kern.securelevel: 0 -> 1 creating runtime link editor directory cache. preserving editor files. starting network daemons: sshd. starting local daemons:. Fri May 22 22:25:59 PDT 2020 OpenBSD/amd64 (ci-openbsd-main-7.c.syzkaller.internal) (tty00) Warning: Permanently added '10.128.1.14' (ECDSA) to the list of known hosts. 2020/05/22 22:26:12 fuzzer started 2020/05/22 22:26:14 dialing manager at 10.128.15.235:14627 2020/05/22 22:26:14 syscalls: 338 2020/05/22 22:26:14 code coverage: enabled 2020/05/22 22:26:14 comparison tracing: enabled 2020/05/22 22:26:14 extra coverage: support is not implemented in syzkaller 2020/05/22 22:26:14 setuid sandbox: enabled 2020/05/22 22:26:14 namespace sandbox: support is not implemented in syzkaller 2020/05/22 22:26:14 Android sandbox: support is not implemented in syzkaller 2020/05/22 22:26:14 fault injection: support is not implemented in syzkaller 2020/05/22 22:26:14 leak checking: support is not implemented in syzkaller 2020/05/22 22:26:14 net packet injection: enabled 2020/05/22 22:26:14 net device setup: support is not implemented in syzkaller 2020/05/22 22:26:14 concurrency sanitizer: support is not implemented in syzkaller 2020/05/22 22:26:14 devlink PCI setup: support is not implemented in syzkaller 2020/05/22 22:26:14 USB emulation: support is not implemented in syzkaller 22:26:20 executing program 0: getsockname$inet(0xffffffffffffffff, &(0x7f0000000000), &(0x7f0000000040)=0xc) r0 = syz_open_pts() r1 = openat$tty(0xffffffffffffff9c, &(0x7f0000000080)='/dev/tty\x00', 0x80, 0x0) dup2(r0, r1) syz_open_pts() ioctl$TIOCCHKVERAUTH(r1, 0x2000741e) ioctl$TIOCSWINSZ(r0, 0x80087467, &(0x7f00000000c0)={0x3ff, 0xfff, 0x6}) pipe2(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}, 0x10000) ioctl$WSDISPLAYIO_SBURNER(r2, 0x800c5751, &(0x7f0000000140)={0x0, 0x1, 0x8}) r4 = syz_open_pts() ioctl$TIOCSTART(r4, 0x2000746e) truncate(&(0x7f0000000180)='./file0\x00', 0x0, 0x0) r5 = syz_open_pts() ioctl$TIOCSETA(r5, 0x802c7414, &(0x7f00000001c0)={0x7fffffff, 0x1ff, 0x0, 0x2, "0a9a6f1ede85dbaea6e4a6ad91d4f4c47c64dd3e", 0x6a, 0x20}) getpeername$inet(r3, &(0x7f0000000200), &(0x7f0000000240)=0xc) r6 = openat$null(0xffffffffffffff9c, &(0x7f0000000280)='/dev/null\x00', 0x80, 0x0) ioctl$WSDISPLAYIO_GVIDEO(r6, 0x40045744, &(0x7f00000002c0)) ioctl$TIOCCLRVERAUTH(r0, 0x2000741d) r7 = openat$zero(0xffffffffffffff9c, &(0x7f0000000300)='/dev/zero\x00', 0x40, 0x0) ioctl$WSMUXIO_INJECTEVENT(r7, 0x80185760, &(0x7f0000000340)={0x9, 0x3, {0x3, 0xff}}) 22:26:20 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x80, 0x1b2) ioctl$WSMOUSEIO_SRES(r0, 0x80045721, &(0x7f0000000040)) ioctl$BIOCSETF(0xffffffffffffffff, 0x80104267, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0xffc9, 0xfd, 0x1, 0xfffffff8}]}) ioctl$TIOCDRAIN(r0, 0x2000745e) r1 = dup2(0xffffffffffffffff, r0) ioctl$TIOCNOTTY(r1, 0x20007471) connect$unix(r1, &(0x7f0000000100)=@abs={0x0, 0x0, 0x2}, 0x8) r2 = fcntl$dupfd(r1, 0xa, 0xffffffffffffff9c) ioctl$TIOCMBIC(r2, 0x8004746b, &(0x7f0000000140)=0x4) semget(0x3, 0x1, 0x0) pipe2(&(0x7f0000000180)={0xffffffffffffffff}, 0x10000) fcntl$setflags(r3, 0x2, 0x0) r4 = syz_open_pts() ioctl$TIOCSETD(r4, 0x8004741b, &(0x7f00000001c0)=0x5) r5 = open(&(0x7f0000000200)='./file0\x00', 0x40, 0x40) ioctl$FIOSETOWN(r5, 0x8004667c, &(0x7f0000000240)=0x7fffffff) r6 = openat(0xffffffffffffffff, &(0x7f0000000280)='./file0\x00', 0x8000, 0x84) ioctl$VT_SETMODE(r6, 0x80087602, &(0x7f00000002c0)={0x0, 0x7f, 0x6, 0x200}) ioctl$TIOCMSET(r2, 0x8004746d, &(0x7f0000000300)=0x8) fchown(r0, 0x0, 0x0) 22:26:20 executing program 1: socket(0x2, 0x3, 0x0) r0 = socket$unix(0x1, 0x2, 0x0) setsockopt(r0, 0x5, 0x7f, &(0x7f0000000140)="baa1333efc96fcba5131630d4702419c622db7f9d5b8ad88f9aee5e6e55f7c675671e305297cacd687dc9e802697805e730e8eb8da3907db32a01348936a6fd85b83a6ccef79c10a56aa9bd6a9146130125fc4e55704a075ede3361cd2efb4dd31087740c01c1f22ba5a0761e19ccd14dd468cdafb73fe4b9cf788c7440905423eb4ea03c9ab76837f52", 0x8a) r1 = socket(0x2, 0x4003, 0x0) setsockopt$sock_int(r1, 0xffff, 0x1002, &(0x7f0000000100), 0x4) r2 = socket(0x2, 0x3, 0x0) connect$unix(r2, &(0x7f0000000b40)=ANY=[@ANYBLOB="8202ad5f179718fd"], 0x10) setsockopt$sock_int(r1, 0xffff, 0x800, &(0x7f0000000040)=0x2, 0x4) writev(r2, &(0x7f0000000000)=[{0x0}], 0x1) 22:26:20 executing program 0: r0 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_opts(r0, 0x0, 0x200000000000a, &(0x7f0000000000)="ea00005c00000000", 0x1) setsockopt$inet_opts(r0, 0x0, 0x200000000000b, 0x0, 0x0) setsockopt$inet_opts(r0, 0x0, 0x0, &(0x7f0000000000)="4eaaba06adfaae28fc264da404fd025a06d81ba3af55e779f084808413d6c1fdc7ffee8c14388bf739b35ffaf1d90e0b5bd77e90e570b836f57fbb7f06b2b43a7df4d2ac13447778bd8232f8633a0c32fceee41ea6cf72053415a7f7b50f04ebee329fbaa42c5f15b757c525543a8f560a028e4423286d34201cc2ad4789149b32aba9a3c7e79a280f2e7fa3e080d2c76bf76b6f2486ea29807a535c5224f6db8db59c6de7f3d8e0cc33324a87e2f756fa7e9b11adf0562e9c946eca05aac22c93c50a9be89df2c28f4178c576bf", 0xce) socket(0x2, 0x2, 0x0) 22:26:20 executing program 1: mknod(&(0x7f0000000100)='./bus\x00', 0x80002007, 0x5cc2) r0 = open(&(0x7f0000000040)='./bus\x00', 0x2, 0x0) open(&(0x7f00000000c0)='./bus\x00', 0x0, 