last executing test programs: 21.907064471s ago: executing program 0 (id=245): syz_emit_ethernet(0xbe, &(0x7f0000000140)={@local, @empty, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x1000, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x64010100, @local}, @time_exceeded={0xb, 0x0, 0x0, 0x3, 0x2c, 0x0, {0x25, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x89, 0x0, @private, @local, {[@cipso={0x86, 0x48, 0x0, [{0x0, 0x7, "4b6cefc500"}, {0x0, 0xc, "df61168c24ac88ad078c"}, {0x0, 0xa, "2189ea43a2149b84"}, {0x0, 0xb, "f7d11634eea26b75af"}, {0x0, 0x9, "02a20948fd7406"}, {0x0, 0x11, "ccf0294e2a3bdb4aa40b3a9e8e0c1a"}]}, @lsrr={0x83, 0x13, 0x0, [@dev, @loopback, @loopback, @multicast2]}, @timestamp={0x44, 0x14, 0x0, 0x0, 0x0, [0x0, 0x0, 0x0, 0x0]}, @cipso={0x86, 0xe, 0x0, [{0x0, 0x8, "5e000000ff00"}]}]}}}}}}}, 0x0) 21.76806615s ago: executing program 0 (id=246): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x89b0, &(0x7f0000000180)={'gretap0\x00', &(0x7f0000000200)=@ethtool_link_settings={0x4d, 0xffff4ffb, 0x4, 0x1, 0x1, 0x0, 0x70, 0x8, 0x80, 0x7, [0x83, 0x7, 0x1, 0xfffffff8, 0x57, 0x9, 0x9, 0x2]}}) 21.698376814s ago: executing program 0 (id=247): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 11.638152011s ago: executing program 0 (id=265): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0) write$binfmt_aout(r0, &(0x7f0000000400)=ANY=[], 0xff2e) ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000580)={0x0, 0x0, 0x3, 0x0, 0x1b, "00000000000000000000ffff00"}) r1 = openat$ttyprintk(0xffffff9c, &(0x7f0000000000), 0x240480, 0x0) ioctl$TCSETS(r1, 0x5402, &(0x7f0000000080)={0xfffffffc, 0x1, 0x0, 0xffff7381, 0x14, "e315bc0000b3000000fbffd548e06700000200"}) r2 = syz_open_pts(r0, 0x0) r3 = dup3(r2, r0, 0x0) read$FUSE(r3, &(0x7f0000004640)={0x2020}, 0x2020) read$watch_queue(r3, &(0x7f0000000340)=""/133, 0xc7) 10.067257653s ago: executing program 0 (id=273): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000bc0), r0) sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000006040)={0x14, r1, 0x1}, 0x14}}, 0x20000810) 9.928244642s ago: executing program 0 (id=274): r0 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d000110000000090400"], 0x0) syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000540)={0x44, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) 3.038605872s ago: executing program 1 (id=276): openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x4a242, 0x0) r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) write$binfmt_misc(r0, &(0x7f0000000240), 0xfffffecc) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r3, 0x0, 0x0, 0x0) sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2) recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0) sendmsg$inet(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000000)="5c00000012006bab9e3fe3d86e6c1d000014a1", 0x13}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x44010) ioctl$TCFLSH(r0, 0x540b, 0x0) 447.627011ms ago: executing program 1 (id=277): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="2800000011000b052abd7000fbdbdf2500000000", @ANYRES32=r2], 0x28}, 0x1, 0x0, 0x0, 0x24000004}, 0x20004004) 346.264107ms ago: executing program 1 (id=278): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000280)=@deltclass={0x4c, 0x29, 0x200, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x2, 0xd}, {0x6, 0xd}, {0xffff, 0xb}}, [@tclass_kind_options=@c_fq_codel={0xd}, @TCA_RATE={0x6, 0x5, {0x9, 0xe}}, @tclass_kind_options=@c_red={0x8}, @TCA_RATE={0x6, 0x5, {0x3, 0x7}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x80}, 0x40060) r0 = syz_open_procfs(0x0, &(0x7f0000000040)='oom_score_adj\x00') mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) writev(r0, &(0x7f00000002c0)=[{0x0}], 0x1) 229.601535ms ago: executing program 1 (id=279): sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x20, 0x0, 0x9, 0x401, 0x0, 0x0, {0x5, 0x0, 0x2}, [@NFCTH_POLICY={0xc, 0x4, 0x0, 0x1, {0x8, 0x1, 0x1, 0x0, 0x2}}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x4e045) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl(r0, 0x8b2a, &(0x7f0000000040)) 96.230664ms ago: executing program 1 (id=280): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000010c0)=@base={0x19, 0x4, 0x4, 0xc, 0x0, 0xffffffffffffffff, 