Warning: Permanently added '10.128.0.24' (ECDSA) to the list of known hosts. 2019/10/04 16:27:57 fuzzer started 2019/10/04 16:27:59 dialing manager at 10.128.0.105:44881 2019/10/04 16:27:59 syscalls: 2523 2019/10/04 16:27:59 code coverage: enabled 2019/10/04 16:27:59 comparison tracing: enabled 2019/10/04 16:27:59 extra coverage: extra coverage is not supported by the kernel 2019/10/04 16:27:59 setuid sandbox: enabled 2019/10/04 16:27:59 namespace sandbox: enabled 2019/10/04 16:27:59 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/04 16:27:59 fault injection: enabled 2019/10/04 16:27:59 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/04 16:27:59 net packet injection: enabled 2019/10/04 16:27:59 net device setup: enabled 2019/10/04 16:27:59 concurrency sanitizer: enabled 16:28:03 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) syzkaller login: [ 54.057708][ T7373] IPVS: ftp: loaded support on port[0] = 21 16:28:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 54.144514][ T7373] chnl_net:caif_netlink_parms(): no params data found [ 54.200425][ T7373] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.207631][ T7373] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.217902][ T7373] device bridge_slave_0 entered promiscuous mode [ 54.242051][ T7373] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.249217][ T7373] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.258328][ T7373] device bridge_slave_1 entered promiscuous mode [ 54.304847][ T7373] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.331735][ T7373] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.372976][ T7373] team0: Port device team_slave_0 added [ 54.379977][ T7373] team0: Port device team_slave_1 added [ 54.433260][ T7373] device hsr_slave_0 entered promiscuous mode 16:28:04 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) [ 54.481227][ T7373] device hsr_slave_1 entered promiscuous mode [ 54.539653][ T7376] IPVS: ftp: loaded support on port[0] = 21 [ 54.547199][ T7373] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.554276][ T7373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 54.561626][ T7373] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.568750][ T7373] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.731832][ T7373] 8021q: adding VLAN 0 to HW filter on device bond0 [ 54.775107][ T7373] 8021q: adding VLAN 0 to HW filter on device team0 [ 54.791045][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 54.801524][ T43] bridge0: port 1(bridge_slave_0) entered disabled state 16:28:04 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) [ 54.821497][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.834418][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 54.888757][ T7376] chnl_net:caif_netlink_parms(): no params data found [ 54.931073][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 54.941510][ T7382] IPVS: ftp: loaded support on port[0] = 21 [ 54.950971][ T43] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.958022][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state [ 54.991550][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 55.002705][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.009793][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.019866][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 55.057297][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 55.067158][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 55.076190][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 55.111079][ T7373] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 55.131164][ T7373] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 55.145358][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 55.163946][ T7376] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.171658][ T7376] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.179580][ T7376] device bridge_slave_0 entered promiscuous mode [ 55.188037][ T7376] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.196777][ T7376] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.205039][ T7376] device bridge_slave_1 entered promiscuous mode [ 55.248630][ T7384] IPVS: ftp: loaded support on port[0] = 21 [ 55.262413][ T7373] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 55.274368][ T7376] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link 16:28:04 executing program 4: r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000000)={{0x0, 0xf1}}, 0x10) [ 55.306184][ T7376] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.405554][ T7382] chnl_net:caif_netlink_parms(): no params data found [ 55.424216][ T7376] team0: Port device team_slave_0 added [ 55.455368][ T7376] team0: Port device team_slave_1 added [ 55.548925][ T7382] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.580349][ T7382] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.588367][ T7382] device bridge_slave_0 entered promiscuous mode [ 55.626124][ T7382] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.641052][ T7382] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.660065][ T7382] device bridge_slave_1 entered promiscuous mode 16:28:05 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 55.712944][ T7376] device hsr_slave_0 entered promiscuous mode [ 55.770458][ T7376] device hsr_slave_1 entered promiscuous mode [ 55.810196][ T7376] debugfs: Directory 'hsr0' with parent '/' already present! 