last executing test programs: 6.488601292s ago: executing program 0 (id=121): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x801, 0x0) ioctl$UI_SET_MSCBIT(r0, 0x40045568, 0x5) 6.330933293s ago: executing program 0 (id=123): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) ioctl$sock_SIOCSIFVLAN_SET_VLAN_NAME_TYPE_CMD(r0, 0x8983, &(0x7f0000000000)={0x6, 'vxcan1\x00', {0x223f}, 0x9}) 6.194054912s ago: executing program 0 (id=124): r0 = gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000840), 0x0) read(r1, &(0x7f0000000200)=""/209, 0xd1) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000180)={0x335, @tick=0x7ff, 0xe, {0x1}, 0x80, 0x0, 0x40}) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_INFO(r1, 0x40045304, &(0x7f0000000300)={0x7, 0xc938, 0x1, 'queue0\x00', 0x80000001}) tkill(r0, 0x7) 5.30368017s ago: executing program 1 (id=130): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000001040)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x25dfdc01, {0x0, 0x0, 0x0, r3, {0x0, 0xd}, {0xffff, 0xb}, {0xffff, 0xffe0}}, [@qdisc_kind_options=@q_codel={{0xa}, {0xc, 0x2, [@TCA_CODEL_CE_THRESHOLD={0x8, 0x5, 0x4}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x240040e0}, 0x4890) r4 = socket$packet(0x11, 0x3, 0x300) bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94) sendto$packet(r4, &(0x7f00000005c0)="bad330fbc9b55400040000ea0756a85d86dd", 0x5ea, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r3, 0x1, 0xd8, 0x6, @multicast}, 0x14) 5.027062728s ago: executing program 1 (id=131): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000130000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='io_uring_complete\x00', r1}, 0x18) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045) r2 = io_uring_setup(0x3662, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7}) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0) io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0) 4.897849157s ago: executing program 1 (id=132): prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x8) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000180)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, 0x0, 0x810) write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xf, {"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", 0xfffffffffffffe40}}, 0x1047) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) 4.499874613s ago: executing program 0 (id=133): timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=0x0) fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5}) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x77359400}}, 0x0) mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0) r1 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x2a, &(0x7f0000000000)=0xb6, 0x4) setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000100)=0x6, 0x4) bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) recvfrom(r1, 0x0, 0x0, 0x32, 0x0, 0x0) syz_emit_ethernet(0x2e, &(0x7f0000000380)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x40, 0x100, @void}}}}}}}, 0x0) read$FUSE(0xffffffffffffffff, 0x0, 0x0) 550.923054ms ago: executing program 1 (id=134): prctl$PR_SET_NO_NEW_PRIVS(0x26, 0x1) r0 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0) landlock_restrict_self(r0, 0x0) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, 0x0) ptrace(0x10, r1) r2 = landlock_create_ruleset(&(0x7f0000000100)={0x100}, 0x18, 0x0) landlock_restrict_self(r2, 0x0) ptrace(0x10, r1) 239.185414ms ago: executing program 1 (id=135): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000001c0), 0x1022002, 0x0) dup(r0) 62.864656ms ago: executing program 0 (id=136): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000a80)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x4}, 0x38) 335µs ago: executing program 1 (id=137): r0 = socket(0x40000000015, 0x805, 0x0) getsockopt(r0, 0x114, 0x271f, &(0x7f0000000440)=""/102400, &(0x7f00000000c0)=0x19000) 