0x0) open(&(0x7f0000000040)='./bus\x00', 0x0, 0x0) write(r0, 0x0, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) kevent(0xffffffffffffffff, &(0x7f0000000100)=[{{r1}, 0xfffffffffffffffe, 0x3, 0x1, 0xfffffffffffffff9}], 0x0, 0x0, 0x0, 0x0) symlinkat(&(0x7f0000000000)='./bus\x00', r1, &(0x7f0000000080)='./bus\x00') 22:26:20 executing program 1: ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800000000006], [], [], [{}, {}, {0x0, 0x0, 0x0, 0x7fff}], {}, {0xffff}}}) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0}) r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bpf\x00', 0x4000000001, 0x0) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f00000000c0)={0x3, &(0x7f00000004c0)=[{0xb1, 0x0, 0x0, 0x4}, {0x20}, {0x6, 0x0, 0x0, 0x2cae}]}) ioctl$BIOCSETWF(0xffffffffffffffff, 0x80104277, &(0x7f0000000180)={0x3, &(0x7f00000001c0)=[{0xb1}, {0x20}, {0x6, 0x0, 0x0, 0x2cae}]}) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000040)={'tap', 0x0}) pwrite(0xffffffffffffffff, &(0x7f0000000100)="fbaf8a8d1a029be96914f676f75c", 0xe, 0x0, 0x0) ioctl$BIOCSDIRFILT(0xffffffffffffffff, 0x8004427d, &(0x7f0000000080)=0x2) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000040)={'tap', 0x0}) pwrite(r0, &(0x7f0000000100)="fbaf8a8d1a029be96914f676f75c", 0xe, 0x0, 0x0) ioctl$BIOCIMMEDIATE(r0, 0x80044270, &(0x7f0000000000)=0x7fffffff) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000140)={'tap', 0x0}) socket(0x11, 0x3, 0x0) r1 = socket(0x2, 0x3, 0x0) r2 = kqueue() r3 = fcntl$dupfd(r1, 0x0, r2) r4 = socket(0x2, 0x3, 0x0) r5 = fcntl$dupfd(r3, 0x0, r4) ioctl$TIOCFLUSH(r5, 0x8020691f, &(0x7f0000000300)) 22:26:20 executing program 0: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x0, 0x0) ioctl$BIOCSETF(r0, 0x80104267, &(0x7f0000000080)={0x3, &(0x7f0000000040)=[{0x50}, {0x15}, {0x80008006}]}) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000480)={'tap', 0x0}) syz_emit_ethernet(0x2a, &(0x7f00000000c0)=ANY=[@ANYBLOB="000006040009aaaaaaaaaabb020000000000000000000085977b6bd1322afa4c976f75b0111952"]) r1 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000300)='/dev/bpf\x00', 0x1fb57824223d9229, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000180)={'tap', 0x0}) ioctl$BIOCSBLEN(r1, 0xc0044266, &(0x7f00000001c0)=0xf45) ioctl$BIOCSETWF(r1, 0x80104277, &(0x7f0000000100)={0x3, &(0x7f0000000b00)=[{0x80}, {0x5}, {0x6, 0x0, 0x0, 0xff}]}) pwrite(r1, &(0x7f0000000000)="fb11859dcec857ed7d9506000010", 0xe, 0x0, 0x0) ioctl$BIOCSETIF(r1, 0x8020426c, &(0x7f0000000180)={'tap', 0x0}) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) unlink(&(0x7f0000000140)='./file0\x00') 22:26:20 executing program 1: r0 = geteuid() r1 = getuid() setreuid(0xee00, r1) setreuid(r1, r0) r2 = geteuid() r3 = getuid() setreuid(0xee00, r3) setreuid(r3, r2) setreuid(r1, r2) mknod(&(0x7f0000000000)='./bus\x00', 0x2000, 0x8613a) r4 = open(&(0x7f0000000040)='./bus\x00', 0x2, 0x0) write(r4, &(0x7f0000000240)="220e2a", 0x3) msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000180)={{}, 0x100000284c01002e}) fcntl$lock(0xffffffffffffffff, 0x0, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x4000000000003}) pwritev(r4, &(0x7f00000002c0)=[{&(0x7f0000000180), 0xff20}], 0x100000000000005e, 0x0, 0x0) 22:26:20 executing program 0: ioctl$WSMUXIO_INJECTEVENT(0xffffffffffffffff, 0x80185760, &(0x7f0000000000)={0x0, 0x0, {0x0, 0x10000000000001}}) pipe2(&(0x7f0000000000)={0xffffffffffffffff}, 0x0) kevent(0xffffffffffffffff, &(0x7f0000000100)=[{{r0}, 0xfffffffffffffffe, 0x3, 0x1, 0xfffffffffffffff9}], 0x0, 0x0, 0x0, 0x0) ioctl$WSDISPLAYIO_DELSCREEN(r0, 0x80085754, &(0x7f0000000080)={0x6}) ioctl$TIOCSETA(0xffffffffffffffff, 0x802c7414, &(0x7f00000000c0)={0x0, 0x0, 0xffffffffffffffff, 0x0, "00000000000000000000f2ffffffffffffff4000"}) connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c) ioctl$TIOCSETAF(0xffffffffffffffff, 0x802c7416, &(0x7f0000000140)={0xffffffffffffffff, 0x0, 0x0, 0x0, "010000000000000000ffffff7f00"}) msgsnd(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="228000070000000000000089b57a3c66a71961fff34c2d454eafc9d06d528a40ebdf63a4702cac0f297e9cfcf400feb1821874bd504a0a99bc1c95695e78f64eb4a9874b4eaee136f9883953899387cd6c8104ff59d22557e48711952daa85f315bc6c9e2107e570d471fdd86c5e737c22ed96cc66b3974acb10a150e54fc49999684d48d485060095463471a2d2737a7048f20d5fdefec9e44e7b1524ea3e1d196874f4f94529384a9e5ad37f3b383a7804e73541d8b5dafac4e71c3a8d2cc12ab089d43b"], 0x1, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r1 = socket(0x18, 0x1, 0x0) setsockopt(r1, 0x29, 0xc, &(0x7f0000000140)="ebffcbff13b9fd812eaa4e713048e69931929648", 0x14) r2 = socket(0x18, 0x1, 0x0) close(r2) r3 = socket(0x18, 0x2, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000180)={0x18, 0x0, 0x0, 0xfff}, 0xc) close(r3) socket(0x400000000018, 0x3, 0x3a) setsockopt(r3, 0x1000000029, 0x2e, &(0x7f0000000000)="ebffcbff13b9fd812eaa4e713048e69931929648", 0x14) connect$unix(r2, &(0x7f00000000c0)=@abs={0x0, 0x7}, 0x1c) write(r3, &(0x7f0000000040)="100a2956b9223776", 0x21d) 22:26:20 executing program 1: ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[], [0x0, 0xffffffffffff7fff], [0x0, 0x0, 0x0, 0x200000009, 0x7ac0], [0x0, 0x0, 