syzkaller login: ps_root_recvmsgcb: failed to send message to pid 2778: Connection refused [ 318.048215][ T2673] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 2782: Connection refused ps_root_recvmsgcb: failed to send message to pid 2792: Connection refused [ 318.170163][ T2673] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 2794: Connection refused [ 349.927590][ T2841] warn_alloc: 1 callbacks suppressed [ 349.927944][ T2841] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 349.944338][ T2841] CPU: 0 PID: 2841 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 349.946162][ T2841] Hardware name: riscv-virtio,qemu (DT) [ 349.947358][ T2841] Call Trace: [ 349.948365][ T2841] [] dump_backtrace+0x2e/0x3c [ 349.949945][ T2841] [] show_stack+0x34/0x40 [ 349.951432][ T2841] [] dump_stack_lvl+0xe0/0x14c [ 349.953407][ T2841] [] dump_stack+0x1c/0x24 [ 349.954951][ T2841] [] warn_alloc+0x168/0x22c [ 349.956521][ T2841] [] __vmalloc_node_range+0xb6c/0xdb4 [ 349.958126][ T2841] [] bpf_jit_alloc_exec+0x46/0x52 [ 349.959617][ T2841] [] bpf_jit_binary_alloc+0x96/0x13c [ 349.960700][ T2841] [] bpf_int_jit_compile+0x886/0xaa6 [ 349.961694][ T2841] [] bpf_prog_select_runtime+0x1a2/0x22e [ 349.963015][ T2841] [] bpf_migrate_filter+0x258/0x2be [ 349.964008][ T2841] [] bpf_prepare_filter+0x10e/0x1b4 [ 349.964962][ T2841] [] __get_filter+0x148/0x1a0 [ 349.965875][ T2841] [] sk_attach_filter+0x22/0x11a [ 349.966753][ T2841] [] sk_setsockopt+0x144e/0x270c [ 349.967679][ T2841] [] sock_setsockopt+0x48/0x58 [ 349.968580][ T2841] [] __sys_setsockopt+0x3f0/0x418 [ 349.969435][ T2841] [] sys_setsockopt+0x3a/0x4c [ 349.970294][ T2841] [] ret_from_syscall+0x0/0x2 [ 350.005336][ T2841] Mem-Info: [ 350.006760][ T2841] active_anon:1094 inactive_anon:43 isolated_anon:0 [ 350.006760][ T2841] active_file:0 inactive_file:5309 isolated_file:0 [ 350.006760][ T2841] unevictable:768 dirty:666 writeback:0 [ 350.006760][ T2841] slab_reclaimable:5134 slab_unreclaimable:18538 [ 350.006760][ T2841] mapped:1078 shmem:806 pagetables:98 [ 350.006760][ T2841] sec_pagetables:0 bounce:0 [ 350.006760][ T2841] kernel_misc_reclaimable:0 [ 350.006760][ T2841] free:280148 free_pcp:1196 free_cma:4096 [ 350.026634][ T2841] Node 0 active_anon:4376kB inactive_anon:172kB active_file:0kB inactive_file:21236kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:4312kB dirty:2664kB writeback:0kB shmem:3224kB writeback_tmp:0kB kernel_stack:4512kB pagetables:392kB sec_pagetables:0kB all_unreclaimable? no [ 350.029643][ T2841] Node 0 DMA32 free:1120368kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:4460kB inactive_anon:172kB active_file:0kB inactive_file:21236kB unevictable:3072kB writepending:2664kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:4952kB local_pcp:2408kB free_cma:16384kB [ 350.054669][ T2841] lowmem_reserve[]: 0 0 0 [ 350.057473][ T2841] Node 0 DMA32: 2*4kB (UM) 1*8kB (E) 0*16kB 3*32kB (UME) 2*64kB (UM) 1*128kB (U) 1*256kB (U) 1*512kB (E) 3*1024kB (UME) 3*2048kB (EC) 271*4096kB (MC) = 1120368kB [ 350.087670][ T2841] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 350.088785][ T2841] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 350.089823][ T2841] 6126 total pagecache pages [ 350.090775][ T2841] 0 pages in swap cache [ 350.099081][ T2841] Free swap = 0kB [ 350.100038][ T2841] Total swap = 0kB [ 350.100836][ T2841] 523776 pages RAM [ 350.109981][ T2841] 0 pages HighMem/MovableOnly [ 350.111094][ T2841] 184025 pages reserved [ 350.113364][ T2841] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 Warning: Permanently added '[localhost]:56160' (ECDSA) to the list of known hosts. 1970/01/01 00:06:41 fuzzer started 1970/01/01 00:06:49 dialing manager at localhost:36451 [ 412.499330][ T2865] cgroup: Unknown subsys name 'net' [ 413.155720][ T2865] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:06:53 syscalls: 2966 1970/01/01 00:06:53 code coverage: enabled 1970/01/01 00:06:53 comparison tracing: enabled 1970/01/01 00:06:53 extra coverage: enabled 1970/01/01 00:06:53 delay kcov mmap: enabled 1970/01/01 00:06:53 setuid sandbox: enabled 1970/01/01 00:06:53 namespace sandbox: enabled 1970/01/01 00:06:53 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:06:53 fault injection: enabled 1970/01/01 00:06:53 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:06:53 net packet injection: enabled 1970/01/01 00:06:53 net device setup: enabled 1970/01/01 00:06:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:06:53 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:06:53 NIC VF setup: PCI device 0000:00:11.0 is not available 1970/01/01 00:06:53 USB emulation: enabled 1970/01/01 00:06:53 hci packet injection: /dev/vhci does not exist 1970/01/01 00:06:53 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:06:53 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist ps_root_recvmsgcb: failed to send message to pid 2841: Connection refused 1970/01/01 00:06:53 fetching corpus: 0, signal 0/2000 (executing program) ps_root_recvmsgcb: failed to send message to pid 2842: Connection refused ps_root_recvmsgcb: failed to send message to pid 2843: Connection refused 1970/01/01 00:06:56 fetching corpus: 50, signal 35506/38999 (executing program) 1970/01/01 00:06:59 fetching corpus: 100, signal 49555/54496 (executing program) ps_root_recvmsgcb: failed to send message to pid 2850: Connection refused 1970/01/01 00:07:01 fetching corpus: 150, signal 56673/63046 (executing program) 1970/01/01 00:07:03 fetching corpus: 199, signal 66810/74412 (executing program) 1970/01/01 00:07:05 fetching corpus: 249, signal 70988/79888 (executing program) 1970/01/01 00:07:07 fetching corpus: 299, signal 78573/88569 (executing program) 1970/01/01 00:07:09 fetching corpus: 349, signal 84401/95477 (executing program) 1970/01/01 00:07:10 fetching corpus: 399, signal 87925/100180 (executing program) 1970/01/01 00:07:12 fetching corpus: 449, signal 91200/104527 (executing program) 1970/01/01 00:07:15 fetching corpus: 499, signal 96147/110392 (executing program) 1970/01/01 00:07:17 fetching corpus: 549, signal 100388/115543 (executing program) 1970/01/01 00:07:20 fetching corpus: 599, signal 105811/121730 (executing program) 1970/01/01 00:07:25 fetching corpus: 649, signal 109881/126616 (executing program) 1970/01/01 00:07:27 fetching corpus: 699, signal 111875/129606 (executing program) 1970/01/01 00:07:28 fetching corpus: 749, signal 113886/132536 (executing program) 1970/01/01 00:07:31 fetching corpus: 799, signal 116435/135948 (executing program) 1970/01/01 00:07:33 fetching corpus: 849, signal 118978/139334 (executing program) 1970/01/01 00:07:36 fetching corpus: 899, signal 121178/142336 (executing program) 1970/01/01 00:07:37 fetching corpus: 949, signal 123889/145770 (executing program) 1970/01/01 00:07:39 fetching corpus: 999, signal 126785/149327 (executing program) 1970/01/01 00:07:41 fetching corpus: 1049, signal 130068/153166 (executing program) 1970/01/01 00:07:43 fetching corpus: 1098, signal 133505/157116 (executing program) 1970/01/01 00:07:45 fetching corpus: 1148, signal 135110/159414 (executing program) 1970/01/01 00:07:47 fetching corpus: 1197, signal 137090/162063 (executing program) 1970/01/01 00:07:49 fetching corpus: 1246, signal 138910/164556 (executing program) 1970/01/01 00:07:51 fetching corpus: 1296, signal 140567/166815 (executing program) 1970/01/01 00:07:52 fetching corpus: 1346, signal 141840/168809 (executing program) 1970/01/01 00:07:54 fetching corpus: 1394, signal 144379/171761 (executing program) 1970/01/01 00:07:56 fetching corpus: 1444, signal 146273/174191 (executing program) [ 477.922661][ T2868] warn_alloc: 3 callbacks suppressed [ 477.922886][ T2868] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 477.940931][ T2868] CPU: 1 PID: 2868 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 477.943272][ T2868] Hardware name: riscv-virtio,qemu (DT) [ 477.944589][ T2868] Call Trace: [ 477.945692][ T2868] [] dump_backtrace+0x2e/0x3c [ 477.946949][ T2868] [] show_stack+0x34/0x40 [ 477.948103][ T2868] [] dump_stack_lvl+0xe0/0x14c [ 477.949395][ T2868] [] dump_stack+0x1c/0x24 [ 477.950644][ T2868] [] warn_alloc+0x168/0x22c [ 477.951811][ T2868] [] __vmalloc_node_range+0xb6c/0xdb4 [ 477.953540][ T2868] [] bpf_jit_alloc_exec+0x46/0x52 [ 477.954601][ T2868] [] bpf_jit_binary_alloc+0x96/0x13c [ 477.955626][ T2868] [] bpf_int_jit_compile+0x886/0xaa6 [ 477.957726][ T2868] [] bpf_prog_select_runtime+0x1a2/0x22e [ 477.958750][ T2868] [] bpf_migrate_filter+0x258/0x2be [ 477.959734][ T2868] [] bpf_prepare_filter+0x10e/0x1b4 [ 477.960747][ T2868] [] __get_filter+0x148/0x1a0 [ 477.961768][ T2868] [] sk_attach_filter+0x22/0x11a [ 477.962987][ T2868] [] sk_setsockopt+0x144e/0x270c [ 477.964278][ T2868] [] sock_setsockopt+0x48/0x58 [ 477.965323][ T2868] [] __sys_setsockopt+0x3f0/0x418 [ 477.966717][ T2868] [] sys_setsockopt+0x3a/0x4c [ 477.968163][ T2868] [] ret_from_syscall+0x0/0x2 [ 478.042805][ T2868] Mem-Info: [ 478.043757][ T2868] active_anon:9983 inactive_anon:44 isolated_anon:0 [ 478.043757][ T2868] active_file:0 inactive_file:7095 isolated_file:0 [ 478.043757][ T2868] unevictable:768 dirty:0 writeback:0 [ 478.043757][ T2868] slab_reclaimable:5297 slab_unreclaimable:18876 [ 478.043757][ T2868] mapped:4320 shmem:807 pagetables:131 [ 478.043757][ T2868] sec_pagetables:0 bounce:0 [ 478.043757][ T2868] kernel_misc_reclaimable:0 [ 478.043757][ T2868] free:269720 free_pcp:647 free_cma:4096 [ 478.046086][ T2868] Node 0 active_anon:39932kB inactive_anon:176kB active_file:0kB inactive_file:28380kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:17280kB dirty:0kB writeback:0kB shmem:3228kB writeback_tmp:0kB kernel_stack:4640kB pagetables:524kB sec_pagetables:0kB all_unreclaimable? no [ 478.047797][ T2868] Node 0 DMA32 free:1078880kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:39932kB inactive_anon:176kB active_file:0kB inactive_file:28380kB unevictable:3072kB writepending:0kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:2588kB local_pcp:1676kB free_cma:16384kB [ 478.049861][ T2868] lowmem_reserve[]: 0 0 0 [ 478.063138][ T2868] Node 0 DMA32: 16*4kB (UME) 2*8kB (ME) 27*16kB (UE) 3*32kB (ME) 10*64kB (UE) 3*128kB (UE) 2*256kB (UE) 1*512kB (E) 1*1024kB (U) 3*2048kB (EC) 261*4096kB (MC) = 1078880kB [ 478.123500][ T2868] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 478.125358][ T2868] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 478.126879][ T2868] 7902 total pagecache pages [ 478.128108][ T2868] 0 pages in swap cache [ 478.129253][ T2868] Free swap = 0kB [ 478.130359][ T2868] Total swap = 0kB [ 478.131520][ T2868] 523776 pages RAM [ 478.145887][ T2868] 0 pages HighMem/MovableOnly [ 478.147151][ T2868] 184025 pages reserved [ 478.148294][ T2868] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:07:58 fetching corpus: 1493, signal 148109/176560 (executing program) ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:08:01 fetching corpus: 1541, signal 149561/178611 (executing program) 1970/01/01 00:08:03 fetching corpus: 1591, signal 151242/180799 (executing program) 1970/01/01 00:08:04 fetching corpus: 1641, signal 152948/182938 (executing program) ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:08:07 fetching corpus: 1690, signal 154712/185097 (executing program) 1970/01/01 00:08:08 fetching corpus: 1740, signal 156524/187303 (executing program) 1970/01/01 00:08:10 fetching corpus: 1790, signal 157812/189111 (executing program) 1970/01/01 00:08:13 fetching corpus: 1840, signal 159403/191136 (executing program) 1970/01/01 00:08:15 fetching corpus: 1890, signal 160726/192980 (executing program) 1970/01/01 00:08:17 fetching corpus: 1939, signal 162391/194980 (executing program) 1970/01/01 00:08:19 fetching corpus: 1989, signal 163648/196673 (executing program) 1970/01/01 00:08:21 fetching corpus: 2038, signal 165119/198470 (executing program) 1970/01/01 00:08:23 fetching corpus: 2088, signal 166118/199991 (executing program) 1970/01/01 00:08:25 fetching corpus: 2136, signal 167370/201603 (executing program) 1970/01/01 00:08:27 fetching corpus: 2186, signal 168844/203395 (executing program) 1970/01/01 00:08:30 fetching corpus: 2235, signal 170044/204933 (executing program) 1970/01/01 00:08:32 fetching corpus: 2285, signal 171757/206845 (executing program) 1970/01/01 00:08:33 fetching corpus: 2334, signal 172826/208297 (executing program) 1970/01/01 00:08:35 fetching corpus: 2384, signal 173912/209681 (executing program) 1970/01/01 00:08:37 fetching corpus: 2433, signal 174672/210893 (executing program) 1970/01/01 00:08:39 fetching corpus: 2483, signal 175774/212326 (executing program) 1970/01/01 00:08:42 fetching corpus: 2533, signal 176928/213735 (executing program) 1970/01/01 00:08:44 fetching corpus: 2582, signal 177972/215104 (executing program) 1970/01/01 00:08:47 fetching corpus: 2632, signal 179272/216611 (executing program) 1970/01/01 00:08:48 fetching corpus: 2682, signal 180540/218078 (executing program) 1970/01/01 00:08:50 fetching corpus: 2732, signal 181498/219325 (executing program) 1970/01/01 00:08:53 fetching corpus: 2782, signal 182663/220679 (executing program) 1970/01/01 00:08:55 fetching corpus: 2832, signal 183543/221804 (executing program) 1970/01/01 00:08:57 fetching corpus: 2882, signal 184474/222974 (executing program) 1970/01/01 00:08:59 fetching corpus: 2930, signal 185879/224494 (executing program) 1970/01/01 00:09:01 fetching corpus: 2980, signal 186362/225402 (executing program) ps_root_recvmsgcb: failed to send message to pid 2869: Connection refused ps_root_recvmsgcb: failed to send message to pid 2868: Connection refused ps_root_recvmsgcb: failed to send message to pid 2870: Connection refused 1970/01/01 00:09:03 fetching corpus: 3030, signal 187541/226673 (executing program) 1970/01/01 00:09:05 fetching corpus: 3080, signal 188245/227700 (executing program) 1970/01/01 00:09:07 fetching corpus: 3130, signal 188948/228717 (executing program) 1970/01/01 00:09:08 fetching corpus: 3180, signal 190102/229926 (executing program) ps_root_recvmsgcb: failed to send message to pid 2871: Connection refused 1970/01/01 00:09:10 fetching corpus: 3230, signal 190863/230931 (executing program) 1970/01/01 00:09:12 fetching corpus: 3280, signal 191664/231887 (executing program) 1970/01/01 00:09:13 fetching corpus: 3330, signal 192624/232978 (executing program) 1970/01/01 00:09:15 fetching corpus: 3379, signal 193356/233967 (executing program) 1970/01/01 00:09:17 fetching corpus: 3428, signal 194458/235073 (executing program) 1970/01/01 00:09:19 fetching corpus: 3478, signal 195568/236149 (executing program) 1970/01/01 00:09:21 fetching corpus: 3528, signal 196820/237280 (executing program) 1970/01/01 00:09:24 fetching corpus: 3578, signal 197588/238216 (executing program) 1970/01/01 00:09:26 fetching corpus: 3628, signal 198227/239053 (executing program) 1970/01/01 00:09:29 fetching corpus: 3678, signal 199008/239979 (executing program) 1970/01/01 00:09:31 fetching corpus: 3728, signal 199893/240915 (executing program) 1970/01/01 00:09:33 fetching corpus: 3778, signal 200698/241824 (executing program) 1970/01/01 00:09:34 fetching corpus: 3828, signal 201772/242865 (executing program) 1970/01/01 00:09:36 fetching corpus: 3878, signal 202934/243903 (executing program) 1970/01/01 00:09:38 fetching corpus: 3928, signal 203894/244849 (executing program) 1970/01/01 00:09:40 fetching corpus: 3978, signal 204593/245624 (executing program) 1970/01/01 00:09:42 fetching corpus: 4028, signal 205352/246424 (executing program) 1970/01/01 00:09:44 fetching corpus: 4078, signal 207277/247691 (executing program) 1970/01/01 00:09:45 fetching corpus: 4127, signal 208706/248742 (executing program) 1970/01/01 00:09:47 fetching corpus: 4177, signal 209415/249470 (executing