Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Starting Load/Save RF Kill Switch Status... [ OK ] Started Load/Save RF Kill Switch Status. Debian GNU/Linux 9 syzkaller ttyS0 syzkaller login: [ 49.913476][ T4836] systemd-udevd (4836) used greatest stack depth: 22208 bytes left [ 49.927895][ T4896] systemd-udevd (4896) used greatest stack depth: 21712 bytes left Warning: Permanently added '10.128.0.201' (ECDSA) to the list of known hosts. 2020/06/26 20:59:17 fuzzer started 2020/06/26 20:59:18 dialing manager at 10.128.0.26:45395 2020/06/26 20:59:18 syscalls: 3118 2020/06/26 20:59:18 code coverage: enabled 2020/06/26 20:59:18 comparison tracing: enabled 2020/06/26 20:59:18 extra coverage: enabled 2020/06/26 20:59:18 setuid sandbox: enabled 2020/06/26 20:59:18 namespace sandbox: enabled 2020/06/26 20:59:18 Android sandbox: /sys/fs/selinux/policy does not exist 2020/06/26 20:59:18 fault injection: enabled 2020/06/26 20:59:18 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/06/26 20:59:18 net packet injection: enabled 2020/06/26 20:59:18 net device setup: enabled 2020/06/26 20:59:18 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/06/26 20:59:18 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/06/26 20:59:18 USB emulation: enabled 21:00:55 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) socket$nl_audit(0x10, 0x3, 0x9) bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c) pipe(&(0x7f0000000100)={0xffffffffffffffff}) r2 = dup2(r0, r1) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41d1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet6_int(r2, 0x29, 0x4a, &(0x7f00000014c0)=0x9759, 0x4) recvmmsg(r0, &(0x7f0000008880), 0x4000000000005e3, 0x44000102, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c) [ 154.950359][ T6810] IPVS: ftp: loaded support on port[0] = 21 21:00:55 executing program 1: perf_event_open(&(0x7f0000000240)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) munmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000ffd000/0x2000)=nil}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 155.114371][ T6810] chnl_net:caif_netlink_parms(): no params data found [ 155.245367][ T6921] IPVS: ftp: loaded support on port[0] = 21 [ 155.272353][ T6810] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.280562][ T6810] bridge0: port 1(bridge_slave_0) entered disabled state [ 155.289237][ T6810] device bridge_slave_0 entered promiscuous mode [ 155.305264][ T6810] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.312505][ T6810] bridge0: port 2(bridge_slave_1) entered disabled state [ 155.321244][ T6810] device bridge_slave_1 entered promiscuous mode [ 155.348357][ T6810] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 155.362225][ T6810] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 155.394043][ T6810] team0: Port device team_slave_0 added [ 155.423005][ T6810] team0: Port device team_slave_1 added 21:00:56 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 155.481624][ T6810] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 155.489657][ T6810] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.519438][ T6810] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 155.550657][ T6810] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 155.557633][ T6810] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 155.587439][ T6810] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 155.732165][ T6810] device hsr_slave_0 entered promiscuous mode 21:00:56 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x42, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sysvipc/sem\x00', 0x0, 0x0) read$FUSE(r0, 0x0, 0x0) [ 155.809876][ T6810] device hsr_slave_1 entered promiscuous mode [ 155.866679][ T6921] chnl_net:caif_netlink_parms(): no params data found [ 155.932047][ T7067] IPVS: ftp: loaded support on port[0] = 21 [ 156.122361][ T6921] bridge0: port 1(bridge_slave_0) entered blocking state [ 156.132797][ T6921] bridge0: port 1(bridge_slave_0) entered disabled state [ 156.155874][ T6921] device bridge_slave_0 entered promiscuous mode [ 156.168113][ T6921] bridge0: port 2(bridge_slave_1) entered blocking state [ 156.172754][ T7122] IPVS: ftp: loaded support on port[0] = 21 [ 156.175236][ T6921] bridge0: port 2(bridge_slave_1) entered disabled state [ 156.191185][ T6921] device bridge_slave_1 entered promiscuous mode 21:00:57 executing program 4: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000440)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000000040)={0x2, 0x4e23, @local}, 0x10) sendto$inet(r0, &(0x7f00000012c0)='\f', 0x1, 0x11, 0x0, 0x0) ioctl$sock_inet_udp_SIOCINQ(r0, 0x541b, 0x0) [ 156.270853][ T6921] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 156.297347][ T6810] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 156.398682][ T6921] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 156.415560][ T6810] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 156.523471][ T6810] netdevsim netdevsim0 netdevsim2: renamed from eth2 21:00:57 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) clone(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 156.607589][ T6921] team0: Port device team_slave_0 added [ 156.619051][ T6810] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 156.669135][ T6921] team0: Port device team_slave_1 added [ 156.732634][ T7208] IPVS: ftp: loaded support on port[0] = 21 [ 156.794636][ T6921] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 156.803978][ T6921] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.831955][ T6921] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 156.843584][ T7067] chnl_net:caif_netlink_parms(): no params data found [ 156.887404][ T7298] IPVS: ftp: loaded support on port[0] = 21 [ 156.901254][ T6921] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 156.909232][ T6921] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 156.936336][ T6921] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 157.133356][ T6921] device hsr_slave_0 entered promiscuous mode [ 157.170286][ T6921] device hsr_slave_1 entered promiscuous mode [ 157.248225][ T6921] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 157.256025][ T6921] Cannot create hsr debugfs directory [ 157.263618][ T7067] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.270855][ T7067] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.279039][ T7067] device bridge_slave_0 entered promiscuous mode [ 157.288970][ T7067] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.296018][ T7067] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.304262][ T7067] device bridge_slave_1 entered promiscuous mode [ 157.365171][ T7067] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 157.392769][ T7122] chnl_net:caif_netlink_parms(): no params data found [ 157.414405][ T7067] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 157.459810][ T7067] team0: Port device team_slave_0 added [ 157.497300][ T7067] team0: Port device team_slave_1 added [ 157.573928][ T7067] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 157.584970][ T7067] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.612555][ T7067] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 157.667125][ T7067] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 157.676281][ T7067] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 157.703227][ T7067] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 157.735677][ T7122] bridge0: port 1(bridge_slave_0) entered blocking state [ 157.749794][ T7122] bridge0: port 1(bridge_slave_0) entered disabled state [ 157.757551][ T7122] device bridge_slave_0 entered promiscuous mode [ 157.771912][ T7122] bridge0: port 2(bridge_slave_1) entered blocking state [ 157.779119][ T7122] bridge0: port 2(bridge_slave_1) entered disabled state [ 157.787039][ T7122] device bridge_slave_1 entered promiscuous mode [ 157.805659][ T7208] chnl_net:caif_netlink_parms(): no params data found [ 157.885000][ T6810] 8021q: adding VLAN 0 to HW filter on device bond0 [ 157.941929][ T7122] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.022010][ T7067] device hsr_slave_0 entered promiscuous mode [ 158.078583][ T7067] device hsr_slave_1 entered promiscuous mode [ 158.138119][ T7067] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 158.145676][ T7067] Cannot create hsr debugfs directory [ 158.188662][ T7122] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 158.202786][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 158.212447][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 158.253601][ T6810] 8021q: adding VLAN 0 to HW filter on device team0 [ 158.284491][ T7298] chnl_net:caif_netlink_parms(): no params data found [ 158.300829][ T7122] team0: Port device team_slave_0 added [ 