0x403], [{}, {}, {0x0, 0x0, 0x0, 0x3f}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffffffffffd}, {0x0, 0x0, 0x3}]}}) chflagsat(0xffffffffffffffff, 0x0, 0x0, 0xae3645a0aa5a4e5a) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) ioctl$BIOCSETIF(0xffffffffffffff9c, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) r0 = socket(0x18, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TIOCFLUSH(r1, 0x8080691a, &(0x7f0000000300)) 22:26:20 executing program 0: r0 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vmm\x00', 0x0, 0x0) mlock(&(0x7f0000000000/0x3000)=nil, 0x3000) ioctl$VMM_IOC_WRITEREGS(r0, 0xc5005601, &(0x7f0000000580)={0x1, 0x0, 0x1, {[0x0, 0x0, 0x2000000, 0x20004000, 0x200000, 0x9, 0x0, 0x0, 0x0, 0x400, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x7, 0x3], [0x0, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x1, 0x2000000000000], [0x0, 0x0, 0x4, 0x0, 0xffffffffffffffff], [0x254b5358, 0x0, 0x0, 0x0, 0x40000, 0x8004], [{}, {0x0, 0x4}, {0x3f, 0x1, 0x0, 0x84}, {0x0, 0x7ff}, {0x0, 0x0, 0x3, 0xfffffffffffffffd}, {0x0, 0x0, 0x81}, {0x0, 0x0, 0xffffffff}, {0x0, 0x0, 0x0, 0x4}], {0x0, 0x3}, {0xe9df, 0x2, 0x3, 0xfffffffffffffffc}}}) r1 = open(&(0x7f0000000040)='./file0\x00', 0x70e, 0x40) mmap(&(0x7f000000e000/0x3000)=nil, 0x3000, 0x1, 0x10, r1, 0x0, 0x8001) r2 = semget$private(0x0, 0x9, 0x42) semop(0x0, &(0x7f00000002c0)=[{0x2, 0x5, 0x1000}, {0x3, 0x200}, {0x2, 0xffe, 0x1800}, {0x2, 0x9, 0x1800}, {0x3, 0x5, 0x400}, {0x1, 0x5, 0x1000}], 0x6) semop(r2, &(0x7f0000000140)=[{0x2, 0x6, 0x800}, {0x3, 0x401}, {0x1, 0x7, 0x1000}, {0x1, 0x7fff}, {0x0, 0xa7c}, {0x3, 0x1}, {0x1, 0x6, 0x1000}, {0x2, 0x87e, 0x1000}, {0x4, 0x7}, {0x2, 0x3}], 0xa) semctl$SETVAL(r2, 0x4, 0x8, &(0x7f0000000000)=0x3) semget(0x1, 0x0, 0xc0) getsockopt$sock_cred(0xffffffffffffffff, 0xffff, 0x1022, &(0x7f0000000140)={0x0, 0x0, 0x0}, &(0x7f0000000100)=0x1) ioctl$BIOCGSTATS(0xffffffffffffffff, 0x4008426f, &(0x7f0000000200)) setuid(r3) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setregid(0x0, r4) getsockopt$sock_cred(r5, 0xffff, 0x1022, &(0x7f0000000140)={0x0, 0x0}, &(0x7f0000000100)=0x1) preadv(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000800)=""/4096, 0x1000}], 0x1, 0x0, 0x0) setuid(r6) setreuid(r3, 0x0) semctl$IPC_STAT(0x0, 0x0, 0x2, &(0x7f0000000080)=""/252) 22:26:20 executing program 0: open$dir(&(0x7f0000000080)='./file0\x00', 0x64a, 0x0) r0 = getpid() ktrace(&(0x7f0000000080)='./file0\x00', 0x0, 0xfcfc96ac7f78659a, r0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="6202"], 0x1) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) accept$unix(r1, &(0x7f00000000c0)=@file={0x0, ""/108}, &(0x7f0000000140)=0x6e) r2 = socket(0x2, 0x1, 0x0) bind(r2, &(0x7f0000000000)=@un=@abs={0x0, 0xd}, 0x10) 22:26:20 executing program 1: mknod(&(0x7f0000000000)='./bus\x00', 0x2001, 0x86134) setsockopt$inet6_MRT6_ADD_MFC(0xffffffffffffffff, 0x29, 0x68, &(0x7f0000000180)={{0x18, 0x3}, {0x18, 0x1, 0x0, 0x190000}, 0x8010, [0x4, 0x0, 0x2]}, 0x3c) r0 = open(&(0x7f00000000c0)='./bus\x00', 0x5, 0x0) r1 = socket$inet(0x2, 0x2, 0x0) setsockopt$inet_opts(r1, 0x0, 0x200000000000a, &(0x7f0000000000)="ea00005c00000000", 0x1) setsockopt$inet_opts(r1, 0x0, 0x200000000000b, 0x0, 0x0) r2 = fcntl$dupfd(r0, 0xa, r1) ioctl$BIOCGRTIMEOUT(r2, 0x4010426e, &(0x7f0000000080)) write(r0, &(0x7f0000000040)="670dc3", 0x3) pwritev(r0, &(0x7f00000002c0)=[{&(0x7f0000000180), 0xff20}], 0x100000000000005e, 0x0, 0x0) 22:26:20 executing program 1: r0 = open(&(0x7f0000000000)='./file0\x00', 0x10221, 0x0) unlink(&(0x7f0000000040)='./file0\x00') mmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x0, 0x10, r0, 0x0, 0x0) close(r0) munmap(&(0x7f0000ffe000/0x2000)=nil, 0x2000) lstat(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)) 22:26:20 executing program 0: ioctl$TIOCSETAF(0xffffffffffffffff, 0x802c7416, &(0x7f00000000c0)={0x7000, 0x0, 0x20000003, 0x68, "d730c16d00f4ff0000747beff5e400", 0x0, 0xffffffff}) r0 = openat$null(0xffffffffffffff9c, &(0x7f0000000100)='/dev/null\x00', 0x80, 0x0) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) kevent(0xffffffffffffffff, &(0x7f0000000100)=[{{r1}, 0xfffffffffffffffe, 0x3, 0x1, 0xfffffffffffffff9}], 0x0, 0x0, 0x0, 0x0) ioctl$WSMUXIO_INJECTEVENT(r0, 0x80185760, &(0x7f0000000000)={0x0, 0x100, {0xfffffffffffffffc, 0xa06d}}) r3 = socket(0x2, 0x1, 0x0) close(r3) ioctl$DIOCMAP(r2, 0xc0106477, &(0x7f0000000180)={&(0x7f0000000140)='./file0\x00', 0xffffffffffffffff, 0x3}) r4 = socket$inet(0x2, 0x4000, 0x4) setsockopt$inet_opts(r4, 0x0, 0x200000000000a, &(0x7f0000000000)="ea00005c00000000", 0x1) setsockopt$inet_opts(r4, 0x0, 0x200000000000b, 0x0, 0x0) setsockopt(0xffffffffffffffff, 0x9, 0x1ff, &(0x7f0000000080)="49ca7d235492a86abc37c913004ed4aef1d05120d62d59b2775a98effd82af3f45df9b", 0x23) r5 = syz_open_pts() close(r5) writev(0xffffffffffffffff, &(0x7f00000003c0)=[{&(0x7f0000000c80)="aae3e6c3f01744124ce96464f9157c521949703cb9bb69323cf41195cd335e36e74866da987f", 0x26}, {&(0x7f00000001c0)='\x00\x00\x00\x00', 