0x0) openat$net_ether0_addr(0xffffffffffffff9c, &(0x7f0000001580)='/net/ether0/addr\x00', 0x11, 0x3, 0x0) pop_ctx(&(0x7f00000015c0)="830a54196395cac12ad097e04561ec55810709cb09540a03a308416bc6cd4414935130f04b75bbb028fd2d85681c9deed1d86150fa2d9322aa29fdde396898002beec201d86ccf2c119dd0221fa30265a1cdaf2785c79201b08e6a6d1317c4ddab4e9267269d82f9c03a6ed0034eaa543e1a6085ffdfd24678bbc81d19e57b68bc37cf34d95e962bcae7cc8aa623f54da57c7ef5ef3af0b1792933db3102432383bb1f3e1be671a80e27a93c68b91b4f93cf6a6679aea9a36fdc3179d180eb661796b8b50c42a5c9b7ff9901701086890f63724ebf3261a5") openat(0xffffffffffffffff, &(0x7f00000016c0)='./file0\x00', 0x8, 0x62be6ea5e77c8488, 0x100) openat$proc_self_strace_traceset(0xffffffffffffff9c, &(0x7f0000001700)='/proc/self/strace_traceset\x00', 0x1b, 0x3, 0x0) openat$net_tcp_0_remote(0xffffffffffffff9c, &(0x7f0000001740)='/net/tcp/0/remote\x00', 0x12, 0x1, 0x0) openat$net_ipifc_stats(0xffffffffffffff9c, &(0x7f0000001780)='/net/ipifc/stats\x00', 0x11, 0x1, 0x0) openat$net_tcp_2_local(0xffffffffffffff9c, &(0x7f00000017c0)='/net/tcp/2/local\x00', 0x11, 0x1, 0x0) lstat(&(0x7f0000001800)='./file0\x00', 0x8, &(0x7f0000001840)) bash-4.3$ [kernel] Invalid syscall 0 for proc 37 Args: 0x0000000020000000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000, 0x0000000000000000 SW TRAP frame (partial) at 0xffffffffc8995e20 on core 1 rbx 0x000030000003ce00 rbp 0x000030000003cef0 r12 0x0000000000000000 r13 0x0000000000485778 r14 0x0000000000487338 r15 0x0000000000000000 gsbs 0x0000000000000000 fsbs 0x0000000000000000 rip 0x000000000043750e rsp 0x000030000003cd20 mxcsr 0x00001f80 fpucw 0x037f Unhandled user trap in vcore context from VC 1 HW TRAP frame (partial) at 0xffffffffc89963a0 on core 3 rax 0x000000005a5a4e80 rbx 0x000030000001ae90 rcx 0x0000000000000150 rdx 0x000010000000a4c0 rbp 0x000030000001ae80 rsi 0x000010000000a5c0 rdi 0x000000005a5a4f80 r8 0x000000005a5a5a5a r9 0x000000005a5a4e80 r10 0x0000000000000000 r11 0x0000000000000200 r12 0x000000000040ff90 r13 0x000010000000a4c0 r14 0x0000000000000004 r15 0x00007f7fffa01f40 trap 0x0000000e Page Fault gsbs 0x0000000000000000 fsbs 0x0000000000000000 err 0x--------00000006 rip 0x000000000040fd76 cs 0x------------0023 flag 0x0000000000010202 rsp 0x000030000001ad80 ss 0x------------001b err 0x6 (for PFs: User 4, Wr 2, Rd 1), aux 0x000000005a5a4f80 Addr 0x000000000040fd76 is in syz-executor at offset 0x000000000000fd76 VM Regions for proc 37 NR: Range: Prot, Flags, File, Off 00: (0x0000000000400000 - 0x00000000004b5000): 0x00000005, 0x00000001, 0xffff800004920820, 0x0000000000000000 01: (0x00000000004b5000 - 0x00000000004b6000): 0x00000005, 0x00000002, 0xffff800004920820, 0x00000000000b5000 02: (0x00000000006b6000 - 0x00000000006b9000): 0x00000003, 0x00000002, 0xffff800004920820, 0x00000000000b6000 03: (0x00000000006b9000 - 0x00000000008e5000): 0x00000003, 0x00000002, 0x0000000000000000, 0x0000000000000000 04: (0x0000000020000000 - 0x0000000021000000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 05: (0x0000100000000000 - 0x0000100000024000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 06: (0x0000300000000000 - 0x0000300000001000): 0x00000003, 0x00000002, 