Warning: Permanently added '10.128.0.34' (ECDSA) to the list of known hosts.
[[0;32m  OK  [0m] Listening on Load/Save RF Kill Switch Status /dev/rfkill Watch.
[[0;32m  OK  [0m] Started Getty on tty6.
[[0;32m  OK  [0m] Started Getty on tty5.
[[0;32m  OK  [0m] Started Getty on tty4.
[[0;32m  OK  [0m] Started Getty on tty3.
[[0;32m  OK  [0m] Started Getty on tty1.
[[0;32m  OK  [0m] Started Getty on tty2.
[[0;32m  OK  [0m] Reached target Login Prompts.
[[0;32m  OK  [0m] Reached target Multi-User System.
[[0;32m  OK  [0m] Reached target Graphical Interface.
         Starting Update UTMP about System Runlevel Changes...
         Starting Load/Save RF Kill Switch Status...
[[0;32m  OK  [0m] Started Update UTMP about System Runlevel Changes.
[[0;32m  OK  [0m] Started Load/Save RF Kill Switch Status.
2020/09/21 05:47:52 fuzzer started
2020/09/21 05:47:54 dialing manager at 10.128.0.26:36441
2020/09/21 05:47:55 syscalls: 3319
2020/09/21 05:47:55 code coverage: enabled
2020/09/21 05:47:55 comparison tracing: enabled
2020/09/21 05:47:55 extra coverage: enabled
2020/09/21 05:47:55 setuid sandbox: enabled
2020/09/21 05:47:55 namespace sandbox: enabled
2020/09/21 05:47:55 Android sandbox: enabled
2020/09/21 05:47:55 fault injection: enabled
2020/09/21 05:47:55 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2020/09/21 05:47:55 net packet injection: enabled
2020/09/21 05:47:55 net device setup: enabled
2020/09/21 05:47:55 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2020/09/21 05:47:55 devlink PCI setup: PCI device 0000:00:10.0 is not available
2020/09/21 05:47:55 USB emulation: enabled
2020/09/21 05:47:55 hci packet injection: enabled
05:51:34 executing program 0:
perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x0, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140)='/dev/kvm\x00', 0x0, 0x0)
ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r2 = userfaultfd(0x0)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000e53fe8))
r3 = userfaultfd(0x0)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000e53fe8))
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000000000/0x200000)=nil, 0x200000}, 0x2})
ioctl$UFFDIO_UNREGISTER(r2, 0xc018aa06, &(0x7f0000007ffc)={&(0x7f0000000000/0x2000)=nil, 0x200000})

[  407.660693][   T27] audit: type=1400 audit(1600667494.675:8): avc:  denied  { execmem } for  pid=8504 comm="syz-executor.0" scontext=system_u:system_r:kernel_t:s0 tcontext=system_u:system_r:kernel_t:s0 tclass=process permissive=1
[  409.239778][ T8505] IPVS: ftp: loaded support on port[0] = 21
[  409.873069][ T8505] chnl_net:caif_netlink_parms(): no params data found
[  410.129076][ T8505] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.138321][ T8505] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.148342][ T8505] device bridge_slave_0 entered promiscuous mode
[  410.166363][ T8505] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.174564][ T8505] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.184527][ T8505] device bridge_slave_1 entered promiscuous mode
[  410.243672][ T8505] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  410.262251][ T8505] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  410.319616][ T8505] team0: Port device team_slave_0 added
[  410.337075][ T8505] team0: Port device team_slave_1 added
[  410.393539][ T8505] batman_adv: batadv0: Adding interface: batadv_slave_0
[  410.401085][ T8505] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.428390][ T8505] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  410.445966][ T8505] batman_adv: batadv0: Adding interface: batadv_slave_1
[  410.454436][ T8505] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  410.480628][ T8505] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  410.554256][ T8505] device hsr_slave_0 entered promiscuous mode
[  410.566069][ T8505] device hsr_slave_1 entered promiscuous mode
[  410.977945][ T8505] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  410.997358][ T8505] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  411.018003][ T8505] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  411.048426][ T8505] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  411.203471][ T3241] Bluetooth: hci0: command 0x0409 tx timeout
[  411.407529][ T8505] 8021q: adding VLAN 0 to HW filter on device bond0
[  411.445912][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  411.456031][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  411.481339][ T8505] 8021q: adding VLAN 0 to HW filter on device team0
[  411.512900][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  411.524999][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  411.534738][ T3725] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.542424][ T3725] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.597510][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  411.607184][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  411.617914][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  411.627656][ T3725] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.635068][ T3725] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.644453][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  411.655735][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  411.684586][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  411.695810][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  411.714134][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  411.729649][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  411.740753][ T3725] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  411.765519][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  411.775726][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  411.807156][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  411.817149][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  411.847370][ T8505] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  411.919971][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  411.927844][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  411.973484][ T8505] 8021q: adding VLAN 0 to HW filter on device batadv0
[  412.049328][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  412.060046][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  412.133361][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  412.143390][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  412.176312][ T8505] device veth0_vlan entered promiscuous mode
[  412.186626][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  412.196452][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  412.245134][ T8505] device veth1_vlan entered promiscuous mode
[  412.339003][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  412.349831][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  412.359936][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  412.370320][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  412.406983][ T8505] device veth0_macvtap entered promiscuous mode
[  412.434373][ T8505] device veth1_macvtap entered promiscuous mode
[  412.510608][ T8505] batman_adv: batadv0: Interface activated: batadv_slave_0
[  412.519399][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  412.529474][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  412.539484][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  412.549981][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  412.615532][ T8505] batman_adv: batadv0: Interface activated: batadv_slave_1
[  412.624518][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  412.635035][ T3241] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  412.670415][ T8505] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  412.679535][ T8505] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  412.688611][ T8505] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  412.697560][ T8505] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  413.124465][ T8732] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  413.275190][ T3241] Bluetooth: hci0: command 0x041b tx timeout
05:51:40 executing program 0:
perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xe7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x77, 0x1)
ioctl$USBDEVFS_IOCTL(r0, 0x80045505, 0x0)