program) 1970/01/01 00:09:49 fetching corpus: 4226, signal 210001/250198 (executing program) 1970/01/01 00:09:51 fetching corpus: 4276, signal 210588/250915 (executing program) 1970/01/01 00:09:52 fetching corpus: 4326, signal 211292/251633 (executing program) 1970/01/01 00:09:54 fetching corpus: 4376, signal 211996/252328 (executing program) 1970/01/01 00:09:56 fetching corpus: 4426, signal 212740/253050 (executing program) 1970/01/01 00:09:59 fetching corpus: 4475, signal 213336/253666 (executing program) 1970/01/01 00:10:01 fetching corpus: 4525, signal 214097/254370 (executing program) 1970/01/01 00:10:03 fetching corpus: 4575, signal 214902/255084 (executing program) 1970/01/01 00:10:05 fetching corpus: 4625, signal 215486/255707 (executing program) [ 606.419732][ T2872] warn_alloc: 3 callbacks suppressed [ 606.420086][ T2872] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 606.447978][ T2872] CPU: 0 PID: 2872 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 606.449525][ T2872] Hardware name: riscv-virtio,qemu (DT) [ 606.450700][ T2872] Call Trace: [ 606.451858][ T2872] [] dump_backtrace+0x2e/0x3c [ 606.454090][ T2872] [] show_stack+0x34/0x40 [ 606.455612][ T2872] [] dump_stack_lvl+0xe0/0x14c [ 606.457173][ T2872] [] dump_stack+0x1c/0x24 [ 606.458724][ T2872] [] warn_alloc+0x168/0x22c [ 606.460189][ T2872] [] __vmalloc_node_range+0xb6c/0xdb4 [ 606.461835][ T2872] [] bpf_jit_alloc_exec+0x46/0x52 [ 606.464147][ T2872] [] bpf_jit_binary_alloc+0x96/0x13c [ 606.465722][ T2872] [] bpf_int_jit_compile+0x886/0xaa6 [ 606.467246][ T2872] [] bpf_prog_select_runtime+0x1a2/0x22e [ 606.468752][ T2872] [] bpf_migrate_filter+0x258/0x2be [ 606.470370][ T2872] [] bpf_prepare_filter+0x10e/0x1b4 [ 606.472078][ T2872] [] __get_filter+0x148/0x1a0 [ 606.473693][ T2872] [] sk_attach_filter+0x22/0x11a [ 606.475135][ T2872] [] sk_setsockopt+0x144e/0x270c [ 606.476724][ T2872] [] sock_setsockopt+0x48/0x58 [ 606.478141][ T2872] [] __sys_setsockopt+0x3f0/0x418 [ 606.479649][ T2872] [] sys_setsockopt+0x3a/0x4c [ 606.481078][ T2872] [] ret_from_syscall+0x0/0x2 [ 606.537435][ T2872] Mem-Info: [ 606.538910][ T2872] active_anon:14963 inactive_anon:46 isolated_anon:0 [ 606.538910][ T2872] active_file:0 inactive_file:7103 isolated_file:0 [ 606.538910][ T2872] unevictable:768 dirty:0 writeback:0 [ 606.538910][ T2872] slab_reclaimable:5161 slab_unreclaimable:19771 [ 606.538910][ T2872] mapped:4320 shmem:809 pagetables:144 [ 606.538910][ T2872] sec_pagetables:0 bounce:0 [ 606.538910][ T2872] kernel_misc_reclaimable:0 [ 606.538910][ T2872] free:263634 free_pcp:963 free_cma:4096 [ 606.554732][ T2872] Node 0 active_anon:59852kB inactive_anon:184kB active_file:0kB inactive_file:28412kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:17280kB dirty:0kB writeback:0kB shmem:3236kB writeback_tmp:0kB kernel_stack:4640kB pagetables:576kB sec_pagetables:0kB all_unreclaimable? no [ 606.559175][ T2872] Node 0 DMA32 free:1054536kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:59852kB inactive_anon:184kB active_file:0kB inactive_file:28412kB unevictable:3072kB writepending:0kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:3852kB local_pcp:2084kB free_cma:16384kB [ 606.564712][ T2872] lowmem_reserve[]: 0 0 0 [ 606.567270][ T2872] Node 0 DMA32: 48*4kB (UME) 1*8kB (E) 4*16kB (UE) 4*32kB (UME) 5*64kB (UE) 1*128kB (E) 2*256kB (ME) 3*512kB (UME) 1*1024kB (U) 3*2048kB (EC) 255*4096kB (MC) = 1054536kB [ 606.589323][ T2872] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 606.590895][ T2872] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 606.597069][ T2872] 7912 total pagecache pages [ 606.614681][ T2872] 0 pages in swap cache [ 606.616041][ T2872] Free swap = 0kB [ 606.616703][ T2872] Total swap = 0kB [ 606.617409][ T2872] 523776 pages RAM [ 606.618249][ T2872] 0 pages HighMem/MovableOnly [ 606.619076][ T2872] 184025 pages reserved [ 606.619782][ T2872] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:10:07 fetching corpus: 4675, signal 216317/256383 (executing program) 1970/01/01 00:10:09 fetching corpus: 4725, signal 216977/256997 (executing program) 1970/01/01 00:10:10 fetching corpus: 4775, signal 217812/257632 (executing program) 1970/01/01 00:10:13 fetching corpus: 4824, signal 218546/258255 (executing program) ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:10:15 fetching corpus: 4874, signal 219178/258814 (executing program) 1970/01/01 00:10:17 fetching corpus: 4924, signal 220000/259439 (executing program) 1970/01/01 00:10:18 fetching corpus: 4974, signal 220709/260059 (executing program) 1970/01/01 00:10:20 fetching corpus: 5024, signal 222015/260746 (executing program) 1970/01/01 00:10:21 fetching corpus: 5073, signal 222355/261241 (executing program) 1970/01/01 00:10:23 fetching corpus: 5123, signal 222952/261750 (executing program) 1970/01/01 00:10:25 fetching corpus: 5171, signal 223761/262341 (executing program) 1970/01/01 00:10:28 fetching corpus: 5221, signal 224453/262856 (executing program) 1970/01/01 00:10:31 fetching corpus: 5271, signal 225236/263384 (executing program) 1970/01/01 00:10:33 fetching corpus: 5320, signal 226058/263917 (executing program) 1970/01/01 00:10:34 fetching corpus: 5370, signal 226787/264410 (executing program) 1970/01/01 00:10:37 fetching corpus: 5420, signal 227684/264947 (executing program) 1970/01/01 00:10:39 fetching corpus: 5470, signal 228464/265472 (executing program) 1970/01/01 00:10:41 fetching corpus: 5520, signal 228968/265918 (executing program) 1970/01/01 00:10:43 fetching corpus: 5570, signal 229780/266412 (executing program) 1970/01/01 00:10:44 fetching corpus: 5620, signal 230337/266835 (executing program) 1970/01/01 00:10:45 fetching corpus: 5670, signal 230861/267240 (executing program) 1970/01/01 00:10:47 fetching corpus: 5720, signal 231618/267674 (executing program) 1970/01/01 00:10:50 fetching corpus: 5769, signal 232270/268080 (executing program) 1970/01/01 00:10:51 fetching corpus: 5819, signal 232783/268466 (executing program) 1970/01/01 00:10:53 fetching corpus: 5868, signal 233273/268835 (executing program) 1970/01/01 00:10:55 fetching corpus: 5918, signal 233945/269207 (executing program) 1970/01/01 00:10:56 fetching corpus: 5968, signal 234442/269574 (executing program) 1970/01/01 00:10:58 fetching corpus: 6018, signal 235046/269917 (executing program) 1970/01/01 00:11:00 fetching corpus: 6068, signal 235577/270273 (executing program) 1970/01/01 00:11:01 fetching corpus: 6118, signal 236116/270598 (executing program) 1970/01/01 00:11:03 fetching corpus: 6168, signal 236635/270902 (executing program) 1970/01/01 00:11:05 fetching corpus: 6218, signal 237281/271233 (executing program) 1970/01/01 00:11:07 fetching corpus: 6268, signal 237826/271557 (executing program) 1970/01/01 00:11:08 fetching corpus: 6317, signal 238570/271928 (executing program) ps_root_recvmsgcb: failed to send message to pid 2872: Connection refused 1970/01/01 00:11:10 fetching corpus: 6366, signal 239291/272217 (executing program) ps_root_recvmsgcb: failed to send message to pid 2873: Connection refused ps_root_recvmsgcb: failed to send message to pid 2874: Connection refused 1970/01/01 00:11:12 fetching corpus: 6416, signal 239837/272520 (executing program) 1970/01/01 00:11:14 fetching corpus: 6466, signal 240332/272868 (executing program) 1970/01/01 00:11:16 fetching corpus: 6516, signal 240958/273137 (executing program) ps_root_recvmsgcb: failed to send message to pid 2875: Connection refused 1970/01/01 00:11:18 fetching corpus: 6565, signal 241681/273449 (executing program) 1970/01/01 00:11:19 fetching corpus: 6615, signal 242220/273699 (executing program) 1970/01/01 00:11:21 fetching corpus: 6664, signal 242795/273941 (executing program) 1970/01/01 00:11:23 fetching corpus: 6714, signal 243220/274179 (executing program) 1970/01/01 00:11:26 fetching corpus: 6764, signal 243794/274410 (executing program) 