0xffff800004920820, 0x0000000000000000 07: (0x0000300000001000 - 0x0000300000005000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 08: (0x0000300000005000 - 0x0000300000007000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 12:14:10 executing program 0: mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0) openat$proc_self_args(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/args\x00', 0x10, 0x3, 0x0) openat$net_udp_0_data(0xffffffffffffff9c, &(0x7f0000000040)='/net/udp/0/data\x00', 0x10, 0x3, 0x0) 09: (0x0000300000007000 - 0x0000300000019000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 10: (0x0000300000019000 - 0x000030000003d000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 11: (0x00007f7fff8ff000 - 0x00007f7fff9ff000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 Backtrace of user context on Core 3: Offsets only matter for shared libraries #01 Addr 0x000000000040fd76 is in syz-executor at offset 0x000000000000fd76 #02 Addr 0x000000000041019e is in syz-executor at offset 0x000000000001019e #03 Addr 0x000000000041574d is in syz-executor at offset 0x000000000001574d #04 Addr 0x000000000040803b is in syz-executor at offset 0x000000000000803b #05 Addr 0x0000000000414ba0 is in syz-executor at offset 0x0000000000014ba0 #06 Addr 0x000000000040856a is in syz-executor at offset 0x000000000000856a #07 Addr 0x0000000000403f59 is in syz-executor at offset 0x0000000000003f59 #08 Addr 0x00000000004148cc is in syz-executor at offset 0x00000000000148cc #09 Addr 0x00000000004148d1 is in syz-executor at offset 0x00000000000148d1 12:14:12 executing program 0: openat$dev_null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0xa, 0x1, 0x0) openat$net_ether0_2_stats(0xffffffffffffff9c, &(0x7f0000000040)='/net/ether0/2/stats\x00', 0x14, 0x1, 0x0) openat$dev_config(0xffffffffffffff9c, &(0x7f0000000080)='/dev/config\x00', 0xc, 0x1, 0x0) r0 = openat$net_ether0_1_ifstats(0xffffffffffffff9c, &(0x7f00000000c0)='/net/ether0/1/ifstats\x00', 0x16, 0x1, 0x0) openat$proc_self_user(0xffffffffffffff9c, &(0x7f0000000100)='/proc/self/user\x00', 0x10, 0x1, 0x0) openat$net_ether0_2_stats(0xffffffffffffff9c, &(0x7f0000000140)='/net/ether0/2/stats\x00', 0x14, 0x1, 0x0) r1 = proc_create(&(0x7f0000000180)='./file0\x00', 0x8, &(0x7f00000001c0)='/dev/null\x00', 0xa, 0x1) chdir(r1, &(0x7f0000000200)='./file0\x00', 0x8) nmount(r0, &(0x7f0000000240)='./file0\x00', 0x8, 0x2) notify(r1, 0xe, &(0x7f0000000340)={0xd, 0x7, 0x9, &(0x7f0000000280)="3c38a42dd9f81afd6fa08a28a28719e539168f68894bb6a9995fc4a5d781c296e9d972a1b3b7c3acea6207da246b86540b14e9c7b89477bf542487d6fe261e6356042bacbd6ef80499b717210f63b7751b19b8712b431065c1ed46064ab69964b2e4269b32e4ea4bbb34870978ee23844505f7036baa5cdd2b572d185335bc4822a699e87b5d0e4c5e932d7b9a93bc364aa7e9437b56dd18769db46c4577ffb3f9eb6a4c4fa455320cadaf7e89f919747643236d7f1082a3d77d65065ad1ef31", 0x9}) openat$net_ipifc_clone(0xffffffffffffff9c, &(0x7f0000000380)='/net/ipifc/clone\x00', 0x11, 0x3, 0x0) openat$net_ether0_1_ctl(0xffffffffffffff9c, &(0x7f00000003c0)='/net/ether0/1/ctl\x00', 0x12, 0x3, 0x0) r2 = openat$net_udp_0_remote(0xffffffffffffff9c, &(0x7f0000000400)='/net/udp/0/remote\x00', 0x12, 