ps_root_recvmsg: Invalid argument ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsg: Invalid argument ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsg: Invalid argument [ 213.368436][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 4157: Connection refused ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsg: Invalid argument ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsgcb: failed to send message to pid 4185: Connection refused [ 218.669386][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 218.724484][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 218.756600][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsg: Invalid argument [ 223.415513][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsg: Invalid argument ps_root_recvmsgcb: failed to send message to pid 4175: Connection refused [ 228.739514][ T3990] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. ps_root_recvmsgcb: failed to send message to pid 4176: Connection refused ps_root_recvmsg: Invalid argument Warning: Permanently added '[localhost]:25985' (ECDSA) to the list of known hosts. ps_root_recvmsgcb: failed to send message to pid 4184: Connection refused 1970/01/01 00:03:54 fuzzer started ps_root_recvmsgcb: failed to send message to pid 4201: Connection refused 1970/01/01 00:04:01 dialing manager at localhost:34963 1970/01/01 00:04:01 checking machine... 1970/01/01 00:04:01 checking revisions... 1970/01/01 00:04:03 testing simple program... executing program executing program [ 253.063385][ T2902] ieee802154 phy0 wpan0: encryption failed: -22 [ 253.066297][ T2902] ieee802154 phy1 wpan1: encryption failed: -22 executing program executing program ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument executing program ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument executing program [ 264.403562][ T4229] IPVS: ftp: loaded support on port[0] = 21 [ 265.964954][ T4229] chnl_net:caif_netlink_parms(): no params data found [ 266.820490][ T4229] bridge0: port 1(bridge_slave_0) entered blocking state [ 266.825006][ T4229] bridge0: port 1(bridge_slave_0) entered disabled state [ 266.848340][ T4229] device bridge_slave_0 entered promiscuous mode [ 266.907289][ T4229] bridge0: port 2(bridge_slave_1) entered blocking state [ 266.909117][ T4229] bridge0: port 2(bridge_slave_1) entered disabled state [ 266.926833][ T4229] device bridge_slave_1 entered promiscuous mode executing program [ 267.249882][ T4229] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 267.296930][ T4229] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 267.658091][ T4229] team0: Port device team_slave_0 added [ 267.744784][ T4229] team0: Port device team_slave_1 added [ 268.055068][ T4229] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 268.056062][ T4229] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.057779][ T4229] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 268.119944][ T4229] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 268.120877][ T4229] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 268.132913][ T4229] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 268.457991][ T4229] device hsr_slave_0 entered promiscuous mode [ 268.477299][ T4229] device hsr_slave_1 entered promiscuous mode executing program [ 270.628568][ T4229] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 270.715182][ T4229] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 270.774380][ T4229] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 270.864832][ T4229] netdevsim netdevsim0 netdevsim3: renamed from eth3 ps_bpf_start_bpf: bpf_open: Invalid argument ps_root_recvmsg: Invalid argument [ 272.331034][ T4229] 8021q: adding VLAN 0 to HW filter on device bond0 [ 272.524243][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 272.561122][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 272.644930][ T4229] 8021q: adding VLAN 0 to HW filter on device team0 [ 272.731175][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 272.741316][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 272.760373][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 272.763968][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 272.816066][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 272.955191][ T2609] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 272.978449][ T2609] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 273.007634][ T2609] bridge0: port 2(bridge_slave_1) entered blocking state [ 273.008762][ T2609] bridge0: port 2(bridge_slave_1) entered forwarding state executing program [ 273.274070][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 273.287851][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 273.439141][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 273.450880][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 273.500142][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 273.620483][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 273.643153][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 273.728120][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 