0x6}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000004c0)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00', r1}, 0x18) prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) 0s ago: executing program 1 (id=281): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="07000000040000000802000001"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000040000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='percpu_alloc_percpu\x00', r1, 0x0, 0xfffffffffffffffe}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0xd, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000003ff6)='GPL\x00', 0x9, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048000000000081001000000000009500000000000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:58086' (ED25519) to the list of known hosts. syzkaller login: [ 83.319615][ T3314] cgroup: Unknown subsys name 'net' [ 83.572592][ T3314] cgroup: Unknown subsys name 'cpuset' [ 83.596179][ T3314] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 84.061268][ T3314] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 92.702931][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.763967][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 92.910146][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 92.926884][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 93.905450][ T3319] hsr_slave_0: entered promiscuous mode [ 93.910894][ T3319] hsr_slave_1: entered promiscuous mode [ 94.060067][ T3320] hsr_slave_0: entered promiscuous mode [ 94.066180][ T3320] hsr_slave_1: entered promiscuous mode [ 94.070416][ T3320] debugfs: 'hsr0' already exists in 'hsr' [ 94.072219][ T3320] Cannot create hsr debugfs directory [ 94.897083][ T3319] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 94.925906][ T3319] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 94.964218][ T3319] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 95.012742][ T3319] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 95.225541][ T3320] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 95.251500][ T3320] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 95.277807][ T3320] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 95.307088][ T3320] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 96.209772][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 96.426116][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0 [ 99.591694][ T3319] veth0_vlan: entered promiscuous mode [ 99.628565][ T3319] veth1_vlan: entered promiscuous mode [ 99.803156][ T3320] veth0_vlan: entered promiscuous mode [ 99.898693][ T3319] veth0_macvtap: entered promiscuous mode [ 99.915475][ T3320] veth1_vlan: entered promiscuous mode [ 99.938255][ T3319] veth1_macvtap: entered promiscuous mode [ 100.184512][ T40] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.185281][ T40] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.185434][ T40] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.185620][ T40] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.229019][ T3320] veth0_macvtap: entered promiscuous mode [ 100.325014][ T3320] veth1_macvtap: entered promiscuous mode [ 100.595564][ T40] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.596315][ T40] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.596480][ T40] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.596653][ T40] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 100.815856][ T3319] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 102.077978][ T3478] syzkaller0: entered promiscuous mode [ 102.079348][ T3478] syzkaller0: entered allmulticast mode [ 103.883623][ T3488] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7'. [ 103.883960][ T3488] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7'. [ 103.884544][ T3488] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7'. [ 103.885026][ T3488] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7'. [ 105.363086][ T33] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 105.533182][ T33] usb 1-1: Using ep0 maxpacket: 8 [ 105.551135][ T33] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 105.551471][ T33] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 105.557965][ T33] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 105.559550][ T33] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 105.561625][ T33] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 105.561889][ T33] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 105.803448][ T33] usb 1-1: GET_CAPABILITIES returned 0 [ 105.803791][ T33] usbtmc 1-1:16.0: can't read capabilities [ 106.028154][ C0] usbtmc 1-1:16.0: usbtmc_write_bulk_cb - nonzero write bulk status received: -71 [ 106.029341][ T3490] usbtmc 1-1:16.0: Unable to send data, error -71 [ 106.039531][ T3396] usb 1-1: USB disconnect, device number 2 [ 106.738224][ T3502] Zero length message leads to an empty skb [ 107.077646][ T3513] netlink: 'syz.1.15': attribute type 1 has an invalid length. [ 107.217324][ T3516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.17'. [ 107.219739][ T3516] netlink: 66 bytes leftover after parsing attributes in process `syz.0.17'. [ 107.220687][ T3516] netlink: 66 bytes leftover after parsing attributes in process `syz.0.17'. [ 107.438861][ T3518] syzkaller0: entered promiscuous mode [ 107.440428][ T3518] syzkaller0: entered allmulticast mode [ 107.481016][ T3518] syzkaller0: tun_net_xmit 14 [ 109.224686][ T3545] netlink: 'syz.1.31': attribute type 21 has an invalid length. [ 109.867289][ T3555] syzkaller0: entered promiscuous mode [ 109.868161][ T3555] syzkaller0: entered allmulticast mode [ 112.658956][ T3561] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 112.660720][ T3561] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 118.784418][ T3590] binder: 3589:3590 ioctl 4018620d 0 returned -22 [ 118.803614][ T3590] binder: 3589:3590 Acquire 1 refcount change on invalid ref 0 ret -22 [ 119.581228][ T3598] netlink: 24 bytes leftover after parsing attributes in process `syz.1.51'. [ 121.808296][ T3608] netlink: 8 bytes leftover after parsing attributes in process `syz.1.55'. [ 121.809062][ T3608] netlink: 8 bytes leftover after parsing attributes in process `syz.1.55'. [ 126.621143][ T3420] binder: undelivered freeze notification, 0000000000000000 [ 126.813516][ T30] audit: type=1326 audit(126.600:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3629 comm="syz.1.63" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab75c3e8 code=0x7ffc0000 [ 126.821308][ T30] audit: type=1326 audit(126.610:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3629 comm="syz.1.63" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffab75c3e8 code=0x7ffc0000 [ 126.824910][ T30] audit: type=1326 audit(126.620:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3629 comm="syz.1.63" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab75c3e8 code=0x7ffc0000 [ 126.825017][ T30] audit: type=1326 audit(126.620:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3629 comm="syz.1.63" exe="/syz-executor" sig=0 arch=c00000b7 syscall=82 compat=0 ip=0xffffab75c3e8 code=0x7ffc0000 [ 126.827386][ T30] audit: type=1326 audit(126.620:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=3629 comm="syz.1.63" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffab75c3e8 code=0x7ffc0000 [ 140.705767][ T3687] loop2: detected capacity change from 0 to 7 [ 154.604719][ T3735] netlink: 24 bytes leftover after parsing attributes in process `syz.0.93'. [ 155.092677][ T3643] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 155.262662][ T3643] usb 1-1: Using ep0 maxpacket: 8 [ 155.302640][ T3643] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 155.306977][ T3643] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 155.312939][ T3643] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 155.315848][ T3643] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 155.318939][ T3643] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 155.325846][ T3643] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 155.645585][ T3643] usb 1-1: GET_CAPABILITIES returned 0 [ 155.646911][ T3643] usbtmc 1-1:16.0: can't read capabilities [ 155.863955][ T24] usb 1-1: USB disconnect, device number 3 [ 157.030123][ T3758] syzkaller0: entered promiscuous mode [ 157.030366][ T3758] syzkaller0: entered allmulticast mode [ 158.303470][ T3779] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 159.527844][ T3787] syzkaller0: entered promiscuous mode [ 159.528185][ T3787] syzkaller0: entered allmulticast mode [ 161.548683][ T3807] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.550147][ T3807] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 162.903094][ T24] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 163.063372][ T24] usb 1-1: Using ep0 maxpacket: 8 [ 163.078199][ T24] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 163.078583][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 163.080099][ T24] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 163.080199][ T24] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 163.080398][ T24] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 163.080508][ T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 163.318634][ T24] usb 1-1: GET_CAPABILITIES returned 0 [ 163.319038][ T24] usbtmc 1-1:16.0: can't read capabilities [ 163.522895][ T10] usb 1-1: USB disconnect, device number 4 [ 166.048066][ T3840] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 166.433152][ T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 166.583003][ T9] usb 1-1: Using ep0 maxpacket: 32 [ 166.606382][ T9] usb 1-1: config 155 has an invalid descriptor of length 0, skipping remainder of the config [ 166.609089][ T9] usb 1-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82 [ 166.616140][ T9] usb 1-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 166.619737][ T9] usb 1-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 166.647788][ T9] usb 1-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 166.650066][ T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 166.656408][ T9] usb 1-1: Product: syz [ 166.657599][ T9] usb 1-1: Manufacturer: syz [ 166.658514][ T9] usb 1-1: SerialNumber: syz [ 169.558411][ T3853] netlink: 12 bytes leftover after parsing attributes in process `syz.1.141'. [ 169.689057][ T3855] netlink: 12 bytes leftover after parsing attributes in process `syz.1.142'. [ 169.786979][ T3855] 8021q: adding VLAN 0 to HW filter on device bond1 [ 169.801212][ T3855] netlink: 28 bytes leftover after parsing attributes in process `syz.1.142'. [ 169.801647][ T3855] bond1: entered promiscuous mode [ 169.806098][ T3855] bond1: entered allmulticast mode [ 169.844892][ T3855] dummy0: entered promiscuous mode [ 169.845976][ T3855] dummy0: entered allmulticast mode [ 169.848766][ T3855] bond1: (slave dummy0): Enslaving as an active interface with an up link [ 170.701667][ T3869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 170.709032][ T3869] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 173.766522][ T3881] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 173.769211][ T3881] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 176.958535][ T3396] usb 1-1: USB disconnect, device number 5 [ 177.423014][ T3396] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 177.583162][ T3396] usb 1-1: Using ep0 maxpacket: 8 [ 177.643119][ T3396] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 177.645043][ T3396] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 177.646383][ T3396] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 177.647967][ T3396] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 177.649836][ T3396] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 177.657188][ T3396] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.918243][ T3396] usb 1-1: GET_CAPABILITIES returned 0 [ 177.918541][ T3396] usbtmc 1-1:16.0: can't read capabilities [ 178.194453][ T3681] usb 1-1: USB disconnect, device number 6 [ 178.464180][ T3897] netlink: 14 bytes leftover after parsing attributes in process `syz.1.157'. [ 180.974082][ T3681] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 181.123872][ T3681] usb 1-1: Using ep0 maxpacket: 8 [ 181.138114][ T3681] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 181.140415][ T3681] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 181.145242][ T3681] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 181.148653][ T3681] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 181.152775][ T3681] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 181.155596][ T3681] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 181.381467][ T3681] usb 1-1: GET_CAPABILITIES returned 0 [ 181.383172][ T3681] usbtmc 1-1:16.0: can't read capabilities [ 181.586889][ T9] usb 1-1: USB disconnect, device