kern.securelevel: 0 -> 1 creating runtime link editor directory cache. preserving editor files. starting network daemons: sshd. starting local daemons:. Thu Oct 22 11:51:29 PDT 2020 OpenBSD/amd64 (ci-openbsd-multicore-4.c.syzkaller.internal) (tty00) Warning: Permanently added '10.128.0.168' (ECDSA) to the list of known hosts. 2020/10/22 11:51:44 fuzzer started 2020/10/22 11:51:50 dialing manager at 10.128.15.235:13313 2020/10/22 11:51:50 syscalls: 381 2020/10/22 11:51:50 code coverage: enabled 2020/10/22 11:51:50 comparison tracing: enabled 2020/10/22 11:51:50 extra coverage: enabled 2020/10/22 11:51:50 setuid sandbox: enabled 2020/10/22 11:51:50 namespace sandbox: support is not implemented in syzkaller 2020/10/22 11:51:50 Android sandbox: support is not implemented in syzkaller 2020/10/22 11:51:50 fault injection: support is not implemented in syzkaller 2020/10/22 11:51:50 leak checking: support is not implemented in syzkaller 2020/10/22 11:51:50 net packet injection: enabled 2020/10/22 11:51:50 net device setup: support is not implemented in syzkaller 2020/10/22 11:51:50 concurrency sanitizer: support is not implemented in syzkaller 2020/10/22 11:51:50 devlink PCI setup: support is not implemented in syzkaller 2020/10/22 11:51:50 USB emulation: support is not implemented in syzkaller 2020/10/22 11:51:50 hci packet injection: support is not implemented in syzkaller 2020/10/22 11:51:50 wifi device emulation: support is not implemented in syzkaller 11:52:10 executing program 0: shmctl$SHM_UNLOCK(0xffffffffffffffff, 0x4) r0 = shmget$private(0x0, 0x3000, 0x200, &(0x7f0000ffc000/0x3000)=nil) semget$private(0x0, 0x0, 0x0) shmat(r0, &(0x7f0000ffa000/0x4000)=nil, 0x1000) r1 = msgget(0x1, 0x415) msgsnd(r1, &(0x7f0000000000)={0x2, "d4dd495ddf17105d053a2acc379e212c6123a7f63d9f8939fbe644a520d6a5bcb136308ae35a76cfbb11367720dcc8edb1ee21c99b4841297d2bb46927e268acd1622034695898c1aca6e9200554485ee4335f5f24337612fa70c7dce7f3e9e6400e399e0d07ccc48755aecb78d9"}, 0x76, 0x800) ioctl$WSKBDIO_SETBACKLIGHT(0xffffffffffffffff, 0x800c5712, &(0x7f0000000080)={0x5, 0x8, 0x3}) r2 = shmget$private(0x0, 0x1000, 0x1, &(0x7f0000ffd000/0x1000)=nil) shmctl$IPC_RMID(r2, 0x0) ioctl$BIOCGDIRFILT(0xffffffffffffffff, 0x4004427c, &(0x7f00000000c0)) getsockopt$sock_cred(0xffffffffffffff9c, 0xffff, 0x1022, &(0x7f0000000100), &(0x7f0000000140)=0xc) connect$inet(0xffffffffffffff9c, &(0x7f0000000180)={0x2, 0x1}, 0xc) r3 = openat$tty(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty\x00', 0x0, 0x0) ioctl$TIOCGETD(r3, 0x4004741a, &(0x7f0000000200)) r4 = dup(r3) ioctl$WSMUXIO_ADD_DEVICE(r4, 0x80085761, &(0x7f0000000240)={0x1, 0xfffffff8}) r5 = shmget$private(0x0, 0x4000, 0x102, &(0x7f0000ffb000/0x4000)=nil) shmctl$IPC_RMID(r5, 0x0) r6 = openat$pf(0xffffffffffffff9c, &(0x7f0000000280)='/dev/pf\x00', 0x800, 0x0) kevent(0xffffffffffffff9c, &(0x7f00000002c0)=[{{r6}, 0xfffffffffffffffd, 0x0, 0xf0000000, 0x9, 0x81}, {{r3}, 0xfffffffffffffffd, 0x40, 0x80000000, 0x7, 0x3f}], 0x9, &(0x7f0000000340)=[{{r4}, 0xffffffffffffffff, 0x9, 0x40, 0x1000, 0x5}, {{r4}, 0xfffffffffffffffe, 0x0, 0x40, 0x876, 0x7f}, {{r3}, 0xfffffffffffffffe, 0x4c, 0x20000000, 0x10001, 0xe1a}, {{}, 0xfffffffffffffff8, 0x40, 0x80, 0x4, 0x400}, {{r4}, 0xfffffffffffffff9, 0x88, 0x20000000, 0x990e, 0x6}, {{r4}, 0xffffffffffffffff, 0x10, 0xa0000017, 0x7, 0x4}], 0x2, &(0x7f0000000400)={0xc6, 0x257ca20e}) 11:52:10 executing program 1: ioctl$WSKBDIO_BELL(0xffffffffffffffff, 0x20005701) r0 = openat$wskbd(0xffffffffffffff9c, &(0x7f0000000000)='/dev/wskbd0\x00', 0x80, 0x0) getsockopt$sock_linger(r0, 0xffff, 0x80, &(0x7f0000000040), &(0x7f0000000080)=0x8) seteuid(0xffffffffffffffff) ioctl$WSKBDIO_SETBELL(r0, 0x80105703, &(0x7f00000000c0)={0x2, 0x8a2, 0x2, 0x8001}) setsockopt$sock_linger(0xffffffffffffff9c, 0xffff, 0x80, &(0x7f0000000100)={0x10, 0x7e9}, 0x8) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000140)={'tap', 0x0}) ioctl$KDSETRAD(0xffffffffffffffff, 0x20004b43) ioctl$TIOCEXCL(0xffffffffffffff9c, 0x2000740d) r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x20, 0x4) fchdir(r1) ioctl$TIOCMGET(r1, 0x4004746a, &(0x7f00000001c0)) fcntl$lock(r0, 0x8, &(0x7f0000000200)={0x3, 0x0, 0x7, 0xabd}) r2 = openat$pf(0xffffffffffffff9c, &(0x7f0000000240)='/dev/pf\x00', 0x95aec0eb362c23fa, 0x0) r3 = dup(r0) ioctl$WSMOUSEIO_GCALIBCOORDS(r3, 0x41205725, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}) r4 = dup2(r1, r2) ioctl$WSMUXIO_LIST_DEVICES(r4, 0xc1045763, &(0x7f00000003c0)={0x0, [{0x3, 0xffff}, {0x3, 0x8}, {0x1, 0x80000001}, {0x1, 0x1000}, {0x3, 0xa865}, {0x3, 0x9}, {0x1, 0x1}, {0x1, 0x6}, {0x2, 0x200}, {0x3, 0x7}, {0x3, 0x400}, {0x3, 0x5}, {0x2, 0x4}, {0x2, 0x5}, {0x3, 0x8}, {0x2, 0x6}, {0x2}, {0x1, 0x415}, {0x1, 0x1}, {0x3, 0x3}, {0x0, 0x400}, {0x0, 0x800}, {0x3, 0x2}, {0x1, 0x9}, {0x3, 0x5}, {0x3, 0x8000}, {0x3, 0x80}, {0x3, 0x9d5d}, {0x1, 0x3}, {0x2, 0x1000}, {0x1, 0x7}, {0x3, 0xa11}]}) r5 = openat$diskmap(0xffffffffffffff9c, &(0x7f0000000500)='/dev/diskmap\x00', 0x10, 0x0) dup2(r4, r5) login: pckbd_enable: command error 11:52:11 