1970/01/01 00:11:28 fetching corpus: 6814, signal 244415/274482 (executing program) 1970/01/01 00:11:30 fetching corpus: 6864, signal 244898/274482 (executing program) 1970/01/01 00:11:33 fetching corpus: 6913, signal 245328/274489 (executing program) 1970/01/01 00:11:36 fetching corpus: 6962, signal 246192/274490 (executing program) 1970/01/01 00:11:38 fetching corpus: 7012, signal 246766/274490 (executing program) 1970/01/01 00:11:40 fetching corpus: 7062, signal 247668/274490 (executing program) 1970/01/01 00:11:42 fetching corpus: 7112, signal 247993/274490 (executing program) 1970/01/01 00:11:45 fetching corpus: 7162, signal 248411/274500 (executing program) 1970/01/01 00:11:47 fetching corpus: 7212, signal 248955/274500 (executing program) 1970/01/01 00:11:48 fetching corpus: 7262, signal 249399/274531 (executing program) 1970/01/01 00:11:50 fetching corpus: 7312, signal 249748/274531 (executing program) 1970/01/01 00:11:52 fetching corpus: 7362, signal 250131/274531 (executing program) 1970/01/01 00:11:53 fetching corpus: 7412, signal 250633/274531 (executing program) 1970/01/01 00:11:55 fetching corpus: 7462, signal 250997/274531 (executing program) 1970/01/01 00:11:56 fetching corpus: 7512, signal 251334/274531 (executing program) 1970/01/01 00:11:58 fetching corpus: 7561, signal 251859/274531 (executing program) 1970/01/01 00:12:00 fetching corpus: 7611, signal 252570/274531 (executing program) 1970/01/01 00:12:02 fetching corpus: 7661, signal 253114/274531 (executing program) 1970/01/01 00:12:04 fetching corpus: 7710, signal 253510/274531 (executing program) 1970/01/01 00:12:05 fetching corpus: 7760, signal 254010/274531 (executing program) 1970/01/01 00:12:07 fetching corpus: 7809, signal 254461/274542 (executing program) 1970/01/01 00:12:08 fetching corpus: 7859, signal 254862/274542 (executing program) 1970/01/01 00:12:09 fetching corpus: 7909, signal 255157/274542 (executing program) 1970/01/01 00:12:11 fetching corpus: 7957, signal 255657/274542 (executing program) 1970/01/01 00:12:13 fetching corpus: 8007, signal 256068/274542 (executing program) [ 735.067774][ T2877] warn_alloc: 3 callbacks suppressed [ 735.068225][ T2877] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 735.097603][ T2877] CPU: 1 PID: 2877 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 735.099159][ T2877] Hardware name: riscv-virtio,qemu (DT) [ 735.100326][ T2877] Call Trace: [ 735.101403][ T2877] [] dump_backtrace+0x2e/0x3c [ 735.103771][ T2877] [] show_stack+0x34/0x40 [ 735.105209][ T2877] [] dump_stack_lvl+0xe0/0x14c [ 735.107005][ T2877] [] dump_stack+0x1c/0x24 [ 735.110083][ T2877] [] warn_alloc+0x168/0x22c [ 735.111817][ T2877] [] __vmalloc_node_range+0xb6c/0xdb4 [ 735.114235][ T2877] [] bpf_jit_alloc_exec+0x46/0x52 [ 735.115850][ T2877] [] bpf_jit_binary_alloc+0x96/0x13c [ 735.117664][ T2877] [] bpf_int_jit_compile+0x886/0xaa6 [ 735.119888][ T2877] [] bpf_prog_select_runtime+0x1a2/0x22e [ 735.122178][ T2877] [] bpf_migrate_filter+0x258/0x2be [ 735.123937][ T2877] [] bpf_prepare_filter+0x10e/0x1b4 [ 735.125578][ T2877] [] __get_filter+0x148/0x1a0 [ 735.127231][ T2877] [] sk_attach_filter+0x22/0x11a [ 735.128646][ T2877] [] sk_setsockopt+0x144e/0x270c [ 735.130171][ T2877] [] sock_setsockopt+0x48/0x58 [ 735.131845][ T2877] [] __sys_setsockopt+0x3f0/0x418 [ 735.134030][ T2877] [] sys_setsockopt+0x3a/0x4c [ 735.135510][ T2877] [] ret_from_syscall+0x0/0x2 [ 735.218104][ T2877] Mem-Info: [ 735.219652][ T2877] active_anon:18544 inactive_anon:48 isolated_anon:0 [ 735.219652][ T2877] active_file:0 inactive_file:7111 isolated_file:0 [ 735.219652][ T2877] unevictable:768 dirty:0 writeback:0 [ 735.219652][ T2877] slab_reclaimable:5134 slab_unreclaimable:19883 [ 735.219652][ T2877] mapped:4320 shmem:811 pagetables:146 [ 735.219652][ T2877] sec_pagetables:0 bounce:0 [ 735.219652][ T2877] kernel_misc_reclaimable:0 [ 735.219652][ T2877] free:260233 free_pcp:838 free_cma:4096 [ 735.274769][ T2877] Node 0 active_anon:74176kB inactive_anon:192kB active_file:0kB inactive_file:28444kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:17280kB dirty:0kB writeback:0kB shmem:3244kB writeback_tmp:0kB kernel_stack:4568kB pagetables:584kB sec_pagetables:0kB all_unreclaimable? no [ 735.277713][ T2877] Node 0 DMA32 free:1040932kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:74176kB inactive_anon:192kB active_file:0kB inactive_file:28444kB unevictable:3072kB writepending:0kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:3428kB local_pcp:1528kB free_cma:16384kB [ 735.281054][ T2877] lowmem_reserve[]: 0 0 0 [ 735.317116][ T2877] Node 0 DMA32: 151*4kB (UE) 13*8kB (ME) 58*16kB (UME) 20*32kB (UE) 7*64kB (UE) 1*128kB (E) 3*256kB (UME) 2*512kB (ME) 0*1024kB 4*2048kB (MEC) 251*4096kB (MC) = 1040932kB [ 735.385718][ T2877] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 735.388311][ T2877] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 735.390771][ T2877] 7922 total pagecache pages [ 735.407889][ T2877] 0 pages in swap cache [ 735.409384][ T2877] Free swap = 0kB [ 735.410581][ T2877] Total swap = 0kB [ 735.424168][ T2877] 523776 pages RAM [ 735.425643][ T2877] 0 pages HighMem/MovableOnly [ 735.426901][ T2877] 184025 pages reserved [ 735.428159][ T2877] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:12:15 fetching corpus: 8057, signal 256494/274542 (executing program) ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:12:16 fetching corpus: 8107, signal 256931/274542 (executing program) 1970/01/01 00:12:18 fetching corpus: 8157, signal 257389/274542 (executing program) 1970/01/01 00:12:20 fetching corpus: 8205, signal 257732/274543 (executing program) ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:12:22 fetching corpus: 8255, signal 258220/274543 (executing program) 1970/01/01 00:12:24 fetching corpus: 8304, signal 258735/274543 (executing program) 1970/01/01 00:12:25 fetching corpus: 8354, signal 259131/274544 (executing program) 1970/01/01 00:12:27 fetching corpus: 8404, signal 259555/274544 (executing program) 1970/01/01 00:12:29 fetching corpus: 8454, signal 259904/274546 (executing program) 1970/01/01 00:12:32 fetching corpus: 8504, signal 260285/274546 (executing program) 1970/01/01 00:12:34 fetching corpus: 8554, signal 260894/274549 (executing program) 1970/01/01 00:12:36 fetching corpus: 8604, signal 261437/274551 (executing program) 1970/01/01 00:12:38 fetching corpus: 8654, signal 262124/274551 (executing program) 1970/01/01 00:12:40 fetching corpus: 8704, signal 262655/274551 (executing program) 1970/01/01 00:12:43 fetching corpus: 8752, signal 263017/274592 (executing program) 1970/01/01 00:12:46 fetching corpus: 8802, signal 263399/274592 (executing program) 1970/01/01 00:12:47 fetching corpus: 8852, signal 263757/274593 (executing program) 1970/01/01 00:12:49 fetching corpus: 8902, signal 264482/274593 (executing program) 1970/01/01 00:12:51 fetching corpus: 8950, signal 264979/274594 (executing program) 1970/01/01 00:12:52 fetching corpus: 9000, signal 265383/274594 (executing program) 1970/01/01 00:12:54 fetching corpus: 9050, signal 265734/274594 (executing program) 1970/01/01 00:12:56 fetching corpus: 9100, signal 266158/274594 (executing program) 1970/01/01 00:12:59 fetching corpus: 9150, signal 266491/274595 (executing program) 1970/01/01 00:13:01 fetching corpus: 9200, signal 266996/274665 (executing program) 1970/01/01 00:13:03 fetching corpus: 9250, signal 267537/274665 (executing program) 1970/01/01 00:13:05 fetching corpus: 9300, signal 268100/274668 (executing program) 1970/01/01 00:13:06 fetching corpus: 9350, signal 268437/274668 (executing program) 1970/01/01 00:13:08 fetching corpus: 9400, signal 268754/274668 (executing program) 1970/01/01 00:13:10 fetching corpus: 9450, signal 269111/274672 (executing program) 1970/01/01 00:13:12 fetching corpus: 9500, signal 269640/274672 (executing program) 1970/01/01 