number 7 [ 186.111925][ T3923] input: syz0 as /devices/virtual/input/input1 [ 190.643210][ T3961] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 190.646647][ T3961] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 191.179592][ T3962] netlink: 14 bytes leftover after parsing attributes in process `syz.0.178'. [ 202.283465][ T3983] capability: warning: `syz.1.186' uses deprecated v2 capabilities in a way that may be insecure [ 202.373288][ T3985] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 202.375058][ T3985] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 202.380412][ T33] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 202.518086][ T33] usb 1-1: device descriptor read/64, error -71 [ 202.753120][ T33] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 202.913071][ T33] usb 1-1: device descriptor read/64, error -71 [ 203.034179][ T33] usb usb1-port1: attempt power cycle [ 203.413010][ T33] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 203.447396][ T33] usb 1-1: device descriptor read/8, error -71 [ 203.713648][ T33] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 203.738750][ T33] usb 1-1: device descriptor read/8, error -71 [ 203.854595][ T33] usb usb1-port1: unable to enumerate USB device [ 207.820493][ T4012] Invalid option length (1040764) for dns_resolver key [ 209.623541][ T30] audit: type=1326 audit(209.420:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.632720][ T30] audit: type=1326 audit(209.420:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.635377][ T30] audit: type=1326 audit(209.420:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.636276][ T30] audit: type=1326 audit(209.420:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.636459][ T30] audit: type=1326 audit(209.420:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.636666][ T30] audit: type=1326 audit(209.420:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.636825][ T30] audit: type=1326 audit(209.420:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.636975][ T30] audit: type=1326 audit(209.420:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.637131][ T30] audit: type=1326 audit(209.420:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.637307][ T30] audit: type=1326 audit(209.420:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=4015 comm="syz.1.199" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffac6c48f8 code=0x7ffc0000 [ 209.810849][ T4018] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 209.823864][ T4018] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 209.951148][ T4020] input: syz1 as /devices/virtual/input/input2 [ 211.410577][ T4042] input: syz1 as /devices/virtual/input/input3 [ 212.852825][ T33] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 212.983090][ T33] usb 1-1: device descriptor read/64, error -71 [ 213.243014][ T33] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 213.382893][ T33] usb 1-1: device descriptor read/64, error -71 [ 213.498528][ T33] usb usb1-port1: attempt power cycle [ 213.842824][ T33] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 213.866755][ T33] usb 1-1: device descriptor read/8, error -71 [ 214.112872][ T33] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 214.155204][ T33] usb 1-1: device descriptor read/8, error -71 [ 214.264426][ T33] usb usb1-port1: unable to enumerate USB device [ 219.409557][ T4078] tmpfs: Bad value for 'usrquota_block_hardlimit' [ 223.434629][ T4102] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 223.438410][ T4102] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 225.248258][ T4114] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 225.270526][ T4114] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 226.842984][ T9] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 227.016665][ T9] usb 1-1: too many configurations: 9, using maximum allowed: 8 [ 