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) syz_emit_ethernet(0x5a, &(0x7f0000000080)=ANY=[@ANYBLOB="edd70000000090f6b0d029118100152006b8f3b65d1ce54ee2dfd1d94ad1b7be92e2b6cfe10d9cfe54117495e53aa42ab8012ab0d08739b686047d66b2b23076f1f12f4a2b22cf81fbce5a1a105b9cae2042da9e40890028bd2f57e18d702793765f16073079"]) r2 = msgget$private(0x0, 0x100) msgsnd(r2, &(0x7f0000000140)={0x2e5401dd3ff3c575, "b7bb20481236ed51ce8d8da483b43bdefcfe7c3177d9281bc96f8e97744270bb836f88b41d55dcd32edff0fe8f62072ae486b37de9742090e218d84ed99ac5296d5034c8e2fa68559f4001b84e5071adae5f2efc8a4269ee7e269b439b24b1cab3acc464b9b33aa3b14c4ec97b51b785b570624bc643339ec329c3af5d4a7a311425a2169731f3a81666fc2e42c531edf26dad37c799e5c2945953184c679a678c9031bbb3df5f9f7a1d1da9fd211c91330bdd573ca509d59df57953ba9f00093a16ff913146969f740c6c2a9fda2ed19e7b91c4d1feff9d28cea93b72a34c556554e201e2"}, 0xed, 0x800) 11:52:11 executing program 0: r0 = open(&(0x7f0000000080)='./bus\x00', 0x1, 0x0) pwritev(r0, &(0x7f00000001c0)=[{&(0x7f0000000140), 0x8}], 0x28d, 0x0, 0x0) sendto$inet6(r0, &(0x7f0000000080)="b42586b6c765bb7381dc1901b6a2fc00ddb02ae5681db90826cc9cd917545334167e3f338a4b31dc725fce39ec3e389f6da5f5891c0df6811c20f135430fc5c1d5", 0x41, 0x408, &(0x7f0000000000)={0x18, 0x0, 0x6, 0x3}, 0xc) sysctl$net_inet_gre(&(0x7f0000000040), 0x4, &(0x7f0000000080), 0x0, 0x0, 0x0) ioctl$FIOASYNC(r0, 0x8004667d, &(0x7f0000000100)=0x8) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x2, 0x10, r0, 0x0, 0x55) r1 = accept(r0, &(0x7f0000000140)=@un=@abs, &(0x7f0000000180)=0x8) readlink(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000300)=""/138, 0x8a) ioctl$FIOASYNC(r1, 0x8004667d, &(0x7f0000000200)=0x7e54) ioctl$WSDISPLAYIO_DELFONT(r0, 0x8058574f, &(0x7f0000000240)={'./bus\x00', 0x1, 0x1f, 0x2, 0x1, 0x2, 0x8, 0x2, 0x1, 0x2, 0x9, 0x81}) 11:52:11 executing program 1: r0 = socket$inet(0x2, 0x3, 0x1f) setsockopt$inet_opts(r0, 0x0, 0x200000000000c, &(0x7f0000000080)="eaef125c00000000", 0x8) setsockopt$inet_opts(r0, 0x0, 0x200000000000c, &(0x7f0000000140)="eaef125c00000000", 0x8) openat$tty(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/tty\x00', 0x20090, 0x0) setsockopt(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000140)="2cdb8ed901c357bd1b6754576b9bd6a95150b111dec201f6bf30ab8f33c17fe92870661bc5e0488088219fcab0ddd9ae5bf0c07024c9f26939481d7cce5efd4e3b1efe1a9c9e38e6c29a4752f64dcffa84", 0x51) r1 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r1, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r1, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r2 = openat$wsmuxkbd(0xffffffffffffff9c, &(0x7f0000000040)='/dev/wskbd\x00', 0x8, 0x0) fcntl$dupfd(r1, 0x0, r2) r3 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000019, 0x0) ioctl$BIOCSETWF(r3, 0x80104277, &(0x7f0000000000)={0x3, &(0x7f00000000c0)=[{0x2}, {0x5c}, {0x6, 0x0, 0x0, 0x8000000000100}]}) ioctl$BIOCSETIF(r3, 0x8020426c, &(0x7f00000002c0)={'tap', 0x0}) write(r3, &(0x7f0000000080)="7cd23fc0aa17dddf7830faa1aaab", 0xe) 11:52:11 executing program 0: setrlimit(0x8, &(0x7f0000000000)={0x7, 0x95}) r0 = syz_open_pts() close(r0) syz_open_pts() writev(r0, &(0x7f0000002a00)=[{&(0x7f0000000440), 0xff52}], 0x1) r1 = accept(0xffffffffffffff9c, &(0x7f0000000040)=@in6, &(0x7f0000000080)=0xc) pread(r1, &(0x7f0000000100)="117977d39ec45b244f9f99f3dd32e45534e09b4e3322109362b54c5fa12218b32de6ded008ad24f8614520d87d1838fe09d3fbaaf88812271d71a4d23fa562171e351553b540f42dd8fba24ef36fb02c0d102babee990610502d5dabf75ec4c56cd92d3011b1581da239ee26a8179e64a92ea7d8dc45", 0x76, 0x0, 0x9) kqueue() r2 = open(&(0x7f0000000080)='./bus\x00', 0x1, 0x0) pwritev(r2, &(0x7f00000000c0)=[{&(0x7f0000000040)="fa1204a49155ce1e00", 0x9}], 0x1, 0x0, 0x0) pwritev(r2, &(0x7f00000001c0)=[{&(0x7f0000000140), 0x8}], 0x28d, 0x0, 0x0) r3 = socket$unix(0x1, 0x1, 0x0) r4 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r4, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r4, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r4, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r5 = socket$inet6(0x18, 0x0, 0x1) semop(0x0, &(0x7f0000000200)=[{0x2, 0x94, 0x1800}, {0x3, 0x0, 0x1800}, {0x0, 0x3ff, 0x1800}], 0x3) r6 = openat$speaker(0xffffffffffffff9c, &(0x7f0000000180)='/dev/speaker\x00', 0x0, 0x0) kevent(r2, &(0x7f00000002c0)=[{{r3}, 0xfffffffffffffff9, 0x18, 0x4, 0x8, 0x5d2b}, {{r5}, 0xfffffffffffffffb, 0x0, 0x80000000, 0x1, 0x700d}, {{r6}, 0xfffffffffffffffc, 0x0, 0x40, 0xffffffff, 0xb}, {{r0}, 0xffffffffffffffff, 0x0, 0x80000000, 0x100000001, 0x400}, {{}, 0xfffffffffffffffc, 0x0, 0x1, 0x2e, 0xfffffffffffffff7}], 0x1006, 0x0, 0xd42d, 0x0) 11:52:12 executing program 0: kqueue() r0 = openat$wsmuxkbd(0xffffffffffffff9c, &(0x7f0000000040)='/dev/wskbd\x00', 0x400, 0x0) r1 = fcntl$dupfd(r0, 0xa, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) fcntl$getown(r0, 0x5) writev(0xffffffffffffffff, &(0x7f0000001940)=[{&(0x7f0000000080)="e4da7d5c400069df5bcc46333048d057d8c85f69dad1d802a0b0bef6405c783ccb67d33f494fca8e316f48bfa6d26f9664379d8650976d1b5bd89776d68c9b05f0416640df359ef5642a3eaaf17c005efa14639be6fb52185ae303944e53ab89db3f480fed6cb0d2b15aeb5271bfa9e862952ab48af1b43f9fcff0d1468bf5f68d0c6b2df1859a0df3b427f9fe99bdad15a12609bc421cf301ebb624ef57255a8b58b37034af38ba3abca7eb329de1a8496209a6a0621535c8", 