05:51:40 executing program 0:
r0 = add_key$keyring(&(0x7f0000000100)='keyring\x00', &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000080)='pkcs7_test\x00', 0x0, 0x0, 0x0, r0)

05:51:40 executing program 0:
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
ioctl$VHOST_SET_VRING_CALL(0xffffffffffffffff, 0x4008af21, 0x0)
perf_event_open(&(0x7f0000000500)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
setxattr$security_evm(0x0, 0x0, 0x0, 0x0, 0x0)
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8003, &(0x7f0000000000)=0x9, 0x8, 0x0)
shmget(0x3, 0x2000, 0x0, &(0x7f0000cca000/0x2000)=nil)
sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, 0x0, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x201608, 0x0, 0x0, 0x0)

[  414.189564][ T8751] mmap: syz-executor.0 (8751) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  414.568087][    C0] hrtimer: interrupt took 80369 ns
05:51:41 executing program 0:
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001b00)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = dup(r0)
ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200)
syz_read_part_table(0x0, 0x1, &(0x7f0000000040)=[{&(0x7f0000000000)="0201a9ffffff0a000000ff45ac0000ffffffa600e931190000000000000680ffffffa5000000e100e2ff87730072003007005500000000000000008000da55aa", 0x40, 0x1c0}])

[  414.913669][ T8757]  loop0: p1 p2 p3 p4[EZD]
[  414.918183][ T8757] loop0: partition table partially beyond EOD, truncated
[  414.926178][ T8757] loop0: p1 start 10 is beyond EOD, truncated
[  414.932515][ T8757] loop0: p2 start 25 is beyond EOD, truncated
[  414.938920][ T8757] loop0: p3 start 4293001441 is beyond EOD, truncated
[  414.946021][ T8757] loop0: p4 size 3657465856 extends beyond EOD, truncated
05:51:42 executing program 0:
perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
sendmsg(r0, &(0x7f0000000a40)={0x0, 0xffffff07, &(0x7f0000000380)=[{&(0x7f00000003c0)="3a9a", 0x2d05}], 0x1}, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

[  415.364209][ T8726] Bluetooth: hci0: command 0x040f tx timeout
05:51:42 executing program 0:
perf_event_open(&(0x7f0000001340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r0 = socket$inet6(0xa, 0x3, 0x3c)
connect$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
sendmsg(r0, &(0x7f0000000a40)={0x0, 0xffffff07, &(0x7f0000000380)=[{&(0x7f00000003c0)="3a9a", 0x2d05}], 0x1}, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)

05:51:43 executing program 0:
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x401070c9, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x9, 0x4, &(0x7f0000000080)=ANY=[@ANYRES64=r0], &(0x7f0000000040)='syzkaller\x00', 0x4, 0x92, &(0x7f0000000180)=""/146, 0x41000, 0x0, [], 0x0, 0x0, r0, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x74)