227.029799][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.030227][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.033864][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.051852][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.052687][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.052779][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.069278][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.069673][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.071362][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.100339][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.100910][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.103173][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.115964][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.116243][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.117548][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.126189][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.126451][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.127319][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.136767][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.137120][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.137427][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.146696][ T9] usb 1-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 227.147103][ T9] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 227.147609][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 227.176088][ T9] usb 1-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 227.176434][ T9] usb 1-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 227.176770][ T9] usb 1-1: Product: syz [ 227.176914][ T9] usb 1-1: Manufacturer: syz [ 227.177019][ T9] usb 1-1: SerialNumber: syz [ 227.189552][ T9] usb 1-1: config 0 descriptor?? [ 227.228204][ T9] yurex 1-1:0.0: USB YUREX device now attached to Yurex #0 [ 228.108418][ T4117] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 228.111840][ T4117] block device autoloading is deprecated and will be removed. [ 228.420418][ T4126] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 228.437635][ T4126] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 229.474420][ C0] usb 1-1: yurex_control_callback - control failed: -2 [ 229.486499][ T10] usb 1-1: USB disconnect, device number 16 [ 229.497647][ T10] yurex 1-1:0.0: USB YUREX #0 now disconnected [ 229.876278][ T4140] netlink: 4 bytes leftover after parsing attributes in process `syz.1.244'. [ 230.033968][ T33] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 230.183524][ T33] usb 1-1: device descriptor read/64, error -71 [ 230.424065][ T33] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 230.592898][ T33] usb 1-1: device descriptor read/64, error -71 [ 230.718885][ T33] usb usb1-port1: attempt power cycle [ 231.092734][ T33] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 231.122691][ T33] usb 1-1: device descriptor read/8, error -71 [ 231.382713][ T33] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 231.420939][ T33] usb 1-1: device descriptor read/8, error -71 [ 231.535800][ T33] usb usb1-port1: unable to enumerate USB device [ 233.348764][ T4154] CUSE: unknown device info "ÿ" [ 233.349115][ T4154] CUSE: unknown device info "" [ 233.351827][ T4154] CUSE: DEVNAME unspecified [ 233.668441][ T4160] mmap: syz.1.256 (4160) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 236.401262][ T4165] Illegal XDP return value 4294967274 on prog (id 3) dev syz_tun, expect packet loss! [ 237.077406][ T4173] Invalid ELF header magic: != ELF [ 237.935075][ T4180] process 'syz.1.264' launched '/dev/fd/9' with NULL argv: empty string added [ 240.679003][ T4191] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 240.680394][ T4191] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 241.833111][ T3396] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 241.993120][ T3396] usb 1-1: Using ep0 maxpacket: 8 [ 242.015435][ T3396] usb 1-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 242.016167][ T3396] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 242.016262][ T3396] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.064800][ T4213] netlink: 8 bytes leftover after parsing attributes in process `syz.1.277'. [ 251.510524][ T4221] ================================================================== [ 251.514627][ T4221] BUG: KASAN: invalid-access in __memcpy+0xc/0x54 [ 251.516925][ T4221] Write at addr f3ff800089fc51df by task syz.1.281/4221 [ 251.517418][ T4221] Pointer tag: [f3], memory tag: [fe] [ 251.517505][ T4221] [ 251.518488][ T4221] CPU: 1 UID: 0 PID: 4221 Comm: syz.1.281 Tainted: G L