0xb9}], 0x1) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x2}) 11:52:12 executing program 1: kqueue() r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r0, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r1 = openat$speaker(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/speaker\x00', 0x8000, 0x0) r2 = fcntl$dupfd(r0, 0xa, r1) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r2, 0x0, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x10004) writev(0xffffffffffffffff, &(0x7f0000000200)=[{&(0x7f0000000140)="7e7c52779676052f5edb3a9f7582f71ad87fa2c16c09ee57f22e43158d32eaad740cfbe8c1cfe165ea183571258e84f2cdb861932c0f90da41a16bde428010827b9d0036d9825122ca2974ae64b568bf7a", 0x51}], 0x1) ioctl$WSDISPLAYIO_GETSCREENTYPE(0xffffffffffffffff, 0xc028575d, &(0x7f0000000000)={0xb1d, 0x0, './file0\x00'}) semop(0x0, &(0x7f0000000100)=[{0x3, 0x7, 0x1000}, {0x3, 0x80}, {0x1, 0x59, 0x800}, {0x0, 0x10001, 0x1000}, {0x3, 0x401, 0x1800}, {0x3, 0x6, 0x800}, {0x0, 0x2, 0x1000}, {0x4, 0x5c, 0x800}, {0x1, 0x4, 0x1000}, {0x5, 0x8, 0x800}], 0xa) semop(0x0, &(0x7f0000000080)=[{0x2, 0x3, 0x800}, {0x4, 0x9, 0x1c00}, {0x4, 0x7f, 0x1000}, {0x3, 0x9, 0x1000}], 0x4) semop(0x0, &(0x7f0000000340), 0x21) semop(0x0, &(0x7f0000000000)=[{0x2, 0x1f, 0x1400}, {0x0, 0x3, 0x800}, {0x4, 0x1}, {0x3, 0xfeff, 0x1000}, {0x4, 0xfff7, 0x400}, {0x5, 0x7, 0x3800}, {0x4, 0x4, 0x1800}], 0x7) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000100)=""/144) semctl$SETVAL(0x0, 0x0, 0x8, &(0x7f0000000040)) semctl$GETALL(0x0, 0x0, 0x6, &(0x7f0000000180)=""/239) semctl$GETZCNT(0x0, 0x4, 0x7, &(0x7f00000002c0)=""/215) writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000080)="6c1a", 0x2}], 0x1) 11:52:12 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) ioctl$VMM_IOC_RESETCPU(0xffffffffffffffff, 0x82405605, &(0x7f0000000000)={0x20009, 0x0, {[0x0, 0x119b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4993], [0x80000001, 0x0, 0x0, 0x7, 0x0, 0x0, 0x20], [], [], [{}, {}, {}, {}, {0x1}], {0x6}, {0x9, 0x0, 0x0, 0xfffffffffffffffe}}}) r2 = openat$wsmouse(0xffffffffffffff9c, &(0x7f0000000280)='/dev/wsmouse0\x00', 0x800a, 0x0) r3 = openat$vmm(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/vmm\x00', 0x80, 0x0) r4 = openat$klog(0xffffffffffffff9c, &(0x7f0000000300)='/dev/klog\x00', 0x10000, 0x0) r5 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r5, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r5, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r5, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r6 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r6, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) pwrite(0xffffffffffffffff, &(0x7f00000003c0)="0b067c7500"/18, 0x12, 0x0, 0x3) ioctl$FIOASYNC(0xffffffffffffffff, 0x8004667d, &(0x7f0000000380)=0x6) ioctl$BIOCSETWF(r5, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0xdc}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r6, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r7 = dup2(r1, r1) poll(&(0x7f0000000340)=[{r2, 0x100}, {r3, 0x100}, {r4, 0x20}, {r5, 0x4}, {r0, 0x1}, {r0, 0x4}, {r6, 0x2}, {r7, 0x40}], 0x8, 0x1) bind$unix(r1, &(0x7f0000000240)=@abs={0x1, 0x0, 0x3}, 0x8) 11:52:12 executing program 0: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bpf\x00', 0x81d9e0c0bc48b95d, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000100)={'tap', 0x0}) r1 = openat$wsmuxmouse(0xffffffffffffff9c, &(0x7f0000000080)='/dev/wsmouse\x00', 0x0, 0x0) ioctl$BIOCSFILDROP(r1, 0x80044279, &(0x7f00000000c0)=0x3) r2 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r2, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r2, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r2, &(0x7f0000000200)="3a8500000000000000007dfc2333a87cf0b569ad965361adbd47de66ed29991fec554881463f93183c98f6db132b0430e3a3851670", 0x35, 0x0, 0x454) openat$zero(0xffffffffffffff9c, &(0x7f0000000140)='/dev/zero\x00', 0x1, 0x0) r3 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r3, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r3, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x8}, {}, {0x800000000000006, 0x0, 0x4, 0xda4}]}) pwrite(r3, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r4 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r4, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r4, 0x80104277, &(0x7f0000000040)={0x2, &(0x7f00000002c0)=[{0x80a, 0x4, 0x20, 0x2ef}, {0x7ff, 0x87, 0x2, 0xffff2e0d}]}) pwrite(r4, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r5 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r5, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) poll(&(0x7f0000000180)=[{r1, 0x40}, {r2, 0x100}, {r4, 0x4}, {r3, 0x2}, {r4, 0x40}, {r5, 0x20}, {r4, 0x80}, {r1, 0x80}, {0xffffffffffffffff, 0x2}], 0x9, 0x8) 11:52:12 