0s ago: executing program 0 (id=138): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000611930000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x101, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x50) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:17519' (ED25519) to the list of known hosts. syzkaller login: [ 86.475270][ T3314] cgroup: Unknown subsys name 'net' [ 86.737316][ T3314] cgroup: Unknown subsys name 'cpuset' [ 86.763495][ T3314] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 87.249253][ T3314] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 95.294421][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.304044][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.581778][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.601374][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 96.334206][ T3319] hsr_slave_0: entered promiscuous mode [ 96.338081][ T3319] hsr_slave_1: entered promiscuous mode [ 96.765201][ T3320] hsr_slave_0: entered promiscuous mode [ 96.770160][ T3320] hsr_slave_1: entered promiscuous mode [ 96.781932][ T3320] debugfs: 'hsr0' already exists in 'hsr' [ 96.782709][ T3320] Cannot create hsr debugfs directory [ 97.451631][ T3319] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 97.508764][ T3319] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 97.542198][ T3319] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 97.564574][ T3319] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 97.803920][ T3320] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 97.851457][ T3320] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 97.878952][ T3320] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 97.906088][ T3320] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 98.657502][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.008310][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.854415][ T3319] veth0_vlan: entered promiscuous mode [ 101.886980][ T3319] veth1_vlan: entered promiscuous mode [ 102.093701][ T3319] veth0_macvtap: entered promiscuous mode [ 102.108934][ T3320] veth0_vlan: entered promiscuous mode [ 102.145582][ T3320] veth1_vlan: entered promiscuous mode [ 102.187873][ T3319] veth1_macvtap: entered promiscuous mode [ 102.329126][ T3320] veth0_macvtap: entered promiscuous mode [ 102.382694][ T3320] veth1_macvtap: entered promiscuous mode [ 102.487181][ T1153] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.494409][ T1153] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.494843][ T1153] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.495010][ T1153] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.708428][ T184] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.709071][ T184] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.709225][ T184] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 102.709368][ T184] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 103.151966][ T3319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 103.151971][ T3320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 105.157868][ T3487] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 105.169589][ T3487] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 106.714097][ T3491] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6'. [ 112.167673][ T3531] loop2: detected capacity change from 0 to 7 [ 112.195107][ T3531] loop2: p1 [ 112.196345][ T3531] loop2: p1 size 1919251295 extends beyond EOD, truncated [ 112.544201][ T3469] udevd[3469]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 115.871673][ T3514] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 116.031024][ T3514] usb 1-1: Using ep0 maxpacket: 16 [ 116.062299][ T3514] usb 1-1: config 0 has an invalid interface number: 236 but max is 0 [ 116.062737][ T3514] usb 1-1: config 0 has no interface number 0 [ 116.063615][ T3514] usb 1-1: config 