158.356493][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 158.367487][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 158.378048][ T2482] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.385270][ T2482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 158.394563][ T7208] bridge0: port 1(bridge_slave_0) entered blocking state [ 158.402481][ T7208] bridge0: port 1(bridge_slave_0) entered disabled state [ 158.410668][ T7208] device bridge_slave_0 entered promiscuous mode [ 158.423189][ T7208] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.430570][ T7208] bridge0: port 2(bridge_slave_1) entered disabled state [ 158.438752][ T7208] device bridge_slave_1 entered promiscuous mode [ 158.455938][ T7122] team0: Port device team_slave_1 added [ 158.466228][ T6921] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 158.531132][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 158.551159][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 158.565635][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 158.575597][ T2482] bridge0: port 2(bridge_slave_1) entered blocking state [ 158.582734][ T2482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 158.614080][ T6921] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 158.679715][ T7208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 158.705742][ T7122] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 158.712971][ T7122] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 158.740106][ T7122] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 158.755700][ T6921] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 158.803174][ T6921] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 158.862193][ T7208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 158.889754][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 158.901785][ T7122] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 158.909284][ T7122] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 158.936201][ T7122] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 158.969937][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 158.998800][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 159.007560][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 159.019006][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 159.027495][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 159.036485][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 159.045081][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 159.054669][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 159.063520][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 159.073932][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 159.095480][ T7208] team0: Port device team_slave_0 added [ 159.103920][ T6810] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 159.136373][ T7208] team0: Port device team_slave_1 added [ 159.172904][ T7298] bridge0: port 1(bridge_slave_0) entered blocking state [ 159.183277][ T7298] bridge0: port 1(bridge_slave_0) entered disabled state [ 159.193458][ T7298] device bridge_slave_0 entered promiscuous mode [ 159.262315][ T7122] device hsr_slave_0 entered promiscuous mode [ 159.308460][ T7122] device hsr_slave_1 entered promiscuous mode [ 159.348018][ T7122] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 159.355587][ T7122] Cannot create hsr debugfs directory [ 159.368278][ T7298] bridge0: port 2(bridge_slave_1) entered blocking state [ 159.375333][ T7298] bridge0: port 2(bridge_slave_1) entered disabled state [ 159.385577][ T7298] device bridge_slave_1 entered promiscuous mode [ 159.406986][ T7208] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 159.414838][ T7208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.441697][ T7208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 159.456435][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 159.464546][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 159.499514][ T6810] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 159.507129][ T7208] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 159.514948][ T7208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 159.541517][ T7208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 159.601454][ T7298] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 159.611693][ T7067] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 159.676796][ T7067] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 159.727312][ T7067] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 159.806097][ T7298] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 159.852104][ T7208] device hsr_slave_0 entered promiscuous mode [ 159.899905][ T7208] device hsr_slave_1 entered promiscuous mode [ 159.958099][ T7208] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 159.965668][ T7208] Cannot create hsr debugfs directory [ 159.978555][ T7067] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 160.059632][ T7298] team0: Port device team_slave_0 added [ 160.077036][ T7298] team0: Port device team_slave_1 added [ 160.125445][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 160.134096][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 160.163773][ T7298] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 160.171457][ T7298] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 160.199064][ T7298] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 160.212108][ T7298] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 160.219236][ T7298] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 160.245836][ T7298] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 160.392242][ T7298] device hsr_slave_0 entered promiscuous mode [ 160.428327][ T7298] device hsr_slave_1 entered promiscuous mode [ 160.498138][ T7298] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 160.505711][ T7298] Cannot create hsr debugfs directory [ 160.539040][ T6921] 8021q: adding VLAN 0 to HW filter on device bond0 [ 160.665779][ T6810] device veth0_vlan entered promiscuous mode [ 160.678992][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 160.687511][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 160.724465][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 160.735239][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 160.766498][ T6921] 8021q: adding VLAN 0 to HW filter on device team0 [ 160.791932][ T7122] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 160.854909][ T7122] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 160.911317][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 160.919138][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 160.943280][ T6810] device veth1_vlan entered promiscuous mode [ 160.960690][ T7122] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 160.979942][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 160.994590][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 161.003351][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 161.016713][ T2482] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.023965][ T2482] bridge0: port 1(bridge_slave_0) entered forwarding state [ 161.032095][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 161.041591][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 161.050473][ T2482] bridge0: port 2(bridge_slave_1) entered blocking state [ 161.057508][ T2482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 161.065503][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 161.095500][ T7122] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 161.155413][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 161.175444][ T7067] 8021q: adding VLAN 0 to HW filter on device bond0 [ 161.210374][ T7208] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 161.243892][ T7208] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 161.280401][ T7208] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 161.327482][ T7208] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 161.392165][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 161.400798][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 161.412874][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 161.422054][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 161.462863][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 161.479021][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 161.487620][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 161.497556][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 161.505993][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 161.552754][ T7067] 8021q: adding VLAN 0 to HW filter on device team0 [ 161.586028][ T7298] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 161.632799][ T7298] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 161.689803][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 161.699037][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 161.707245][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 161.716435][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 161.726002][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 161.734958][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 161.765724][ T6810] device veth0_macvtap entered promiscuous mode [ 161.776359][ T7298] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 161.831173][ T7298] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 161.892366][ T6921] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 161.912583][ T6810] device veth1_macvtap entered promiscuous mode [ 161.932000][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 161.940740][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 161.951230][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 161.960794][ T2500] bridge0: port 1(bridge_slave_0) entered blocking state [ 161.968053][ T2500] bridge0: port 1(bridge_slave_0) entered forwarding state [ 161.978687][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 162.019539][ T6810] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 162.039163][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 162.051944][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 162.061055][ T2482] bridge0: port 2(bridge_slave_1) entered blocking state [ 162.068156][ T2482] bridge0: port 2(bridge_slave_1) entered forwarding state [ 162.079668][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 162.090763][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 162.099675][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 162.109149][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 162.123646][ T6810] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 162.151603][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 162.160536][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 162.192086][ T6921] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 162.223054][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 162.231867][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 162.241597][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 162.252375][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 162.261967][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 162.271370][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 162.370234][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 162.382220][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 162.392657][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 162.543910][ T7208] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.560861][ T7067] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 162.596330][ T7067] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 162.618277][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 162.633532][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 162.727364][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 162.734536][ T8064] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 162.736888][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 162.767774][ C0] hrtimer: interrupt took 46416 ns [ 162.796501][ T7122] 8021q: adding VLAN 0 to HW filter on device bond0 [ 162.824625][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 162.837594][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready 21:01:03 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/netlink\x00') preadv(r2, &(0x7f00000003c0)=[{&(0x7f0000000000)=""/164, 0xa4}, {&(0x7f00000002c0)=""/245, 0xf5}], 0x2, 0x0) [ 162.859745][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 162.867527][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 162.897573][ T7067] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 162.950355][ T7122] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.970259][ T7208] 8021q: adding VLAN 0 to HW filter on device team0 [ 162.994835][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 163.006446][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 163.016566][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 163.026521][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready 21:01:03 executing program 0: [ 163.065153][ T6921] device veth0_vlan entered promiscuous mode [ 163.089220][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 163.097132][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 163.107243][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 163.117043][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 163.126798][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.133967][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state 21:01:03 executing program 0: [ 163.158123][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 163.166954][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 163.179474][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 163.186563][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 163.198224][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready 21:01:04 executing program 0: [ 163.207036][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 163.237381][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.244575][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state 21:01:04 executing program 0: [ 163.317591][ T6921] device veth1_vlan entered promiscuous mode 21:01:04 executing program 0: [ 163.366460][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 163.382283][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 163.398509][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 163.407088][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready 21:01:04 executing program 0: [ 163.452397][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 163.465522][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 163.505488][ T2478] bridge0: port 2(bridge_slave_1) entered blocking state [ 163.512661][ T2478] bridge0: port 2(bridge_slave_1) entered forwarding state [ 163.531588][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 163.549366][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 163.565973][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 163.575083][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 163.591949][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 163.604366][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 163.621156][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 163.644659][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 163.655752][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 163.679464][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 163.690338][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 163.699560][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 163.709201][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 163.732070][ T7298] 8021q: adding VLAN 0 to HW filter on device bond0 [ 163.757493][ T7067] device veth0_vlan entered promiscuous mode [ 163.764491][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 163.778881][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 163.787184][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 163.799741][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 163.810683][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 163.820835][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 163.831520][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 163.842015][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 163.852443][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 163.864610][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 163.876774][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 163.886821][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 163.896798][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 163.921449][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 163.930744][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 163.943478][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 163.952914][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 163.970515][ T7208] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 163.983920][ T7122] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 163.996297][ T6921] device veth0_macvtap entered promiscuous mode [ 164.013635][ T7067] device veth1_vlan entered promiscuous mode [ 164.045435][ T7298] 8021q: adding VLAN 0 to HW filter on device team0 [ 164.068761][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 164.083297][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 