0x4}, {&(0x7f0000000440)="c41d3a3aeab5ddd4022c395459395e0f42a6c3845deec6de231ed9898e501722eaa2c5b813de4ddde69041feccbf1aaa19339ae96be931bd56cab5b19386b8c733cdb519f8be2783412dec737e1126a60f2763e9d70a6136e99d175575e60ce5c574f075d8e27314a8099daf29d0036ddf28d7ae68f82c828fe90c1aff0c697a1f5268e3d530f0b581d9b28c3fcf57e6a638ce1b8607857eafe3a6912ac48a3b857d03b948acb48fc9659871ab078b16db22b76abd2027f4d45247c4563ff62024bf01887d12a99b1ebf86b29318a7b686564fb7f57028788ab01856d27709b2c9086b73bd484974c137fbab3cc9480f9b8c112dc3a396824a477f853f79050dc9b352b9a95d5766d425649454c4d240054362258c3fc09c5e61a4dbc3431e7987580c306fa8d6cc49033a12ccd5bd6579d6d1f734163847478c05e8aa35e9a4bd24b9314ab23005cdad3491a2625a272c327b46", 0x154}, {&(0x7f0000000300)="7fba1fabe0f9537806b1b90db53fde491e80e2503711ef4c340dd84c5a36ad5309d8a03f3b495d9a1682fd6fcc5776be42fd2068875ed4e00c03aca2f493538495d14cd4c03ea53387175046f34017d421c2ce0faef6cf4588f7e89a3a40df0857747a6af43f84fd23099fd78690783533accca5b5601aacb5a88e27a9c4b816ce505d7d4d027ca2d3fe0681c02c68889fbdf2e93a0b782ad7a98297a97123df29da8cdf45ce724788e935e6d6d69fc564", 0xb1}, {&(0x7f0000000cc0)="c5218cb65b823834fa5e72a00c28162614f55701289563c4e59eab32ae42237d4a2fc8154816a6b2a4f45ff115a638d99658a5a8a91b33ec45a0f41e4ca3c541697f36e998ea45ea97fb6e222adfaaaf3d594c11904b4e7dfdd4fbf3a70d9e24f7fc0d76528ae146216b18719738a2f8d677ea57f1a53bf57a3cd096ec3484dc0e9165073033a7ed8622742fefeb33e66417a053f360ebd547c15477f04a8454953bedb735c890de25dc270c01d6f612a45e643acac911aa1f57564dc3f4c5c6a72344eef43a61fc28645596706e9781838a6246e60a01c785b8075fd952ad4b442c269a7b5c8c5699e2170a4d57d0d03718f1086cd57541b1538a5679499a8bc9b1b7a404dfb4eb986a5d578c97aa7289bee0b4399db025a8787099461b4f790fecffb83811337a195a84b81874b713f323113b2af11f4462cec4625ff4cf0f88fe50d22b39043f0645ac5e996cf52d253eb0269e1ac3f777d6cbc608d11878cac360d18f402ef50f2899852f2d8ae1de3fa9c1061cf079b8cc72a487725a59639398124bc6f882b9d07bb0b711f485648ba40fa34ff32da01a3a1be67541839d5a88c8cb7e1003c21372d33110f6644de8b3f468eed5451d0425458de4262d2394ab9847a2166ce0cdaa60266334000f05be5b71f2aa2d549e23979390d71ee0586a6f4992acf65ad83c9c3025276d8aea5faeb1cca38097b0b638cc1c667ec7075d79005470af81905be2cbf4b48ecb4dafdbada4b63a7c10a09004583d60d2a46b965cc7c459e9608e3ee9a3999d7c8c8ed3b73f93f3a782e223750a5ef11e6b4de8e5ac88c8b585adee3decd415ddfb45d9bc611fda16a50a103c55dcbb4fb1f40ba9d74fbd56ea77d8ee1ef72c6e21c58866f3041393bb5b48c852aad411a655f2d8adcf946e17be874abf4cf0b2083c422d7fb23d22aeefc8537c525d059b743cf9e83a8b290f3c65fb90247edce96b18131afc0ed8be071ae0cf34ee615b5f067e4935f6b03575bc7e2fddfca50eeb9c3e829790a8b1649694aa3f4292750def8f18e03050c9ce1283c7763b3680ab5ecf3568f3b7ae502de7b57abca978a1957742aac85cbebcb80ec32e0bdd2c41274212ff8f06d7de1ed690ba5bb2103ba3150fa1de9fd1a610ff9bdac0ea35ea51a05e8e4a12f0c0689196efdec9a3260a2f43952cd5be8d307a46db950a1074babe5aee391c40dc2638d7779dc6959f4ab8704db74573fd96a8e6c866792f652ea85afcf736c783bdf43e9806196edafe9a996e1e6e187373bc7f669ef822e27fe3f7f13163337a1d7c1aced4ef03db677b31bfb982cf0d883449aa779cb5c21357bde0b161f4d645361308ef423cbafb58420f0c36724436486bb1132d0a1d66236ec3eec323d9fc2ed98940903d2036633605516024611ca78930a4cd3684b03e8245814b8be5b488c44a1395be4977dce0382a072a81823dde1ac8a55d6c0a834d88c7cc82044a9d35f152a088c488ca587edf5db13804820a91ca60706bad96bf3cf67dc2693aa0d6b9ba1854a534e44c54e9234f8df18eb8037ac82951d8d7d2c42cdc8cf65a4ce1c5a29c6889740f2e0a70ca7822a81bec6543ea76704dee6eabc9c7e50401eee6469a0ae4c6c2f56db4e558c5056c618ddc1592a841913d2d8d15a0503be97d1a718509450bc72b6bc0a7b71021b70a502facd035dc97c99a0cd65e8de049de1004fa2991c16ceaa67b379bd8cdc5642d40761008c521ee5d55a3c792ba0d88f33fc2b982fdf513f203310682ab24bc7ac93b49cd7f4db6157428ff4fecb498fae7353f42727e99780d6e9187f0e044ad4326fd00d65d91d9ee11e90e44625272cc7b230564eb54b94339fd423e82797a3296608b25030b61e92791c148cdafc24c23406d5ffac676f08dbf4cd5ec011712ef3bc4b275694c400b97737c75a60874adf26abec91b819b20eb9945051d7aeda2cfdd90cc870ebe1148a897f938d6481753261a865c8f4c4b9b6ef5049cc9a731d0f536662084b7c6d6182d9603506ba6b8b9b271d5d25962d32d80b62f59b07c957d00ca221aa5dce79437598e82edf64170809408165151495b238930a6767e298fbf6ac6e69eb1fe1e96c103fc3459e4ea065fba5c7bc3bb3b05768cee9137e59b01e0ec0524666580a0273e8a4fb93e2434fa7e75cef7f80dd820fd437283eb0155ca3c7a296f6367cd26f34d9c8663b7fc2f9fa1e525832d448ccd0385fa86406b875a18a8075cd73e6d5b03bac3d380c2883a11b3494bf2ddf056df661a59c51e9d7c0cf73b18a4005db14b2ba7ad843b8f55a277473619f6ba53c0d0190a5f744216a44968a3efe3e23b0ecc8d2b93665a2506ee1bc380ad1903c9a1a988bed3b0459985c90e04a996db5583c085752a1ab3756dda166409bb4e06ca34cf0a928a4399ff35efca88cc98f5fb4ce41ef20ff92d8a7055093c5246f4c5d86cb1bd6e02b3e019374e5d127076418162ef52b4d77accf677048bf74fe011c701267c448c47721c14f7248391fe739b7df0622d4cadacdc778638aa786e361fee1abbfd958b4b2d84d956b630023d9c14ac6d3f70b7b1c448302c315434c4ac8e28d9eb8df445acb73e3acd7f0dc63f7d83357f7a5e4aae8a07fcfae8253e039052cd789eae39b29938a776ea3e15a65ccc44b8158a7a88c30984450af47228a884e1cd6844b460557a7b482d1f3cf31f6e4ac9fc5add47aae1715d5d6da52c19509772bc0e2d7fdd0b4d5cdb50ece117e7b99a2736264515e3f1aaaded45be8437ea9467f381054e92d9b0c3c3b4bd9e8dd3ae0cdfb9eacf35d0a5478598ca2a75eb791eb73fd219ec0275288e0c19fe863719fe4ffe7b882c53f9db18a71276985673398f41a30fa49b8e48bb86ca81b4975117e5aa464a95ad54dc427a08187eba8547f2899370aee0c72c6664788f6eaec414e6dc9589a762865da780672bd41734260f69b0e2def2302d888ea9979