05:51:43 executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x4)
ustat(0x3, &(0x7f0000000000))
bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x4000000}, 0xc)
writev(r0, &(0x7f00000001c0)=[{&(0x7f0000000200)="580000001400192340834b80043f679a10ff3d425f9cc3d8027f4e32f61bcdf1e422000000000100804824cabecc4b289277eb14cd2e688e41a1bbe35da95aaa000000c600000000000000feff2c707f8f00ff0000000000", 0x58}], 0x1)

05:51:44 executing program 0:
ioctl$KVM_GET_NR_MMU_PAGES(0xffffffffffffffff, 0xae45, 0x401)
r0 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x401070c9, 0x0)
ioctl$SIOCPNDELRESOURCE(r0, 0x89ef, &(0x7f0000000040))
syz_mount_image$btrfs(&(0x7f0000000000)='btrfs\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{&(0x7f0000010000)="0d936067b4bc63a9b18462522733c4edd23aed6a7e6fb0b8373909d1c82467cfc40b7798fc244d93b5e63327322fb111000001000000000001000000000000005f42485266535f4d", 0x48, 0x10000}], 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="df"])

[  417.240329][ T8784] BTRFS: device fsid c40b7798-fc24-4d93-b5e6-3327322fb111 devid 0 transid 0 /dev/loop0 scanned by syz-executor.0 (8784)
[  417.433392][ T3241] Bluetooth: hci0: command 0x0419 tx timeout
05:51:44 executing program 0:
timer_create(0x2, &(0x7f0000000000)={0x0, 0x1c, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000200))
timer_settime(0x0, 0xffffffffffffffff, &(0x7f0000000140)={{}, {0x0, 0x9}}, &(0x7f0000d43000))
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(0xffffffffffffffff, 0xc0bc5351, &(0x7f0000000040)={0x6, 0x2, 'client0\x00', 0x0, "7aeb1bb4aa7ca7f4", "930b8fdbb5b42be07948d226f829aede12c61412a6226ba1de9189ba457fc128", 0x8})

05:51:44 executing program 0:
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x8060, 0x0)
fcntl$setsig(r0, 0xa, 0x11)
fcntl$setlease(r0, 0x400, 0x0)
r1 = getpgrp(0x0)
perf_event_open(&(0x7f0000c86f88)={0x2, 0x70, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, r1, 0x0, 0xffffffffffffffff, 0x0)
r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$UI_GET_SYSNAME(r2, 0x401070c9, 0x0)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000080)={r0, r0, 0x4, r2}, 0x10)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x2, 0x0, @tid=r1}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
timer_create(0x0, &(0x7f0000000000)={0x0, 0x16}, &(0x7f0000000040)=<r3=>0x0)
timer_settime(r3, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0)
creat(&(0x7f0000000140)='./file0\x00', 0x0)
syz_mount_image$vfat(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup2(r4, r0)

