last executing test programs: 2.442654875s ago: executing program 3 (id=151): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/target_ids', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/target_ids', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/target_ids', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/target_ids', 0x800, 0x0) 2.442097732s ago: executing program 3 (id=155): openat(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/proc/asound/card0/oss_mixer', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/proc/asound/card0/oss_mixer', 0x800, 0x0) 2.397488606s ago: executing program 3 (id=160): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/udmabuf', 0x2, 0x0) 2.344331318s ago: executing program 3 (id=166): mkdirat(0xffffffffffffffff, &(0x7f0000000000), 0x0) 2.338920603s ago: executing program 3 (id=169): socket(0x1, 0x1, 0x0) 2.289262428s ago: executing program 3 (id=174): rt_sigreturn() 198.080988ms ago: executing program 1 (id=384): timerfd_create(0x0, 0x0) 152.904175ms ago: executing program 0 (id=387): io_destroy(0x0) 152.868179ms ago: executing program 4 (id=388): set_tid_address(&(0x7f0000000000)) 152.610923ms ago: executing program 1 (id=389): setpriority(0x0, 0x0, 0x0) 152.568243ms ago: executing program 0 (id=390): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/autofs', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/autofs', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/autofs', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs', 0x800, 0x0) 152.51758ms ago: executing program 2 (id=391): pkey_mprotect(0x0, 0x0, 0x0, 0xffffffffffffffff) 135.373018ms ago: executing program 4 (id=392): msgget(0xffffffffffffffff, 0x0) 121.097697ms ago: executing program 1 (id=393): socket$alg(0x26, 0x5, 0x0) 73.192767ms ago: executing program 0 (id=394): syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) 73.09779ms ago: executing program 2 (id=395): syz_init_net_socket$ax25(0x3, 0x2, 0x0) 72.896833ms ago: executing program 4 (id=396): openat(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/debug/damon/schemes', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/damon/schemes', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/kernel/debug/damon/schemes', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/sys/kernel/debug/damon/schemes', 0x800, 0x0) 72.689733ms ago: executing program 0 (id=397): syz_init_net_socket$rose(0xb, 0x5, 0x0) 72.551612ms ago: executing program 2 (id=398): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/ndctl0', 0x0, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ndctl0', 0x1, 0x0) openat(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/ndctl0', 0x2, 0x0) openat(0xffffffffffffff9c, &(0x7f0000000100)='/dev/ndctl0', 0x800, 0x0) 72.414702ms ago: executing program 4 (id=399): tkill(0x0, 0x0) 70.35102ms ago: executing program 1 (id=400): socket$xdp(0x2c, 0x3, 0x0) 60.945924ms ago: executing program 2 (id=401): socket$isdn_base(0x22, 0x3, 0x0) 58.168298ms ago: executing program 4 (id=402): uselib(0x0) 47.636442ms ago: executing program 1 (id=403): mq_timedsend(0xffffffffffffffff, &(0x7f0000000000), 0x0, 0x0, 0x0) 1.103578ms ago: executing program 0 (id=404): openat(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/member', 0x2, 0x0) 506.036µs ago: executing program 2 (id=405): llistxattr(&(0x7f0000000000), &(0x7f0000000000), 0x0) 393.808µs ago: executing program 0 (id=406): sched_setattr(0x0, &(0x7f0000000000), 0x0) 290.194µs ago: executing program 1 (id=407): openat(0xffffffffffffff9c, &(0x7f0000000040)='/dev/cuse', 0x2, 0x0) 71.107µs ago: executing program 4 (id=408): getresuid(&(0x7f0000000000), &(0x7f0000000000), &(0x7f0000000000)) 0s ago: executing program 2 (id=409): io_setup(0x0, &(0x7f0000000000)) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.99' (ED25519) to the list of known hosts. [ 60.748911][ T5220] cgroup: Unknown subsys name 'net' [ 60.876995][ T5220] cgroup: Unknown subsys name 'cpuset' [ 60.885820][ T5220] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 62.493540][ T5220] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 66.077521][ T5445] mmap: syz.1.199 (5445) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 67.772140][ T5613] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 68.150620][ T5656] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000b: 0000 [#1] PREEMPT SMP KASAN PTI [ 68.163279][ T5656] KASAN: null-ptr-deref in range [0x0000000000000058-0x000000000000005f] [ 68.171836][ T5656] CPU: 1 UID: 0 PID: 5656 Comm: syz.1.407 Not tainted 6.11.0-next-20240923-syzkaller #0 [ 68.181810][ T5656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 68.191910][ T5656] RIP: 0010:fuse_get_req+0x699/0xd40 [ 68.197314][ T5656] Code: 24 50 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 15 f5 e9 fe 48 8b 1b 48 83 c3 58 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 f8 f4 e9 fe 48 8b 1b 81 e3 00 20 [ 68.217034][ T5656] RSP: 0018:ffffc900046d74c0 EFLAGS: 00010202 [ 68.223358][ T5656] RAX: 000000000000000b RBX: 0000000000000058 RCX: ffffffff8314b4d2 [ 68.231639][ T5656] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8880227a1030 [ 68.239782][ T5656] RBP: ffffc900046d75e8 R08: ffff8880227a1037 R09: 1ffff110044f4206 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 68.247879][ T5656] R10: dffffc0000000000 R11: ffffed10044f4207 R12: ffff8880227a1000 [ 68.255998][ T5656] R13: dffffc0000000000 R14: ffff88807c0e9840 R15: ffff8880227a1000 [ 68.264021][ T5656] FS: 0000555567c37500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 68.273039][ T5656] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 68.281315][ T5656] CR2: 00007ff7fe107050 CR3: 00000000260a2000 CR4: 00000000003526f0 [ 68.289473][ T5656] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.297476][ T5656] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 68.305574][ T5656] Call Trace: [ 68.308873][ T5656] [ 68.311819][ T5656] ? __die_body+0x5f/0xb0 [ 68.316247][ T5656] ? die_addr+0xb0/0xe0 [ 68.320408][ T5656] ? exc_general_protection+0x3dd/0x5d0 [ 68.326004][ T5656] ? asm_exc_general_protection+0x26/0x30 [ 68.331738][ T5656] ? fuse_get_req+0x602/0xd40 [ 68.336423][ T5656] ? fuse_get_req+0x699/0xd40 [ 68.341114][ T5656] ? __pfx_fuse_get_req+0x10/0x10 [ 68.346159][ T5656] fuse_simple_background+0x9d/0xb10 [ 68.351455][ T5656] ? __kmalloc_cache_noprof+0x19c/0x2c0 [ 68.357019][ T5656] cuse_channel_open+0x447/0x670 [ 68.361970][ T5656] ? __pfx_cuse_channel_open+0x10/0x10 [ 68.367437][ T5656] misc_open+0x2cc/0x340 [ 68.371694][ T5656] chrdev_open+0x521/0x600 [ 68.376116][ T5656] ? __pfx_apparmor_file_open+0x10/0x10 [ 68.381698][ T5656] ? __pfx_chrdev_open+0x10/0x10 [ 68.386685][ T5656] ? security_file_open+0x513/0x990 [ 68.392225][ T5656] ? __pfx_chrdev_open+0x10/0x10 [ 68.397227][ T5656] do_dentry_open+0x978/0x1460 [ 68.402009][ T5656] vfs_open+0x3e/0x330 [ 68.406265][ T5656] path_openat+0x2cb5/0x3b40 [ 68.410894][ T5656] ? __pfx_stack_trace_save+0x10/0x10 [ 68.416282][ T5656] ? __pfx_path_openat+0x10/0x10 [ 68.421224][ T5656] ? __lock_acquire+0x1384/0x2050 [ 68.426870][ T5656] do_filp_open+0x235/0x490 [ 68.431380][ T5656] ? __pfx_do_filp_open+0x10/0x10 [ 68.436553][ T5656] ? _raw_spin_unlock+0x28/0x50 [ 68.441437][ T5656] ? alloc_fd+0x5a1/0x640 [ 68.445801][ T5656] do_sys_openat2+0x13e/0x1d0 [ 68.450583][ T5656] ? __pfx_do_sys_openat2+0x10/0x10 [ 68.455807][ T5656] __x64_sys_openat+0x247/0x2a0 [ 68.460759][ T5656] ? __pfx___x64_sys_openat+0x10/0x10 [ 68.466493][ T5656] ? exc_page_fault+0x590/0x8c0 [ 68.471369][ T5656] ? do_syscall_64+0xb6/0x230 [ 68.476050][ T5656] do_syscall_64+0xf3/0x230 [ 68.480589][ T5656] ? clear_bhb_loop+0x35/0x90 [ 68.485288][ T5656] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 68.491289][ T5656] RIP: 0033:0x7ff7fe17def9 [ 68.495727][ T5656] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 68.515602][ T5656] RSP: 002b:00007ffeecb206a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 68.524101][ T5656] RAX: ffffffffffffffda RBX: 00007ff7fe335f80 RCX: 00007ff7fe17def9 [ 68.532273][ T5656] RDX: 0000000000000002 RSI: 0000000020000040 RDI: ffffffffffffff9c [ 68.540882][ T5656] RBP: 00007ff7fe1f0b76 R08: 0000000000000000 R09: 0000000000000000 [ 68.548956][ T5656] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 68.556938][ T5656] R13: 00007ff7fe335f80 R14: 00007ff7fe335f80 R15: 0000000000000b46 [ 68.564938][ T5656] [ 68.567962][ T5656] Modules linked in: [ 68.572514][ T5656] ---[ end trace 0000000000000000 ]--- [ 68.578422][ T5419] coredump: 37(syz.3.174): interrupted: fatal signal pending [ 68.586401][ T5419] coredump: 37(syz.3.174): Error writing out the process memory [ 68.594460][ T5419] coredump: 37(syz.3.174): written to core: VMAs: 17, size 53436416; core: 31309776 bytes, pos 43458560 [ 68.636533][ T5656] RIP: 0010:fuse_get_req+0x699/0xd40 [ 68.641990][ T5656] Code: 24 50 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 15 f5 e9 fe 48 8b 1b 48 83 c3 58 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 f8 f4 e9 fe 48 8b 1b 81 e3 00 20 [ 68.662353][ T5656] RSP: 0018:ffffc900046d74c0 EFLAGS: 00010202 [ 68.668750][ T5656] RAX: 000000000000000b RBX: 0000000000000058 RCX: ffffffff8314b4d2 [ 68.676992][ T5656] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffff8880227a1030 [ 68.739719][ T5656] RBP: ffffc900046d75e8 R08: ffff8880227a1037 R09: 1ffff110044f4206 [ 68.755398][ T5656] R10: dffffc0000000000 R11: ffffed10044f4207 R12: ffff8880227a1000 [ 68.780001][ T5656] R13: dffffc0000000000 R14: ffff88807c0e9840 R15: ffff8880227a1000 [ 68.795377][ T5656] FS: 0000555567c37500(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 68.822921][ T5656] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 68.829592][ T5656] CR2: 000055dafcd4d0a8 CR3: 00000000260a2000 CR4: 00000000003526f0 [ 68.853055][ T5656] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 68.861166][ T5656] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 68.882909][ T5656] Kernel panic - not syncing: Fatal exception [ 68.889436][ T5656] Kernel Offset: disabled [ 68.893857][ T5656] Rebooting in 86400 seconds..