587934809b800e8bdb5c7bb1144abda7f6422859fc5af2f2a2f3b8538df7c27c44d4cee6da531bf7158a4b95dc100a8b19680323ff9def090307893a67bd5e0a4b4806f4d69388d9a07484cb319c3348af6a5e1a4613a1fe84fcd60173078addbd9d1836f587972bafba33c426a46a6358535a61e723fe91640a2f6d894f343c0c74036de3bb71f444d2d7094ddbe1c12d0e95256475cd9b2170bb41312c35e90cf117f0cd30252c605063ec93794d8d2377db284190c8031c32f4f5fd82d87a0b309e8a76a58071860ea9513ef55d5133fdbea161b9a10d2624649d88e5f270b8eb4b2d262de9dad0026bbf23ed0294dddb177f40013e4e6bad3fd9f29e2577e89efaff205e0b46dd641103f508fcf13d914dbba25ccf70c4147c62facc29c3dacb1cf317b3c3568d5a7a9bc57cd97e3c2e2d7399b290b162889a7f7f9d6ad15f10738e303420f1dc184ac575309feb98f4175b4fa2176c867875613f297476a0a70032b53eb421be338f39e1bc0cb7b547880bd22f1b11931e6e151e8c712eaed9bc021a735486e5c4b9768003d77248d2f84eb3e90329a8d7b4cad88fc2c66dbcc432f9df13e4b0f75795a402b14f6038c1fad8cb00ea023e1562baa4e7c916c5eb4d9c92ef071dc701c941e5d6572341afd69adb9eae1c924ad49d08de3a8c24bbaa401eacfe178a9cbe2a3b9d41385ac6bf1a47bcaa02228b5c80b3d576166dc00766f894037df96eba5b19f7badf1c27ef09614854ffc1efc960ad1446665f0fa85007062a5611d894038c54157c2f4a359c5ecea152f020e0d34e73c45a7d6c9b4ce24d16d9c8531275e25abc54a1716a193e621014def0d3a01eb9f854dd74a2eb4e2df2c8f23989bbfcc16ac8c8f0fc8da831671566970d21b438518c842e625efe2620abeeb44a3529078a86b1fdab9ff98c678e6eff1123ee1e12ba5fc7dee23cc2b39e3d92e6670bc87220bbd71a56abcda8e19708ca9d2ee07eec787fc7827fe6b09435f23c171518401c6127d2618b3453014d349b188611d2cb26bf93821ccfe380e39b88a07eca0b39214a10201da9de7ec2dbddda5024aa42404b93ff3f742d0a661f2ec5ce30f8edf19611983efbb03662ff5c4d239402fb7d96ae9489e2de5399132ebecdfe583414f0716201143c4ebaaf617a05fd0cf0b74c70638629aeb3cebf44cdd5e341af61fcac9c8b20a8c419a255a0ab6a334b4f90a1c824854f7435e2f5dcad0ff789a289270fbacef20735552455d5b0ac25d5cc18b0510ebec19ff26c8a0b22748fb9f7c814ffaf88a9465e23d7a00a66ab0a303ddfc0fb588fd9347451c3c9a716d1bb078109a9492c139ec20fdb82791930fe8c491acd7bec70d0fa86a9e695c6747441e69d9189cf025b10c88843c729c8733255c6021a27cab3c4aeeff86ab5c365738c953678bb35be7418734537b7fd6443ff44026ad5c6687fe09baf84d3044b246f0019766b1fd8d9d3bd8747cec93f22b487361977483c4132137ab754ab54317a2337ff609e6da0279cf88a7cffcf40800eff2bb6db78d99d17473557c77666b820303bc14f1b4008934bf9bf6f7963a5308eaea222c3fd6fa856394f733eaa0310797501640f53a2e0f37646994ae92e05d52503efc968b0a9eb3ccb701b58678f0261bee270c5bb0dcf8cf1ec4544aa521689510c58d416225c5f081c64597c31d1102780ace4830bcc2e749b749655aefc624b65ad4abed1364b321a3d8c348a81e2e2837df2aecefb7319f4d6d3301cbe3d78834c9039c012da792774133bd23d907916dbe7a2bd02b2ca8d9257b05f48c4a65e1c158fe0e575f39f07baefbcfcf401de90f5aec11a9c0d42cbcd9445c0bdbc6d5bfffeec0da3b8e69b90ade8da4756abd354c753f645ee043ed64e3a06c8e30c271e2ee19821abb70fff5e39ed7dfe92b95329b1b18975a35b65a63c4d3a91e06de10e399c29fb558101a290e0c511918f0120f3bb41b6e611c333e5fedd0e1482ce119149379b471aacea324213efb341436eadb6ebe417e07eee912db6207e374eab9e5f7efefe98e1cfdb0ada930352097f7065a79ea8be3c7df17145461a86899192f345c0fdb2844124a103a7a099f3207f7d6c110e22eddd33494382e4fff80dd1338b2d11bcebd2efa56783c6a724303436bdd4a95543d4272abd69bd9b3dbb6c54199475951351599874e845202bf1025a0eb6e21b50d5bd38e964d2c917af8566d1008194b25b35df8fc0077e148832b3277c2c28e156bff302021a607234cfbebc095387bb7b84a2b1fe91803f917419402f000aff3360a4b334571299eed946949db0d7ba75cfa2b85a7aba419e95815af32a783588e8ba680d4dd2c1249bbb0fed0b278be67be56f7b7bc4ba5b0a1bb6375a879abbe96df8ff588cde5ab5e30ea36a7ea89f1ecceef54bbe3fe1f7980ede68623e125e79bd0d56f0c1b1d5b9b51add42c14cf77682b9556e297a950939ef1be6d09a1649b4e361094aad1bac48ec2c569a7cefa4f83603baaaf5cd5e35676266574de9690663dcaacd569c934eda4902d185a537524e16921e39779ad8a5191bfac24dcbe3ea859fef0d374d9c28e47e5fdb57902b6cd2d567e6aaf880c5d754d4cf197348131ca7b7d4ab0d2c4ee03f54b394407c18ee02132f37827949abab380ac45959101ab7001086fa1cef36caeabc2054a681d55cb16af96543d7697e7c00368d6f15a67aa92dac494a418ebb261e63300103d092aa152ae199142be165c5fd34c87b9299f39be33bb77d3749e5d499576c9ba8abb6900c4", 0x1000}], 0x5) ioctl$TIOCSETAF(r5, 0x802c7416, &(0x7f0000000040)={0xffd, 0x0, 0x3b9, 0x0, "5b78d2c542675d27108a0c89da1353de1780f00c", 0x80000001, 0x4000000}) connect$unix(0xffffffffffffffff, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c) mprotect(&(0x7f0000291000/0x4000)=nil, 0x4000, 0x5) setsockopt(0xffffffffffffffff, 0x26, 0x2e, &(0x7f0000000000)="ebffcbff13b9fd812eaa4e713048e69931929648", 0x14) connect$unix(r3, &(0x7f00000000c0)=@abs={0x0, 0x7, 0x3}, 0x8) 22:26:20 executing program 1: socket(0x2, 0x8000, 0x5) munmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000) madvise(&(0x7f0000e43000/0x2000)=nil, 0x2000, 0x0) r0 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vmm\x00', 0x0, 0x0) ioctl$VMM_IOC_WRITEREGS(r0, 0xc5005601, &(0x7f0000000580)={0x1, 0x0, 0x1, {[0x0, 0x0, 0x0, 0x20000000, 0x1200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffc], [0x0, 0x0, 0x400000000000, 0x0, 0x0, 0x0, 0x0, 0x200], [0x0, 0x0, 0x0, 0x0, 0x0, 0x3]}}) munmap(&(0x7f0000dfd000/0x200000)=nil, 0x200000) openat$null(0xffffffffffffff9c, &(0x7f0000000000)='/dev/null\x00', 0x1, 0x0) 22:26:20 executing program 0: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000100)='/dev/bpf\x00', 