05:51:45 executing program 0:
r0 = add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000180)={0x0, r0}, 0x0, 0x0, 0x0)
r1 = add_key$user(&(0x7f00000003c0)='user\x00', &(0x7f0000000440)={'syz'}, &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
r2 = creat(&(0x7f00000001c0)='./file0\x00', 0x0)
ioctl$UI_GET_SYSNAME(r2, 0x401070c9, 0x0)
r3 = dup3(r2, 0xffffffffffffffff, 0x80000)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x8108551b, &(0x7f0000000480)={0x5cb5, 0x3, "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"})
r4 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000100)='TIPCv2\x00')
sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r3, &(0x7f0000000300)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f00000005c0)={0x1474, r4, 0x4, 0x70bd2b, 0x25dfdbfd, {}, [@TIPC_NLA_MEDIA={0xf8, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'eth\x00'}, @TIPC_NLA_MEDIA_PROP={0x4}, @TIPC_NLA_MEDIA_PROP={0x4c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xfff}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8001}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x19}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x7}]}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x3f}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x7}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x56cd}]}, @TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8}]}, @TIPC_NLA_MEDIA_PROP={0x24, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}]}, @TIPC_NLA_MEDIA_PROP={0x2c, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x19bb}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x3}]}]}, @TIPC_NLA_LINK={0x1c, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}, @TIPC_NLA_LINK_NAME={0x9, 0x1, 'syz1\x00'}]}, @TIPC_NLA_LINK={0xe8, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x9}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x10000}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0xfffffff7}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x8000}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1f}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x5}]}, @TIPC_NLA_LINK_PROP={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_WIN={0x8, 0x3, 0x7fff}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x10}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x69f}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x1f}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x13}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x2}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xfffff800}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x5}]}, @TIPC_NLA_LINK_PROP={0x14, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x6}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x8}]}, @TIPC_NLA_LINK_PROP={0x34, 0x7, 0x0, 0x1, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x8}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_TOL={0x8}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x9}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1e}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1d}]}]}, @TIPC_NLA_NET={0x2c, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x8}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x4}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9e}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x8}]}, @TIPC_NLA_NET={0x40, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0xf15}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x200}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x5000000000000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xbb}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x7}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x2}]}, @TIPC_NLA_NET={0x44, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_NODEID={0xc, 0x3, 0x9}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0xfffffffe}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x9}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0xcc2}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x6}]}, @TIPC_NLA_MON={0x44, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0xbb}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2b2e}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x3}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x80}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x2}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x6}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x2}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x122dcea4}]}, @TIPC_NLA_PUBL={0x14, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0xe3a4}, @TIPC_NLA_PUBL_UPPER={0x8, 0x3, 0x8}]}, @TIPC_NLA_NODE={0x1128, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_ID={0x1004, 0x3, "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"}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_KEY={0x46, 0x4, {'gcm(aes)\x00', 0x1e, "d080010dddd76b8f4259e406956c1bdacdd3771ef5add4a85fd8f74de594"}}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ID={0xc9, 0x3, "109157ec5c4c78e2470e5236c4f55063bc0aafaac6ce0ef73790aa9f4811d80f492432ebb8febb42205a4a4be930c838febb333cca4bbc356d723a875d4f5a14eaf9ad97083a4a1422ec24c094fe1c5d8ae9507fef1643fa17e956cb8d45958ab367f1a887f4a26dc5cd231f37a16b3537ad44859abe2728a2c7ba2c6008e5420da5248b6e3c7e26a85e6ddd73d2c761a4e6d504f9a784f84a1adf9166277c510f2223030d49cd2beeec37e386629e88797a2fbc5a7e81dd24c9b83c99039e1e743a8395cc"}]}, @TIPC_NLA_MON={0x34, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_REF={0x8, 0x2, 0x9}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x5}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_REF={0x8}, @TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x783}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x4}]}]}, 0x1474}}, 0x8800)
keyctl$dh_compute(0x17, &(0x7f0000000000)={r0, r1, r1}, &(0x7f00000001c0)=""/246, 0xf6, &(0x7f00000002c0)={&(0x7f0000000080)={'poly1305\x00'}, &(0x7f00000000c0)="9c3dedca1712aba706846942b47a0336281a0388", 0x14})