0x1, 0x0) openat$net_ipifc_0_err(0xffffffffffffff9c, &(0x7f0000000440)='/net/ipifc/0/err\x00', 0x11, 0x3, 0x0) openat$dev_stderr(0xffffffffffffff9c, &(0x7f0000000480)='/dev/stderr\x00', 0xc, 0x3, 0x0) openat$net_ipifc_0_err(0xffffffffffffff9c, &(0x7f00000004c0)='/net/ipifc/0/err\x00', 0x11, 0x3, 0x0) notify(r1, 0xf, &(0x7f0000000540)={0x1, 0x6ec477e, 0x401, &(0x7f0000000500)="18e9173a114bdc6d7481636cde691d29643ec3e040e5989fc55e1203f1ba18ee", 0x1}) openat$net_ether0_addr(0xffffffffffffff9c, &(0x7f0000000580)='/net/ether0/addr\x00', 0x11, 0x3, 0x0) notify(r1, 0xf, &(0x7f00000006c0)={0x7, 0x2, 0x6, &(0x7f00000005c0)="f236fd84edb06407939619d186bde24405a98835003a6edc5426422f91bbbaff07a78b49956caa2b9fefb84cc966b3786c563d524cbaaf0fecc48d12ce512ad0d3ac0e4370adf99bcfcdc4ac60526fe14e4db9b67a2ede59ce9380e30ff968096d1fd3be26a85768c79bc62124419824446733953cbf3e2d43bc6eef21092ce7e0d8551a0450d65f093f081646e0f8956c037c5dc82a75c479e5aa9f0958d31ab6026f0036ea035aa75231c1bba060dac74826cdbace733896fcbab44a3832216b45c8d1763b30f22fcfdc8a83f3848a5a8d6d3a531fca4a79e61757e89979d9d502131afd55e16ead7daddc71e646235359889b1e"}) openat$net_udp_0_data(0xffffffffffffff9c, &(0x7f0000000700)='/net/udp/0/data\x00', 0x10, 0x3, 0x0) rmdir(&(0x7f0000000740)='./file1\x00', 0x8) tcgetattr(r2, &(0x7f0000000780)) openat$net_ether0_0_data(0xffffffffffffff9c, &(0x7f00000007c0)='/net/ether0/0/data\x00', 0x13, 0x3, 0x0) tap_fds(&(0x7f0000000800), 0x0) openat$net_ipifc_0_listen(0xffffffffffffff9c, &(0x7f0000000840)='/net/ipifc/0/listen\x00', 0x14, 0x3, 0x0) openat$proc_self_user(0xffffffffffffff9c, &(0x7f0000000880)='/proc/self/user\x00', 0x10, 0x1, 0x0) exec(&(0x7f00000008c0)='./file0\x00', 0x8, &(0x7f0000000900)='/net/ether0/1/ctl\x00', 0x12) openat$net_ether0_0_type(0xffffffffffffff9c, &(0x7f0000000940)='/net/ether0/0/type\x00', 0x13, 0x1, 0x0) openat$proc_self_noteid(0xffffffffffffff9c, &(0x7f0000000980)='/proc/self/noteid\x00', 0x12, 0x3, 0x0) openat$prof_empty(0xffffffffffffff9c, &(0x7f00000009c0)='/prof/.empty\x00', 0xd, 0x3, 0x0) Unhandled user trap in vcore context from VC 1 HW TRAP frame (partial) at 0xffffffffc8995e20 on core 1 rax 0x000000005a5a4e80 rbx 0x000030000001ae90 rcx 0x0000000000000150 rdx 0x000010000000a4c0 rbp 0x000030000001ae80 rsi 0x000010000000a5c0 rdi 0x000000005a5a4f80 r8 0x000000005a5a5a5a r9 0x000000005a5a4e80 r10 0x0000000000000000 r11 0x0000000000000200 r12 0x000000000040ff90 r13 0x000010000000a4c0 r14 0x0000000000000004 r15 0x00007f7fffa01f40 trap 0x0000000e Page Fault gsbs 0x0000000000000000 fsbs 0x0000000000000000 err 0x--------00000006 rip 0x000000000040fd76 cs 0x------------0023 flag 0x0000000000010202 rsp 0x000030000001ad80 ss 0x------------001b err 0x6 (for PFs: User 4, Wr 2, Rd 1), aux 0x000000005a5a4f80 Addr 0x000000000040fd76 is in syz-executor at offset 0x000000000000fd76 VM Regions for proc 61 NR: Range: Prot, Flags, File, Off 00: (0x0000000000400000 - 0x00000000004b5000): 0x00000005, 0x00000001, 0xffff800005c3b820, 0x0000000000000000 01: (0x00000000004b5000 - 0x00000000004b6000): 0x00000005, 0x00000002, 0xffff800005c3b820, 0x00000000000b5000 02: (0x00000000006b6000 - 0x00000000006b9000): 0x00000003, 0x00000002, 