0x4000000001, 0x0) link(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='./file0\x00') ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f0000000000)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x6c}, {0x80}, {0x6, 0x0, 0x0, 0x100}]}) pwrite(r0, &(0x7f0000000240)="d000000000000000000000000008", 0xe, 0x0, 0x0) 22:26:20 executing program 1: mkdir(&(0x7f0000000200)='./file0\x00', 0x88) mkdir(&(0x7f00000000c0)='./file0/file1\x00', 0x0) mkdir(&(0x7f0000000040)='./file0/file1/file0\x00', 0x0) r0 = getpid() msgctl$IPC_SET(0x0, 0x1, &(0x7f0000000200)={{0x1, 0x0, 0x0, 0x0, 0x0, 0x144, 0x1ff}, 0x480000, 0x7, r0, 0x0, 0x2, 0x5, 0xfbc2000, 0x8}) setgid(0x0) ioctl$WSDISPLAYIO_ADDSCREEN(0xffffffffffffffff, 0x80245753, &(0x7f0000000300)={0xff, './file0/file1/fi', './file0/file1/fi'}) chroot(&(0x7f0000000080)='./file0/file1/file0\x00') mknod$loop(&(0x7f0000000240)='./file0/file1\x00', 0x2, 0x0) rename(&(0x7f0000000000)='./file0/file1/file0\x00', &(0x7f0000000140)='./file1\x00') rename(&(0x7f0000000180)='./file0/file1\x00', &(0x7f00000002c0)='./file1\x00') open$dir(&(0x7f0000000100)='\x00', 0x8000, 0x10) open$dir(&(0x7f00000001c0)='./file0/file1/file0/../file0\x00', 0x8833254deba4882c, 0x16) chroot(&(0x7f0000000340)='./file0/file1/file0\x00') r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) symlinkat(&(0x7f0000000000)='./file0/file0\x00', r1, &(0x7f0000d06ff8)='./file0\x00') unlink(&(0x7f0000000280)='./file0/file1\x00') mknod(&(0x7f0000000380)='./file0/file0/file0\x00', 0x100, 0x80000000) fchownat(r1, &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0x2) dup(0xffffffffffffff9c) 22:26:20 executing program 0: r0 = socket(0x2, 0x2, 0x0) connect$unix(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00'], 0x1) setsockopt$sock_int(r0, 0xffff, 0x200, &(0x7f0000000080)=0x7, 0x4) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) bind(r0, &(0x7f0000000000)=@un=@abs={0x0, 0xd}, 0x10) r1 = socket(0x2, 0x8002, 0x0) r2 = socket(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0xffff, 0x8, &(0x7f00000000c0)=0x2, 0x4) setsockopt$sock_int(r2, 0xffff, 0x200, &(0x7f0000000080), 0x4) bind(r2, &(0x7f0000000000)=@un=@abs={0x0, 0xd}, 0x10) setsockopt$sock_int(r2, 0xffff, 0x1002, &(0x7f0000000040), 0x4) connect$unix(r1, &(0x7f0000000000)=ANY=[@ANYBLOB="620500000000000000d1"], 0x10) write(r1, 0x0, 0x0) login: vm_impl_init_vmx: uvm_share failed (22) failed to init arch-specific features for vm 0x0xffff800020a394a0 vm_impl_init_vmx: uvm_share failed (22) failed to init arch-specific features for vm 0x0xffff800020a394a0 22:26:20 executing program 1: minherit(&(0x7f0000000000/0x14000)=nil, 0x14000, 0x0) r0 = openat$vmm(0xffffffffffffff9c, &(0x7f0000000480)='/dev/vmm\x00', 0x0, 0x0) mlock(&(0x7f0000000000/0x3000)=nil, 0x3000) ioctl$VMM_IOC_WRITEREGS(r0, 0xc5005601, &(0x7f0000000580)={0x1, 0x0, 0x1, {[0x0, 0x0, 0x0, 0x20004000, 0x200000], [], [], [], [{}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x2}]}}) r1 = open(&(0x7f0000000040)='./file0\x00', 0x70e, 0x0) mmap(&(0x7f0000000000/0x13000)=nil, 0x13000, 0x0, 0x10, r1, 0x0, 0x0) 22:26:20 executing program 0: ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], [], [0x0, 0x0, 0x0, 0x9, 0xffffffffffffffff, 0x7], [0x0, 0x0, 0x481, 0x0, 0xffffffffffffffff], [{}, {}, {0x401}, {0x0, 0x0, 0x0, 0x400}], {0xfffe}}}) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x18, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = accept$unix(r1, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)=0x40) setsockopt(r2, 0x40, 0x3, &(0x7f0000000080)="d5f717209da2684349b6a8e8b9f2d081d43a06e153ed5455ac4a00ca7e63379c68ce319b3baf961b2805712cbd287d31f51797899626cfd3e62a64fff84c9e35a56f75304693f5a31f7beaf1fd99f2bf10da7a4cd3aefac73cf710c690f01e770db864eacd0269ab8e14c55ca143e5e3278014833dbc8c8ecdd8d4136c1da3471639a5dc3ec8d9a3854f322fe809c1d6464d480b8fdf327be37e40828d3bb1688b110963f9db4a6b6a8e9c96d394609f04a87fe87acad846c705a00e033b163283f60f76de521301bdceaae2610f8f45e3dc836a7538b8ba2f4b20d2357586d121", 0xe1) pipe2(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) kevent(0xffffffffffffffff, &(0x7f0000000100)=[{{r3}, 0xfffffffffffffffe, 0x3, 0x1, 0xfffffffffffffff9}], 0x0, 0x0, 0x0, 0x0) ioctl$WSDISPLAYIO_SMODE(r3, 0x8004574c, &(0x7f0000000180)=0x1) ioctl$TIOCFLUSH(r1, 0x8080691a, &(0x7f0000000300)) ioctl$TIOCSTAT(r4, 0x20007465, &(0x7f00000001c0)) 22:26:20 executing program 0: ioctl$VMM_IOC_WRITEREGS(0xffffffffffffffff, 0x82485608, &(0x7f0000000240)={0x0, 0x0, 0x0, {[], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1fd], [0x0, 0x0, 0x0, 0x6, 0xffffffffffffffff, 0xff], [0x0, 0x0, 0x401], [{}, {0x0, 0x0, 0x3}]}}) ioctl$BIOCSETIF(0xffffffffffffffff, 0x8020426c, &(0x7f0000000300)={'tap', 0x0}) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) r0 = socket(0x18, 0x2, 0x0) r1 = kqueue() r2 = fcntl$dupfd(r0, 0x0, r1) ioctl$TIOCFLUSH(r2, 0x8080691a, &(0x7f0000000300)) 22:26:20 executing program 1: r0 = openat$bpf(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bpf\x00', 0x1, 0x0) ioctl$BIOCSETIF(r0, 0x8020426c, &(0x7f00000000c0)={'tap', 0x0}) ioctl$BIOCSETWF(r0, 0x80104277, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x5c}, {0x54}, {0x6, 