./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor123101883 <...> Warning: Permanently added '10.128.0.91' (ED25519) to the list of known hosts. execve("./syz-executor123101883", ["./syz-executor123101883"], 0x7ffc3abf7e80 /* 10 vars */) = 0 brk(NULL) = 0x555583c4f000 brk(0x555583c4fd00) = 0x555583c4fd00 arch_prctl(ARCH_SET_FS, 0x555583c4f380) = 0 set_tid_address(0x555583c4f650) = 5828 set_robust_list(0x555583c4f660, 24) = 0 rseq(0x555583c4fca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor123101883", 4096) = 27 getrandom("\xa4\xdb\x3c\x1d\x19\x36\xf1\xc0", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555583c4fd00 brk(0x555583c70d00) = 0x555583c70d00 brk(0x555583c71000) = 0x555583c71000 mprotect(0x7f298ff9b000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5829 attached [pid 5829] set_robust_list(0x555583c4f660, 24 [pid 5828] <... clone resumed>, child_tidptr=0x555583c4f650) = 5829 [pid 5829] <... set_robust_list resumed>) = 0 [pid 5829] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5829] getppid() = 0 [pid 5829] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5829] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5829] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5829] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5829] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5829] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5829] unshare(CLONE_NEWNS) = 0 [pid 5829] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5829] unshare(CLONE_NEWIPC) = 0 [pid 5829] unshare(CLONE_NEWCGROUP) = 0 [pid 5829] unshare(CLONE_NEWUTS) = 0 [pid 5829] unshare(CLONE_SYSVSEM) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "16777216", 8) = 8 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "536870912", 9) = 9 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "1024", 4) = 4 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "8192", 4) = 4 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "1024", 4) = 4 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "1024", 4) = 4 [pid 5829] close(3) = 0 [pid 5829] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5829] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5829] close(3) = 0 [pid 5829] getpid() = 1 [pid 5829] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< 12]) = 0 [pid 5839] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x58\x00\x00\x00\x24\x00\x0b\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00\x00\xf1\xff\x08\x00\x01\x00\x73\x66\x62\x00\x2c\x00\x02\x00\x28\x00\x01\x00\xa3\x01\x00\x00\x5c\x65\x00\x00\x04\x00\x00\x00\x40\x00\x00\x00\xff\xff\xff\x7f\xff\xff\xff\x7f\x80\x00\x00\x00\xff\xff\xff\xff\x01\x00\x00\x00", iov_len=88}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor) [pid 5839] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base=NULL, iov_len=0}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, 0) = -1 EBADF (Bad file descriptor) [pid 5839] sendmsg(3, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x64\x58\x01\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, MSG_NOSIGNAL) = -1 EINVAL (Invalid argument) [pid 5839] socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 4 [pid 5839] sendmsg(-1, {msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=32}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_NOSIGNAL}, MSG_DONTROUTE) = -1 EBADF (Bad file descriptor) [pid 