last executing test programs: 3.502191768s ago: executing program 1 (id=21): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x5c, 0x2, 0x6, 0x201, 0x0, 0x6000, {}, [@IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_TYPENAME={0x10, 0x3, 'bitmap:port\x00'}, @IPSET_ATTR_DATA={0x14, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT_TO={0x6, 0x5, 0x1, 0x0, 0x4e23}, @IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e21}]}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}]}, 0x5c}}, 0x0) sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)={0x34, 0x9, 0x6, 0x5, 0x0, 0x0, {0x6}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_PORT={0x6, 0x4, 0x1, 0x0, 0x4e20}]}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x804) 2.762141908s ago: executing program 1 (id=24): socket$kcm(0xa, 0x5, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="07000000040000001800000042"], 0x50) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) socket$nl_route(0x10, 0x3, 0x0) socket$kcm(0x10, 0x3, 0x10) openat$tun(0xffffffffffffff9c, &(0x7f0000000040), 0x1c1341, 0x0) close(0xffffffffffffffff) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xd, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020097b1a"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)) r0 = socket$kcm(0xa, 0x5, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events.local\x00', 0x26e1, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00@\x00\x00\x00', @ANYRES32=r1], 0x48) ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x8916, &(0x7f0000000000)={r0}) 1.540693358s ago: executing program 0 (id=29): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a010200000000000000000100000a0900010073797a30000000000900030073797a30000000005c000000060a010400000000000000000100000008000b4000000000340004803000018008000100636d700024000280100003a0090001002a8e27e2fa000000080002400000000008000140000000090900010073797a30"], 0xd0}}, 0x0) 1.342357126s ago: executing program 1 (id=30): r0 = socket$kcm(0xa, 0x1, 0x106) sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000080)=@l2tp6={0xa, 0x0, 0x0, @local, 0x47}, 0x80, 0x0}, 0x240428f8) 1.297757058s ago: executing program 0 (id=31): r0 = socket$inet6_udplite(0xa, 0x2, 0x88) sendmsg$inet6(r0, &(0x7f0000000180)={&(0x7f0000000000)={0xa, 0x4e23, 0x10000, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000800)=[@pktinfo={{0x24, 0x29, 0x32, {@loopback}}}, @rthdrdstopts={{0x18, 0x29, 0x37, {0xc}}}], 0x40}, 0x0) 1.072690177s ago: executing program 1 (id=32): r0 = socket$kcm(0x2, 0x1, 0x84) setsockopt$sock_attach_bpf(r0, 0x84, 0x8, &(0x7f0000000000), 0x8) sendmsg$inet(r0, &(0x7f0000000380)={&(0x7f0000000600)={0x2, 0x0, @private=0xa010100}, 0x10, &(0x7f00000000c0)=[{&(0x7f00000003c0)="ea", 0x1}], 0x1}, 0x40408d1) 977.782211ms ago: executing program 0 (id=33): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x4b, &(0x7f0000000380)=[{&(0x7f0000000080)={0x30, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0x8, 0xea, 0x0, 0x0, @fd}, @typed={0x8, 0x0, 0x0, 0x0, @uid=0xee00}, @nested={0x10, 0xcd, 0x0, 0x1, [@typed={0xb, 0x1, 0x0, 0x0, @str='@*{,-)\x00'}]}]}, 0x30}], 0x1, 0x0, 0x0, 0x40040}, 0x20000000) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)) openat$cgroup_subtree(r1, &(0x7f0000000200), 0x2, 0x0) 441.347962ms ago: executing program 0 (id=34): bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x4, &(0x7f00000003c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, [@call={0x85, 0x0, 0x0, 0x29}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 272.12899ms ago: executing program 1 (id=35): sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000900)={0x34, 0x0, 0x8, 0x101, 0x0, 0x0, {0x3, 0x0, 0x2}, [@CTA_TIMEOUT_NAME={0x9, 0x1, 'syz1\x00'}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x8809}, @CTA_TIMEOUT_DATA={0x4, 0x4, 0x0, 0x1, @fccp}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x6}]}, 0x34}, 0x1, 0x0, 0x0, 0x20024810}, 0x0) 271.856689ms ago: executing program 0 (id=36): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='contention_begin\x00', r0}, 0x18) r1 = socket$nl_generic(0x10, 0x3, 0x10) r2 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="c0260000410007010000000007000000017c00000400fc80a72601"], 0x26c0}}, 0x4010) sendmsg$nl_generic(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000004a40)=ANY=[@ANYBLOB="c0260000410007010000000007000000027c00000400fc80a72601"], 