16:28:05 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:05 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 55.865758][ T7382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.920372][ T7400] IPVS: ftp: loaded support on port[0] = 21 [ 55.941681][ T7384] chnl_net:caif_netlink_parms(): no params data found [ 55.958649][ T7382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 16:28:05 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 56.059583][ T7382] team0: Port device team_slave_0 added [ 56.077369][ T7382] team0: Port device team_slave_1 added [ 56.123030][ T7384] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.140257][ T7384] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.148254][ T7384] device bridge_slave_0 entered promiscuous mode [ 56.156608][ T7384] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.163721][ T7384] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.171790][ T7384] device bridge_slave_1 entered promiscuous mode [ 56.198135][ T7376] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.228913][ T7415] IPVS: ftp: loaded support on port[0] = 21 16:28:05 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 56.249968][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 56.284157][ T7384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link 16:28:05 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 56.316870][ T7384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 56.373212][ T7382] device hsr_slave_0 entered promiscuous mode [ 56.420621][ T7382] device hsr_slave_1 entered promiscuous mode [ 56.450842][ T7382] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.462146][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready 16:28:06 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 56.469821][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 56.487734][ T7376] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.538674][ T7384] team0: Port device team_slave_0 added [ 56.562491][ T7378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 56.570947][ T7378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 56.579124][ T7378] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.586338][ T7378] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.594222][ T7378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 56.603248][ T7378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 56.611604][ T7378] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.618638][ T7378] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.626532][ T7378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 16:28:06 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 56.651521][ T7384] team0: Port device team_slave_1 added [ 56.677292][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 56.686284][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 56.704766][ T7376] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 56.724911][ T7376] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 56.751101][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 56.759849][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 56.769171][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 56.778707][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 56.788033][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 56.796676][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 56.805951][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 56.814473][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 56.823559][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 56.831941][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 56.902515][ T7384] device hsr_slave_0 entered promiscuous mode [ 56.920472][ T7384] device hsr_slave_1 entered promiscuous mode [ 56.972092][ T7384] debugfs: Directory 'hsr0' with parent '/' already present! [ 56.982768][ T7400] chnl_net:caif_netlink_parms(): no params data found [ 57.005247][ T7376] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.017484][ T7382] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.055444][ T7382] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.073346][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.080967][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.133052][ T7400] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.142685][ T7400] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.150538][ T7400] device bridge_slave_0 entered promiscuous mode [ 57.169742][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.182706][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.192474][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.199489][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.207721][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.216927][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.225639][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.232666][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.240785][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.251649][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.261603][ T7400] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.268639][ T7400] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.277038][ T7400] device bridge_slave_1 entered promiscuous mode [ 57.305952][ T7384] 8021q: adding VLAN 0 to HW filter on device bond0 [ 57.316205][ T7415] chnl_net:caif_netlink_parms(): no params data found [ 57.334300][ T7382] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.348321][ T7382] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.366264][ T7443] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 57.371248][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.434576][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.445044][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.457831][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.467115][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready 16:28:07 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 57.479811][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.488752][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.504911][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.513757][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.525222][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.533837][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.547387][ T7400] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 57.594133][ T7384] 8021q: adding VLAN 0 to HW filter on device team0 [ 57.620505][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 57.628205][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 57.642138][ T7400] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 57.670774][ T7382] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.691129][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 57.699793][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 57.712364][ T3022] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.719421][ T3022] bridge0: port 1(bridge_slave_0) entered forwarding state [ 57.740835][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 57.749385][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 57.765951][ T3022] bridge0: port 2(bridge_slave_1) entered blocking state [ 57.773126][ T3022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 57.780994][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 57.789439][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 57.798147][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 57.806482][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 57.814895][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 57.823178][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 57.842538][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 57.850437][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 57.866775][ T7384] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 57.877545][ T7384] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 57.895942][ T7400] team0: Port device team_slave_0 added [ 57.903170][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 57.911889][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 57.920220][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 57.928338][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 57.936561][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 57.954513][ T7384] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 57.962865][ T7400] team0: Port device team_slave_1 added [ 57.975275][ T7415] bridge0: port 1(bridge_slave_0) entered blocking state [ 57.983061][ T7415] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.995995][ T7415] device bridge_slave_0 entered promiscuous mode [ 58.005548][ T7415] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.013034][ T7415] bridge0: port 2(bridge_slave_1) entered disabled state [ 58.021212][ T7415] device bridge_slave_1 entered promiscuous mode [ 58.103788][ T7460] input: syz1 as /devices/virtual/input/input5 [ 58.123265][ T7400] device hsr_slave_0 entered promiscuous mode 16:28:07 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) [ 58.170566][ T7400] device hsr_slave_1 entered promiscuous mode [ 58.220169][ T7400] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.229821][ T7415] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 58.260051][ T7415] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 58.281949][ T7465] input: syz1 as /devices/virtual/input/input7 [ 58.326693][ T7415] team0: Port device team_slave_0 added [ 58.341477][ T7400] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.350903][ T7415] team0: Port device team_slave_1 added [ 58.374437][ T7400] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.401471][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.415434][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.434646][ C0] hrtimer: interrupt took 42788 ns 16:28:08 