syzkaller #0 PREEMPT [ 251.518983][ T4221] Tainted: [L]=SOFTLOCKUP [ 251.519047][ T4221] Hardware name: linux,dummy-virt (DT) [ 251.519360][ T4221] Call trace: [ 251.519707][ T4221] show_stack+0x18/0x24 (C) [ 251.520039][ T4221] dump_stack_lvl+0x78/0x90 [ 251.520154][ T4221] print_report+0x108/0x61c [ 251.520215][ T4221] kasan_report+0x88/0xac [ 251.520276][ T4221] __do_kernel_fault+0x170/0x1c8 [ 251.520331][ T4221] do_bad_area+0x68/0x78 [ 251.520381][ T4221] do_tag_check_fault+0x34/0x44 [ 251.520470][ T4221] do_mem_abort+0x44/0x94 [ 251.520521][ T4221] el1_abort+0x44/0x68 [ 251.520572][ T4221] el1h_64_sync_handler+0x50/0xac [ 251.520657][ T4221] el1h_64_sync+0x6c/0x70 [ 251.520819][ T4221] __memcpy+0xc/0x54 (P) [ 251.520876][ T4221] convert_ctx_accesses+0x698/0xb2c [ 251.520930][ T4221] bpf_check+0x1374/0x293c [ 251.520981][ T4221] bpf_prog_load+0x63c/0xd40 [ 251.521032][ T4221] __sys_bpf+0x2e0/0x1a88 [ 251.521079][ T4221] __arm64_sys_bpf+0x24/0x34 [ 251.521124][ T4221] invoke_syscall+0x48/0x110 [ 251.521175][ T4221] el0_svc_common.constprop.0+0x40/0xe0 [ 251.521226][ T4221] do_el0_svc+0x1c/0x28 [ 251.521285][ T4221] el0_svc+0x34/0x128 [ 251.521334][ T4221] el0t_64_sync_handler+0xa0/0xe4 [ 251.521383][ T4221] el0t_64_sync+0x1a4/0x1a8 [ 251.521656][ T4221] [ 251.522051][ T4221] The buggy address belongs to a 1-page vmalloc region starting at 0xf3ff800089fc5000 allocated at bpf_check+0x8c/0x293c [ 251.523698][ T4221] The buggy address belongs to the physical page: [ 251.524083][ T4221] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xfaf0000000000000 pfn:0x4b7e3 [ 251.524475][ T4221] flags: 0x1fff00000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0xc) [ 251.525506][ T4221] raw: 01fff00000000000 0000000000000000 dead000000000122 0000000000000000 [ 251.525569][ T4221] raw: faf0000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 251.525715][ T4221] page dumped because: kasan: bad access detected [ 251.525766][ T4221] [ 251.525804][ T4221] Memory state around the buggy address: [ 251.526277][ T4221] Unable to handle kernel paging request at virtual address ffff800089fc4f00 [ 251.526395][ T4221] Mem abort info: [ 251.526435][ T4221] ESR = 0x0000000096000007 [ 251.526514][ T4221] EC = 0x25: DABT (current EL), IL = 32 bits [ 251.526576][ T4221] SET = 0, FnV = 0 [ 251.526625][ T4221] EA = 0, S1PTW = 0 [ 251.526675][ T4221] FSC = 0x07: level 3 translation fault [ 251.526733][ T4221] Data abort info: [ 251.526775][ T4221] ISV = 0, ISS = 0x00000007, ISS2 = 0x00000000 [ 251.526825][ T4221] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 251.526878][ T4221] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 SYZFAIL: failed to recv rpc [ 251.527045][ T4221] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000042a58000 [ 251.527120][ T4221] [ffff800089fc4f00] pgd=1000000042fcc003, p4d=1000000042fcd003, pud=1000000042fce003, pmd=100000004d19e403, pte=0000000000000000 [ 251.528780][ T4221] Internal error: Oops: 0000000096000007 [#1] SMP [ 251.556189][ T4221] Modules linked in: [ 251.557242][ T4221] CPU: 1 UID: 0 PID: 4221 Comm: syz.1.281 Tainted: G L syzkaller #0 PREEMPT [ 251.557906][ T4221] Tainted: [L]=SOFTLOCKUP [ 251.558297][ T4221] Hardware name: linux,dummy-virt (DT) [ 251.559427][ T4221] pstate: 624020c9 (nZCv daIF +PAN -UAO +TCO -DIT -SSBS BTYPE=--) [ 251.560317][ T4221] pc : kasan_metadata_fetch_row+0xc/0x28 [ 251.561955][ T4221] lr : print_report+0x29c/0x61c [ 251.562435][ T4221] sp : ffff8000897135e0 [ 251.562727][ T4221] x29: ffff8000897135e0 x28: f5f00000068f2100 x27: f5ff800089fc7060 [ 251.563533][ T4221] x26: 0000000000000060 x25: ffff800082517f10 x24: ffff800082517f18 [ 251.564097][ T4221] x23: ffff800089fc51df x22: ffff8000824e87f0 x21: ffff800089fc5000 [ 251.564750][ T4221] x20: 00000000fffffffe x19: ffff800089fc4f00 x18: 0000000000000010 [ 251.565387][ T4221] x17: 0000000000000000 x16: 0000000000000001 x15: ffff800089713460 [ 251.566040][ T4221] x14: ffff80008971365c x13: ffff800089713649 x12: ffff800082adf268 [ 251.566575][ T4221] x11: 0000000000000001 x10: 0000000000000001 x9 : 000000000002ffe8 [ 251.567324][ T4221] x8 : f5f00000068f2100 x7 : 0000000000000010 x6 : ffff800081ce18c0 [ 251.567884][ T4221] x5 : 0000000000000030 x4 : 0000000000000002 x3 : ffff800089fc5000 [ 