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) syz_emit_ethernet(0x62, &(0x7f0000000000)=ANY=[@ANYBLOB="edd7000000001dbb2af1225a86dd609e0100002c000000000000000000000000000000000000ff0200000000000000000000000000018c009078000000000008000000000000c2b746680100000001000000e6431d99e1ebd2b06ba84bc90fe59c9c"]) r2 = openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x10, 0x10) r3 = openat$wskbd(0xffffffffffffff9c, &(0x7f0000000100)='/dev/wskbd0\x00', 0x400, 0x0) kevent(r2, &(0x7f00000000c0)=[{{r0}, 0xfffffffffffffffc, 0x86, 0x9, 0x800, 0xf619}], 0xc2, &(0x7f0000000140)=[{{r3}, 0xfffffffffffffffc, 0x2, 0x80, 0x2c0, 0xffffffff}], 0x0, &(0x7f0000000180)={0x400, 0x10000}) 11:52:12 executing program 0: r0 = open(&(0x7f0000000040)='./file0\x00', 0x200, 0x0) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x10000014c) write(r2, &(0x7f0000000040), 0xfeea) read(r1, &(0x7f0000000080)=""/101, 0x65) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0xffff, 0x1022, &(0x7f0000000000)={0x0, 0x0, 0x0}, &(0x7f00000000c0)=0xfffffffffffffd13) setregid(0xffffffffffffffff, r4) getsockopt$sock_cred(r0, 0xffff, 0x1022, &(0x7f0000000100), &(0x7f00000001c0)=0xc) r5 = getpid() ktrace(&(0x7f0000000080)='./file0\x00', 0x0, 0xfcfc96ac7f78659a, r5) execve(0x0, 0x0, 0x0) execve(0x0, 0x0, 0x0) 11:52:12 executing program 1: kqueue() r0 = getpgid(0x0) msgget$private(0x0, 0x729) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000200)={{0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x30, 0xffff}, 0x10000, 0x7, 0x0, r0, 0x7, 0x7f, 0x101, 0x4}) r1 = kqueue() r2 = fcntl$dupfd(r1, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r2, 0x0, 0x80000001) r3 = dup(r2) kqueue() setsockopt$sock_linger(r3, 0xffff, 0x80, &(0x7f0000000180)={0x1000, 0xff}, 0x8) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r4, 0x0, 0x0) ioctl$BIOCSETWF(0xffffffffffffffff, 0x80104277, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x0, 0x3, 0x2}, {0x0, 0x0, 0xb5, 0x100}, {}]}) openat$null(0xffffffffffffff9c, &(0x7f0000000040)='/dev/null\x00', 0x10000, 0x0) open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000100)='./file0/file0\x00', 0xffffffffffffffff, &(0x7f0000000280)='./file0\x00') r5 = open$dir(&(0x7f0000000040)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000040)='./file0\x00', r5, &(0x7f00000000c0)='./file0\x00') kevent(r1, &(0x7f0000000040), 0x8, &(0x7f0000000080), 0xf93, &(0x7f00000001c0)={0x101}) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x2}) 11:52:12 executing program 1: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000080)='/dev/bpf\x00', 0x0, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000200)={'tap', 0x0}) r1 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r1, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r1, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) ioctl$BIOCSHDRCMPLT(r1, 0x80044275, &(0x7f0000000040)=0x1f) ioctl$BIOCSETF(r0, 0x80104267, &(0x7f0000000000)={0x3, &(0x7f00000001c0)=[{0x7c}, {0x4d}, {0x4006}]}) syz_emit_ethernet(0xe, &(0x7f00000000c0)) 11:52:12 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000440)="9bf90d2981eb3732c889d402a1415d556958efdaa136791896d188f43bd0d254bde89e288f30319bbcc6e7e8930a650544a83d7333d031b8275a8599ba32bca08ace0a908b35bf94c9d552756edab15bf9868f8aa11c45cbdf4f59d74a5063bdf9fd31a8cffd1d270020bb54cc2b0263", 0x70}], 0x1, 0x0, 0x10f}, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x1}) pwritev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="7d042a7ec9da002d1f8926b7f86d449f578cf6f9049b0fd1e6594fbfae0a14433bc5341b447c38f9d7d1d5fb5e23eb3cc1f68b98feee22648f18ef2575936723db2731676d4e146d1ce728db795661850c6007eb53a740e807f9cfec680c96f19c583aa2de592e5786f22d6ea7ceedea1b06527fda8a55eaca7ef075a05ebf5f962dc9ba8c630d276bc94ce9d38aecd4dcb2f544e9c49b6eaada04c67a57a3e151894059215f24253aac7352347fa21b6542ba035a", 0xb5}, {&(0x7f0000000100)="36f0036d54f29f06d390011943c5f2f2a1f24d2c39af585318ac26f6b86eaf77b39f30519d922dded1e92a86cfeb86d3ff32d69e48f5df973d915a34f2ef2689ae376aef2d43a44a9c8f226ab337a0ca4cc0edf88a39060b92cf08cbc113861931221c843d9877b54f583e7078", 0x6d}, {&(0x7f0000000180)="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", 0xfa}], 0x3, 0x0, 0x4fe) 11:52:13 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) syz_emit_ethernet(0x147, &(0x7f0000000180)=ANY=[@ANYBLOB="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"]) 11:52:13 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000440)="9bf90d2981eb3732c889d402a1415d556958efdaa136791896d188f43bd0d254bde89e288f30319bbcc6e7e8930a650544a83d7333d031b8275a8599ba32bca08ace0a908b35bf94c9d552756edab15bf9868f8aa11c45cbdf4f59d74a5063bdf9fd31a8cffd1d270020bb54cc2b0263", 0x70}], 0x1, 0x0, 0x10f}, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x1}) pwritev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="7d042a7ec9da002d1f8926b7f86d449f578cf6f9049b0fd1e6594fbfae0a14433bc5341b447c38f9d7d1d5fb5e23eb3cc1f68b98feee22648f18ef2575936723db2731676d4e146d1ce728db795661850c6007eb53a740e807f9cfec680c96f19c583aa2de592e5786f22d6ea7ceedea1b06527fda8a55eaca7ef075a05ebf5f962dc9ba8c630d276bc94ce9d38aecd4dcb2f544e9c49b6eaada04c67a57a3e151894059215f24253aac7352347fa21b6542ba035a", 