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) [ 58.483922][ T7415] device hsr_slave_0 entered promiscuous mode [ 58.520695][ T7415] device hsr_slave_1 entered promiscuous mode [ 58.560221][ T7415] debugfs: Directory 'hsr0' with parent '/' already present! [ 58.580264][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.589059][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.610760][ T3022] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.617867][ T3022] bridge0: port 1(bridge_slave_0) entered forwarding state [ 58.646405][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 58.655322][ T3022] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 58.664975][ T3022] bridge0: port 2(bridge_slave_1) entered blocking state [ 58.672056][ T3022] bridge0: port 2(bridge_slave_1) entered forwarding state [ 58.692684][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 58.700828][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 58.709565][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 58.719193][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 58.728115][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 58.737126][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 58.745743][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 58.755608][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 58.767238][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 58.776666][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 58.815996][ T7400] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 58.829490][ T7400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 58.843794][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 58.854950][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 58.871313][ T7415] 8021q: adding VLAN 0 to HW filter on device bond0 [ 58.904899][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 58.913066][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 58.932306][ T7415] 8021q: adding VLAN 0 to HW filter on device team0 [ 58.969070][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 58.977970][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 58.986518][ T7380] bridge0: port 1(bridge_slave_0) entered blocking state [ 58.993591][ T7380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 59.001421][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 59.009851][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 59.018206][ T7380] bridge0: port 2(bridge_slave_1) entered blocking state [ 59.025252][ T7380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 59.033484][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 59.041997][ T7380] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 59.058344][ T7415] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 59.068990][ T7415] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 59.084974][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 59.093109][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 59.102680][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 59.111892][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 59.120753][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 59.129046][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 59.136932][ T43] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 59.147188][ T7400] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 59.175194][ T7415] 8021q: adding VLAN 0 to HW filter on device batadv0 16:28:08 executing program 4: r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000000)={{0x0, 0xf1}}, 0x10) 16:28:08 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:08 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:08 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:08 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:08 executing program 4: r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000000)={{0x0, 0xf1}}, 0x10) 16:28:08 executing program 0: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) [ 59.501421][ T7501] input: syz1 as /devices/virtual/input/input8 16:28:09 executing program 4: r0 = socket(0x40000000015, 0x5, 0x0) setsockopt$RDS_FREE_MR(r0, 0x114, 0x3, &(0x7f0000000000)={{0x0, 0xf1}}, 0x10) 16:28:09 executing program 5: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:09 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:09 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:09 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="b70200000000009cbfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000000000006a0a80fe000000008500000053000000b70000000000000095000000000000004e6201363034fdb11716a08af339d1a1ee35fe2a3a255c33282044b324953c0a9fa9a84452569957c1002ed7d4d8e17f791f4798c8eb484de03352c69b3edff5be27765ba5f8f2879021c2ea53ea79acd7fb38fdf79f2be9087b7c4ae7dd5e4d068951d40c617b58c8108ddf12dddd4bfc6a4dd35383561cbe0458f1f5b6beba510b4229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba70c3a912f01a201e694e3806e8c8fe8b8091627fcb311a55a9875c606bda873a4bca7f6cde352655635a650a5a7ad0a7b1d7d10e14b1e2375f6f55b52028d758d2f7085054567383f309336c34c06e751f94655df5e7c10b609acbe29dc3e031d116483efc20a8a74c01fd7edac55c37c6315005cf47f48ada3a6087af06d14a0763b43b7b71dd9e489900019c5ffbd57de9e149900274d19ac263ab6811c5856b54a7a1db331a641e77e817ab7bc09d87d8c2bd858830057ea46c6fa6bcafcb5b689b994ac44fdefcfe2c216aeb1572c7d01f88456c718ec4542d5e5d3daecacadb33d087bd07152a4ac356d44a86fcda11459cd5707f895a9598e0434df80faa83e1121b184f9c7e3b6853ad2671a27cff78e766edaee3eb89d138ceeff21e72213dcce4194ffe2ea1a687390549e5dc82783f3f17115821b5d997e7d2b33ece8d1e900000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) [ 