164.093414][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 164.108569][ T6921] device veth1_macvtap entered promiscuous mode [ 164.127895][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 164.135852][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 164.144725][ T2517] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 164.182114][ T7122] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.194561][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 164.205639][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 164.214797][ T2500] bridge0: port 1(bridge_slave_0) entered blocking state [ 164.221998][ T2500] bridge0: port 1(bridge_slave_0) entered forwarding state [ 164.231529][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 164.240496][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 164.249233][ T2500] bridge0: port 2(bridge_slave_1) entered blocking state [ 164.256294][ T2500] bridge0: port 2(bridge_slave_1) entered forwarding state [ 164.264236][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 164.271916][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 164.279590][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 164.288740][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 164.310762][ T7208] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.339700][ T6921] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 164.351712][ T6921] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.366004][ T6921] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 164.374352][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 164.391350][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 164.401066][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 164.410280][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 164.420144][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 164.430081][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 164.440103][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 164.470631][ T6921] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 164.482875][ T6921] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 164.503834][ T6921] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 164.512856][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 164.521429][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 164.531300][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 164.540362][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 164.549351][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 164.557652][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 164.567184][ T2478] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 164.584694][ T7298] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 164.599642][ T7298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 164.629059][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 164.638485][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 164.647026][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 164.660627][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 164.671655][ T7067] device veth0_macvtap entered promiscuous mode [ 164.725237][ T7067] device veth1_macvtap entered promiscuous mode [ 164.732816][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 164.741974][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 164.751070][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 164.762770][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 164.772038][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 164.780208][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 164.805994][ T7298] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 164.873723][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 164.885515][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 164.893717][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 164.903121][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 164.921638][ T7122] device veth0_vlan entered promiscuous mode [ 164.982751][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 164.997372][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 165.013951][ T7067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 165.031617][ T7067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.044737][ T7067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 165.065998][ T7067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.088966][ T8099] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 165.108147][ T7067] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 165.115636][ T7208] device veth0_vlan entered promiscuous mode [ 165.137327][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 165.164910][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 165.185863][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 165.196405][ T2477] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 165.214696][ T7067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 165.241254][ T7067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.251842][ T7067] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 165.262818][ T7067] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 165.274518][ T7067] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 165.286912][ T7122] device veth1_vlan entered promiscuous mode [ 165.318706][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 165.335120][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 165.355399][ T7208] device veth1_vlan entered promiscuous mode 21:01:06 executing program 1: [ 165.412289][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 165.423061][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 165.432157][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 165.442585][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 165.478573][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 165.487260][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 165.574589][ T7208] device veth0_macvtap entered promiscuous mode [ 165.602189][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 165.618530][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 165.627065][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 165.650378][ T7122] device veth0_macvtap entered promiscuous mode [ 165.729367][ T7208] device veth1_macvtap entered promiscuous mode [ 165.741855][ T7122] device veth1_macvtap entered promiscuous mode [ 165.751041][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 165.762175][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 165.770562][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 165.779043][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 165.787208][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 165.796951][ T7298] device veth0_vlan entered promiscuous mode [ 165.866485][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 165.884192][ T2500] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 165.916383][ T7298] device veth1_vlan entered promiscuous mode [ 165.963081][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.015405][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.068045][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.085236][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.109691][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.167756][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.212552][ T7122] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 166.227915][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 166.237584][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 166.253788][ T2482] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 166.279910][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.296634][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.319371][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.336273][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.351346][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.364241][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 21:01:07 executing program 0: [ 166.405154][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 166.427918][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.442755][ T7208] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 166.454598][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.478264][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.492656][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.525461][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.545285][ T7122] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.556870][ T7122] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.576831][ T7122] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 