0xb5}, {&(0x7f0000000100)="36f0036d54f29f06d390011943c5f2f2a1f24d2c39af585318ac26f6b86eaf77b39f30519d922dded1e92a86cfeb86d3ff32d69e48f5df973d915a34f2ef2689ae376aef2d43a44a9c8f226ab337a0ca4cc0edf88a39060b92cf08cbc113861931221c843d9877b54f583e7078", 0x6d}, {&(0x7f0000000180)="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", 0xfa}], 0x3, 0x0, 0x4fe) 11:52:13 executing program 1: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000900)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000440)="9bf90d2981eb3732c889d402a1415d556958efdaa136791896d188f43bd0d254bde89e288f30319bbcc6e7e8930a650544a83d7333d031b8275a8599ba32bca08ace0a908b35bf94c9d552756edab15bf9868f8aa11c45cbdf4f59d74a5063bdf9fd31a8cffd1d270020bb54cc2b0263", 0x70}], 0x1, 0x0, 0x10f}, 0x0) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x1}) pwritev(r1, &(0x7f0000000280)=[{&(0x7f0000000040)="7d042a7ec9da002d1f8926b7f86d449f578cf6f9049b0fd1e6594fbfae0a14433bc5341b447c38f9d7d1d5fb5e23eb3cc1f68b98feee22648f18ef2575936723db2731676d4e146d1ce728db795661850c6007eb53a740e807f9cfec680c96f19c583aa2de592e5786f22d6ea7ceedea1b06527fda8a55eaca7ef075a05ebf5f962dc9ba8c630d276bc94ce9d38aecd4dcb2f544e9c49b6eaada04c67a57a3e151894059215f24253aac7352347fa21b6542ba035a", 0xb5}, {&(0x7f0000000100)="36f0036d54f29f06d390011943c5f2f2a1f24d2c39af585318ac26f6b86eaf77b39f30519d922dded1e92a86cfeb86d3ff32d69e48f5df973d915a34f2ef2689ae376aef2d43a44a9c8f226ab337a0ca4cc0edf88a39060b92cf08cbc113861931221c843d9877b54f583e7078", 0x6d}, {&(0x7f0000000180)="f8cdbcfdb1977a0708c4bb0dc06f2747f829a787d610e4b749938c73e9b3ea3dd3a91f9c26167258c77052bc511c10d69397b0d380bc8133616a2097067eacc6b3990aca2d849ba2fdbe358dfed24663223b0e90836b6d6806bb32beb31215131fa30f9cd8f03979458c1cca9bac8c50915dc5aafbdb70f97c3358745fac9949f0737e23869d2117c54ecd6674217a98847895944ea4a0ef0b094052b148cc2f770a124334bd7151924e5828031e08a3608631a71a6a670c238a9787372c503837e90b74ceb21d40296a61db7a978a657757e359a2e9877bccba239dc2dea70c00732cbc2c2c3790e5e42c516557d3e99ee4ef08ac1332656bcc", 0xfa}], 0x3, 0x0, 0x4fe) 11:52:13 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) getsockopt$sock_cred(r3, 0xffff, 0x1022, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000200)=0xc) setregid(0xffffffffffffffff, r4) getsockopt$SO_PEERCRED(r1, 0xffff, 0x1022, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0xc) getgroups(0x3, &(0x7f0000000080)=[r4, r5, 0x0]) r6 = openat(r1, &(0x7f0000000180)='./file0\x00', 0x800, 0x10) getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f00000002c0), &(0x7f0000000300)=0xc) r7 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r7, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r7, 0x80104277, &(0x7f0000000380)={0x3, &(0x7f0000000340)=[{0x3, 0xfc}, {0x0, 0x0, 0xff}, {0x4e2, 0x4, 0x81, 0xda2}]}) pwrite(r7, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) dup2(r2, r7) ioctl$TIOCCONS(r6, 0x80047462, &(0x7f00000001c0)=0x1) r8 = semget$private(0x0, 0x7, 0x20) ioctl$WSDISPLAYIO_GETSCREEN(r6, 0xc0245755, &(0x7f0000000240)={0x800, './file0\x00', './file0\x00'}) semop(r8, &(0x7f00000000c0)=[{0x0, 0x0, 0x1800}, {0x3, 0x0, 0x800}, {0x0, 0x10001, 0x1000}, {0x3, 0x401, 0x800}, {0x4, 0x83, 0x800}, {0x0, 0x2, 0x1000}, {0x3, 0xfff, 0x1000}, {0x5, 0x8, 0x3e614ffe758fd231}, {0x2, 0x9}], 0x9) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x1}) 11:52:13 executing program 1: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r0, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r1 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r1, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {}, {0x800000000000006, 0x0, 0x0, 0xda4}]}) pwrite(r1, &(0x7f0000000280)="d000"/14, 0xe, 0x0, 0x0) r2 = openat$wsdisplay(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ttyCcfg\x00', 0x80, 0x0) poll(&(0x7f0000000080)=[{r0, 0x1}, {r1, 0x4}, {r2, 0x20}], 0x3, 0x2) sysctl$net_inet_ip(&(0x7f0000000000)={0x4, 0x2, 0x0, 0x2}, 0x4, 0x0, 0x0, 0x0, 0x0) 11:52:13 executing program 0: r0 = kqueue() r1 = fcntl$dupfd(r0, 0x2, 0xffffffffffffffff) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x3, 0x10, r1, 0x0, 0x0) r2 = open(&(0x7f0000001bc0)='./file0\x00', 0x40, 0x8a19c32be2f52836) recvfrom$inet6(r2, &(0x7f0000001c00)=""/212, 0xd4, 0x1, &(0x7f0000001d00)={0x18, 0x3, 0x1, 0xfffffffe}, 0xc) writev(r1, &(0x7f0000001b80)=[{&(0x7f0000001580)="0ccee0678c83c089fa7539e4f235f0a4018b8cdbb4d93f934d95b7b4ccd7f5bd93f0c91e809362634aa9fbd9605b2ef4fc51181bc117ef2d878c77", 0x3b}, {&(0x7f00000015c0)="17f6931305f9bc83aa4b5d5f88308fabb374b8186445aafdc4781bcb6a2258afc280cbf7a6abcaf074edda888369554d9f91d1fa4e485e6006d0885b90e383df4e1367be9795b226042c1ade80ed16941649b916203dfd15ead2acde258653c4c27c27ea7000fe4654ea64d94d242a67e7a5218d7019e8e2c95377116f0fd6050a39794f73236c7776e7bee95ebcd8077b09b6d6896d4e2526212a8cd92229e96651", 0xa2}], 0x2) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x0, 0x2}) r3 = socket$inet6(0x18, 0x3, 0x1) fchflags(r3, 0x1) r4 = msgget$private(0x0, 0x2000000186) r5 = msgget$private(0x0, 0xfffffffffffffffd) r6 = open(&(0x7f0000000080)='./file0\x00', 0x612, 0x0) writev(r6, &(0x7f0000000340)=[{&(0x7f0000000100)="4d5b4b3898c2b15518685bc8fa1102a6bd7f43f8a5", 0x2e1}, {&(0x7f0000000040)="37a2cba9bab90d18db1e8cf27015d61975aa538e19e3ff00879f8c", 0x1b}, {&(0x7f0000000180)="e7b09c4e134d3c1c27f51254fca351a3ab3cc51407fac793d943436ff82c73f89f93051691725198be6df552157cd200ba9872b3ffba43a1472a71e0b24ddf2e546f0f4c49b8d762ecee72f451264602b977bce0b6f1e88a5808436ff990f2d36e239246484e8826edce6165283c57beb26e72b009eaadd6ba86e91dda8cd15ca5e6eaafcdb2d62c1261738396c4984f6b1a4df599e0fbf77d40c5902321c9c3944d17cf3b1202d00a3c444db6cb4e1d296f", 0xb2}, {&(0x7f0000000240)="fdb2617e274d09632ad0e17beba97ff45163e8ce5f25fe2789c092412d280a839c4560a374e34321424a5e4801b2ab7359dd24faf8f617713b2ad1870350f6d7253e2f40dee939cb05db", 0x4a}, {&(0x7f0000000440)="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", 0x1000}, {&(0x7f00000002c0)="a6eb761a1f9caa5f9cc86d15e0f0afd38d705696b382cae4d40688a26a3a5f08677f5bd2491900f37c600823df3a499f34b74a877267557ec9dd78faa2f75318125ebe9109507cd832d24b6be3dfe70f9f356f7080d77933a66d19", 0x5b}, {&(0x7f0000001680)="d06a66337401acbef49de7193f227a0e145e8583dbe4d2c7eb56e227ffc6e2a81643b61dedbd1a4ddb72f484e727423d19797094a587c92f6956f241d00ad0a69653329b434c4a0588c3ed060ff86aed940973a54ed2acf21b087d69314eba229c18c5679d4ca13b237efb433f4421ba4762ae2109b4e7d3d8c76346f2ff464d533017ef1ede984d6128e6b199e0744bd8b17d51055eb95463b525dc2847ec308a7d748dbf27944e4ea117cba87eb64f781c539d68a4d0d6c1bce6ab922a43aeea65072abe87d954b870d20e28019725bda0fdcf37db691c052bff347e56cf0858996941229d8f5850317d34281d224c3f3988cc0f91658356254907eb20aedef26d4f32e9636606a167694feeb504108d5786b045761d57af9b09d5478d7b2b69f28628e8a3e197c65470f4d85528795e17295673307dbf32825307d1c4fc3c3552771bdc4486d5a2648c251437062efae03d8a5481519e465a5fac9bdb7fc667402ebb444a9609ffa1fda75d79c45cb539528a2f1b40d8725a26da60c66a317661b9c764327852edf4c4ee0ced8e7662d3464d71045b174cf8c8503015fcaf48ac351a1f22d2f6566eacccd67f8588649d1daed6b441f055c0cb58c584a6092f81b58207deabef1bd973993c9a21efd3547482ab3b03c60b9e66d5753ff37d9381f1ab73af593880938327c2bb923a40dc2071d8309cebcdc5ebb61f103aafa8e624fee72f2e10e3f2edb71dcb115eb17fdea5c89ce531eb766ef1f158ef6419f4d7e1828f901e4a2cfc12f926c8c4caa6aad1af5b0b37159032e8ef7a4d7b917176e8e77d80fa9865549f72b5a4e34cd588e68b5d1c000948d1a60e21fbd7996114b18c0040453b2d749ece15ea9424ecc30a9f17128260e2c9fc6e3f22db9f6c5740484a681c4a66de0e01a30383abe7f65f4e2d62e1a8e03694f8dd9425ca956f899abc09e3da39ffd8499b0291b8bb5184eccb15edffd3d8de1a90a122a02904bafa77f0656e50040b9de63eed6cdda3bf37eeb283b67f20669883e87420ea439361448865eff14f00b6e98acb2f10d3f60a2d04bdeea570ac6eafec1db8b469df996d7eea8ce4919435d65fb2cbfb838ca2b705efcdc99e80e1607afcc3b9aa9c2da2f09ea2bd8597f2897ead0416c40fbcecac954a4a617a68c92f205d34e8cc6e3fb35b6893c45a0611c78db41a3e857a4d00d61fe16d40c0219396519b08714af263bd687297c05b1232882f1f115a28a958efe04503bb2b4a415486ab14acad80aed8d6d0d7a25196b980f3c9c2cb70c5099b9e9e6eb0d3fde039d62202d2a3d502044635054accff0c8f06071fc30beb5b4f3d39e59bb3c9626ad1e77696ce82d5158ffc7a3658dfec575bf3b434d53b4f63bf952a65d10718b54e25a407f1af419f787a6d2d5427f94b486638b598bc5bd45eb8428015b399d278642af219dc235a2c9b72462cf43750bad5633f94da5dd4ab583d5618dbe08f34817e8b6b4ea621c94063db1b024f4d50383b56d73169fc3c0893fad6e607112ef6c237be16242d29ce712436fb0370fc7ea5c0fc0b2b81215449e46b40c16f73d81825b4a85de4c90d988a0cd17f45162f41d10d30244f34d66389194a764b7d060193e9b8c8a21cdc57fce2f40f0cfb317cc408b8b8c46808b9c61c9f114bf169b2aa48f1bfa101f33de16678e02c0f5e098e2fbfd50b4d17db136cc7d7a5f01ab9acc44b31967db2d8b4b09e5d875695f1", 0x5b7}], 0x7) mmap(&(0x7f0000000000/0x13000)=nil, 0x13000, 0x5, 0x10, r6, 0x0, 0x0) msgsnd(r5, &(0x7f0000001440)=ANY=[@ANYRES64, @ANYBLOB="b2693b95420f64796d9b5168795e9c9bc39edaae407cce6830e71b60c906ef5e3c5e3fc6fc42bbad715dd07ab4fb893cba5c817f01dea243969f3e7d383b1196cfff3118c429f9aa10f4acc0d242a9c3bd72d15b07178bd1e2d01dac7695b3b65d2df9c3bffa666b4008df909d6573d21fc5161ea4daeea212cbfa082d799c7b0e11bef9760aaf4eab4d2fa113d49e5860d01b65218da3786d4404d7a0e56650712e3ef50e65318e70e4201cfe5419a396b8c2d483212f97977e51c4223635c26cddf9ce247aa83123cbfe634079899731cef2915df4720e3726c0e30d5b21b9c134d44c2cc04bab940e74c71cc549b061105472c36436", @ANYRESOCT=r4, @ANYRESOCT=r6], 0x0, 0x0) mlock(&(0x7f0000000000/0x4000)=nil, 0x4000) witness: lock order reversal: 1st 0xfffffd8008462a28 vmmaplk (&map->lock) 2nd 0xfffffd806598a2c0 inode (&ip->i_lock) lock order "&ip->i_lock"(rrwlock) -> "&map->lock"(rwlock) first seen at: #0 witness_checkorder+0x65e #1 rw_enter_read+0x66 #2 uvmfault_lookup+0xd9 #3 uvm_fault_check+0x3d #4 uvm_fault+0xdb #5 kpageflttrap+0x210 #6 kerntrap+0xef #7 alltraps_kern_meltdown+0x7b #8 copyout+0x53 #9 ffs_read+0x3e2 #10 VOP_READ+0xbf #11 vn_rdwr+0x10b #12 vmcmd_map_readvn+0xda #13 exec_process_vmcmds+0xb2 #14 sys_execve+0x9ff #15 syscall+0x4a1 #16 Xsyscall+0x128 lock order "&map->lock"(rwlock) -> "&ip->i_lock"(rrwlock) first seen at: #0 witness_checkorder+0x65e #1 rw_enter+0xd4 #2 rrw_enter+0x88 #3 VOP_LOCK+0x4b #4 vn_lock+0x6c #5 uvn_io+0x2b5 #6 