0x0, 0x0, 0x100}]}) ioctl$BIOCGFILDROP(r0, 0x40044278, &(0x7f0000000100)) pwrite(r0, &(0x7f0000000240)="e739050effdca9c769ab41ecd6cb", 0xe, 0x0, 0x0) panic: sbdrop Stopped at db_enter+0x18: addq $0x8,%rsp TID PID UID PRFLAGS PFLAGS CPU COMMAND *424290 43306 0 0x14000 0x200 0 softnet db_enter() at db_enter+0x18 panic(ffffffff82201f4a) at panic+0x15c sbdrop(fffffd805dac34b8,fffffd805dac35b0,3f8) at sbdrop+0x3a6 tcp_input(ffff80001d708638,ffff80001d708644,6,2) at tcp_input+0x38ce ip_deliver(ffff80001d708638,ffff80001d708644,6,2) at ip_deliver+0x2e3 ip_ours(ffff80001d708638,ffff80001d708644,2,0) at ip_ours+0x4fe ip_input_if(ffff80001d708638,ffff80001d708644,4,0,ffff80000017a2a8) at ip_input_if+0x571 ipv4_input(ffff80000017a2a8,fffffd805c8e4900) at ipv4_input+0x48 ether_input(ffff80000017a2a8,fffffd805c8e4900,0) at ether_input+0x345 if_input_process(ffff80000017a2a8,ffff80001d708748) at if_input_process+0xf8 ifiq_process(ffff80000017a660) at ifiq_process+0x80 taskq_thread(ffff8000000290c0) at taskq_thread+0x52 end trace frame: 0x0, count: 3 https://www.openbsd.org/ddb.html describes the minimum info required in bug reports. Insufficient info makes it difficult to find and fix bugs. ddb> ddb> set $lines = 0 ddb> set $maxwidth = 0 ddb> show panic sbdrop ddb> trace db_enter() at db_enter+0x18 panic(ffffffff82201f4a) at panic+0x15c sbdrop(fffffd805dac34b8,fffffd805dac35b0,3f8) at sbdrop+0x3a6 tcp_input(ffff80001d708638,ffff80001d708644,6,2) at tcp_input+0x38ce ip_deliver(ffff80001d708638,ffff80001d708644,6,2) at ip_deliver+0x2e3 ip_ours(ffff80001d708638,ffff80001d708644,2,0) at ip_ours+0x4fe ip_input_if(ffff80001d708638,ffff80001d708644,4,0,ffff80000017a2a8) at ip_input_if+0x571 ipv4_input(ffff80000017a2a8,fffffd805c8e4900) at ipv4_input+0x48 ether_input(ffff80000017a2a8,fffffd805c8e4900,0) at ether_input+0x345 if_input_process(ffff80000017a2a8,ffff80001d708748) at if_input_process+0xf8 ifiq_process(ffff80000017a660) at ifiq_process+0x80 taskq_thread(ffff8000000290c0) at taskq_thread+0x52 end trace frame: 0x0, count: -12 ddb> show registers rdi 0 rsi 0x1 rbp 0xffff80001d7081c0 rbx 0xffff80001d708270 rdx 0x2 rcx 0 rax 0x1 r8 0xffffffff8152bacf kprintf+0x15f r9 0x1 r10 0x2 r11 0xbe6fadb8fc7ba729 r12 0x3000000008 r13 0xffff80001d7081d0 r14 0x100 r15 0x1 rip 0xffffffff81a7eaf8 db_enter+0x18 cs 0x8 rflags 0x246 rsp 0xffff80001d7081b0 ss 0x10 db_enter+0x18: addq $0x8,%rsp ddb> show proc PROC (softnet) pid=424290 stat=onproc flags process=14000 proc=200 pri=32, usrpri=50, nice=20 forw=0xffffffffffffffff, list=0xffff80001d6e1750,0xffff80001d6e1280 process=0xffff8000ffffe000 user=0xffff80001d703000, vmspace=0xffffffff8259c570 estcpu=0, cpticks=0, pctcpu=0.65 user=0, sys=0, intr=0 ddb> ps PID TID PPID UID S FLAGS WAIT COMMAND 94549 257730 72806 0 3 0x82 nanosleep syz-executor.0 18013 339913 72806 0 2 0x2 syz-executor.1 72806 361734 45667 0 3 0x82 thrsleep syz-fuzzer 72806 406714 45667 0 3 0x4000082 nanosleep syz-fuzzer 72806 276956 45667 0 3 0x4000082 thrsleep syz-fuzzer 72806 176689 45667 0 3 0x4000082 thrsleep syz-fuzzer 72806 16728 45667 0 3 0x4000082 thrsleep syz-fuzzer 72806 187839 45667 0 3 0x4000082 kqread syz-fuzzer 72806 485697 45667 0 3 0x4000082 thrsleep syz-fuzzer 45667 116561 89783 0 3 0x10008a pause ksh 89783 150591 77011 0 3 0x92 select sshd 96253 481257 1 0 3 0x100083 ttyin getty 77011 400808 1 0 3 0x80 select sshd 80568 514300 77033 73 3 0x100090 kqread syslogd 77033 428716 1 0 3 0x100082 netio syslogd 92883 426117 1 77 3 0x100090 poll dhclient 46333 308392 1 0 3 0x80 poll dhclient 78848 74280 0 0 3 0x14200 bored smr 68669 422270 0 0 2 0x14200 zerothread 95578 119500 0 0 3 0x14200 aiodoned aiodoned 1025 265768 0 0 3 0x14200 syncer update 30591 375138 0 0 3 0x14200 cleaner cleaner 74746 230642 0 0 3 0x14200 reaper reaper 31571 97070 0 0 3 0x14200 pgdaemon pagedaemon 57078 298707 0 0 3 0x14200 bored crynlk 89992 253272 0 0 3 0x14200 bored crypto 80666 397967 0 0 3 0x40014200 acpi0 acpi0 *43306 424290 0 0 7 0x14200 softnet 12691 3521 0 0 3 0x14200 bored systqmp 17671 171678 0 0 3 0x14200 bored systq 9465 345445 0 0 3 0x40014200 bored softclock 80810 273014 0 0 3 0x40014200 idle0 1 46349 0 0 3 0x82 wait init 0 0 -1 0 3 0x10200 scheduler swapper ddb> show all locks No such command ddb> show malloc Type InUse MemUse HighUse Limit Requests Type Lim devbuf 9467 6330K 6715K 78643K 10614 0 pcb 13 8K 8K 78643K 21 0 rtable 99 2K 3K 78643K 201 0 ifaddr 47 10K 11K 78643K 55 0 counters 21 16K 16K 78643K 21 0 ioctlops 0 0K 2K 78643K 21 0 iov 0 0K 2K 78643K 4 0 mount 1 1K 1K 78643K 1 0 vnodes 1226 77K 77K 78643K 1242 0 UFS quota 1 32K 32K 78643K 1 0 UFS mount 5 36K 36K 78643K 5 0 shm 2 1K 1K 78643K 2 0 VM map 2 0K 0K 78643K 2 0 sem 4 0K 0K 78643K 5 0 dirhash 12 2K 2K 78643K 12 0 ACPI 1809 195K 288K 78643K 12938 0 file desc 4 9K 25K 78643K 56 0 proc 49 38K 63K 78643K 360 0 subproc 32 2K 2K 78643K 34 0 NFS srvsock 1 0K 0K 78643K 1 0 NFS daemon 1 16K 16K 78643K 1 0 ip_moptions 0 0K 0K 78643K 9 0 in_multi 29 1K 2K 78643K 41 0 ether_multi 1 0K 0K 78643K 2 0 ISOFS mount 1 32K 32K 78643K 1 0 MSDOSFS mount 1 16K 16K 78643K 1 0 ttys 49 228K 228K 78643K 49 0 exec 0 0K 1K 78643K 181 0 pagedep 1 