166.601882][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 166.612024][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 166.621016][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 166.631325][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 166.643863][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.655701][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.666967][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.682983][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.693426][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.704496][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.715024][ T7208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 166.725977][ T7208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 166.738380][ T7208] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 166.780219][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 166.789491][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 166.868493][ T7298] device veth0_macvtap entered promiscuous mode [ 166.876093][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 166.884980][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 166.893918][ T8079] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 167.043817][ T7298] device veth1_macvtap entered promiscuous mode [ 167.194213][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 167.237657][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.247491][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 167.261969][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.287242][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 167.300462][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.311920][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 167.323326][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.334035][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 167.345939][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.360212][ T7298] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 167.374771][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 167.386510][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 167.418473][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 167.429459][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 167.451424][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 21:01:08 executing program 3: 21:01:08 executing program 1: [ 167.490349][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 167.502992][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.538211][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 167.567963][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.595456][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 167.615041][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.637646][ T7298] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 167.667655][ T7298] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 167.690689][ T7298] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 167.707781][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 167.716660][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 21:01:08 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) clone(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) [ 168.088785][ T8150] debugfs: Directory '8150-4' with parent 'kvm' already present! 21:01:08 executing program 0: 21:01:08 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:08 executing program 4: 21:01:08 executing program 1: 21:01:08 executing program 3: 21:01:09 executing program 3: 21:01:09 executing program 4: 21:01:09 executing program 1: 21:01:09 executing program 0: 21:01:09 executing program 4: 21:01:09 executing program 3: 21:01:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) clone(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) 21:01:09 executing program 0: 21:01:09 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:09 executing program 1: 21:01:09 executing program 3: 21:01:09 executing program 4: 21:01:09 executing program 0: 21:01:09 executing program 0: 21:01:09 executing program 3: 21:01:09 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) clone(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) 21:01:09 executing program 4: 21:01:09 executing program 1: 21:01:09 executing program 0: 21:01:10 executing program 3: 21:01:10 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KDSKBENT(0xffffffffffffffff, 0x4b47, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:10 executing program 1: 21:01:10 executing program 4: 21:01:10 executing program 0: 21:01:10 executing program 3: 21:01:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) clone(0x0, &(0x7f0000000000), 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:10 executing program 4: 21:01:10 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) recvmmsg(r0, &(0x7f0000002d80), 0x4000000000006b9, 0x1a002, &(0x7f0000000180)={0x77359400}) getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_generic(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=ANY=[@ANYBLOB="1100000042000506"], 0x14}}, 0x0) getsockname$packet(0xffffffffffffffff, 0x0, 0x0) 21:01:10 executing program 1: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) pipe2(0x0, 0x0) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) gettid() sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x3ff) open(&(0x7f0000000340)='./file0\x00', 0x0, 0x0) openat$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000280)='cgroup.subtree_control\x00', 0x2, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000029000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f00000000c0)="b9800000c00f3235010000000f309a090000006500660f3882af724d00002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x51}], 0x1, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r3, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc5e]}) ioctl$KVM_RUN(r3, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) 21:01:10 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) clone(0x2102001ffc, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb), 0x0) setsockopt$inet_group_source_req(r0, 0x0, 0x0, &(0x7f00000000c0)={0x0, {{0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x37}}}, {{0x2, 0x0, @local}}}, 0x104) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, &(0x7f0000000380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000040)}, 0x24) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00') getdents64(0xffffffffffffffff, &(0x7f0000000280)=""/94, 0x29) ioctl$PERF_EVENT_IOC_QUERY_BPF(r2, 0xc004240a, &(0x7f00000002c0)={0x2, 0x0, [0x0, 0x0]}) openat$nvram(0xffffff9c, &(0x7f0000000280)='/dev/nvram\x00', 0x240200, 0x0) write(r1, &(0x7f00000001c0), 0xfffffef3) ioctl$RTC_ALM_READ(r2, 0x80247008, &(0x7f0000000300)) 21:01:10 executing program 4: pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$packet(0x11, 0x2, 0x300) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000000500)=ANY=[@ANYBLOB="bf16000000000000b7070000ff030000487000000000000050000000000000009500000000000000e83d24a3aa019c13bd23212fb56fa54f0b71d0e6adfefc41d86b60717142fa9ea4318123741c0a0f168c1886bf0fccf8d56ccb659427cf8593dbe3a2a3ad358061011fbc5ba1f07318988e6e0dc800974a0000503ceb9fc474c2a10000000077beee1cebf45fab73962fa8f6296b32a8343881dcc7b1b85f3c3daccd3641110bec4e90a61965c39e4b3449abe802f5ab3e89cf6c662ed4048d3b3e22278d00031e5388ee5c9a7ddd58211d0400001fcadf95e5a4725837074e468ee23fd2f73902ebcfcf49822775985bf31b715f588cb211624f40401691721715f46e0080000000000002a663739a190a4e825c908c0abc85c857ec5a57cb706eef32a3ed12d63c9c4c508530e173650a8a8f2a9c81bc9ee437bccbe158024d8d4939e6fd9adc43f0f4b049218db92bf466e934330ed79bc9f626d68b0000600057d14854eef851bc8c30f5927fd0df6b94ea0b852d495085ff4eabaac9606f0497958c2c357a7124a69f6770ea6702bc53896a15fad5e55c64efd217450a975221b20d78e445e3da74a3c1c0f2d1818b696492287860d914283f8d687b0bdb46261277671bba2c550bfef679bddf38ab35eaaf0268c4efa45b56a188a9195044a222ec06bb49784d5608d87c4832e4295bf8889e5db2a70f6a83d4b3cdc13e46d276856de6d895704ba3e8ee12bd121ffc4f5d2ae03f0227dcc4f38699d3db16f69ed45e918b07ce58bf176e253364fed16b128584f897400d4f5503a6e9ea4a480e3221f3c247ee8c55e487eaa25a7689689c9c305da4b0181f0f653fec399fcc0cc800e82bde039cc29c19b538c76e65642875bddbef61e5985751d9ebd37d2f32375357b5d2b4dc24baa6a7119038380f7029a292f1ad05000000e4e801a819aef69d081e2cacaa8ad1b4ca6df5dc37962ebc5337379e00645b6d2bec249c0612510000000000a7060d8d9b9ad109b62d1dab0eec6beabc76d765b9ca87474e9a13366010cd9558b30399772ddfe89be4338e70d0ecfed537780a31fcaf4acaf9bd3711a4359d68ec71b0693ede07e6d18e797697901fbae4a9d9966b68eadae75ef1cc92290bcc7b8c34b8931b0818a57e5136fb8c73283b17d8fd55c2b8d321a6cba8743114fcff01e5c10200c5121cdc82429a021d377e477ea807cc00919ee8bfbd94d434f67609cfde887fb5bb072572b421d6b1fdae83e5e250190628d02d01f978323fe36685e652ceb218a9cc9e125a4880faccaf5ac2345f20b1ee403885796e91d0bc75c7e95d23904dc446e0201aafea0d3f4cc0cf285ccd000000000100005aee418db0a9fe6fe78479d043cca3f99b031a999a4686905441c1fa62ed20328a10690432f59a4d3e05bd00997ea2b6f5213cb883d05b620f31869f6cce80f1ae445a9ed7e3c5f3aa61bfd240cb9726bc512ba0eb1f68579c76144feb0100809f12bcf79c4d57f66703c2aee08e520623e1b7555dc7481128ed0bab22dcb6e5a6ac5e4010c631eaf2510fa455aabfdc80c77108c769ed2d666c555c6c38b30899a688d96a6c6dc0dd4309a230b22bc6e248bf47b6e1c5077c9ba463329323b53910e7358b4d0c6882c590cf25e4d044a6afb10a070f285e3c94ed405aa8dc41718dd3f4bf474868538aad9a23f8d4f10fa97ef23f37915a707e325c10a9f22e37c4213d0ca2910726de8e62d2e3ae7f64e40c7af3dc00a3b70cf607869c5a11a03bce8aa43fa010348bc249420ba5e344fcdcb302548e571157d323f5fd535800284d32ffff000088ccd685f07309101a3196b705479897f4c9d97c4c7b77db7b1596b4305d5e954a34385418e66528bc94b70300000066dab8c4e63debff054621a0ac7dc55a14cb7616ca23f04493d3cd1c79282c3aa8f6e4a1c27315256131aaab707451c14747dfa3bb5f8725a98f6d3c797573f18810bf378e38107ece5cc1cf3b98975e9254248af60de2f04e2429d9b6eba525fd1b1b665f77710fa49426eb32e775acd535fc78697ac980573c12112317ad2a029c75b86aa972ef35e9916f0000000000002c8ee5ec55cc858e0d3687eb6acd59ccc4974d7e53d0a1f4ea4477022c9f376b3191efeb46be3c174fb2b4cbc9c03fba9923923715540556450f12d1645177ce3eca0d65d17deff51a224faf9d42eee3538453499e829bda469048c70e5968375feb39e6918e591a38d228304c79ad9c376bdaf0650e212eb4185cbbb6c0dc0e699afc7cd2519cd9b192228ff8817d68f97b18402d271036067c141b911c4e0207e2c9d33ac203f440e1a065a2d227c6ec860d6bc85fb3a48348c1fe7144ec680c0dac7b5906a6197c8173080c9ab3ecb72820f0ee36d744b20fae962c4a42e4a43ee3f325f93edb3a204b9c9dc8953375782fd560039eaf61c6878714fa6a6a5b4190e37c83876f248d91f166676b54781c6855c5e067ab2c2c73123356fff80883a95a25c738f4e7cbb075e10f5c36396156abb221adebb9303342bfa2b7"], &(0x7f0000000140)='GPL\x00'}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x32, &(0x7f0000000000)=r3, 0x4) r4 = socket$inet_udp(0x2, 0x2, 0x0) fcntl$setpipe(r1, 0x407, 0x0) sendmsg$inet6(0xffffffffffffffff, &(0x7f0000002940)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002700)=[@flowinfo={{0x10}}, @tclass={{0x10}}, @dstopts_2292={{0x14}}], 0x34}, 0x0) write$binfmt_misc(r1, &(0x7f0000000340)=ANY=[], 0x4240a2a0) bind$inet(r4, &(0x7f0000000180)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x32}}, 0x10) connect$inet(r4, &(0x7f0000000040)={0x2, 0x0, @multicast1}, 0x10) splice(r0, 0x0, r4, 0x0, 0x3001a, 0x0) 21:01:10 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 21:01:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000029000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a0900000065002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x48}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc62, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x26) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="a357d5a5e9e8579a2c7266646e6f3d61df0178e189707d529b7c77da2921891d055d3b05f4aecd813492baa385cd302b00bc9f3f7d6eb8ea6af884181f2364845c6622615d363f5ccd19fd287e9f672454cfaf1d802876a517f956fe8e86699834ff0895f4c341bb69017249ee36736402b21fb55662f06fb7f2d266bd51a53a65", @ANYRESHEX, @ANYRESHEX]) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x8) r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write(r3, &(0x7f0000001400)="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"/3584, 0xe00) sendfile(r3, r4, 0x0, 0x11f08) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) openat$vnet(0xffffff9c, 0x0, 0x2, 0x0) setsockopt$packet_buf(r3, 0x107, 0x0, &(0x7f00000004c0)="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", 0x112) 21:01:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 170.280492][ T8241] ------------[ cut here ]------------ [ 170.286191][ T8241] kernel BUG at arch/x86/kvm/mmu/mmu.c:3719! [ 170.311731][ T8241] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 170.317832][ T8241] CPU: 0 PID: 8241 Comm: syz-executor.1 Not tainted 5.7.0-rc7-next-20200529-syzkaller #0 [ 170.327623][ T8241] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.337687][ T8241] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 170.342963][ T8241] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 170.362548][ T8241] RSP: 0018:ffffc90017267b30 EFLAGS: 00010216 [ 170.368623][ T8241] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc9000407c000 [ 170.376587][ T8241] RDX: 0000000000017d8e RSI: ffffffff8118e14a RDI: 0000000000000001 [ 170.384630][ T8241] RBP: ffff888056d8c2c0 R08: ffff888093f9c2c0 R09: ffffed1015ce719c [ 170.392580][ T8241] R10: ffff8880ae738cdb R11: ffffed1015ce719b R12: 0000000000000000 [ 170.400532][ T8241] R13: 0000000000000001 R14: ffff888056d8c6d8 R15: 0000000000000000 [ 170.408484][ T8241] FS: 00007f7ed4497700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 170.417388][ T8241] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 170.423964][ T8241] CR2: 000000000073d138 CR3: 00000000938bc000 CR4: 00000000001426f0 [ 170.431914][ T8241] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 170.439864][ T8241] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 170.447812][ T8241] Call Trace: [ 170.451091][ T8241] ? kvm_arch_vcpu_ioctl_run+0x30f3/0x68d0 [ 170.456986][ T8241] kvm_arch_vcpu_ioctl_run+0x4016/0x68d0 [ 170.462618][ T8241] ? kvm_arch_vcpu_runnable+0x6c0/0x6c0 [ 170.468145][ T8241] ? lock_downgrade+0x840/0x840 [ 170.473759][ T8241] ? check_memory_region+0x11c/0x190 [ 170.479025][ T8241] ? kvm_vcpu_ioctl+0x467/0xe10 [ 170.483852][ T8241] kvm_vcpu_ioctl+0x467/0xe10 [ 170.488511][ T8241] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 170.494914][ T8241] ? ioctl_file_clone+0x180/0x180 [ 170.499945][ T8241] ? check_preemption_disabled+0x38/0x220 [ 170.505658][ T8241] ? __fget_files+0x299/0x400 [ 170.510326][ T8241] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 170.516720][ T8241] ksys_ioctl+0x11a/0x180 [ 170.521030][ T8241] __x64_sys_ioctl+0x6f/0xb0 [ 170.525609][ T8241] do_syscall_64+0x60/0xe0 [ 170.530003][ T8241] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 170.535873][ T8241] RIP: 0033:0x45cb19 [ 170.539759][ T8241] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 170.559350][ T8241] RSP: 002b:00007f7ed4496c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 170.567742][ T8241] RAX: ffffffffffffffda RBX: 00000000004e8a00 RCX: 000000000045cb19 21:01:11 executing program 0: openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000100)=[@text16={0x10, &(0x7f0000000040)="baa000ec3e3e3e0f2b75ee65f30f008f7e00a6aff4660f3a62227d0f20e06635000040000f22e0260f0350000f01cf", 0x2f}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) sendmsg$unix(0xffffffffffffffff, &(0x7f0000002700)={0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000001000000010080", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32=0x0, @ANYBLOB="1800000001810000000000", @ANYRES32=0x0, @ANYBLOB="14000000e62101084bf396d860"], 0x74}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) openat$hwrng(0xffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) openat$full(0xffffffffffffff9c, &(0x7f0000000000)='/dev/full\x00', 0x0, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)={[0xffffffffffffffff, 0x0, 0x0, 0x0, 0x200000201, 0x0, 0x4c8]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000180)={0xc, 0x8001}) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 170.575689][ T8241] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 170.583636][ T8241] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 170.591586][ T8241] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 170.599535][ T8241] R13: 00000000000003d0 R14: 00000000004c68ae R15: 00007f7ed44976d4 [ 170.607489][ T8241] Modules linked in: 21:01:11 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 170.690568][ T27] audit: type=1800 audit(1593205271.457:2): pid=8267 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15767 res=0 21:01:11 executing program 4: r0 = getpid() sched_setscheduler(r0, 0x5, &(0x7f0000000380)) r1 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41bd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x8}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0) getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f0000000180)={&(0x7f0000ffc000/0x4000)=nil, 0x4000}, &(0x7f00000002c0)=0x10) connect$inet(0xffffffffffffffff, 0x0, 0x0) r2 = socket$nl_generic(0x10, 0x3, 0x10) syz_mount_image$msdos(&(0x7f0000000040)='msdos\x00', &(0x7f0000000080)='./file0\x00', 0xab7, 0x2, &(0x7f0000001500)=[{&(0x7f0000000400)="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", 0xefc, 0x3}, {&(0x7f0000001400)="a4eb0aa3acb479e803987017bd0fbb1cfedbe81bb80e98f7634e7ac3e7fd4d196696a37053ac53b716a53e27339fecf0d5d7690ed6dbd99bdc52d76544888bc3e9d741502160c1bb6c48cd4e686c8ec83fcb29ebc6bfbfcc3662cd494dd26581f730f3554f874e05964a5b8a74c4791a001d3d4cd207c65f70819eacec", 