0xffff800005c3b820, 0x00000000000b6000 03: (0x00000000006b9000 - 0x00000000008e5000): 0x00000003, 0x00000002, 0x0000000000000000, 0x0000000000000000 04: (0x0000000020000000 - 0x0000000021000000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 05: (0x0000100000000000 - 0x0000100000024000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 12:14:17 executing program 1: r0 = openat$dev_config(0xffffffffffffff9c, &(0x7f0000000040)='/dev/config\x00', 0xffffffffffffff11, 0x1, 0x0) fcntl$F_GETFL(r0, 0x3) 06: (0x0000300000000000 - 0x0000300000001000): 0x00000003, 0x00000002, 0xffff800005c3b820, 0x0000000000000000 12:14:17 executing program 0: mprotect(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x0) nbind(&(0x7f0000000080)='./file0\x00', 0x8, &(0x7f00000000c0)='./file0\x00', 0x8, 0x0) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x8010, 0xffffffffffffff9c, 0x0) 12:14:17 executing program 2: openat$dev_cputime(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cputime\x00', 0xfe, 0x1, 0x0) 12:14:17 executing program 3: openat$net_ether0_1_ctl(0xffffffffffffff9c, &(0x7f0000000000)='/net/ether0/1/ctl\x00', 0x12, 0x3, 0x0) fcntl$F_GETFL(0xffffffffffffffff, 0x3) openat$dev_pid(0xffffffffffffff9c, &(0x7f0000000040)='/dev/pid\x00', 0x9, 0x1, 0x0) 07: (0x0000300000001000 - 0x0000300000005000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 08: (0x0000300000005000 - 0x0000300000007000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 09: (0x0000300000007000 - 0x0000300000019000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 10: (0x0000300000019000 - 0x000030000003d000): 0x00000007, 0x00000022, 0x0000000000000000, 0x0000000000000000 11: (0x00007f7fff8ff000 - 0x00007f7fff9ff000): 0x00000003, 0x00000022, 0x0000000000000000, 0x0000000000000000 Backtrace of user context on Core 1: Offsets only matter for shared libraries #01 Addr 0x000000000040fd76 is in syz-executor at offset 0x000000000000fd76 #02 Addr 0x000000000041019e is in syz-executor at offset 0x000000000001019e #03 Addr 0x000000000041574d is in syz-executor at offset 0x000000000001574d #04 Addr 0x000000000040803b is in syz-executor at offset 0x000000000000803b #05 Addr 0x0000000000414ba0 is in syz-executor at offset 0x0000000000014ba0 #06 Addr 0x000000000040856a is in syz-executor at offset 0x000000000000856a #07 Addr 0x0000000000403f59 is in syz-executor at offset 0x0000000000003f59 #08 Addr 0x00000000004148cc is in syz-executor at offset 0x00000000000148cc #09 Addr 0x00000000004148d1 is in syz-executor at offset 0x00000000000148d1 [kernel] Unknown mbox type 0! 12:14:20 executing program 6: r0 = proc_create(&(0x7f0000000000)='./file0\x00', 0x8, &(0x7f0000000040)='//{/{\'\xcd)\x00', 0x9, 0x1) proc_run(r0) 12:14:20 executing program 4: r0 = openat$net_icmpv6_stats(0xffffffffffffff9c, &(0x7f00000002c0)='/net/icmpv6/stats\x00', 0x12, 0x1, 0x0) fd2path(r0, &(0x7f0000000000)=""/46, 0x2e) openat$net_ipifc_clone(0xffffffffffffff9c, &(0x7f0000000040)='/net/ipifc/clone\x00', 0x11, 0x3, 0x0) 12:14:20 executing program 7: openat$net_ipifc_clone(0xffffffffffffff9c, &(0x7f0000000000)='/net/ipifc/clone\x00', 0x11, 0x3, 0x0) openat$net_cs(0xffffffffffffff9c, &(0x7f0000000040)='/net/cs\x00', 