uvn_get+0x236 #7 uvm_fault+0xa41 #8 uvm_fault_wire+0x63 #9 uvm_map_pageable_wire+0x30d #10 sys_mlock+0x180 #11 syscall+0x4a1 #12 Xsyscall+0x128 Stopped at db_enter+0x18: addq $0x8,%rsp ddb{1}> ddb{1}> set $lines = 0 ddb{1}> set $maxwidth = 0 ddb{1}> show panic the kernel did not panic ddb{1}> trace db_enter() at db_enter+0x18 witness_checkorder(fffffd806598a2c0,9,0) at witness_checkorder+0xf5a rw_enter(fffffd806598a2b0,81) at rw_enter+0xd4 rrw_enter(fffffd806598a2b0,81) at rrw_enter+0x88 VOP_LOCK(fffffd8061c69c50,81) at VOP_LOCK+0x4b vn_lock(fffffd8061c69c50,81) at vn_lock+0x6c uvn_io(fffffd8061d1d450,ffff8000212e76c8,1,2,0) at uvn_io+0x2b5 uvn_get(fffffd8061d1d450,0,ffff8000212e7928,ffff8000212e78c4,0,5) at uvn_get+0x236 uvm_fault(fffffd8008462a10,20000000,2,5) at uvm_fault+0xa41 uvm_fault_wire(fffffd8008462a10,20000000,20004000,5) at uvm_fault_wire+0x63 uvm_map_pageable_wire(fffffd8008462a10,fffffd806597cb58,fffffd806597cca8,241,ffffffff8137390e,0) at uvm_map_pageable_wire+0x30d sys_mlock(ffff8000212b9730,ffff8000212e7b08,ffff8000212e7b50) at sys_mlock+0x180 syscall(ffff8000212e7bd0) at syscall+0x4a1 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb2139e726a0, count: -14 ddb{1}> show registers rdi 0x3 rsi 0x40000 acpi_pdirpa+0x2be68 rbp 0xffff8000212e7320 rbx 0x3 rdx 0xffff800000af5780 rcx 0x3 rax 0x3ffff acpi_pdirpa+0x2be67 r8 0xffffffff813715b3 witness_checkorder+0xf33 r9 0x5 r10 0x1c691ed2c723dd9f r11 0x99a0f1ac714f8a33 r12 0xffffffff82825f20 w_lodata+0x54430 r13 0 r14 0xffffffff8281f800 w_lodata+0x4dd10 r15 0xfffffd8002c99500 rip 0xffffffff81747758 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff8000212e7310 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb{1}> show proc PROC (syz-executor.0) pid=443068 stat=onproc flags process=0 proc=4000000 pri=32, usrpri=68, nice=20 forw=0xffffffffffffffff, list=0xffff8000212b8a60,0xffffffff828883a0 process=0xffff80002125d4b0 user=0xffff8000212e2000, vmspace=0xfffffd8008462a10 estcpu=36, cpticks=0, pctcpu=0.0 user=0, sys=0, intr=0 ddb{1}> ps PID TID PPID UID S FLAGS WAIT COMMAND 77219 405517 34495 0 7 0 syz-executor.0 *77219 443068 34495 0 7 0x4000000 syz-executor.0 10896 97162 21756 0 3 0x82 nanosleep syz-executor.1 34495 201206 21756 0 3 0x82 nanosleep syz-executor.0 21756 126816 81832 0 3 0x82 thrsleep syz-fuzzer 21756 131696 81832 0 3 0x4000082 nanosleep syz-fuzzer 21756 399528 81832 0 3 0x4000082 thrsleep syz-fuzzer 21756 145290 81832 0 3 0x4000082 thrsleep syz-fuzzer 21756 445246 81832 0 3 0x4000082 thrsleep syz-fuzzer 21756 438757 81832 0 3 0x4000082 thrsleep syz-fuzzer 21756 10906 81832 0 3 0x4000082 kqread syz-fuzzer 21756 102422 81832 0 3 0x4000082 thrsleep syz-fuzzer 81832 202547 23717 0 3 0x10008a pause ksh 23717 476181 17902 0 3 0x92 select sshd 8159 259876 1 0 3 0x100083 ttyin getty 17902 487176 1 0 3 0x80 select sshd 42465 89668 20135 74 3 0x100092 bpf pflogd 20135 191143 1 0 3 0x80 netio pflogd 41963 336085 90209 73 3 0x100090 kqread syslogd 90209 106636 1 0 3 0x100082 netio syslogd 64082 92709 1 77 3 0x100090 poll dhclient 48243 2606 1 0 3 0x80 poll dhclient 29402 87368 0 0 3 0x14200 bored smr 60180 77591 0 0 3 0x14200 pgzero zerothread 81057 491992 0 0 3 0x14200 aiodoned aiodoned 24196 367999 0 0 3 0x14200 syncer update 59266 344931 0 0 3 0x14200 cleaner cleaner 43915 497612 0 0 3 0x14200 reaper reaper 92974 502628 0 0 3 0x14200 pgdaemon pagedaemon 78475 245692 0 0 3 0x14200 bored crynlk 59649 258747 0 0 3 0x14200 bored crypto 15716 47838 0 0 3 0x14200 bored viomb 49973 334997 0 0 3 0x40014200 acpi0 acpi0 10346 405242 0 0 3 0x40014200 idle1 5401 222970 0 0 3 0x14200 bored softnet 70475 236324 0 0 3 0x14200 bored systqmp 59653 268662 0 0 3 0x14200 bored systq 59928 182951 0 0 3 0x40014200 bored softclock 57622 481758 0 0 3 0x40014200 idle0 1 267085 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb{1}> show all locks Process 77219 (syz-executor.0) thread 0xffff8000212b9730 (443068) shared rwlock vmmaplk r = 0 (0xfffffd8008462a28) #0 witness_lock+0x4b0 #1 rw_enter+0x446 #2 vm_map_lock_ln+0xda #3 uvm_map_pageable+0x120 #4 sys_mlock+0x180 #5 syscall+0x4a1 #6 Xsyscall+0x128 exclusive kernel_lock &kernel_lock r = 0 (0xffffffff82884200) #0 witness_lock+0x4b0 #1 syscall+0x3fd #2 Xsyscall+0x128 ddb{1}> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9505 6738K 7006K 78643K 10680 0 pcb 14 8K 8K 78643K 18 0 rtable 105 3K 3K 78643K 199 0 ifaddr 44 10K 10K 78643K 45 0 counters 43 33K 33K 78643K 43 0 ioctlops 0 0K 4K 78643K 1469 0 iov 0 0K 12K 78643K 4 0 mount 1 1K 1K 78643K 1 0 vnodes 1227 77K 77K 78643K 1248 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 5K 78643K 3 0 VM map 2 1K 1K 78643K 2 0 sem 2 0K 0K 78643K 2 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1825 197K 290K 78643K 13109 0 file desc 5 13K 25K 78643K 55 0 proc 60 63K 95K 78643K 448 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 4 0 in_multi 33 2K 2K 78643K 34 0 ether_multi 1 0K 0K 78643K 1 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 31 148K 148K 78643K 31 0 exec 0 0K 2K 78643K 362 