60.006937][ T7528] input: syz1 as /devices/virtual/input/input9 16:28:09 executing program 3: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:09 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:09 executing program 5: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:09 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 60.620301][ T7549] input: syz1 as /devices/virtual/input/input10 16:28:10 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="b70200000000009cbfa30000000000000703000000feffff7a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff6d6405000000000065040400010000000404000001000000b7050000000000006a0a80fe000000008500000053000000b70000000000000095000000000000004e6201363034fdb11716a08af339d1a1ee35fe2a3a255c33282044b324953c0a9fa9a84452569957c1002ed7d4d8e17f791f4798c8eb484de03352c69b3edff5be27765ba5f8f2879021c2ea53ea79acd7fb38fdf79f2be9087b7c4ae7dd5e4d068951d40c617b58c8108ddf12dddd4bfc6a4dd35383561cbe0458f1f5b6beba510b4229b0d4b504516c4c3e5d1aa044d8d00728141cd67bcd68f253288e655c6b34e02e90637ef2912ba70c3a912f01a201e694e3806e8c8fe8b8091627fcb311a55a9875c606bda873a4bca7f6cde352655635a650a5a7ad0a7b1d7d10e14b1e2375f6f55b52028d758d2f7085054567383f309336c34c06e751f94655df5e7c10b609acbe29dc3e031d116483efc20a8a74c01fd7edac55c37c6315005cf47f48ada3a6087af06d14a0763b43b7b71dd9e489900019c5ffbd57de9e149900274d19ac263ab6811c5856b54a7a1db331a641e77e817ab7bc09d87d8c2bd858830057ea46c6fa6bcafcb5b689b994ac44fdefcfe2c216aeb1572c7d01f88456c718ec4542d5e5d3daecacadb33d087bd07152a4ac356d44a86fcda11459cd5707f895a9598e0434df80faa83e1121b184f9c7e3b6853ad2671a27cff78e766edaee3eb89d138ceeff21e72213dcce4194ffe2ea1a687390549e5dc82783f3f17115821b5d997e7d2b33ece8d1e900000000"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) [ 60.686747][ T7553] input: syz1 as /devices/virtual/input/input11 16:28:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:10 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:10 executing program 5: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:10 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 61.233635][ T7571] input: syz1 as /devices/virtual/input/input12 [ 61.250107][ T7573] input: syz1 as /devices/virtual/input/input13 16:28:10 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:11 executing program 2: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:11 executing program 0: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:11 executing program 5: r0 = memfd_create(&(0x7f0000000140)='$.6/%cpuset]\x00', 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)=ANY=[@ANYBLOB="7f454c460255ff110600000000c4b4003d00000000220000"], 0x18) r1 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000300)='/dev/uinput\x00', 0x2, 0x0) write$uinput_user_dev(r1, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r1, 0x5501) sendfile(r1, r0, &(0x7f00000000c0), 0x3ff) 16:28:11 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 61.868806][ T7598] input: syz1 as /devices/virtual/input/input14 [ 61.890888][ T7600] input: syz1 as /devices/virtual/input/input15 16:28:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:11 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) setpriority(0x0, 0x0, 0xfffffffffffffd4b) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r2, 0x0, 0xe, 0x0, &(0x7f0000000180)="c45c57ce395de5b2810f7d637a22", 0x0, 0xf0}, 0x28) fcntl$setstatus(0xffffffffffffffff, 0x4, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) 16:28:11 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:11 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:11 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00003cf000)={0x0, 0x0, &(0x7f00005ad000)={&(0x7f0000000540)=@newsa={0x144, 0x10, 0x31, 0x0, 0x0, {{@in6=@mcast2, @in=@dev}, {@in, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa}, [@extra_flags={0x8}, @algo_auth_trunc={0x4c, 0x14, {{'md5-generic\x00'}}}]}, 0x144}}, 0x0) 16:28:12 executing program 3: perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000000c0)='ip_vti0\x00', 0x10) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = syz_open_dev$usbmon(&(0x7f00000001c0)='/dev/usbmon#\x00', 0x1, 0x80) r3 = open(&(0x7f0000000080)='./file0\x00', 0x40002, 0x0) sendfile(r3, 0xffffffffffffffff, 0x0, 0x7fffffff) ioctl$KVM_X86_SET_MCE(r3, 0x4040ae9e, &(0x7f0000000140)={0x7700000000000000, 0x0, 0x8, 0x4, 0x14}) ioctl$KVM_DEASSIGN_DEV_IRQ(0xffffffffffffffff, 0x4040ae75, &(0x7f0000000200)={0x7fff, 0x3, 0x401, 0x207}) mmap$xdp(&(0x7f0000ffb000/0x2000)=nil, 0x2000, 0x0, 0x10, r2, 0x80000000) fcntl$setstatus(r1, 0x4, 0x42000) r4 = open$dir(0x0, 0x0, 0x0) sendfile(0xffffffffffffffff, r4, 0x0, 