8K 8K 78643K 1 0 inodedep 1 32K 32K 78643K 1 0 newblk 1 0K 0K 78643K 1 0 VM swap 7 26K 26K 78643K 7 0 UVM amap 115 54K 55K 78643K 962 0 UVM aobj 2 2K 2K 78643K 2 0 memdesc 1 4K 4K 78643K 1 0 crypto data 1 1K 1K 78643K 1 0 ip6_options 0 0K 0K 78643K 4 0 NDP 10 0K 0K 78643K 12 0 temp 70 3027K 3091K 78643K 2407 0 kqueue 3 4K 4K 78643K 3 0 SYN cache 2 16K 16K 78643K 2 0 ddb> show all pools Name Size Requests Fail Releases Pgreq Pgrel Npage Hiwat Minpg Maxpg Idle arp 64 6 0 0 1 0 1 1 0 8 0 rtpcb 80 21 0 19 1 0 1 1 0 8 0 rtentry 112 49 0 8 2 0 2 2 0 8 0 unpcb 120 33 0 25 1 0 1 1 0 8 0 syncache 264 4 0 4 1 1 0 1 0 8 0 tcpqe 32 51 0 51 1 0 1 1 0 8 1 tcpcb 544 18 0 14 1 0 1 1 0 8 0 inpcb 280 72 0 65 1 0 1 1 0 8 0 nd6 48 7 0 3 1 0 1 1 0 8 0 art_heap8 4096 1 0 0 1 0 1 1 0 8 0 art_heap4 256 213 0 40 13 0 13 13 0 8 0 art_table 32 214 0 40 2 0 2 2 0 8 0 art_node 16 48 0 10 1 0 1 1 0 8 0 semupl 112 1 0 1 1 0 1 1 0 8 1 semapl 112 2 0 0 1 0 1 1 0 8 0 dirhash 1024 17 0 0 3 0 3 3 0 8 0 dino2pl 256 1459 0 61 88 0 88 88 0 8 0 ffsino 240 1459 0 61 83 0 83 83 0 8 0 nchpl 144 1719 0 117 60 0 60 60 0 8 0 uvmvnodes 72 1516 0 0 28 0 28 28 0 8 0 vnodes 208 1516 0 0 80 0 80 80 0 8 0 namei 1024 4306 0 4306 1 0 1 1 0 8 1 vcpupl 1984 3 0 0 1 0 1 1 0 8 0 vmpool 528 5 0 2 1 0 1 1 0 8 0 scxspl 192 4243 0 4243 1 0 1 1 0 8 1 plimitpl 152 14 0 7 1 0 1 1 0 8 0 sigapl 424 242 0 215 4 0 4 4 0 8 0 futexpl 56 561 0 561 1 0 1 1 0 8 1 knotepl 112 61 0 42 1 0 1 1 0 8 0 kqueuepl 144 6 0 4 1 0 1 1 0 8 0 pipelkpl 16 80 0 70 1 0 1 1 0 8 0 pipepl 120 160 0 141 1 0 1 1 0 8 0 fdescpl 432 228 0 215 2 0 2 2 0 8 0 filepl 120 1191 0 1096 4 0 4 4 0 8 1 lockfpl 104 13 0 12 1 0 1 1 0 8 0 lockfspl 48 7 0 6 1 0 1 1 0 8 0 sessionpl 112 17 0 7 1 0 1 1 0 8 0 pgrppl 48 17 0 7 1 0 1 1 0 8 0 ucredpl 96 93 0 86 1 0 1 1 0 8 0 zombiepl 144 215 0 214 1 0 1 1 0 8 0 processpl 920 242 0 214 4 0 4 4 0 8 0 procpl 624 272 0 238 3 0 3 3 0 8 0 sockpl 400 126 0 109 3 0 3 3 0 8 1 mcl64k 65536 5 0 5 1 0 1 1 0 8 1 mcl12k 12288 2 0 2 1 0 1 1 0 8 1 mcl4k 4096 8 0 8 1 1 0 1 0 8 0 mcl2k2 2112 1 0 1 1 0 1 1 0 8 1 mcl2k 2048 65971 0 65919 16 2 14 14 0 8 6 mtagpl 80 8 0 2 2 1 1 1 0 8 0 mbufpl 256 104738 0 104640 17 2 15 15 0 8 1 bufpl 280 3246 0 126 223 0 223 223 0 8 0 anonpl 16 36029 0 22253 58 2 56 56 0 107 0 amapchunkpl 152 983 0 845 7 0 7 7 0 158 1 amappl16 192 929 0 192 38 0 38 38 0 8 1 amappl15 184 9 0 7 1 0 1 1 0 8 0 amappl14 176 26 0 20 1 0 1 1 0 8 0 amappl13 168 32 0 30 1 0 1 1 0 8 0 amappl12 160 12 0 9 1 0 1 1 0 8 0 amappl11 152 48 0 38 1 0 1 1 0 8 0 amappl10 144 32 0 24 1 0 1 1 0 8 0 amappl9 136 369 0 367 1 0 1 1 0 8 0 amappl8 128 326 0 293 2 0 2 2 0 8 0 amappl7 120 118 0 105 1 0 1 1 0 8 0 amappl6 112 27 0 22 1 0 1 1 0 8 0 amappl5 104 198 0 189 1 0 1 1 0 8 0 amappl4 96 419 0 392 1 0 1 1 0 8 0 amappl3 88 101 0 94 1 0 1 1 0 8 0 amappl2 80 999 0 940 2 0 2 2 0 8 0 amappl1 72 14089 0 13691 23 6 17 17 0 8 7 amappl 80 501 0 458 1 0 1 1 0 84 0 dma4096 4096 1 0 1 1 1 0 1 0 8 0 dma256 256 6 0 6 1 1 0 1 0 8 0 dma128 128 253 0 253 1 1 0 1 0 8 0 dma64 64 6 0 6 1 1 0 1 0 8 0 dma32 32 7 0 7 1 1 0 1 0 8 0 dma16 16 18 0 17 1 0 1 1 0 8 0 aobjpl 64 1 0 0 1 0 1 1 0 8 0 uaddrrnd 24 233 0 217 1 0 1 1 0 8 0 uaddrbest 32 2 0 0 1 0 1 1 0 8 0 uaddr 24 233 0 217 1 0 1 1 0 8 0 vmmpekpl 168 5820 0 5797 2 0 2 2 0 8 0 vmmpepl 168 34716 0 32999 107 7 100 100 0 357 20 vmsppl 272 232 0 217 2 0 2 2 0 8 0 pdppl 4096 472 0 437 6 0 6 6 0 8 1 pvpl 32 127028 0 110393 136 0 136 136 0 265 0 pmappl 200 232 0 217 1 0 1 1 0 8 0 extentpl 40 53 0 36 1 0 1 1 0 8 0 phpool 112 241 0 7 7 0 7 7 0 8 0 ddb> machine ddbcpu 0 No such command ddb> trace db_enter() at db_enter+0x18 panic(ffffffff82201f4a) at panic+0x15c sbdrop(fffffd805dac34b8,fffffd805dac35b0,3f8) at sbdrop+0x3a6 tcp_input(ffff80001d708638,ffff80001d708644,6,2) at tcp_input+0x38ce ip_deliver(ffff80001d708638,ffff80001d708644,6,2) at ip_deliver+0x2e3 ip_ours(ffff80001d708638,ffff80001d708644,2,0) at ip_ours+0x4fe ip_input_if(ffff80001d708638,ffff80001d708644,4,0,ffff80000017a2a8) at ip_input_if+0x571 ipv4_input(ffff80000017a2a8,fffffd805c8e4900) at ipv4_input+0x48 ether_input(ffff80000017a2a8,fffffd805c8e4900,0) at ether_input+0x345 if_input_process(ffff80000017a2a8,ffff80001d708748) at if_input_process+0xf8 ifiq_process(ffff80000017a660) at ifiq_process+0x80 taskq_thread(ffff8000000290c0) at taskq_thread+0x52 end trace frame: 0x0, count: -12 ddb> machine ddbcpu 1 No such command ddb> trace db_enter() at db_enter+0x18 panic(ffffffff82201f4a) at panic+0x15c sbdrop(fffffd805dac34b8,fffffd805dac35b0,3f8) at sbdrop+0x3a6 tcp_input(ffff80001d708638,ffff80001d708644,6,2) at tcp_input+0x38ce ip_deliver(ffff80001d708638,ffff80001d708644,6,2) at ip_deliver+0x2e3 ip_ours(ffff80001d708638,ffff80001d708644,2,0) at ip_ours+0x4fe ip_input_if(ffff80001d708638,ffff80001d708644,4,0,ffff80000017a2a8) at ip_input_if+0x571 ipv4_input(ffff80000017a2a8,fffffd805c8e4900) at ipv4_input+0x48 ether_input(ffff80000017a2a8,fffffd805c8e4900,0) at ether_input+0x345 if_input_process(ffff80000017a2a8,ffff80001d708748) at if_input_process+0xf8 ifiq_process(ffff80000017a660) at ifiq_process+0x80 taskq_thread(ffff8000000290c0) at taskq_thread+0x52 end trace frame: 0x0, count: -12