0x7d}], 0x800804, &(0x7f0000001540)={[{@dots='dots'}, {@nodots='nodots'}], [{@fowner_gt={'fowner>'}}, {@fsmagic={'fsmagic', 0x3d, 0xf5}}]}) syz_genetlink_get_family_id$devlink(0x0) sendmsg$DEVLINK_CMD_GET(r2, &(0x7f00000003c0)={0x0, 0x0, 0x0}, 0x0) sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000200)=ANY=[@ANYBLOB="832e6f5d", @ANYRES16=0x0], 0x70}, 0x1, 0x0, 0x0, 0x8d1}, 0x4000000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x402c5828, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) ioctl$KVM_RUN(r5, 0xae80, 0x0) dup3(r3, r4, 0x0) dup2(r1, r5) [ 170.757195][ T27] audit: type=1804 audit(1593205271.457:3): pid=8267 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir495476368/syzkaller.BmupQk/10/file0" dev="sda1" ino=15767 res=1 [ 170.812944][ T8276] ------------[ cut here ]------------ [ 170.818428][ T8276] kernel BUG at arch/x86/kvm/mmu/mmu.c:3719! [ 170.860416][ T8276] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 170.866527][ T8276] CPU: 1 PID: 8276 Comm: syz-executor.0 Tainted: G D 5.7.0-rc7-next-20200529-syzkaller #0 [ 170.877717][ T8276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 170.887793][ T8276] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 170.893082][ T8276] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 170.912684][ T8276] RSP: 0018:ffffc90017287b30 EFLAGS: 00010212 [ 170.918762][ T8276] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc90001df9000 [ 170.926762][ T8276] RDX: 00000000000083e7 RSI: ffffffff8118e14a RDI: 0000000000000001 [ 170.934736][ T8276] RBP: ffff888056788340 R08: ffff888056dfa500 R09: fffffbfff155b432 [ 170.942713][ T8276] R10: ffffffff8aada18f R11: fffffbfff155b431 R12: 0000000000000000 [ 170.950694][ T8276] R13: 0000000000000001 R14: ffff888056788758 R15: 0000000000000000 [ 170.958674][ T8276] FS: 00007efcc9092700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 170.967602][ T8276] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 170.974185][ T8276] CR2: 000000000078c000 CR3: 00000000947f3000 CR4: 00000000001426e0 [ 170.982162][ T8276] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 170.990138][ T8276] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 170.998106][ T8276] Call Trace: [ 171.001420][ T8276] kvm_arch_vcpu_ioctl_run+0x4016/0x68d0 [ 171.007070][ T8276] ? kvm_arch_vcpu_runnable+0x6c0/0x6c0 [ 171.012624][ T8276] ? lock_downgrade+0x840/0x840 [ 171.017487][ T8276] ? kvm_vcpu_ioctl+0x467/0xe10 [ 171.022342][ T8276] kvm_vcpu_ioctl+0x467/0xe10 [ 171.027025][ T8276] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.033465][ T8276] ? ioctl_file_clone+0x180/0x180 [ 171.038494][ T8276] ? __might_fault+0x190/0x1d0 [ 171.043263][ T8276] ? _copy_to_user+0x126/0x160 [ 171.048030][ T8276] ? __fget_files+0x299/0x400 [ 171.052710][ T8276] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.059130][ T8276] ksys_ioctl+0x11a/0x180 [ 171.063465][ T8276] __x64_sys_ioctl+0x6f/0xb0 [ 171.068058][ T8276] do_syscall_64+0x60/0xe0 [ 171.072480][ T8276] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 171.078370][ T8276] RIP: 0033:0x45cb19 [ 171.082264][ T8276] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 171.101888][ T8276] RSP: 002b:00007efcc9091c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 21:01:11 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000029000/0x18000)=nil, &(0x7f0000000240)=[@text32={0x20, &(0x7f0000000140)="b9800000c00f3235010000000f309a0900000065002ed8ddc74424008fc4bd87c7442402c43a727fc7442406000000000f011424f30f090f013a360f06c4c18d72d68366baa100ed", 0x48}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000bf7000)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f00000002c0)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc62, 0x0, 0x80000000000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) perf_event_open(&(0x7f0000000000)={0x5, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) prctl$PR_CAPBSET_DROP(0x18, 0x26) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="a357d5a5e9e8579a2c7266646e6f3d61df0178e189707d529b7c77da2921891d055d3b05f4aecd813492baa385cd302b00bc9f3f7d6eb8ea6af884181f2364845c6622615d363f5ccd19fd287e9f672454cfaf1d802876a517f956fe8e86699834ff0895f4c341bb69017249ee36736402b21fb55662f06fb7f2d266bd51a53a65", @ANYRESHEX, @ANYRESHEX]) r3 = open(&(0x7f00000000c0)='./file0\x00', 0x40c2, 0x8) r4 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0) write(r3, &(0x7f0000001400)="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"/3584, 0xe00) sendfile(r3, r4, 0x0, 0x11f08) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) openat$vnet(0xffffff9c, 0x0, 0x2, 0x0) setsockopt$packet_buf(r3, 0x107, 0x0, &(0x7f00000004c0)="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", 0x112) [ 171.110330][ T8276] RAX: ffffffffffffffda RBX: 00000000004e8a00 RCX: 000000000045cb19 [ 171.118302][ T8276] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 171.126272][ T8276] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 171.134248][ T8276] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 171.142219][ T8276] R13: 00000000000003d0 R14: 00000000004c68ae R15: 00007efcc90926d4 [ 171.150189][ T8276] Modules linked in: 21:01:11 executing program 2: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_GUEST_DEBUG(r2, 0x4048ae9b, &(0x7f0000000040)={0x80005}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000180)=[@text16={0x10, &(0x7f0000000000)="ea0010e800440f20c066350e000000440f22c00f21720f21c1c3f40f3803760f650f01c26a06ea00005600", 0x2b}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) fcntl$getownex(0xffffffffffffffff, 0x10, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 171.224198][ T8290] FAT-fs (loop4): Unrecognized mount option "fowner>00000000000000000000" or missing value [ 171.293675][ T8313] ------------[ cut here ]------------ [ 171.299164][ T8313] kernel BUG at arch/x86/kvm/mmu/mmu.c:3719! [ 171.305391][ T8313] invalid opcode: 0000 [#3] PREEMPT SMP KASAN [ 171.311468][ T8313] CPU: 1 PID: 8313 Comm: syz-executor.3 Tainted: G D 5.7.0-rc7-next-20200529-syzkaller #0 [ 171.322675][ T8313] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.332745][ T8313] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 171.338012][ T8313] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 171.357594][ T8313] RSP: 0018:ffffc90001487b30 EFLAGS: 00010206 [ 171.363651][ T8313] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc9000fdcd000 [ 171.371601][ T8313] RDX: 00000000000079d0 RSI: ffffffff8118e14a RDI: 0000000000000001 [ 171.379688][ T8313] RBP: ffff888054f88400 R08: ffff888050e4c1c0 R09: fffffbfff155b432 [ 171.387648][ T8313] R10: ffffffff8aada18f R11: fffffbfff155b431 R12: 0000000000000000 [ 171.395600][ T8313] R13: 0000000000000001 R14: ffff888054f88818 R15: 0000000000000000 [ 171.403554][ T8313] FS: 00007f19b6e7b700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 171.412457][ T8313] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 171.419016][ T8313] CR2: 0000001b2da2b000 CR3: 000000009196d000 CR4: 00000000001426e0 [ 171.426967][ T8313] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 171.434926][ T8313] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 171.442885][ T8313] Call Trace: [ 171.446179][ T8313] kvm_arch_vcpu_ioctl_run+0x4016/0x68d0 [ 171.451798][ T8313] ? kvm_arch_vcpu_runnable+0x6c0/0x6c0 [ 171.457331][ T8313] ? lock_downgrade+0x840/0x840 [ 171.462168][ T8313] ? kvm_vcpu_ioctl+0x467/0xe10 [ 171.467001][ T8313] kvm_vcpu_ioctl+0x467/0xe10 [ 171.471656][ T8313] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.478058][ T8313] ? ioctl_file_clone+0x180/0x180 [ 171.483061][ T8313] ? __might_fault+0x190/0x1d0 [ 171.487814][ T8313] ? _copy_to_user+0x126/0x160 [ 171.492575][ T8313] ? __fget_files+0x299/0x400 [ 171.497231][ T8313] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.503626][ T8313] ksys_ioctl+0x11a/0x180 [ 171.507944][ T8313] __x64_sys_ioctl+0x6f/0xb0 [ 171.512510][ T8313] do_syscall_64+0x60/0xe0 [ 171.516914][ T8313] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 171.522796][ T8313] RIP: 0033:0x45cb19 [ 171.526704][ T8313] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 171.546299][ T8313] RSP: 002b:00007f19b6e7ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.554692][ T8313] RAX: ffffffffffffffda RBX: 00000000004e8a00 RCX: 000000000045cb19 [ 171.562641][ T8313] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 171.570701][ T8313] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 171.578661][ T8313] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 171.586619][ T8313] R13: 00000000000003d0 R14: 00000000004c68ae R15: 00007f19b6e7b6d4 [ 171.594584][ T8313] Modules linked in: [ 171.611397][ T8241] ---[ end trace b76789f606b57439 ]--- [ 171.638776][ T8319] ------------[ cut here ]------------ [ 171.644268][ T8319] kernel BUG at arch/x86/kvm/mmu/mmu.c:3719! [ 171.653899][ T8241] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 171.665643][ T27] audit: type=1800 audit(1593205272.427:4): pid=8327 uid=0 auid=0 ses=4 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=15771 res=0 [ 171.674821][ T8241] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 171.690960][ T8290] ------------[ cut here ]------------ [ 171.705493][ T8319] invalid opcode: 0000 [#4] PREEMPT SMP KASAN [ 171.709932][ T8290] kernel BUG at arch/x86/kvm/mmu/mmu.c:3719! [ 171.716199][ T8319] CPU: 1 PID: 8319 Comm: syz-executor.0 Tainted: G D 5.7.0-rc7-next-20200529-syzkaller #0 [ 171.733340][ T8319] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 171.743417][ T8319] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 171.748705][ T8319] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 171.753191][ T27] audit: type=1804 audit(1593205272.437:5): pid=8327 uid=0 auid=0 ses=4 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir495476368/syzkaller.BmupQk/11/file0" dev="sda1" ino=15771 res=1 [ 171.768321][ T8319] RSP: 0018:ffffc90017227b30 EFLAGS: 00010216 [ 171.768331][ T8319] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc900021fb000 [ 171.768337][ T8319] RDX: 00000000000025dc RSI: ffffffff8118e14a RDI: 0000000000000001 [ 171.768345][ T8319] RBP: ffff888054aa0440 R08: ffff8880548e0340 R09: fffffbfff155b432 [ 171.768352][ T8319] R10: ffffffff8aada18f R11: fffffbfff155b431 R12: 0000000000000000 [ 171.768357][ T8319] R13: 0000000000000001 R14: ffff888054aa0858 R15: 0000000000000000 [ 171.768367][ T8319] FS: 00007efcc904f700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 171.768374][ T8319] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 171.768381][ T8319] CR2: 0000001b2da37000 CR3: 00000000947f3000 CR4: 00000000001426e0 [ 171.768390][ T8319] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 171.768404][ T8319] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 171.876410][ T8319] Call Trace: [ 171.879702][ T8319] kvm_arch_vcpu_ioctl_run+0x4016/0x68d0 [ 171.885314][ T8319] ? kvm_arch_vcpu_runnable+0x6c0/0x6c0 [ 171.890833][ T8319] ? lock_downgrade+0x840/0x840 [ 171.895661][ T8319] ? kvm_vcpu_ioctl+0x467/0xe10 [ 171.900481][ T8319] kvm_vcpu_ioctl+0x467/0xe10 [ 171.905128][ T8319] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.911554][ T8319] ? ioctl_file_clone+0x180/0x180 [ 171.916561][ T8319] ? __might_fault+0x190/0x1d0 [ 171.921307][ T8319] ? _copy_to_user+0x126/0x160 [ 171.926058][ T8319] ? __fget_files+0x299/0x400 [ 171.930715][ T8319] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 171.937113][ T8319] ksys_ioctl+0x11a/0x180 [ 171.941418][ T8319] __x64_sys_ioctl+0x6f/0xb0 [ 171.945990][ T8319] do_syscall_64+0x60/0xe0 [ 171.950389][ T8319] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 171.956252][ T8319] RIP: 0033:0x45cb19 [ 171.960128][ T8319] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 171.979704][ T8319] RSP: 002b:00007efcc904ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 171.988093][ T8319] RAX: ffffffffffffffda RBX: 00000000004e8a00 RCX: 000000000045cb19 [ 171.996035][ T8319] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006 [ 172.005195][ T8319] RBP: 000000000078c040 R08: 0000000000000000 R09: 0000000000000000 [ 172.013151][ T8319] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 172.021095][ T8319] R13: 00000000000003d0 R14: 00000000004c68ae R15: 00007efcc904f6d4 [ 172.029045][ T8319] Modules linked in: [ 172.032979][ T8290] invalid opcode: 0000 [#5] PREEMPT SMP KASAN [ 172.039065][ T8290] CPU: 0 PID: 8290 Comm: syz-executor.4 Tainted: G D 5.7.0-rc7-next-20200529-syzkaller #0 [ 172.050271][ T8290] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 172.060354][ T8290] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 172.065648][ T8290] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 172.085169][ T8241] RSP: 0018:ffffc90017267b30 EFLAGS: 00010216 [ 172.085246][ T8290] RSP: 0018:ffffc900010a7b30 EFLAGS: 00010212 [ 172.085255][ T8290] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc90011fde000 [ 172.085262][ T8290] RDX: 0000000000008b44 RSI: ffffffff8118e14a RDI: 0000000000000001 [ 172.085269][ T8290] RBP: ffff888054ae0480 R08: ffff8880564ba280 R09: fffffbfff155b432 [ 172.085276][ T8290] R10: ffffffff8aada18f R11: fffffbfff155b431 R12: 0000000000000000 [ 172.085283][ T8290] R13: 0000000000000001 R14: ffff888054ae0898 R15: 0000000000000000 [ 172.085293][ T8290] FS: 00007f05bdfb1700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 172.085301][ T8290] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 172.085308][ T8290] CR2: 0000000000000000 CR3: 00000000931b6000 CR4: 00000000001426f0 [ 172.085318][ T8290] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 172.085325][ T8290] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 172.085329][ T8290] Call Trace: [ 172.085348][ T8290] ? kvm_arch_vcpu_ioctl_run+0x2531/0x68d0 [ 172.085367][ T8290] kvm_arch_vcpu_ioctl_run+0x4016/0x68d0 [ 172.105043][ T8241] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc9000407c000 [ 172.105437][ T8290] ? kvm_arch_vcpu_runnable+0x6c0/0x6c0 [ 172.126200][ T8241] RDX: 0000000000017d8e RSI: ffffffff8118e14a RDI: 0000000000000001 [ 172.129320][ T8290] ? lock_downgrade+0x840/0x840 [ 172.129334][ T8290] ? lock_release+0x800/0x800 [ 172.129350][ T8290] ? kvm_vcpu_ioctl+0x467/0xe10 [ 172.129360][ T8290] kvm_vcpu_ioctl+0x467/0xe10 [ 172.129373][ T8290] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 172.129387][ T8290] ? ioctl_file_clone+0x180/0x180 [ 172.129404][ T8290] ? native_apic_msr_write+0x54/0x80 [ 172.129417][ T8290] ? lapic_next_event+0x4d/0x80 [ 172.129436][ T8290] ? __fget_files+0x299/0x400 [ 172.155301][ T8241] RBP: ffff888056d8c2c0 R08: ffff888093f9c2c0 R09: ffffed1015ce719c [ 172.160885][ T8290] ? kvm_get_dirty_log_protect.isra.0+0x670/0x670 [ 172.160898][ T8290] ksys_ioctl+0x11a/0x180 [ 172.160914][ T8290] __x64_sys_ioctl+0x6f/0xb0 [ 172.160926][ T8290] do_syscall_64+0x60/0xe0 [ 172.160940][ T8290] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 172.160956][ T8290] RIP: 0033:0x45cb19 [ 172.191774][ T8241] R10: ffff8880ae738cdb R11: ffffed1015ce719b R12: 0000000000000000 [ 172.199557][ T8290] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 172.199565][ T8290] RSP: 002b:00007f05bdfb0c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 172.199578][ T8290] RAX: ffffffffffffffda RBX: 00000000004e8a00 RCX: 000000000045cb19 [ 172.199584][ T8290] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000008 [ 172.199590][ T8290] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 172.199595][ T8290] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 172.199602][ T8290] R13: 00000000000003d0 R14: 00000000004c68ae R15: 00007f05bdfb16d4 [ 172.199613][ T8290] Modules linked in: [ 172.243121][ T8290] ---[ end trace b76789f606b5743a ]--- [ 172.332638][ T8241] R13: 0000000000000001 R14: ffff888056d8c6d8 R15: 0000000000000000 [ 172.354159][ T8290] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 172.393824][ T8241] FS: 00007f7ed4497700(0000) GS:ffff8880ae700000(0000) knlGS:0000000000000000 [ 172.405655][ T8313] ---[ end trace b76789f606b5743b ]--- [ 172.405677][ T8313] RIP: 0010:kvm_mmu_load+0xbfa/0xe00 [ 172.405690][ T8313] Code: ac 23 99 00 48 8b 44 24 08 e9 cf f5 ff ff e8 6d 23 99 00 e9 b7 f4 ff ff 4c 89 f7 e8 90 23 99 00 e9 78 f4 ff ff e8 56 1a 5a 00 <0f> 0b 48 89 df e8 7c 23 99 00 e9 7e f8 ff ff e8 72 23 99 00 e9 c4 [ 172.405696][ T8313] RSP: 0018:ffffc90017267b30 EFLAGS: 00010216 [ 172.405706][ T8313] RAX: 0000000000040000 RBX: 0000000000000000 RCX: ffffc9000407c000 [ 172.405713][ T8313] RDX: 0000000000017d8e RSI: ffffffff8118e14a RDI: 0000000000000001 [ 172.405721][ T8313] RBP: ffff888056d8c2c0 R08: ffff888093f9c2c0 R09: ffffed1015ce719c [ 172.405729][ T8313] R10: ffff8880ae738cdb R11: ffffed1015ce719b R12: 0000000000000000 [ 172.405736][ T8313] R13: 0000000000000001 R14: ffff888056d8c6d8 R15: 0000000000000000 [ 172.405747][ T8313] FS: 00007f19b6e7b700(0000) GS:ffff8880ae600000(0000) knlGS:0000000000000000 [ 172.405755][ T8313] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 172.405762][ T8313] CR2: 00007f05bdf0bdb8 CR3: 000000009196d000 CR4: 00000000001426f0 [ 172.405772][ T8313] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 172.405780][ T8313] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 172.405786][ T8313] Kernel panic - not syncing: Fatal exception [ 172.412695][ T8313] Kernel Offset: disabled [ 172.533722][ T8313] Rebooting in 86400 seconds..