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 183 28K 28K 78643K 923 0 UVM aobj 6 2K 2K 78643K 9 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 NDP 6 0K 0K 78643K 10 0 temp 72 3953K 4016K 78643K 5596 0 kqueue 3 4K 4K 78643K 3 0 SYN cache 2 16K 16K 78643K 2 0 ddb{1}> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 plcache 128 20 0 0 1 0 1 1 0 8 0 rtpcb 120 19 0 17 1 0 1 1 0 8 0 rtentry 112 45 0 1 2 0 2 2 0 8 0 unpcb 120 33 0 23 1 0 1 1 0 8 0 syncache 296 4 0 4 1 1 0 1 0 8 0 tcpqe 32 223 0 223 1 1 0 1 0 8 0 tcpcb 736 10 0 6 1 0 1 1 0 8 0 inpcb 296 42 0 34 1 0 1 1 0 8 0 nd6 48 6 0 0 1 0 1 1 0 8 0 kcovpl 48 2 0 0 1 0 1 1 0 8 0 pfosfp 40 1428 0 1005 5 0 5 5 0 8 0 pfosfpen 112 1428 0 714 21 0 21 21 0 8 0 pfstitem 24 12 0 2 1 0 1 1 0 8 0 pfstkey 112 12 0 2 1 0 1 1 0 8 0 pfstate 328 12 0 2 1 0 1 1 0 8 0 pfrule 1360 21 0 16 2 1 1 2 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 188 0 0 12 0 12 12 0 8 0 art_table 32 189 0 0 2 0 2 2 0 8 0 art_node 16 44 0 4 1 0 1 1 0 8 0 sysvmsgpl 40 2 0 0 1 0 1 1 0 8 0 shmpl 112 6 0 3 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1448 0 43 88 0 88 88 0 8 0 ffsino 272 1448 0 43 95 1 94 94 0 8 0 nchpl 144 1692 0 87 60 0 60 60 0 8 0 uvmvnodes 72 1518 0 0 28 0 28 28 0 8 0 vnodes 208 1518 0 0 80 0 80 80 0 8 0 namei 1024 4432 0 4432 2 1 1 1 0 8 1 percpumem 16 32 0 0 1 0 1 1 0 8 0 scxspl 216 5153 0 5153 9 8 1 8 0 8 1 plimitpl 152 17 0 9 1 0 1 1 0 8 0 sigapl 424 271 0 239 4 0 4 4 0 8 0 futexpl 56 357 0 357 1 0 1 1 0 8 1 knotepl 112 62 0 42 1 0 1 1 0 8 0 kqueuepl 152 27 0 24 1 0 1 1 0 8 0 pipepl 304 80 0 69 2 0 2 2 0 8 1 fdescpl 496 255 0 239 3 0 3 3 0 8 0 filepl 152 1234 0 1129 6 1 5 5 0 8 0 lockfpl 104 18 0 16 1 0 1 1 0 8 0 lockfspl 48 9 0 7 1 0 1 1 0 8 0 sessionpl 144 18 0 7 1 0 1 1 0 8 0 pgrppl 48 18 0 7 1 0 1 1 0 8 0 ucredpl 96 62 0 53 1 0 1 1 0 8 0 zombiepl 144 239 0 238 2 1 1 1 0 8 0 processpl 1056 271 0 238 3 0 3 3 0 8 0 procpl 656 320 0 279 5 1 4 4 0 8 0 sockpl 400 94 0 74 4 1 3 3 0 8 1 mcl16k 16384 1 0 0 1 0 1 1 0 8 0 mcl4k 4096 3 0 0 1 0 1 1 0 8 0 mcl2k 2048 189 0 0 23 0 23 23 0 8 0 mtagpl 96 11 0 0 1 0 1 1 0 8 0 mbufpl 256 218 0 0 13 0 13 13 0 8 0 bufpl 280 3561 0 181 242 0 242 242 0 8 0 anonpl 16 52529 0 24608 114 1 113 113 0 124 0 amapchunkpl 152 1876 0 1053 33 0 33 33 0 158 1 amappl16 192 1124 0 182 48 0 48 48 0 8 0 amappl15 184 4 0 2 1 0 1 1 0 8 0 amappl14 176 22 0 18 1 0 1 1 0 8 0 amappl13 168 45 0 41 1 0 1 1 0 8 0 amappl12 160 15 0 13 1 0 1 1 0 8 0 amappl11 152 54 0 38 1 0 1 1 0 8 0 amappl10 144 10 0 7 1 0 1 1 0 8 0 amappl9 136 378 0 376 2 1 1 1 0 8 0 amappl8 128 138 0 104 2 0 2 2 0 8 0 amappl7 120 261 0 252 1 0 1 1 0 8 0 amappl6 112 70 0 59 1 0 1 1 0 8 0 amappl5 104 385 0 367 1 0 1 1 0 8 0 amappl4 96 283 0 256 1 0 1 1 0 8 0 amappl3 88 147 0 138 1 0 1 1 0 8 0 amappl2 80 1130 0 1062 3 1 2 3 0 8 0 amappl1 72 16362 0 15880 27 16 11 19 0 8 2 amappl 80 673 0 535 3 0 3 3 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma1024 1024 1 0 0 1 0 1 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 8 0 3 1 0 1 1 0 8 0 uaddrrnd 24 255 0 239 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 255 0 239 1 0 1 1 0 8 0 vmmpekpl 168 6142 0 6115 2 0 2 2 0 8 0 vmmpepl 168 40613 0 38377 143 12 131 131 0 357 33 vmsppl 368 254 0 239 2 0 2 2 0 8 0 pdppl 4096 517 0 478 7 1 6 6 0 8 1 pvpl 32 154962 0 123646 254 0 254 254 0 265 1 pmappl 232 254 0 239 2 0 2 2 0 8 1 extentpl 40 57 0 39 1 0 1 1 0 8 0 phpool 112 258 0 7 8 0 8 8 0 8 0 ddb{1}> machine ddbcpu 0 Stopped at x86_ipi_db+0x1a: addq $0x8,%rsp ddb{0}> trace x86_ipi_db(ffffffff82778ff0) at x86_ipi_db+0x1a x86_ipi_handler() at x86_ipi_handler+0xb7 Xresume_lapic_ipi() at Xresume_lapic_ipi+0x23 __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xf __mp_lock(ffffffff82883ff8) at __mp_lock+0x133 intr_handler(ffff8000234f5280,ffff80000065a300) at intr_handler+0x5e Xintr_ioapic_edge4_untramp() at Xintr_ioapic_edge4_untramp+0x19f __sanitizer_cov_trace_pc() at __sanitizer_cov_trace_pc+0xb softintr_dispatch(0) at softintr_dispatch+0x4e Xsoftclock() at Xsoftclock+0x1f end of kernel end trace frame: 0x7f7ffffbd250, count: -10 ddb{0}> machine ddbcpu 1 Stopped at db_enter+0x18: addq $0x8,%rsp ddb{1}> trace db_enter() at db_enter+0x18 witness_checkorder(fffffd806598a2c0,9,0) at witness_checkorder+0xf5a rw_enter(fffffd806598a2b0,81) at rw_enter+0xd4 rrw_enter(fffffd806598a2b0,81) at rrw_enter+0x88 VOP_LOCK(fffffd8061c69c50,81) at VOP_LOCK+0x4b vn_lock(fffffd8061c69c50,81) at vn_lock+0x6c uvn_io(fffffd8061d1d450,ffff8000212e76c8,1,2,0) at uvn_io+0x2b5 uvn_get(fffffd8061d1d450,0,ffff8000212e7928,ffff8000212e78c4,0,5) at uvn_get+0x236 uvm_fault(fffffd8008462a10,20000000,2,5) at uvm_fault+0xa41 uvm_fault_wire(fffffd8008462a10,20000000,20004000,5) at uvm_fault_wire+0x63 uvm_map_pageable_wire(fffffd8008462a10,fffffd806597cb58,fffffd806597cca8,241,ffffffff8137390e,0) at uvm_map_pageable_wire+0x30d sys_mlock(ffff8000212b9730,ffff8000212e7b08,ffff8000212e7b50) at sys_mlock+0x180 syscall(ffff8000212e7bd0) at syscall+0x4a1 Xsyscall() at Xsyscall+0x128 end of kernel end trace frame: 0xb2139e726a0, count: -14