00:13:13 fetching corpus: 9550, signal 270039/274674 (executing program) 1970/01/01 00:13:14 fetching corpus: 9599, signal 270327/274674 (executing program) 1970/01/01 00:13:17 fetching corpus: 9649, signal 270724/274674 (executing program) ps_root_recvmsgcb: failed to send message to pid 2877: Connection refused 1970/01/01 00:13:18 fetching corpus: 9684, signal 270974/274674 (executing program) 1970/01/01 00:13:18 fetching corpus: 9684, signal 270974/274674 (executing program) ps_root_recvmsgcb: failed to send message to pid 2879: Connection refused ps_root_recvmsgcb: failed to send message to pid 2878: Connection refused ps_root_recvmsgcb: failed to send message to pid 2880: Connection refused [ 862.337253][ T2887] warn_alloc: 3 callbacks suppressed [ 862.337622][ T2887] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 862.359293][ T2887] CPU: 1 PID: 2887 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 862.361147][ T2887] Hardware name: riscv-virtio,qemu (DT) [ 862.362815][ T2887] Call Trace: [ 862.364241][ T2887] [] dump_backtrace+0x2e/0x3c [ 862.365828][ T2887] [] show_stack+0x34/0x40 [ 862.367334][ T2887] [] dump_stack_lvl+0xe0/0x14c [ 862.368919][ T2887] [] dump_stack+0x1c/0x24 [ 862.370486][ T2887] [] warn_alloc+0x168/0x22c [ 862.372006][ T2887] [] __vmalloc_node_range+0xb6c/0xdb4 [ 862.373655][ T2887] [] bpf_jit_alloc_exec+0x46/0x52 [ 862.375147][ T2887] [] bpf_jit_binary_alloc+0x96/0x13c [ 862.376632][ T2887] [] bpf_int_jit_compile+0x886/0xaa6 [ 862.378083][ T2887] [] bpf_prog_select_runtime+0x1a2/0x22e [ 862.379643][ T2887] [] bpf_migrate_filter+0x258/0x2be [ 862.381279][ T2887] [] bpf_prepare_filter+0x10e/0x1b4 [ 862.383511][ T2887] [] __get_filter+0x148/0x1a0 [ 862.385114][ T2887] [] sk_attach_filter+0x22/0x11a [ 862.386703][ T2887] [] sk_setsockopt+0x144e/0x270c [ 862.388401][ T2887] [] sock_setsockopt+0x48/0x58 [ 862.390149][ T2887] [] __sys_setsockopt+0x3f0/0x418 [ 862.391905][ T2887] [] sys_setsockopt+0x3a/0x4c [ 862.394277][ T2887] [] ret_from_syscall+0x0/0x2 [ 862.416142][ T2887] Mem-Info: [ 862.417700][ T2887] active_anon:44108 inactive_anon:49 isolated_anon:0 [ 862.417700][ T2887] active_file:0 inactive_file:7125 isolated_file:0 [ 862.417700][ T2887] unevictable:768 dirty:0 writeback:0 [ 862.417700][ T2887] slab_reclaimable:5134 slab_unreclaimable:19036 [ 862.417700][ T2887] mapped:4320 shmem:812 pagetables:225 [ 862.417700][ T2887] sec_pagetables:0 bounce:0 [ 862.417700][ T2887] kernel_misc_reclaimable:0 [ 862.417700][ T2887] free:235392 free_pcp:906 free_cma:4096 [ 862.445896][ T2887] Node 0 active_anon:176432kB inactive_anon:196kB active_file:0kB inactive_file:28500kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:17280kB dirty:0kB writeback:0kB shmem:3248kB writeback_tmp:0kB kernel_stack:4576kB pagetables:900kB sec_pagetables:0kB all_unreclaimable? no [ 862.449941][ T2887] Node 0 DMA32 free:941568kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:176432kB inactive_anon:196kB active_file:0kB inactive_file:28500kB unevictable:3072kB writepending:0kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:3608kB local_pcp:2412kB free_cma:16384kB [ 862.476582][ T2887] lowmem_reserve[]: 0 0 0 [ 862.479769][ T2887] Node 0 DMA32: 244*4kB (UME) 14*8kB (UME) 66*16kB (UE) 81*32kB (UE) 14*64kB (UE) 2*128kB (ME) 3*256kB (UME) 2*512kB (ME) 0*1024kB 4*2048kB (MEC) 226*4096kB (MC) = 941568kB [ 862.517520][ T2887] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 862.519629][ T2887] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 862.521269][ T2887] 7937 total pagecache pages [ 862.529139][ T2887] 0 pages in swap cache [ 862.536393][ T2887] Free swap = 0kB [ 862.537853][ T2887] Total swap = 0kB [ 862.547299][ T2887] 523776 pages RAM [ 862.548860][ T2887] 0 pages HighMem/MovableOnly [ 862.550102][ T2887] 184025 pages reserved [ 862.551342][ T2887] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 1970/01/01 00:15:00 starting 2 fuzzer processes 00:15:00 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x2, 0x4, 0x7}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000500), 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r0, &(0x7f00000000c0)}, 0x20) 00:15:01 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x45c) r1 = dup(r0) ioctl$UI_DEV_CREATE(r1, 0x5501) ps_root_recvmsgcb: failed to send message to pid 2887: Connection refused ps_root_recvmsgcb: failed to send message to pid 2888: Connection refused ps_root_recvmsgcb: failed to send message to pid 2889: Connection refused ps_root_recvmsgcb: failed to send message to pid 2890: Connection refused [ 936.600650][ T2894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 936.747523][ T2894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 940.689493][ T2893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 940.900495][ T2893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 957.099206][ T2894] device hsr_slave_0 entered promiscuous mode [ 957.196188][ T2894] device hsr_slave_1 entered promiscuous mode [ 962.056192][ T2893] device hsr_slave_0 entered promiscuous mode [ 962.105793][ T2893] device hsr_slave_1 entered promiscuous mode [ 962.154752][ T2893] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 962.159480][ T2893] Cannot create hsr debugfs directory [ 969.370448][ T2894] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 970.185231][ T2894] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 970.679877][ T2894] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 971.084717][ T2894] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 974.671510][ T2893] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 974.915603][ T2893] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 975.060358][ T2893] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 975.188178][ T2893] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 986.421320][ T2894] 8021q: adding VLAN 0 to HW filter on device bond0 [ 986.970708][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 987.014709][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 990.586621][ T3527] warn_alloc: 3 callbacks suppressed [ 990.587135][ T3527] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 990.617295][ T3527] CPU: 1 PID: 3527 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 990.620122][ T3527] Hardware name: riscv-virtio,qemu (DT) [ 990.622271][ T3527] Call Trace: [ 990.623582][ T3527] [] dump_backtrace+0x2e/0x3c [ 990.625155][ T3527] [] show_stack+0x34/0x40 [ 990.626614][ T3527] [] dump_stack_lvl+0xe0/0x14c [ 990.628210][ T3527] [] dump_stack+0x1c/0x24 [ 990.629768][ T3527] [] warn_alloc+0x168/0x22c [ 990.631282][ T3527] [] __vmalloc_node_range+0xb6c/0xdb4 [ 990.633396][ T3527] [] bpf_jit_alloc_exec+0x46/0x52 [ 990.635514][ T3527] [] bpf_jit_binary_alloc+0x96/0x13c [ 990.638997][ T3527] [] bpf_int_jit_compile+0x886/0xaa6 [ 990.640766][ T3527] [] bpf_prog_select_runtime+0x1a2/0x22e [ 990.642524][ T3527] [] bpf_migrate_filter+0x258/0x2be [ 990.644082][ T3527] [] bpf_prepare_filter+0x10e/0x1b4 [ 990.647070][ T3527] [] __get_filter+0x148/0x1a0 [ 990.648747][ T3527] [] sk_attach_filter+0x22/0x11a [ 990.650122][ T3527] [] sk_setsockopt+0x144e/0x270c [ 990.651782][ T3527] [] sock_setsockopt+0x48/0x58 [ 990.653613][ T3527] [] __sys_setsockopt+0x3f0/0x418 [ 990.655029][ T3527] [] sys_setsockopt+0x3a/0x4c [ 990.656465][ T3527] [] ret_from_syscall+0x0/0x2 [ 990.760153][ T3527] Mem-Info: [ 990.800806][ T3527] active_anon:55755 inactive_anon:55 isolated_anon:0 [ 990.800806][ T3527] active_file:0 inactive_file:7165 isolated_file:0 [ 990.800806][ T3527] unevictable:768 dirty:6 writeback:0 [ 990.800806][ T3527] slab_reclaimable:5315 slab_unreclaimable:23042 [ 990.800806][ T3527] mapped:8589 shmem:821 pagetables:285 [ 990.800806][ T3527] sec_pagetables:0 bounce:0 [ 990.800806][ T3527] kernel_misc_reclaimable:0 [ 990.800806][ T3527] free:203628 free_pcp:721 free_cma:4096 [ 990.816795][ T3527] Node 0 active_anon:223020kB inactive_anon:220kB active_file:0kB inactive_file:28660kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:34356kB dirty:24kB writeback:0kB shmem:3284kB writeback_tmp:0kB kernel_stack:5304kB pagetables:1140kB sec_pagetables:0kB all_unreclaimable? no [ 990.820034][ T3527] Node 0 DMA32 free:814512kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:223020kB inactive_anon:220kB active_file:0kB inactive_file:28660kB unevictable:3072kB writepending:24kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:3084kB local_pcp:1508kB free_cma:16384kB [ 990.907564][ T3527] lowmem_reserve[]: 0 0 0 [ 990.910540][ T3527] Node 0 DMA32: 172*4kB (ME) 398*8kB (UME) 119*16kB (UME) 25*32kB (UM) 10*64kB (UME) 7*128kB (UM) 4*256kB (UM) 3*512kB (ME) 1*1024kB (M) 6*2048kB (UMEC) 193*4096kB (MC) = 814512kB [ 990.950700][ T3527] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 990.976106][ T3527] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 990.978288][ T3527] 7986 total pagecache pages [ 991.035474][ T3527] 0 pages in swap cache [ 991.037194][ T3527] Free swap = 0kB [ 991.038445][ T3527] Total swap = 0kB [ 991.039835][ T3527] 523776 pages RAM [ 991.040711][ T3527] 0 pages HighMem/MovableOnly [ 991.054979][ T3527] 184025 pages reserved [ 991.057800][ T3527] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 [ 991.486451][ T2893] 8021q: adding VLAN 0 to HW filter on device bond0 [ 992.497707][ T3255] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 992.586215][ T3255] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 [ 1003.538145][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1003.609869][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1003.679644][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1003.699331][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1003.946070][ T2866] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1004.235293][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1005.029369][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1005.090136][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1005.613924][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1005.687743][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1005.990841][ T2894] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1010.043347][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 1010.109076][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 1010.349343][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 1010.395802][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 1010.559505][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 1010.785530][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 1011.560169][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 1011.625183][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 1011.967224][ T2893] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 1012.015326][ T2893] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 1012.549936][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 1012.676525][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 1018.009921][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1018.016891][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1023.006222][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1023.024904][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1041.255713][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1041.338526][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1046.960238][ T3539] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 1047.039663][ T3539] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 1053.337345][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1053.468531][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1053.678124][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1053.727567][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1053.803330][ T2894] device veth0_vlan entered promiscuous mode [ 1054.387022][ T2894] device veth1_vlan entered promiscuous mode ps_root_recvmsgcb: failed to send message to pid 3527: Connection refused [ 1055.745695][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1055.806654][ T3144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1056.065458][ T2894] device veth0_macvtap entered promiscuous mode [ 1056.290114][ T2894] device veth1_macvtap entered promiscuous mode [ 1056.809634][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1057.125851][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1057.145121][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1057.465605][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1057.510809][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1057.657495][ T2894] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1057.661567][ T2894] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1057.665407][ T2894] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1057.667298][ T2894] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 ps_root_recvmsgcb: failed to send message to pid 3530: Connection refused ps_root_recvmsgcb: failed to send message to pid 3531: Connection refused [ 1059.659325][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 1059.735475][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 1059.858600][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 1059.907662][ T3372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 1060.067990][ T2893] device veth0_vlan entered promiscuous mode [ 1060.700103][ T2893] device veth1_vlan entered promiscuous mode [ 1062.138225][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 1062.189027][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 1062.396171][ T2893] device veth0_macvtap entered promiscuous mode ps_root_recvmsgcb: failed to send message to pid 3536: Connection refused [ 1062.775703][ T2893] device veth1_macvtap entered promiscuous mode [ 1063.281072][ T3587] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 1064.797589][ T2893] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1064.799217][ T2893] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1064.800454][ T2893] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1064.840149][ T2893] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1065.036149][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 1065.078591][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 1065.137691][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 1065.199977][ T2867] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 1066.157132][ T3590] input: syz1 as /devices/virtual/input/input0 00:17:48 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x45c) r1 = dup(r0) ioctl$UI_DEV_CREATE(r1, 0x5501) [ 1074.546082][ T3597] input: syz1 as /devices/virtual/input/input1 00:17:55 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x45c) r1 = dup(r0) ioctl$UI_DEV_CREATE(r1, 0x5501) 00:17:56 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x2, 0x4, 0x7}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000500), 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r0, &(0x7f00000000c0)}, 0x20) [ 1079.748234][ T3605] input: syz1 as /devices/virtual/input/input2 00:18:00 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x2, 0x4, 0x7}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000500), 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r0, &(0x7f00000000c0)}, 0x20) 00:18:00 executing program 1: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f0000000340)={0x400000100002f}) ioctl$UI_SET_EVBIT(r0, 0x40045564, 0x3) write$uinput_user_dev(r0, &(0x7f0000000380)={'syz1\x00', {}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6]}, 0x45c) r1 = dup(r0) ioctl$UI_DEV_CREATE(r1, 0x5501) [ 1084.317083][ T3614] input: syz1 as /devices/virtual/input/input3 00:18:03 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x12, 0x2, 0x4, 0x7}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000500), 0x20000000}, 0x20) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000100)={r0, &(0x7f00000000c0)}, 0x20) 00:18:05 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x5, 0x7}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20) 00:18:07 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:09 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x5, 0x7}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20) [ 1090.851926][ T3624] [ 1090.853170][ T3624] ====================================================== [ 1090.854277][ T3624] WARNING: possible circular locking dependency detected [ 1090.855437][ T3624] 6.2.0-rc1-syzkaller #0 Tainted: G W [ 1090.857215][ T3624] ------------------------------------------------------ [ 1090.859594][ T3624] syz-executor.0/3624 is trying to acquire lock: [ 1090.860723][ T3624] ffffffff8505b470 (cpu_hotplug_lock){++++}-{0:0}, at: cpus_read_lock+0x14/0x1c [ 1090.863417][ T3624] [ 1090.863417][ T3624] but task is already holding lock: [ 1090.864321][ T3624] ffffffff851ad348 (freezer_mutex){+.