251.568443][ T4221] x2 : ffff800089fc4f00 x1 : ffff800089fc4f10 x0 : ffff800089713638 [ 251.569245][ T4221] Call trace: [ 251.569829][ T4221] kasan_metadata_fetch_row+0xc/0x28 (P) [ 251.570568][ T4221] kasan_report+0x88/0xac [ 251.570943][ T4221] __do_kernel_fault+0x170/0x1c8 [ 251.571318][ T4221] do_bad_area+0x68/0x78 [ 251.571645][ T4221] do_tag_check_fault+0x34/0x44 [ 251.571988][ T4221] do_mem_abort+0x44/0x94 [ 251.572407][ T4221] el1_abort+0x44/0x68 [ 251.572798][ T4221] el1h_64_sync_handler+0x50/0xac [ 251.573178][ T4221] el1h_64_sync+0x6c/0x70 [ 251.573614][ T4221] __memcpy+0xc/0x54 (P) [ 251.573971][ T4221] convert_ctx_accesses+0x698/0xb2c [ 251.574510][ T4221] bpf_check+0x1374/0x293c [ 251.575058][ T4221] bpf_prog_load+0x63c/0xd40 [ 251.575509][ T4221] __sys_bpf+0x2e0/0x1a88 [ 251.575855][ T4221] __arm64_sys_bpf+0x24/0x34 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 251.576170][ T4221] invoke_syscall+0x48/0x110 [ 251.577046][ T4221] el0_svc_common.constprop.0+0x40/0xe0 [ 251.577450][ T4221] do_el0_svc+0x1c/0x28 [ 251.577760][ T4221] el0_svc+0x34/0x128 [ 251.578135][ T4221] el0t_64_sync_handler+0xa0/0xe4 [ 251.578507][ T4221] el0t_64_sync+0x1a4/0x1a8 [ 251.579220][ T4221] Code: d65f03c0 91040023 aa0103e2 91004021 (d9600042) [ 251.580278][ T4221] ---[ end trace 0000000000000000 ]--- [ 251.581461][ T4221] Kernel panic - not syncing: Oops: Fatal exception [ 251.582361][ T4221] SMP: stopping secondary CPUs [ 251.583738][ T4221] Kernel Offset: disabled [ 251.584073][ T4221] CPU features: 0x000000,00068cc1,7ef8cf80,957fff3f [ 251.584787][ T4221] Memory Limit: none [ 251.585809][ T4221] Rebooting in 86400 seconds.. VM DIAGNOSIS: 10:44:49 Registers: info registers vcpu 0 CPU#0 PC=ffff800081b8787c X00=ffff800081b87878 X01=faf000000b0e6300 X02=0000000000000000 X03=0000000000000079 X04=000000000000b6b6 X05=000000000056dc26 X06=00000000004bc573 X07=f7f0000006a86e00 X08=f7f0000006a86e80 X09=0000000000000000 X10=0000000000000038 X11=0000000000000000 X12=000000000000001b X13=0000000000000000 X14=0000000000000038 X15=ffff800081bd4430 X16=ffff800082de8000 X17=fff07ffffcef4000 X18=0000000000000001 X19=0000000000000000 X20=ffff800082b11908 X21=ffff800082b11900 X22=0000000000100009 X23=0000000000000004 X24=ffff800082b11908 X25=0000000000000028 X26=0000000000000000 X27=ffff8000829dfa80 X28=ffff800082a04000 X29=ffff800082deb450 X30=ffff800080187f58 SP=ffff800082deb450 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:2525252525252525:2525252525252525 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0a73253d73253a45:00000a756c253a49 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000000f0000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ff0000ff0000:ffff000000ff0000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00f00f00ff000f00 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000000cccccc00 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000073:0000aaab1a2bdc90 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000074:0000aaab1a2baf70 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000fffff1e7cc40:0000fffff1e7cc40 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000fffff1e7cc10 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff8000809305b4 X00=ffff800082e15000 X01=0000000000000002 X02=0000000000000000 X03=ffff800082badf28 X04=fdf00000030e5880 X05=0000000000000020 X06=0000000000000020 X07=0000000000000000 X08=7f7f7f7f7f7f7f7f X09=ffff800082badf58 X10=0000000000000001 X11=ffff800089713100 X12=ffff800082adf268 X13=ffff800089712edd X14=ffff800089712ee8 X15=ffff800089712d50 X16=0000000000000001 X17=0000000000000000 X18=00000000ffffffff X19=f5f0000003043025 X20=ffff80008093056c X21=fdf00000030e5880 X22=f5f0000003043073 X23=0000000000000000 X24=0000000000000000 X25=00000000000000c0 X26=ffffffffffffffff X27=ffff800082751000 X28=ffffffffffffffff X29=ffff800089713000 X30=ffff800080930594 SP=ffff800089713000 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00524f5252450040:0000000000000000 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:6edc4d3a2914b135:d8e9c869e2695c88 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffcd874760:0000ffffcd874760 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffcd874730 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000