273.737265][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 273.860558][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 273.884163][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 274.017604][ T4229] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 274.601085][ T3785] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 274.607716][ T3785] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 274.830386][ T4229] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 275.311195][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 275.351045][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready executing program [ 278.237200][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 278.276889][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 278.309644][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 278.319731][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 278.390469][ T4229] device veth0_vlan entered promiscuous mode [ 278.567510][ T4229] device veth1_vlan entered promiscuous mode [ 279.086840][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 279.106810][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready executing program [ 279.247978][ T4229] device veth0_macvtap entered promiscuous mode [ 279.274188][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 279.390604][ T4229] device veth1_macvtap entered promiscuous mode [ 279.713859][ T4229] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 279.744114][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 279.760564][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 279.867988][ T4229] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 279.870437][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 279.910341][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 280.018136][ T4229] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.020680][ T4229] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.036122][ T4229] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 280.037486][ T4229] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 281.478656][ T4229] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation executing program 1970/01/01 00:04:39 building call list... executing program executing program executing program [ 293.209472][ T24] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 295.418049][ T24] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program [ 297.507160][ T24] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 299.126998][ T24] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 executing program executing program executing program executing program executing program [ 314.490373][ T2902] ieee802154 phy0 wpan0: encryption failed: -22 [ 314.493319][ T2902] ieee802154 phy1 wpan1: encryption failed: -22 executing program executing program executing program [ 321.456428][ T24] device hsr_slave_0 left promiscuous mode [ 321.481163][ T24] device hsr_slave_1 left promiscuous mode [ 321.539707][ T24] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 321.541053][ T24] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 321.720635][ T24] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 321.729171][ T24] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 321.859225][ T24] device bridge_slave_1 left promiscuous mode [ 321.895185][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 322.203006][ T24] device bridge_slave_0 left promiscuous mode [ 322.208406][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 322.586050][ T24] device veth1_macvtap left promiscuous mode [ 322.590271][ T24] device veth0_macvtap left promiscuous mode [ 322.623693][ T24] device veth1_vlan left promiscuous mode [ 322.627026][ T24] device veth0_vlan left promiscuous mode executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program executing program [ 375.938038][ T2902] ieee802154 phy0 wpan0: encryption failed: -22 [ 375.954468][ T2902] ieee802154 phy1 wpan1: encryption failed: -22 executing program executing program executing program executing program executing program executing program executing program executing program [ 400.216632][ T24] team0 (unregistering): Port device team_slave_1 removed [ 400.741157][ T24] team0 (unregistering): Port device team_slave_0 removed [ 401.320316][ T24] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 401.799464][ T24] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface executing program [ 404.748006][ T24] bond0 (unregistering): Released all slaves executing program ps_root_recvmsgcb: failed to send message to pid 4227: Connection refused ps_root_recvmsgcb: failed to send message to pid 4228: Connection refused ps_root_recvmsgcb: failed to send message to pid 4232: Connection refused ps_root_recvmsgcb: failed to send message to pid 4444: Connection refused executing program executing program [ 411.939261][ T24] ------------[ cut here ]------------ [ 411.948969][ T24] ODEBUG: free active (active state 0) object type: timer_list hint: delayed_work_timer_fn+0x0/0x50 [ 411.958602][ T24] WARNING: CPU: 0 PID: 24 at lib/debugobjects.c:505 