0x8, 0x3, 0x0) 12:14:20 executing program 1: r0 = openat$dev_stdin(0xffffffffffffff9c, &(0x7f0000000000)='/dev/stdin\x00', 0xb, 0x3, 0x0) r1 = openat$net_ether0_1_data(0xffffffffffffff9c, &(0x7f0000000040)='/net/ether0/1/data\x00', 0x13, 0x3, 0x0) r2 = openat$net_icmp_clone(0xffffffffffffff9c, &(0x7f0000000080)='/net/icmp/clone\x00', 0x10, 0x3, 0x0) openat$net_tcp_0_local(0xffffffffffffff9c, &(0x7f00000000c0)='/net/tcp/0/local\x00', 0x11, 0x1, 0x0) openat$net_icmp_clone(0xffffffffffffff9c, &(0x7f0000000100)='/net/icmp/clone\x00', 0x10, 0x3, 0x0) openat$prof_kprintx(0xffffffffffffff9c, &(0x7f0000000140)='/prof/kprintx\x00', 0xe, 0x3, 0x0) r3 = openat$proc_self_core(0xffffffffffffff9c, &(0x7f0000000180)='/proc/self/core\x00', 0x10, 0x1, 0x0) openat$net_ipifc_0_err(0xffffffffffffff9c, &(0x7f00000001c0)='/net/ipifc/0/err\x00', 0x11, 0x3, 0x0) fstat(r0, &(0x7f0000000200)) openat$proc_self_mem(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self/mem\x00', 0xf, 0x1, 0x0) r4 = openat$net_ipifc_0_remote(0xffffffffffffff9c, &(0x7f00000002c0)='/net/ipifc/0/remote\x00', 0x14, 0x1, 0x0) fcntl$F_SETFD(r3, 0x2, 0x0) r5 = openat$net_udp_clone(0xffffffffffffff9c, &(0x7f0000000300)='/net/udp/clone\x00', 0xf, 0x3, 0x0) openat$net_ipselftab(0xffffffffffffff9c, &(0x7f0000000340)='/net/ipselftab\x00', 0xf, 0x1, 0x0) fd2path(r4, &(0x7f0000000380)=""/161, 0xa1) r6 = openat$net_udp_0_local(0xffffffffffffff9c, &(0x7f0000000440)='/net/udp/0/local\x00', 0x11, 0x1, 0x0) r7 = openat$net_icmp_stats(0xffffffffffffff9c, &(0x7f0000000480)='/net/icmp/stats\x00', 0x10, 0x1, 0x0) dup_fds_to(0xffffffffffffffff, &(0x7f00000004c0)=[{r1}, {r5}, {r7}, {r6}, {r1}], 0x5) tcgetattr(r2, &(0x7f0000000500)) openat$net_ipselftab(0xffffffffffffff9c, &(0x7f0000000540)='/net/ipselftab\x00', 0xf, 0x1, 0x0) fcntl$F_DUPFD(r2, 0x0, r5, 0x0) openat$net_icmpv6_clone(0xffffffffffffff9c, &(0x7f0000000580)='/net/icmpv6/clone\x00', 0x12, 0x3, 0x0) r8 = openat$net_icmpv6_clone(0xffffffffffffff9c, &(0x7f00000005c0)='/net/icmpv6/clone\x00', 0x12, 0x3, 0x0) openat$dev_osversion(0xffffffffffffff9c, &(0x7f0000000600)='/dev/osversion\x00', 0xf, 0x1, 0x0) openat$dev_empty(0xffffffffffffff9c, &(0x7f0000000640)='/dev/.empty\x00', 0xc, 0x3, 0x0) openat$net_cs(0xffffffffffffff9c, &(0x7f0000000680)='/net/cs\x00', 0x8, 0x3, 0x0) llseek(r8, 0x100000000, 0xbe37, &(0x7f00000006c0), 0x1) openat$dev_zero(0xffffffffffffff9c, &(0x7f0000000700)='/dev/zero\x00', 0xa, 0x1, 0x0) abort_sysc_fd(r7) nanosleep(&(0x7f0000000740)={0x1, 0x2}, &(0x7f0000000780)) kernel panic at kern/src/mm.c:759, from core 2: assertion failed: !pte_is_mapped(pte) Stack Backtrace on Core 2: #01 [<0xffffffffc200a39c>] in backtrace #02 [<0xffffffffc2009b35>] in _panic #03 [<0xffffffffc200d9e3>] in map_page_at_addr #04 [<0xffffffffc200da32>] in populate_anon_va #05 [<0xffffffffc200faa2>] in populate_va #06 [<0xffffffffc2056e00>] in sys_populate_va #07 [<0xffffffffc2059a29>] in syscall #08 [<0xffffffffc205a5d8>] in run_local_syscall #09 [<0xffffffffc205ab19>] in prep_syscalls #10 [<0xffffffffc20ac432>] in sysenter_callwrapper Entering Nanwan's Dungeon on Core 2 (Ints on): Type 'help' for a list of commands.