+.}-{3:3}, at: freezer_write+0xa0/0x866 [ 1090.866662][ T3624] [ 1090.866662][ T3624] which lock already depends on the new lock. [ 1090.866662][ T3624] [ 1090.867717][ T3624] [ 1090.867717][ T3624] the existing dependency chain (in reverse order) is: [ 1090.868875][ T3624] [ 1090.868875][ T3624] -> #2 (freezer_mutex){+.+.}-{3:3}: [ 1090.870719][ T3624] lock_acquire.part.0+0x1d0/0x424 [ 1090.872262][ T3624] lock_acquire+0x54/0x6a [ 1090.873356][ T3624] __mutex_lock+0x114/0xb42 [ 1090.874383][ T3624] mutex_lock_nested+0x14/0x1c [ 1090.875485][ T3624] freezer_attach+0x96/0x19a [ 1090.876533][ T3624] cgroup_migrate_execute+0x818/0xa3a [ 1090.877699][ T3624] cgroup_attach_task+0x418/0x7ac [ 1090.878973][ T3624] __cgroup1_procs_write.constprop.0+0x250/0x2be [ 1090.880156][ T3624] cgroup1_procs_write+0x24/0x32 [ 1090.881182][ T3624] cgroup_file_write+0x1b2/0x3b8 [ 1090.882806][ T3624] kernfs_fop_write_iter+0x264/0x32e [ 1090.884061][ T3624] vfs_write+0x4a4/0x568 [ 1090.885167][ T3624] ksys_write+0x10a/0x224 [ 1090.886548][ T3624] sys_write+0x28/0x36 [ 1090.887582][ T3624] ret_from_syscall+0x0/0x2 [ 1090.889231][ T3624] [ 1090.889231][ T3624] -> #1 (cgroup_threadgroup_rwsem){++++}-{0:0}: [ 1090.891139][ T3624] lock_acquire.part.0+0x1d0/0x424 [ 1090.892633][ T3624] lock_acquire+0x54/0x6a [ 1090.893574][ T3624] percpu_down_write+0x4e/0x1d4 [ 1090.894629][ T3624] cgroup_procs_write_start+0x12a/0x46c [ 1090.895755][ T3624] __cgroup_procs_write+0xc2/0x3be [ 1090.896866][ T3624] cgroup_procs_write+0x22/0x48 [ 1090.897926][ T3624] cgroup_file_write+0x1b2/0x3b8 [ 1090.899038][ T3624] kernfs_fop_write_iter+0x264/0x32e [ 1090.900171][ T3624] vfs_write+0x4a4/0x568 [ 1090.902297][ T3624] ksys_write+0x10a/0x224 [ 1090.904027][ T3624] sys_write+0x28/0x36 [ 1090.905757][ T3624] ret_from_syscall+0x0/0x2 [ 1090.907087][ T3624] [ 1090.907087][ T3624] -> #0 (cpu_hotplug_lock){++++}-{0:0}: [ 1090.909272][ T3624] check_noncircular+0x1de/0x1fe [ 1090.911728][ T3624] __lock_acquire+0x198a/0x347a [ 1090.913122][ T3624] lock_acquire.part.0+0x1d0/0x424 [ 1090.914176][ T3624] lock_acquire+0x54/0x6a [ 1090.915096][ T3624] percpu_down_read.constprop.0+0x40/0x216 [ 1090.916182][ T3624] cpus_read_lock+0x14/0x1c [ 1090.917168][ T3624] static_key_slow_inc+0x1e/0x6a [ 1090.918129][ T3624] freezer_apply_state+0x156/0x17c [ 1090.919184][ T3624] freezer_write+0x552/0x866 [ 1090.920187][ T3624] cgroup_file_write+0x1b2/0x3b8 [ 1090.921206][ T3624] kernfs_fop_write_iter+0x264/0x32e [ 1090.922880][ T3624] vfs_write+0x4a4/0x568 [ 1090.923972][ T3624] ksys_write+0x10a/0x224 [ 1090.924921][ T3624] sys_write+0x28/0x36 [ 1090.926017][ T3624] ret_from_syscall+0x0/0x2 [ 1090.927844][ T3624] [ 1090.927844][ T3624] other info that might help us debug this: [ 1090.927844][ T3624] [ 1090.930021][ T3624] Chain exists of: [ 1090.930021][ T3624] cpu_hotplug_lock --> cgroup_threadgroup_rwsem --> freezer_mutex [ 1090.930021][ T3624] [ 1090.933561][ T3624] Possible unsafe locking scenario: [ 1090.933561][ T3624] [ 1090.934896][ T3624] CPU0 CPU1 [ 1090.935624][ T3624] ---- ---- [ 1090.936294][ T3624] lock(freezer_mutex); [ 1090.937611][ T3624] lock(cgroup_threadgroup_rwsem); [ 1090.938954][ T3624] lock(freezer_mutex); [ 1090.940098][ T3624] lock(cpu_hotplug_lock); [ 1090.941091][ T3624] [ 1090.941091][ T3624] *** DEADLOCK *** [ 1090.941091][ T3624] [ 1090.942272][ T3624] 5 locks held by syz-executor.0/3624: [ 1090.943558][ T3624] #0: ff60000028ddc0e8 (&f->f_pos_lock){+.+.}-{3:3}, at: __fdget_pos+0xc2/0xc4 [ 1090.945862][ T3624] #1: ff60000011f18460 (sb_writers#9){.+.+}-{0:0}, at: vfs_write+0x1e8/0x568 [ 1090.948458][ T3624] #2: ff6000000aecf888 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1fc/0x32e [ 1090.951014][ T3624] #3: ff60000012c75cb8 (kn->active#13){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20e/0x32e [ 1090.953523][ T3624] #4: ffffffff851ad348 (freezer_mutex){+.+.}-{3:3}, at: freezer_write+0xa0/0x866 [ 1090.955732][ T3624] [ 1090.955732][ T3624] stack backtrace: [ 1090.956587][ T3624] CPU: 1 PID: 3624 Comm: syz-executor.0 Tainted: G W 6.2.0-rc1-syzkaller #0 [ 1090.957907][ T3624] Hardware name: riscv-virtio,qemu (DT) [ 1090.958882][ T3624] Call Trace: [ 1090.959671][ T3624] [] dump_backtrace+0x2e/0x3c [ 1090.960983][ T3624] [] show_stack+0x34/0x40 [ 1090.962870][ T3624] [] dump_stack_lvl+0xe0/0x14c [ 1090.964259][ T3624] [] dump_stack+0x1c/0x24 [ 1090.966000][ T3624] [] print_circular_bug+0x370/0x3fa [ 1090.967464][ T3624] [] check_noncircular+0x1de/0x1fe [ 1090.968875][ T3624] [] __lock_acquire+0x198a/0x347a [ 1090.970304][ T3624] [] lock_acquire.part.0+0x1d0/0x424 [ 1090.971779][ T3624] [] lock_acquire+0x54/0x6a [ 1090.973002][ T3624] [] percpu_down_read.constprop.0+0x40/0x216 [ 1090.974326][ T3624] [] cpus_read_lock+0x14/0x1c [ 1090.975572][ T3624] [] static_key_slow_inc+0x1e/0x6a [ 1090.976786][ T3624] [] freezer_apply_state+0x156/0x17c [ 1090.977966][ T3624] [] freezer_write+0x552/0x866 [ 1090.979248][ T3624] [] cgroup_file_write+0x1b2/0x3b8 [ 1090.980555][ T3624] [] kernfs_fop_write_iter+0x264/0x32e [ 1090.981802][ T3624] [] vfs_write+0x4a4/0x568 [ 1090.983171][ T3624] [] ksys_write+0x10a/0x224 [ 1090.984320][ T3624] [] sys_write+0x28/0x36 [ 1090.985753][ T3624] [] ret_from_syscall+0x0/0x2 00:18:11 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:11 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x5, 0x7}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20) 00:18:12 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x5, 0x7}, 0x48) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000100)={r0, 0x0, 0x0}, 0x20) 00:18:12 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:13 executing program 1: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:13 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:14 executing program 1: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:15 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:15 executing program 1: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:16 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:17 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:17 executing program 0: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff) openat$cgroup_root(0xffffffffffffff9c, &(0x7f00000000c0)='./cgroup.net/syz1\x00', 0x200002, 0x0) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r1 = openat$cgroup_freezer_state(r0, &(0x7f0000000100), 0x2, 0x0) write$cgroup_freezer_state(r1, &(0x7f0000000040)='FROZEN\x00', 0x7) write$cgroup_freezer_state(r1, &(0x7f0000000280)='THAWED\x00', 0x7) 00:18:18 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:19 executing program 0: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:19 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:20 