0x7fffffff) ioctl$IMGETCOUNT(0xffffffffffffffff, 0x80044943, &(0x7f0000000000)) prctl$PR_GET_ENDIAN(0x13, &(0x7f0000000240)) connect$inet(r0, &(0x7f0000000100)={0x2, 0x0, @rand_addr=0x7fffffff}, 0x10) sendmmsg(r0, &(0x7f0000007fc0), 0x400000000000030, 0x0) 16:28:12 executing program 1: r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0x51, 0x4) listen(r0, 0x26) recvmmsg(r0, &(0x7f0000002f40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) listen(r0, 0x0) shutdown(r0, 0x0) 16:28:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:12 executing program 4: r0 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x6000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x200000000000df8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x11, r1, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r0, 0x2405, r1) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r2, &(0x7f0000000180)={0x2, 0x4e23, @multicast2}, 0x10) sendto$inet(r2, 0x0, 0x0, 0x24054095, &(0x7f0000001180)={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1a}}, 0x10) sendto$inet(r2, &(0x7f0000000000), 0xfffffffffffffe16, 0x5dc, 0x0, 0xffffffffffffffa0) 16:28:12 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00003cf000)={0x0, 0x0, &(0x7f00005ad000)={&(0x7f0000000540)=@newsa={0x144, 0x10, 0x31, 0x0, 0x0, {{@in6=@mcast2, @in=@dev}, {@in, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa}, [@extra_flags={0x8}, @algo_auth_trunc={0x4c, 0x14, {{'md5-generic\x00'}}}]}, 0x144}}, 0x0) 16:28:12 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f00000002c0)=ANY=[@ANYBLOB="090000000000000001000080"]) ioctl$KVM_SMI(r2, 0xaeb7) ioctl$KVM_RUN(r2, 0xae80, 0x0) 16:28:12 executing program 5: r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00003cf000)={0x0, 0x0, &(0x7f00005ad000)={&(0x7f0000000540)=@newsa={0x144, 0x10, 0x31, 0x0, 0x0, {{@in6=@mcast2, @in=@dev}, {@in, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0xa}, [@extra_flags={0x8}, @algo_auth_trunc={0x4c, 0x14, {{'md5-generic\x00'}}}]}, 0x144}}, 0x0) [ 63.437283][ T7376] ================================================================== [ 63.445502][ T7376] BUG: KCSAN: data-race in do_nanosleep / mm_update_next_owner [ 63.453034][ T7376] [ 63.455367][ T7376] read to 0xffff8881228fd024 of 4 bytes by task 7632 on cpu 0: [ 63.463014][ T7376] mm_update_next_owner+0x29f/0x460 [ 63.468201][ T7376] do_exit+0x4e5/0x18e0 [ 63.472345][ T7376] do_group_exit+0xb4/0x1c0 [ 63.476841][ T7376] get_signal+0x2a2/0x1320 [ 63.481249][ T7376] do_signal+0x3b/0xc00 [ 63.485396][ T7376] exit_to_usermode_loop+0x250/0x2c0 [ 63.490672][ T7376] do_syscall_64+0x2d7/0x2f0 [ 63.495253][ T7376] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.501132][ T7376] [ 63.503456][ T7376] write to 0xffff8881228fd024 of 4 bytes by task 7376 on cpu 1: [ 63.511085][ T7376] do_nanosleep+0x100/0x330 [ 63.515585][ T7376] hrtimer_nanosleep+0x1c1/0x3e0 [ 63.520521][ T7376] __x64_sys_nanosleep+0x106/0x150 [ 63.525631][ T7376] do_syscall_64+0xcf/0x2f0 [ 63.530140][ T7376] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.536012][ T7376] [ 63.538326][ T7376] Reported by Kernel Concurrency Sanitizer on: [ 63.544475][ T7376] CPU: 1 PID: 7376 Comm: syz-executor.1 Not tainted 5.3.0+ #0 [ 63.551916][ T7376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.561967][ T7376] ================================================================== [ 63.570109][ T7376] Kernel panic - not syncing: panic_on_warn set ... [ 63.576696][ T7376] CPU: 1 PID: 7376 Comm: syz-executor.1 Not tainted 5.3.0+ #0 [ 63.584137][ T7376] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.594178][ T7376] Call Trace: [ 63.597462][ T7376] dump_stack+0xf5/0x159 [ 63.601703][ T7376] panic+0x209/0x639 [ 63.605618][ T7376] ? vprintk_func+0x8d/0x140 [ 63.610208][ T7376] kcsan_report.cold+0x57/0xeb [ 63.615224][ T7376] __kcsan_setup_watchpoint+0x342/0x500 [ 63.620762][ T7376] __tsan_write4+0x32/0x40 [ 63.625174][ T7376] do_nanosleep+0x100/0x330 [ 63.629696][ T7376] hrtimer_nanosleep+0x1c1/0x3e0 [ 63.634634][ T7376] ? hrtimer_active+0x1a0/0x1a0 [ 63.639490][ T7376] __x64_sys_nanosleep+0x106/0x150 [ 63.644606][ T7376] do_syscall_64+0xcf/0x2f0 [ 63.649116][ T7376] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.655005][ T7376] RIP: 0033:0x457f00 [ 63.658902][ T7376] Code: c0 5b 5d c3 66 0f 1f 44 00 00 8b 04 24 48 83 c4 18 5b 5d c3 66 0f 1f 44 00 00 83 3d 51 e8 61 00 00 75 14 b8 23 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 24 d3 fb ff c3 48 83 ec 08 e8 ea 46 00 00 [ 63.678500][ T7376] RSP: 002b:00007ffd93644bc8 EFLAGS: 00000246 ORIG_RAX: 0000000000000023 [ 63.686905][ T7376] RAX: ffffffffffffffda RBX: 000000000000f709 RCX: 0000000000457f00 [ 63.694977][ T7376] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 00007ffd93644bd0 [ 63.702950][ T7376] RBP: 0000000000000016 R08: 0000000000000001 R09: 00005555571d9940 [ 63.710916][ T7376] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006 [ 63.719663][ T7376] R13: 00007ffd93644c20 R14: 000000000000f622 R15: 00007ffd93644c30 [ 63.728781][ T7376] Kernel Offset: disabled [ 63.733099][ T7376] Rebooting in 86400 seconds..