[  418.406461][ T8800] =====================================================
[  418.413553][ T8800] BUG: KMSAN: kernel-infoleak in kmsan_copy_to_user+0x81/0x90
[  418.421038][ T8800] CPU: 1 PID: 8800 Comm: syz-executor.0 Not tainted 5.9.0-rc4-syzkaller #0
[  418.429650][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  418.439740][ T8800] Call Trace:
[  418.443143][ T8800]  dump_stack+0x21c/0x280
[  418.447508][ T8800]  kmsan_report+0xf7/0x1e0
[  418.451958][ T8800]  kmsan_internal_check_memory+0x358/0x3d0
[  418.457842][ T8800]  ? crypto_shash_final+0x3cd/0x480
[  418.463084][ T8800]  kmsan_copy_to_user+0x81/0x90
[  418.468004][ T8800]  _copy_to_user+0x18e/0x260
[  418.472672][ T8800]  __keyctl_dh_compute+0x24ea/0x2fa0
[  418.478060][ T8800]  compat_keyctl_dh_compute+0x34b/0x3e0
[  418.483657][ T8800]  __se_compat_sys_keyctl+0xb35/0xd90
[  418.489086][ T8800]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  418.494918][ T8800]  ? kmsan_get_metadata+0x116/0x180
[  418.500145][ T8800]  ? kmsan_get_metadata+0x116/0x180
[  418.505367][ T8800]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  418.511187][ T8800]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  418.517256][ T8800]  __ia32_compat_sys_keyctl+0x62/0x80
[  418.522715][ T8800]  __do_fast_syscall_32+0x129/0x180
[  418.527968][ T8800]  do_fast_syscall_32+0x6a/0xc0
[  418.532835][ T8800]  do_SYSENTER_32+0x73/0x90
[  418.537432][ T8800]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  418.543752][ T8800] RIP: 0023:0xf7f94549
[  418.547827][ T8800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  418.567465][ T8800] RSP: 002b:00000000f558e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[  418.575871][ T8800] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 0000000020000000
[  418.583838][ T8800] RDX: 00000000200001c0 RSI: 00000000000000f6 RDI: 00000000200002c0
[  418.591828][ T8800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.599998][ T8800] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  418.607977][ T8800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.615972][ T8800] 
[  418.618293][ T8800] Uninit was created at:
[  418.622533][ T8800]  kmsan_internal_poison_shadow+0x66/0xd0
[  418.628271][ T8800]  kmsan_slab_alloc+0x8a/0xe0
[  418.632943][ T8800]  __kmalloc+0x2bb/0x4b0
[  418.637209][ T8800]  __keyctl_dh_compute+0x1f82/0x2fa0
[  418.642526][ T8800]  compat_keyctl_dh_compute+0x34b/0x3e0
[  418.648099][ T8800]  __se_compat_sys_keyctl+0xb35/0xd90
[  418.654113][ T8800]  __ia32_compat_sys_keyctl+0x62/0x80
[  418.659947][ T8800]  __do_fast_syscall_32+0x129/0x180
[  418.665175][ T8800]  do_fast_syscall_32+0x6a/0xc0
[  418.670026][ T8800]  do_SYSENTER_32+0x73/0x90
[  418.674523][ T8800]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  418.680850][ T8800] 
[  418.683254][ T8800] Bytes 0-245 of 246 are uninitialized
[  418.689329][ T8800] Memory access of size 246 starts at ffff8880536a2b00
[  418.697159][ T8800] Data copied to user address 00000000200001c0
[  418.703332][ T8800] =====================================================
[  418.710269][ T8800] Disabling lock debugging due to kernel taint
[  418.716436][ T8800] Kernel panic - not syncing: panic_on_warn set ...
[  418.723052][ T8800] CPU: 1 PID: 8800 Comm: syz-executor.0 Tainted: G    B             5.9.0-rc4-syzkaller #0
[  418.733022][ T8800] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[  418.743524][ T8800] Call Trace:
[  418.746847][ T8800]  dump_stack+0x21c/0x280
[  418.751279][ T8800]  panic+0x4d7/0xef7
[  418.755232][ T8800]  ? add_taint+0x17c/0x210
[  418.759674][ T8800]  kmsan_report+0x1df/0x1e0
[  418.764181][ T8800]  kmsan_internal_check_memory+0x358/0x3d0
[  418.769998][ T8800]  ? crypto_shash_final+0x3cd/0x480
[  418.775232][ T8800]  kmsan_copy_to_user+0x81/0x90
[  418.780127][ T8800]  _copy_to_user+0x18e/0x260
[  418.785168][ T8800]  __keyctl_dh_compute+0x24ea/0x2fa0
[  418.790531][ T8800]  compat_keyctl_dh_compute+0x34b/0x3e0
[  418.796125][ T8800]  __se_compat_sys_keyctl+0xb35/0xd90
[  418.801515][ T8800]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  418.807312][ T8800]  ? kmsan_get_metadata+0x116/0x180
[  418.812519][ T8800]  ? kmsan_get_metadata+0x116/0x180
[  418.817728][ T8800]  ? kmsan_get_shadow_origin_ptr+0x81/0xb0
[  418.823553][ T8800]  ? __msan_metadata_ptr_for_load_8+0x10/0x20
[  418.829643][ T8800]  __ia32_compat_sys_keyctl+0x62/0x80
[  418.835010][ T8800]  __do_fast_syscall_32+0x129/0x180
[  418.840222][ T8800]  do_fast_syscall_32+0x6a/0xc0
[  418.845093][ T8800]  do_SYSENTER_32+0x73/0x90
[  418.849605][ T8800]  entry_SYSENTER_compat_after_hwframe+0x4d/0x5c
[  418.855945][ T8800] RIP: 0023:0xf7f94549
[  418.860001][ T8800] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 eb 0d 90 90 90 90 90 90 90 90 90 90 90 90
[  418.879599][ T8800] RSP: 002b:00000000f558e0cc EFLAGS: 00000296 ORIG_RAX: 0000000000000120
[  418.888008][ T8800] RAX: ffffffffffffffda RBX: 0000000000000017 RCX: 0000000020000000
[  418.895986][ T8800] RDX: 00000000200001c0 RSI: 00000000000000f6 RDI: 00000000200002c0
[  418.903979][ T8800] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  418.911938][ T8800] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  418.919906][ T8800] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  418.929004][ T8800] Kernel Offset: disabled
[  418.933330][ T8800] Rebooting in 86400 seconds..