executing program 0: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:20 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:21 executing program 0: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:21 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:23 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:23 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:24 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:24 executing program 1: r0 = shmget$private(0x0, 0x4000, 0x0, &(0x7f0000ffc000/0x4000)=nil) shmat(r0, &(0x7f0000ffd000/0x2000)=nil, 0x6000) shmat(r0, &(0x7f0000ffb000/0x3000)=nil, 0x6000) 00:18:25 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:26 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:26 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:26 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:27 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:28 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:29 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:30 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:30 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:31 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:32 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:32 executing program 1: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:33 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:34 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:34 executing program 0: r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0xc0, 0x0) r1 = syz_open_procfs(0x0, &(0x7f0000000500)='cmdline\x00') read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, 0x0, 0x0}, 0x2020) setreuid(0x0, r2) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000280)={0x1, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 00:18:35 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:37 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:37 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) [ 1118.476463][ T3707] warn_alloc: 3 callbacks suppressed [ 1118.476838][ T3707] dhcpcd: vmalloc error: size 4096, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0 [ 1118.497973][ T3707] CPU: 1 PID: 3707 Comm: dhcpcd Tainted: G W 6.2.0-rc1-syzkaller #0 [ 1118.500194][ T3707] Hardware name: riscv-virtio,qemu (DT) [ 1118.501233][ T3707] Call Trace: [ 1118.502672][ T3707] [] dump_backtrace+0x2e/0x3c [ 1118.504359][ T3707] [] show_stack+0x34/0x40 [ 1118.505700][ T3707] [] dump_stack_lvl+0xe0/0x14c [ 1118.507258][ T3707] [] dump_stack+0x1c/0x24 [ 1118.508641][ T3707] [] warn_alloc+0x168/0x22c [ 1118.509974][ T3707] [] __vmalloc_node_range+0xb6c/0xdb4 [ 1118.511709][ T3707] [] bpf_jit_alloc_exec+0x46/0x52 [ 1118.514108][ T3707] [] bpf_jit_binary_alloc+0x96/0x13c [ 1118.515486][ T3707] [] bpf_int_jit_compile+0x886/0xaa6 [ 1118.516714][ T3707] [] bpf_prog_select_runtime+0x1a2/0x22e [ 1118.517918][ T3707] [] bpf_migrate_filter+0x258/0x2be [ 1118.519251][ T3707] [] bpf_prepare_filter+0x10e/0x1b4 [ 1118.520514][ T3707] [] __get_filter+0x148/0x1a0 [ 1118.521838][ T3707] [] sk_attach_filter+0x22/0x11a [ 1118.524256][ T3707] [] sk_setsockopt+0x144e/0x270c [ 1118.526097][ T3707] [] sock_setsockopt+0x48/0x58 [ 1118.527715][ T3707] [] __sys_setsockopt+0x3f0/0x418 [ 1118.529151][ T3707] [] sys_setsockopt+0x3a/0x4c [ 1118.530293][ T3707] [] ret_from_syscall+0x0/0x2 [ 1118.606453][ T3707] Mem-Info: [ 1118.607664][ T3707] active_anon:49915 inactive_anon:59 isolated_anon:0 [ 1118.607664][ T3707] active_file:0 inactive_file:7233 isolated_file:0 [ 1118.607664][ T3707] unevictable:768 dirty:13 writeback:0 [ 1118.607664][ T3707] slab_reclaimable:5454 slab_unreclaimable:23620 [ 1118.607664][ T3707] mapped:8638 shmem:846 pagetables:311 [ 1118.607664][ T3707] sec_pagetables:0 bounce:0 [ 1118.607664][ T3707] kernel_misc_reclaimable:0 [ 1118.607664][ T3707] free:208399 free_pcp:617 free_cma:4096 [ 1118.611353][ T3707] Node 0 active_anon:199660kB inactive_anon:236kB active_file:0kB inactive_file:28932kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:34552kB dirty:52kB writeback:0kB shmem:3384kB writeback_tmp:0kB kernel_stack:5464kB pagetables:1244kB sec_pagetables:0kB all_unreclaimable? no [ 1118.627789][ T3707] Node 0 DMA32 free:833596kB boost:0kB min:4656kB low:6012kB high:7368kB reserved_highatomic:0KB active_anon:199660kB inactive_anon:236kB active_file:0kB inactive_file:28932kB unevictable:3072kB writepending:52kB present:2095104kB managed:1359004kB mlocked:0kB bounce:0kB free_pcp:2568kB local_pcp:1780kB free_cma:16384kB [ 1118.644896][ T3707] lowmem_reserve[]: 0 0 0 [ 1118.647053][ T3707] Node 0 DMA32: 689*4kB (UME) 685*8kB (UME) 317*16kB (UME) 52*32kB (UME) 23*64kB (UME) 28*128kB (UME) 16*256kB (UME) 7*512kB (ME) 9*1024kB (UME) 5*2048kB (MC) 192*4096kB (MC) = 833596kB [ 1118.677621][ T3707] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1118.679092][ T3707] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 1118.680934][ T3707] 8079 total pagecache pages [ 1118.693411][ T3707] 0 pages in swap cache [ 1118.694652][ T3707] Free swap = 0kB [ 1118.695480][ T3707] Total swap = 0kB [ 1118.696329][ T3707] 523776 pages RAM [ 1118.697106][ T3707] 0 pages HighMem/MovableOnly [ 1118.697934][ T3707] 184025 pages reserved [ 1118.698774][ T3707] 4096 pages cma reserved ps_bpf_start_bpf: bpf_open: Unknown error 524 ps_root_recvmsg: Unknown error 524 00:18:38 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:39 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:39 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) 00:18:40 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) setsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000200)={0x0, @in={{0x2, 0x0, @empty}}}, 0x90) VM DIAGNOSIS: 04:37:57 Registers: info registers vcpu 0 pc ffffffff82c9ebd6 mhartid 0000000000000000 mstatus 00000000000000a2 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff80005e88 mepc ffffffff80010d88 sepc 000000000003cb48 mcause 0000000000000009 scause 0000000000000008 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff833e9684 x2/sp ff20000007e97770 x3/gp ffffffff85efe540 x4/tp ff6000000fef3100 x5/t0 ffebffff0263ff62 x6/t1 00000000000f0000 x7/t2 0000000000000000 x8/s0 ff20000007e97920 x9/s1 ff6000002a33d8d8 x10/a0 ff6000002a33d9cc x11/a1 ffffffff845a8840 x12/a2 0000000000000054 x13/a3 ffffffff833e9684 x14/a4 dfffffff00000000 x15/a5 0000000000000000 x16/a6 ffffffff845a886e x17/a7 0000000000000000 x18/s2 ffffffff845a887e x19/s3 0000000000000000 x20/s4 ff6000002a33d9c4 x21/s5 ff6000002a33d9d0 x22/s6 0000000000000005 x23/s7 ff6000002a33d800 x24/s8 0000000000000010 x25/s9 ff6000002a33d840 x26/s10 ff20000007e97980 x27/s11 0000000000000010 x28/t3 ffffffffc6800000 x29/t4 00524f5252450040 x30/t5 0000000000000278 x31/t6 0000000000040000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80ee17ec mhartid 0000000000000001 mstatus 00000000000000a0 mip 00000000000000a0 mie 000000000000022a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff80005e88 mepc ffffffff80131bd4 sepc ffffffff804ebd2a mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80ee17ec x2/sp ff20000008d26e20 x3/gp ffffffff85efe540 x4/tp ff60000028c30000 x5/t0 2d00000000000000 x6/t1 00000000000f0000 x7/t2 2d2d2d2d2d2d2d2d x8/s0 ff20000008d26e50 x9/s1 ffffffff87df8760 x10/a0 ffffffff87df87a8 x11/a1 ff20000000259000 x12/a2 1ffffffff0fbf0f5 x13/a3 ffffffff80ee17ec x14/a4 0000000000000000 x15/a5 ffffffff87df87a8 x16/a6 ffffffff87df8851 x17/a7 0000000000000002 x18/s2 ff20000000259000 x19/s3 000000000000002d x20/s4 ffffffff87df8760 x21/s5 ffffffff80ee17ac x22/s6 0000000000000000 x23/s7 ffffffff87bb838e x24/s8 ffffffff87df87b8 x25/s9 0000000000000010 x26/s10 0000000000000010 x27/s11 0000000000000001 x28/t3 ffffffff87bb8357 x29/t4 fffffffef0fbf0ec x30/t5 fffffffef0fbf0ed x31/t6 ffffffff87bb8357 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000