0 interface 236 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 116.063932][ T3514] usb 1-1: config 0 interface 236 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 116.064108][ T3514] usb 1-1: config 0 interface 236 has no altsetting 0 [ 116.064574][ T3514] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 116.064706][ T3514] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.096117][ T3514] usb 1-1: config 0 descriptor?? [ 116.204381][ T3514] usbhid 1-1:0.236: can't add hid device: -22 [ 116.205693][ T3514] usbhid 1-1:0.236: probe with driver usbhid failed with error -22 [ 116.775813][ T3573] 8021q: adding VLAN 0 to HW filter on device ipvlan2 [ 124.284421][ T3596] capability: warning: `syz.1.47' uses 32-bit capabilities (legacy support in use) [ 128.718612][ T30] audit: type=1326 audit(128.510:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3622 comm="syz.1.58" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 128.722964][ T30] audit: type=1326 audit(128.520:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3622 comm="syz.1.58" exe="/syz-executor" sig=0 arch=c00000b7 syscall=75 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 128.724356][ T30] audit: type=1326 audit(128.520:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3622 comm="syz.1.58" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 128.728266][ T30] audit: type=1326 audit(128.520:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3622 comm="syz.1.58" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 128.814334][ T3625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.59'. [ 128.816852][ T3625] netlink: 4 bytes leftover after parsing attributes in process `syz.1.59'. [ 128.959783][ T3627] syz.1.60 uses obsolete (PF_INET,SOCK_PACKET) [ 130.164430][ T32] usb 1-1: USB disconnect, device number 2 [ 131.212428][ T3663] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 131.225472][ T3663] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 134.709123][ T3696] netlink: 'syz.1.88': attribute type 1 has an invalid length. [ 134.801431][ T3696] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 134.802950][ T3696] bond1: (slave wireguard0): Setting fail_over_mac to active for active-backup mode [ 134.813057][ T3696] bond1: (slave wireguard0): making interface the new active one [ 134.816953][ T3696] bond1: (slave wireguard0): Enslaving as an active interface with an up link [ 135.476770][ T3711] syzkaller0: entered promiscuous mode [ 135.477120][ T3711] syzkaller0: entered allmulticast mode [ 136.671199][ T3719] netlink: 12 bytes leftover after parsing attributes in process `syz.0.95'. [ 136.674952][ T3719] netlink: 12 bytes leftover after parsing attributes in process `syz.0.95'. [ 136.676763][ T3719] netlink: 50 bytes leftover after parsing attributes in process `syz.0.95'. [ 136.783224][ T3719] netlink: 'syz.0.95': attribute type 16 has an invalid length. [ 136.783905][ T3719] netlink: 64138 bytes leftover after parsing attributes in process `syz.0.95'. [ 138.842607][ T3731] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 138.865319][ T3731] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 139.932174][ T3745] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 140.026867][ T3747] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 142.241161][ T3756] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 142.242857][ T3756] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 142.851968][ T3767] syzkaller1: entered promiscuous mode [ 142.853533][ T3767] syzkaller1: entered allmulticast mode [ 142.911970][ T3767] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 142.913661][ T3767] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 142.941559][ T3514] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 143.121168][ T3514] usb 1-1: Using ep0 maxpacket: 8 [ 143.153201][ T3514] usb 1-1: config index 0 descriptor too short (expected 301, got 45) [ 143.155073][ T3514] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 143.159242][ T3514] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 143.164218][ T3514] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 143.168197][ T3514] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 143.178442][ T3514] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23 [ 143.183384][ T3514] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 143.297857][ T3772] veth0: entered promiscuous mode [ 143.306926][ T3772] netlink: 4 bytes leftover after parsing attributes in process `syz.1.117'. [ 143.443637][ T3514] usb 1-1: GET_CAPABILITIES returned 0 [ 143.445187][ T3514] usbtmc 1-1:16.0: can't read capabilities [ 143.685408][ T3765] usb 1-1: usbtmc_ioctl_clear_in_halt returned -32 [ 143.692694][ T9] usb 1-1: USB disconnect, device number 3 [ 143.694731][ T3774] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 143.718963][ T3774] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 143.951639][ T3779] sock: sock_timestamping_bind_phc: sock not bind to device [ 144.778847][ T3793] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 144.781459][ T3793] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 144.893465][ T30] audit: type=1326 audit(144.690:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3795 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 144.896911][ T30] audit: type=1326 audit(144.690:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3795 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=81 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 144.961517][ T30] audit: type=1326 audit(144.750:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3795 comm="syz.1.128" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 145.222112][ T3800] syzkaller0: entered promiscuous mode [ 145.223839][ T3800] syzkaller0: entered allmulticast mode [ 150.283947][ T30] audit: type=1326 audit(150.080:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.288051][ T30] audit: type=1326 audit(150.080:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.351602][ T30] audit: type=1326 audit(150.140:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.355421][ T30] audit: type=1326 audit(150.140:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=23 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.358685][ T30] audit: type=1326 audit(150.140:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.363463][ T30] audit: type=1326 audit(150.150:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3817 comm="syz.1.135" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8d55c3e8 code=0x7ffc0000 [ 150.584698][ T3824] ================================================================== [ 150.588419][ T3824] BUG: KASAN: invalid-access in __memcpy+0xc/0x54 [ 150.591073][ T3824] Write at addr f9ff80008a575180 by task syz.0.138/3824 [ 150.591595][ T3824] Pointer tag: [f9], memory tag: [fe] [ 150.591682][ T3824] [ 150.592784][ T3824] CPU: 0 UID: 0 PID: 3824 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT [ 150.593164][ T3824] Hardware name: linux,dummy-virt (DT) [ 150.593456][ T3824] Call trace: [ 150.593846][ T3824] show_stack+0x18/0x24 (C) [ 150.594165][ T3824] dump_stack_lvl+0x78/0x90 [ 150.594309][ T3824] print_report+0x108/0x61c [ 150.594373][ T3824] kasan_report+0x88/0xac [ 150.594420][ T3824] __do_kernel_fault+0x170/0x1c8 [ 150.594472][ T3824] do_bad_area+0x68/0x78 [ 150.594518][ T3824] do_tag_check_fault+0x34/0x44 [ 150.594622][ T3824] do_mem_abort+0x44/0x94 [ 150.594670][ T3824] el1_abort+0x44/0x68 [ 150.594717][ T3824] el1h_64_sync_handler+0x50/0xac [ 150.594769][ T3824] el1h_64_sync+0x6c/0x70 [ 150.594929][ T3824] __memcpy+0xc/0x54 (P) [ 150.594986][ T3824] convert_ctx_accesses+0x698/0xb2c [ 150.595040][ T3824] bpf_check+0x1374/0x293c [ 150.595093][ T3824] bpf_prog_load+0x63c/0xd40 [ 150.595137][ T3824] __sys_bpf+0x2e0/0x1a88 [ 150.595177][ T3824] __arm64_sys_bpf+0x24/0x34 [ 150.595228][ T3824] invoke_syscall+0x48/0x110 [ 150.595284][ T3824] el0_svc_common.constprop.0+0x40/0xe0 [ 150.595340][ T3824] do_el0_svc+0x1c/0x28 [ 150.595391][ T3824] el0_svc+0x34/0x128 [ 150.595439][ T3824] el0t_64_sync_handler+0xa0/0xe4 [ 150.595490][ T3824] el0t_64_sync+0x1a4/0x1a8 [ 150.595764][ T3824] [ 150.596032][ T3824] The buggy address belongs to a 1-page vmalloc region starting at 0xf9ff80008a575000 allocated at bpf_check+0x8c/0x293c [ 150.597798][ T3824] The buggy address belongs to the physical page: [ 150.598197][ T3824] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x461ca [ 150.598604][ T3824] flags: 0x1ffd80000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x6) [ 150.599581][ T3824] raw: 01ffd80000000000 0000000000000000 dead000000000122 0000000000000000 [ 150.599650][ T3824] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 150.599779][ T3824] page dumped because: kasan: bad access detected [ 150.599826][ T3824] [ 150.599862][ T3824] Memory state around the buggy address: [ 150.600597][ T3824] Unable to handle kernel paging request at virtual address ffff80008a574f00 [ 150.600718][ T3824] Mem abort info: [ 150.600758][ T3824] ESR = 0x0000000096000007 [ 150.600836][ T3824] EC = 0x25: DABT (current EL), IL = 32 bits [ 150.600897][ T3824] SET = 0, FnV = 0 [ 150.600946][ T3824] EA = 0, S1PTW = 0 [ 150.601000][ T3824] FSC = 0x07: level 3 translation fault [ 150.601066][ T3824] Data abort info: [ 150.601109][ T3824] ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000 [ 150.601162][ T3824] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 150.601218][ T3824] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 150.601363][ T3824] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000042a58000 [ 150.601440][ T3824] [ffff80008a574f00] pgd=1000000042fcc003, p4d=1000000042fcd003, pud=1000000042fce003, pmd=1000000046d87403, pte=0000000000000000 [ 150.602308][ T3824] Internal error: Oops: 0000000096000007 [#1] SMP [ 150.630270][ T3824] Modules linked in: [ 150.631929][ T3824] CPU: 0 UID: 0 PID: 3824 Comm: syz.0.138 Not tainted syzkaller #0 PREEMPT [ 150.633160][ T3824] Hardware name: linux,dummy-virt (DT) [ 150.634124][ T3824] pstate: 624020c9 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 150.634943][ T3824] pc : kasan_metadata_fetch_row+0xc/0x28 [ 150.636013][ T3824] lr : print_report+0x29c/0x61c [ 150.636574][ T3824] sp : ffff80008a2e35e0 [ 150.637151][ T3824] x29: ffff80008a2e35e0 x28: f6f000000b65b180 x27: f0ff80008a56d060 [ 150.638691][ T3824] x26: 0000000000000060 x25: ffff800082517dc0 x24: ffff800082517dc8 [ 150.640053][ T3824] x23: ffff80008a575180 x22: ffff8000824e8698 x21: ffff80008a575000 [ 150.640957][ T3824] x20: 00000000fffffffe x19: ffff80008a574f00 x18: 0000000000000010 [ 150.641937][ T3824] x17: 0000000000000000 x16: 0000000000006400 x15: ffff80008a2e3460 [ 150.642470][ T3824] x14: ffff80008a2e365c x13: ffff80008a2e3649 x12: ffff800082adf268 [ 150.643083][ T3824] x11: 0000000000000001 x10: 0000000000000001 x9 : 000000000002ffe8 [ 150.643679][ T3824] x8 : f6f000000b65b180 x7 : 0000000000000010 x6 : ffff800081ce18c0 [ 150.644274][ T3824] x5 : 0000000000000030 x4 : 0000000000000002 x3 : ffff80008a575000 [ 150.644999][ T3824] x2 : ffff80008a574f00 x1 : ffff80008a574f10 x0 : ffff80008a2e3638 [ 150.645817][ T3824] Call trace: [ 150.646430][ T3824] kasan_metadata_fetch_row+0xc/0x28 (P) [ 150.647145][ T3824] kasan_report+0x88/0xac [ 150.648170][ T3824] __do_kernel_fault+0x170/0x1c8 [ 150.649178][ T3824] do_bad_area+0x68/0x78 [ 150.649728][ T3824] do_tag_check_fault+0x34/0x44 [ 150.650474][ T3824] do_mem_abort+0x44/0x94 [ 150.651021][ T3824] el1_abort+0x44/0x68 [ 150.651558][ T3824] el1h_64_sync_handler+0x50/0xac [ 150.651953][ T3824] el1h_64_sync+0x6c/0x70 [ 150.652448][ T3824] __memcpy+0xc/0x54 (P) [ 150.652927][ T3824] convert_ctx_accesses+0x698/0xb2c [ 150.653523][ T3824] bpf_check+0x1374/0x293c [ 150.654057][ T3824] bpf_prog_load+0x63c/0xd40 [ 150.654425][ T3824] __sys_bpf+0x2e0/0x1a88 [ 150.654754][ T3824] __arm64_sys_bpf+0x24/0x34 [ 150.655116][ T3824] invoke_syscall+0x48/0x110 [ 150.655476][ T3824] el0_svc_common.constprop.0+0x40/0xe0 [ 150.655922][ T3824] do_el0_svc+0x1c/0x28 [ 150.656298][ T3824] el0_svc+0x34/0x128 [ 150.656646][ T3824] el0t_64_sync_handler+0xa0/0xe4 [ 150.657229][ T3824] el0t_64_sync+0x1a4/0x1a8 [ 150.657978][ T3824] Code: d65f03c0 91040023 aa0103e2 91004021 (d9600042) [ 150.659140][ T3824] ---[ end trace 0000000000000000 ]--- [ 150.660384][ T3824] Kernel panic - not syncing: Oops: Fatal exception [ 150.661411][ T3824] SMP: stopping secondary CPUs [ 150.662742][ T3824] Kernel Offset: disabled [ 150.663094][ T3824] CPU features: 0x000000,00068cc1,7ef8cf80,957fff3f [ 150.663934][ T3824] Memory Limit: none [ 150.665662][ T3824] Rebooting in 86400 seconds.. VM DIAGNOSIS: 22:00:44 Registers: info registers vcpu 0 CPU#0 PC=ffff80008092e60c X00=ffff800082e15000 X01=0000000000000002 X02=0000000000000000 X03=ffff800082badf28 X04=f9f00000030e5880 X05=0000000000000064 X06=0000000000000020 X07=0000000000000000 X08=7f7f7f7f7f7f7f7f X09=ffff800082badf58 X10=0000000000000001 X11=ffff80008a2e3100 X12=ffff800082adf268 X13=ffff80008a2e2edd X14=ffff80008a2e2ee8 X15=ffff80008a2e2d50 X16=0000000000006400 X17=0000000000000000 X18=00000000ffffffff X19=f1f000000304304a X20=ffff80008092e5c4 X21=f9f00000030e5880 X22=f1f0000003043061 X23=0000000000000000 X24=0000000000000000 X25=00000000000000c0 X26=ffffffffffffffff X27=ffff800082751000 X28=ffffffffffffffff X29=ffff80008a2e3000 X30=ffff80008092e5ec SP=ffff80008a2e3000 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffeaac7880:0000ffffeaac7880 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffeaac7850 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=0000aaaac3547184 X00=0000000000000000 X01=0000aaaaf6cbd7b0 X02=0000aaaaf6cbd7b0 X03=0000000000000000 X04=8080800000000000 X05=0000000000000000 X06=0000000000808080 X07=0032383837303430 X08=0101010101010101 X09=0000000000000028 X10=0000000033713190 X11=0000aaaaf6c73010 X12=000000232aced2dd X13=0000000000002110 X14=0000000000000001 X15=0000000000000038 X16=0000aaaac358da10 X17=0000ffff7f5010c0 X18=0000ffffdf3c18d0 X19=0000aaaaf6c7b0b0 X20=0000000000000000 X21=0000000000000044 X22=0000000000000001 X23=0000000000000000 X24=0000aaaaf6c80700 X25=0000aaaac358e0c0 X26=0000ffffdf3c2600 X27=0000aaaaf6c80700 X28=0000000000000007 X29=0000ffffdf3c24f0 X30=0000aaaac3546d68 SP=0000ffffdf3c2520 PSTATE=60001000 -ZC- EL0t SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 Q00=0000000000000041:0000000000000000 Q01=ffffffffffffff00:ffffffffffffffff Q02=0000000000000000:fffffffeffffffff Q03=ffffffffffff00ff:0000ff000000ff00 Q04=0000000000000000:ffffff0f00f000f0 Q05=bcbcbcc0bcc030fc:bcbcbcc0bcc030fc Q06=0000000000000073:0000aaaaf6c90c90 Q07=0000000000000074:0000aaaaf6c8df70 Q08=0000000000000000:0000000000000000 Q09=0000000000000000:0000000000000000 Q10=0000000000000000:0000000000000000 Q11=0000000000000000:0000000000000000 Q12=0000000000000000:0000000000000000 Q13=0000000000000000:0000000000000000 Q14=0000000000000000:0000000000000000 Q15=0000000000000000:0000000000000000 Q16=0000ffffdf3c2480:0000ffffdf3c2480 Q17=ffffff80ffffffd8:0000ffffdf3c2450 Q18=0000000000000000:0000000000000000 Q19=0000000000000000:0000000000000000 Q20=0000000000000000:0000000000000000 Q21=0000000000000000:0000000000000000 Q22=0000000000000000:0000000000000000 Q23=0000000000000000:0000000000000000 Q24=0000000000000000:0000000000000000 Q25=0000000000000000:0000000000000000 Q26=0000000000000000:0000000000000000 Q27=0000000000000000:0000000000000000 Q28=0000000000000000:0000000000000000 Q29=0000000000000000:0000000000000000 Q30=0000000000000000:0000000000000000 Q31=0000000000000000:0000000000000000