0x26c0}}, 0x4010) 272.6µs ago: executing program 1 (id=37): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xa, 0x4, 0xdd, 0xa}, 0x50) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) close(0x3) bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x2, 0x4, 0x3, 0x5, 0x1000, 0xffffffffffffffff, 0x6}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0xd, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000061188c0000"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 0s ago: executing program 0 (id=38): socket$nl_netfilter(0x10, 0x3, 0xc) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={0x84, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_SEQ_ADJ_REPLY={0x34, 0x4, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0xd6e}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x651}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x2}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x5}]}, @CTA_NAT_DST={0x18, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @private1}]}]}, 0x84}}, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:63506' (ED25519) to the list of known hosts. syzkaller login: [ 157.882096][ T3308] cgroup: Unknown subsys name 'net' [ 158.246189][ T3308] cgroup: Unknown subsys name 'cpuset' [ 158.300219][ T3308] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 158.907365][ T3308] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 171.952304][ T3313] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.049614][ T3313] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 172.068353][ T3314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.146349][ T3314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.757842][ T3313] hsr_slave_0: entered promiscuous mode [ 173.766951][ T3313] hsr_slave_1: entered promiscuous mode [ 173.977056][ T3314] hsr_slave_0: entered promiscuous mode [ 173.986843][ T3314] hsr_slave_1: entered promiscuous mode [ 173.991461][ T3314] debugfs: 'hsr0' already exists in 'hsr' [ 173.996538][ T3314] Cannot create hsr debugfs directory [ 175.574202][ T3313] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 175.618897][ T3313] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 175.660566][ T3313] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 175.695609][ T3313] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 176.034029][ T3314] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 176.096285][ T3314] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 176.145769][ T3314] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 176.176908][ T3314] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 177.651074][ T3313] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.717241][ T3314] 8021q: adding VLAN 0 to HW filter on device bond0 [ 182.847300][ T3313] veth0_vlan: entered promiscuous mode [ 182.876961][ T3314] veth0_vlan: entered promiscuous mode [ 182.928891][ T3313] veth1_vlan: entered promiscuous mode [ 183.000648][ T3314] veth1_vlan: entered promiscuous mode [ 183.226215][ T3313] veth0_macvtap: entered promiscuous mode [ 183.329579][ T3314] veth0_macvtap: entered promiscuous mode [ 183.359742][ T3313] veth1_macvtap: entered promiscuous mode [ 183.397100][ T3314] veth1_macvtap: entered promiscuous mode [ 183.776867][ T980] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.810897][ T980] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.811673][ T980] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.812067][ T980] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.812422][ T980] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.815070][ T980] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.815469][ T980] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 183.815828][ T980] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 184.611170][ T3313] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 185.882346][ T3465] netlink: 'syz.1.2': attribute type 39 has an invalid length. [ 186.555483][ T3469] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 186.878413][ T3473] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7'. [ 193.977895][ T3549] ================================================================== [ 193.981740][ T3549] BUG: KASAN: invalid-access in __memcpy+0xc/0x54 [ 193.984332][ T3549] Write at addr f4ff8000833651b8 by task syz.1.37/3549 [ 193.984938][ T3549] Pointer tag: [f4], memory tag: [fe] [ 193.985107][ T3549] [ 193.986024][ T3549] CPU: 1 UID: 0 PID: 3549 Comm: syz.1.37 Not tainted syzkaller #0 PREEMPT [ 193.986562][ T3549] Hardware name: linux,dummy-virt (DT) [ 193.986995][ T3549] Call trace: [ 193.987409][ T3549] show_stack+0x18/0x24 (C) [ 193.987938][ T3549] dump_stack_lvl+0x78/0x90 [ 193.988348][ T3549] print_report+0x108/0x61c [ 193.988570][ T3549] kasan_report+0x88/0xac [ 193.988804][ T3549] __do_kernel_fault+0x170/0x1c8 [ 193.989019][ T3549] do_bad_area+0x68/0x78 [ 193.989242][ T3549] do_tag_check_fault+0x34/0x44 [ 193.989504][ T3549] do_mem_abort+0x44/0x94 [ 193.989714][ T3549] el1_abort+0x44/0x68 [ 193.989948][ T3549] el1h_64_sync_handler+0x50/0xac [ 193.990155][ T3549] el1h_64_sync+0x6c/0x70 [ 193.990499][ T3549] __memcpy+0xc/0x54 (P) [ 193.990724][ T3549] convert_ctx_accesses+0x694/0xb28 [ 193.990968][ T3549] bpf_check+0x1338/0x2a24 [ 193.991180][ T3549] bpf_prog_load+0x63c/0xcd4 [ 193.991401][ T3549] __sys_bpf+0x2e0/0x1a88 [ 193.991620][ T3549] __arm64_sys_bpf+0x24/0x34 [ 193.991846][ T3549] invoke_syscall+0x48/0x110 [ 193.992095][ T3549] el0_svc_common.constprop.0+0x40/0xe0 [ 193.992312][ T3549] do_el0_svc+0x1c/0x28 [ 193.992523][ T3549] el0_svc+0x34/0x10c [ 193.992830][ T3549] el0t_64_sync_handler+0xa0/0xe4 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 193.993048][ T3549] el0t_64_sync+0x1a4/0x1a8 [ 193.993529][ T3549] [ 193.993858][ T3549] The buggy address belongs to a 1-page vmalloc region starting at 0xf4ff800083365000 allocated at bpf_check+0x8c/0x2a24 [ 193.995720][ T3549] The buggy address belongs to the physical page: [ 193.996233][ T3549] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4abd0 [ 193.996757][ T3549] flags: 0x1ffec0000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0xb) [ 193.997986][ T3549] raw: 01ffec0000000000 0000000000000000 dead000000000122 0000000000000000 [ 193.998183][ T3549] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 193.998408][ T3549] page dumped because: kasan: bad access detected [ 193.998537][ T3549] [ 193.998637][ T3549] Memory state around the buggy address: [ 193.999275][ T3549] Unable to handle kernel paging request at virtual address ffff800083364f00 [ 193.999504][ T3549] Mem abort info: [ 193.999601][ T3549] ESR = 0x0000000096000007 [ 193.999771][ T3549] EC = 0x25: DABT (current EL), IL = 32 bits [ 193.999983][ T3549] SET = 0, FnV = 0 [ 194.000119][ T3549] EA = 0, S1PTW = 0 [ 194.000261][ T3549] FSC = 0x07: level 3 translation fault [ 194.000412][ T3549] Data abort info: [ 194.000519][ T3549] ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000 [ 194.000653][ T3549] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 194.000830][ T3549] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 194.001089][ T3549] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000042981000 [ 194.001275][ T3549] [ffff800083364f00] pgd=1000000042ebb003, p4d=1000000042ebc003, pud=1000000042ebd003, pmd=1000000044170403, pte=0000000000000000 [ 194.003474][ T3549] Internal error: Oops: 0000000096000007 [#1] SMP [ 194.045976][ T3549] Modules linked in: [ 194.046986][ T3549] CPU: 1 UID: 0 PID: 3549 Comm: syz.1.37 Not tainted syzkaller #0 PREEMPT [ 194.048171][ T3549] Hardware name: linux,dummy-virt (DT) [ 194.048968][ T3549] pstate: 624020c9 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 194.049883][ T3549] pc : kasan_metadata_fetch_row+0xc/0x28 [ 194.050985][ T3549] lr : print_report+0x29c/0x61c [ 194.051615][ T3549] sp : ffff8000891735e0 [ 194.052261][ T3549] x29: ffff8000891735e0 x28: f5f000000b183840 x27: f0ff80008335d060 [ 194.053656][ T3549] x26: 0000000000000058 x25: ffff800082448730 x24: ffff800082448738 [ 194.054726][ T3549] x23: ffff8000833651b8 x22: ffff800082419178 x21: ffff800083365000 [ 194.055710][ T3549] x20: 00000000fffffffe x19: ffff800083364f00 x18: 0000000000000010 [ 194.056788][ T3549] x17: ffff8000828ffa60 x16: 0000000000006200 x15: ffff800089173460 [ 194.057796][ T3549] x14: ffff80008917365c x13: ffff800089173649 x12: ffff8000829ff3c0 [ 194.058736][ T3549] x11: 0000000000000001 x10: 0000000000000001 x9 : 000000000002ffe8 [ 194.060004][ T3549] x8 : f5f000000b183840 x7 : 0000000000000010 x6 : ffff800081c70640 [ 194.061212][ T3549] x5 : 0000000000000030 x4 : 0000000000000002 x3 : ffff800083365000 [ 194.062161][ T3549] x2 : ffff800083364f00 x1 : ffff800083364f10 x0 : ffff800089173638 [ 194.063783][ T3549] Call trace: [ 194.064496][ T3549] kasan_metadata_fetch_row+0xc/0x28 (P) [ 194.065334][ T3549] kasan_report+0x88/0xac [ 194.065953][ T3549] __do_kernel_fault+0x170/0x1c8 [ 194.066592][ T3549] do_bad_area+0x68/0x78 [ 194.067206][ T3549] do_tag_check_fault+0x34/0x44 [ 194.069240][ T3549] do_mem_abort+0x44/0x94 [ 194.069838][ T3549] el1_abort+0x44/0x68 [ 194.070436][ T3549] el1h_64_sync_handler+0x50/0xac [ 194.071100][ T3549] el1h_64_sync+0x6c/0x70 [ 194.071972][ T3549] __memcpy+0xc/0x54 (P) [ 194.072694][ T3549] convert_ctx_accesses+0x694/0xb28 [ 194.076434][ T3549] bpf_check+0x1338/0x2a24 [ 194.077143][ T3549] bpf_prog_load+0x63c/0xcd4 [ 194.077851][ T3549] __sys_bpf+0x2e0/0x1a88 [ 194.078519][ T3549] __arm64_sys_bpf+0x24/0x34 [ 194.079199][ T3549] invoke_syscall+0x48/0x110 [ 194.079897][ T3549] el0_svc_common.constprop.0+0x40/0xe0 [ 194.080702][ T3549] do_el0_svc+0x1c/0x28 [ 194.081328][ T3549] el0_svc+0x34/0x10c [ 194.081946][ T3549] el0t_64_sync_handler+0xa0/0xe4 [ 194.082484][ T3549] el0t_64_sync+0x1a4/0x1a8 [ 194.083723][ T3549] Code: d65f03c0 91040023 aa0103e2 91004021 (d9600042) [ 194.084888][ T3549] ---[ end trace 0000000000000000 ]--- [ 194.085861][ T3549] Kernel panic - not syncing: Oops: Fatal exception [ 194.086794][ T3549] SMP: stopping secondary CPUs [ 194.088060][ T3549] Kernel Offset: disabled [ 194.088558][ T3549] CPU features: 0x000000,0000d198,2fbe33e0,557ffebf [ 194.089447][ T3549] Memory Limit: none [ 194.090470][ T3549] Rebooting in 86400 seconds.. VM DIAGNOSIS: 02:54:29 Registers: info registers vcpu 0 CPU#0 PC=ffff8000816820c4 X00=fff000007f8d581c X01=fff07ffffcfd3000 X02=0000000000000001 X03=0000000000000001 X04=f6f0000004583840 X05=0000000000000000 X06=0000000000000000 X07=0000000000000000 X08=ffff800082cdb818 X09=0000000000000000 X10=0000000000000001 X11=ffff800082c9cf40 X12=000000000000d0bf X13=0000000000000000 X14=0000000000000000 X15=0000000000000000 X16=ffff800082cd8000 X17=fff07ffffcfd3000 X18=0000000000000000 X19=f4f0000007eca600 X20=0000000000000001 X21=f0f0000003f43f28 X22=0000000000000001 X23=0000000000000380 X24=f0f0000003f43f00 X25=ffff800082b8e5a8 X26=ffff800082c9cf40 X27=f4f0000007eca600 X28=f0f0000003f43f00 X29=ffff800082cdb6e0 X30=239f800081682480 SP=ffff800082cdb6e0 PSTATE=20402009 --C- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000065676e616863:00746e657665752f Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffff000000000000:ff00000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ff000000f0000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000000ff0000ff Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:3303330333033303:3303330333033303 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:bcbcbc00bcc03003:bcbcbc00bcc03003 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000073:0000aaaaea7b5c90 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000074:0000aaaaea7b2f70 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffc8ee35a0:0000ffffc8ee35a0 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffc8ee3570 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff800081b05960 X00=ffff800089172ede X01=f5f000000b183840 X02=ffff800089172d70 X03=0000000000000000 X04=ffff800082426396 X05=0000000000000030 X06=0044b82fa09b5a53 X07=0000000000000003 X08=f5f000000b183840 X09=00000000000000c1 X10=fffffffffffccaf0 X11=fffffffffffccb48 X12=ffff8000829ff3c0 X13=ffff800089172edf X14=ffff800109172ed7 X15=ffff800089172cd0 X16=0000000000006200 X17=ffff8000828ffa60 X18=0000000000000006 X19=0000000000000001 X20=0000000000000801 X21=ffff80008242639b X22=ffff800109172ed7 X23=0000000000000008 X24=ffff800089172e10 X25=0000000000000000 X26=00000000000007fe X27=ffff80008267c000 X28=ffffffffffffffff X29=ffff800089172e10 X30=ffff800080132464 SP=ffff800089172e10 PSTATE=a04020c9 N-C- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2525252525252525:2525252525252525 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000756c6c2570:6f6f6c2f7665642f Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:fffffff0000000f0 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff000000ff00:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:fff000f000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:bb448243222c92da:e3914ed4e87380b0 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffc0816170:0000ffffc0816170 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffc0816140 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000