debug_print_object+0xd2/0xf8 [ 411.960580][ T24] Modules linked in: [ 411.974877][ T24] CPU: 0 PID: 24 Comm: kworker/u4:1 Not tainted 5.12.0-rc2-syzkaller-00467-g0d7588ab9ef9 #0 [ 411.980222][ T24] Hardware name: riscv-virtio,qemu (DT) [ 412.023261][ T24] Workqueue: netns cleanup_net [ 412.025154][ T24] epc : debug_print_object+0xd2/0xf8 [ 412.028228][ T24] ra : debug_print_object+0xd2/0xf8 [ 412.029491][ T24] epc : ffffffe000ac0002 ra : ffffffe000ac0002 sp : ffffffe0070ef810 [ 412.049412][ T24] gp : ffffffe005d25378 tp : ffffffe007035b00 t0 : ffffffe00679db67 [ 412.051297][ T24] t1 : ffffffc400e1de9e t2 : 0000000000000000 s0 : ffffffe0070ef860 [ 412.074084][ T24] s1 : 0000000000000000 a0 : 0000000000000061 a1 : 00000000000f0000 [ 412.078246][ T24] a2 : 0000000000000002 a3 : ffffffe0000d649e a4 : 7578acda51679100 [ 412.079667][ T24] a5 : 7578acda51679100 a6 : 0000000000f00000 a7 : ffffffe0070ef4f7 [ 412.081294][ T24] s2 : ffffffe004b04278 s3 : ffffffe005d2cc44 s4 : ffffffe004004228 [ 412.108609][ T24] s5 : ffffffe0048dc378 s6 : ffffffe000062f4a s7 : ffffffe00010df06 [ 412.111403][ T24] s8 : 0000000000000003 s9 : 0000000000000100 s10: ffffffe00696dc80 [ 412.178266][ T24] s11: ffffffe0162963f0 t3 : 7578acda51679100 t4 : ffffffc400e1de9d [ 412.183773][ T24] t5 : ffffffc400e1de9f t6 : ffffffe0070ef4f8 [ 412.187038][ T24] status: 0000000000000120 badaddr: 0000000000000000 cause: 0000000000000003 [ 412.258433][ T24] Call Trace: [ 412.259590][ T24] [] debug_print_object+0xd2/0xf8 [ 412.261086][ T24] [] debug_check_no_obj_freed+0x208/0x23a [ 412.263875][ T24] [] slab_free_freelist_hook+0x17a/0x18a [ 412.265303][ T24] [] kfree+0xd2/0x3d0 [ 412.270665][ T24] [] kvfree+0x5e/0x72 [ 412.274599][ T24] [] netdev_freemem+0x30/0x3a [ 412.277426][ T24] [] netdev_release+0x64/0x7c [ 412.280095][ T24] [] device_release+0x66/0x148 [ 412.340403][ T24] [] kobject_put+0x1b0/0x37e [ 412.454788][ T24] [] netdev_run_todo+0x63a/0x798 [ 412.458522][ T24] [] rtnl_unlock+0x14/0x1c [ 412.461076][ T24] [] default_device_exit_batch+0x22c/0x258 [ 412.527121][ T24] [] ops_exit_list+0xb2/0xcc [ 412.528487][ T24] [] cleanup_net+0x3ba/0x6a8 [ 412.529801][ T24] [] process_one_work+0x5b0/0xf3a [ 412.531178][ T24] [] worker_thread+0x350/0x87a [ 412.602833][ T24] [] kthread+0x234/0x298 [ 412.605833][ T24] [] ret_from_exception+0x0/0x14 [ 412.625522][ T24] Kernel panic - not syncing: panic_on_warn set ... [ 412.628418][ T24] CPU: 0 PID: 24 Comm: kworker/u4:1 Not tainted 5.12.0-rc2-syzkaller-00467-g0d7588ab9ef9 #0 [ 412.631727][ T24] Hardware name: riscv-virtio,qemu (DT) [ 412.632663][ T24] Workqueue: netns cleanup_net [ 412.634048][ T24] Call Trace: [ 412.634784][ T24] [] walk_stackframe+0x0/0x23c [ 412.636896][ T24] SMP: stopping secondary CPUs [ 412.641008][ T24] Dumping ftrace buffer: [ 412.643657][ T24] (ftrace buffer empty) [ 412.646400][ T24] Rebooting in 1 seconds.. Connection to localhost closed by remote host. VM DIAGNOSIS: 03:35:27 Registers: info registers vcpu 0 pc ffffffe00039bdf8 mhartid 0000000000000000 mstatus 00000000000001a0 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffe00000542c mepc ffffffe00000df8e sepc ffffffe0000d29d0 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffe0000cd9c8 x2/sp ffffffe0070eedc0 x3/gp ffffffe005d25378 x4/tp ffffffe007035b00 x5/t0 ffffffe0070eecf8 x6/t1 0000000000000001 x7/t2 0000000000000000 x8/s0 ffffffe0070eee00 x9/s1 ffffffe067d73e00 x10/a0 ffffffe067d73e00 x11/a1 0000000000000003 x12/a2 1ffffffc0cfae7c0 x13/a3 ffffffe0000cd9c8 x14/a4 0000000000000000 x15/a5 0000000000000001 x16/a6 0000000000f00000 x17/a7 ffffffe00009f70c x18/s2 0000000000000001 x19/s3 ffffffe007035b00 x20/s4 ffffffe067d73e10 x21/s5 ffffffe067d73e08 x22/s6 ffffffe006f41120 x23/s7 0000000000000008 x24/s8 ffffffe067d73e18 x25/s9 ffffffe0070eef38 x26/s10 ffffffe067d73e00 x27/s11 ffffffe005d25094 x28/t3 7578acda51679100 x29/t4 ffffffc400e1dd96 x30/t5 ffffffc400e1dd9f x31/t6 0000000000000001 f0/ft0 40b14562d0e56042 f1/ft1 408f400000000000 f2/ft2 3f2da51ee5f7f39d f3/ft3 40d9cb00f4e6c2bc f4/ft4 4122280000000000 f5/ft5 4039000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffe0000becda mhartid 0000000000000001 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffe00000542c mepc ffffffe0000becb6 sepc ffffffe0000becf4 mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffe003bbd878 x2/sp ffffffe008aab580 x3/gp ffffffe005d25378 x4/tp ffffffe00e2bdb00 x5/t0 0000000000046000 x6/t1 0000000000000001 x7/t2 0000000000000000 x8/s0 ffffffe008aab590 x9/s1 ffffffe00e2be470 x10/a0 0000000000000120 x11/a1 00000000000f0000 x12/a2 0000000000010001 x13/a3 0000000000000000 x14/a4 0000000000000001 x15/a5 ffffffe067d62800 x16/a6 0000000000f00000 x17/a7 ffffffe0000991e2 x18/s2 0000000000000000 x19/s3 ffffffe00592b5f8 x20/s4 ffffffe00e2beb00 x21/s5 ffffffe003e2e800 x22/s6 ffffffffffffffff x23/s7 0000000000000120 x24/s8 ffffffe0067e9568 x25/s9 0000000000000002 x26/s10 ffffffe067d670c0 x27/s11 ffffffe00e2bdb00 x28/t3 7578acda51679100 x29/t4 ffffffc400cfc0fd x30/t5 ffffffc400cfc104 x31/t6 0000000000040000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000