5839] sendmmsg(4, [{msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x58\x00\x00\x00\x24\x00\x0b\x0f\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\xff\xff\xff\xff\x00\x00\xf1\xff\x08\x00\x01\x00\x73\x66\x62\x00\x2c\x00\x02\x00\x28\x00\x01\x00\xa3\x01\x00\x00\x5c\x65\x00\x00\x04\x00\x00\x00\x40\x00\x00\x00\xff\xff\xff\x7f\xff\xff\xff\x7f\x80\x00\x00\x00\xff\xff\xff\xff\x01\x00\x00\x00", iov_len=88}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=88}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x20\x00\x00\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=68}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x44\x00\x00\x00\x2c\x00\x27\x0d\x2d\xbd\x70\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x0e\x00\x00\x00\x00\x00\x00\x00\x08\x00\xe0\xff\x09\x00\x01\x00\x66\x6c\x6f\x77\x00\x00\x00\x00\x14\x00\x02\x00\x08\x00\x04\x00\xe5\x24\x00\x00\x08\x00\x01\x00\x20\x00\x00\x00", iov_len=68}], msg_iovlen=1, msg_controllen=0, msg_flags=0}, msg_len=68}, {msg_hdr={msg_name=0xd27002c00000044, msg_namelen=7388461, msg_iov=0x100000000, msg_iovlen=14, msg_control=0x10009ffe00008, msg_controllen=2003790950, msg_flags=MSG_DONTROUTE|MSG_PROBE|MSG_SENDPAGE_NOTLAST}}, {msg_hdr={msg_name=0x20, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name={sa_family=AF_IUCV, sa_data="\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"}, msg_namelen=32, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=[{iov_base="\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00", iov_len=32}], msg_iovlen=1, msg_controllen=0, msg_flags=MSG_PROBE|MSG_NOSIGNAL}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=0xc, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, {msg_hdr={msg_name=NULL, msg_namelen=0, msg_iov=NULL, msg_iovlen=0, msg_controllen=0, msg_flags=0}}, ...], 159, 0) = 3 [pid 5839] close(3) = 0 [pid 5839] close(4) = 0 [pid 5839] close(5) = -1 EBADF (Bad file descriptor) [pid 5839] close(6) = -1 EBADF (Bad file descriptor) [pid 5839] close(7) = -1 EBADF (Bad file descriptor) [ 87.541681][ T54] ------------[ cut here ]------------ [ 87.547382][ T54] UBSAN: shift-out-of-bounds in net/sched/cls_flow.c:329:23 [ 87.554784][ T54] shift exponent 9445 is too large for 32-bit type 'u32' (aka 'unsigned int') [ 87.563744][ T54] CPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0 [ 87.574473][ T54] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 87.584555][ T54] Workqueue: ipv6_addrconf addrconf_dad_work [ 87.590605][ T54] Call Trace: [ 87.593899][ T54] [ 87.596843][ T54] dump_stack_lvl+0x241/0x360 [ 87.601581][ T54] ? __pfx_dump_stack_lvl+0x10/0x10 [ 87.606805][ T54] ? __pfx__printk+0x10/0x10 [ 87.611426][ T54] ? lockdep_unlock+0x16a/0x300 [ 87.616307][ T54] __ubsan_handle_shift_out_of_bounds+0x3c8/0x420 [ 87.622838][ T54] ? rcu_read_lock_bh_held+0x7e/0x120 [ 87.628244][ T54] flow_classify+0x24d5/0x25b0 [ 87.633049][ T54] ? __pfx_flow_classify+0x10/0x10 [ 87.638182][ T54] ? lockdep_unlock+0x16a/0x300 [ 87.643073][ T54] ? rcu_lockdep_current_cpu_online+0x37/0x120 [ 87.649248][ T54] tcf_classify+0x420/0x1160 [ 87.653870][ T54] sfb_enqueue+0x3ad/0x18b0 [ 87.658406][ T54] ? do_raw_spin_lock+0x14f/0x370 [ 87.663444][ T54] ? __pfx_sfb_enqueue+0x10/0x10 [ 87.668454][ T54] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 87.673847][ T54] dev_qdisc_enqueue+0x4b/0x290 [ 87.678751][ T54] __dev_queue_xmit+0xf0e/0x3f50 [ 87.683824][ T54] ? __dev_queue_xmit+0x2f4/0x3f50 [ 87.688966][ T54] ? __pfx___dev_queue_xmit+0x10/0x10 [ 87.694377][ T54] ? mark_lock+0x9a/0x360 [ 87.698739][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.704753][ T54] ? ip_finish_output2+0xa14/0x1390 [ 87.709974][ T54] ? ip_finish_output2+0x45f/0x1390 [ 87.715208][ T54] ip_finish_output2+0xd41/0x1390 [ 87.720870][ T54] ? ip_finish_output2+0x45f/0x1390 [ 87.726084][ T54] ? __pfx_ip_finish_output+0x10/0x10 [ 87.731475][ T54] ? __pfx_ip_finish_output2+0x10/0x10 [ 87.736981][ T54] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 87.741852][ T54] ? __ip_finish_output+0x349/0x400 [ 87.747077][ T54] iptunnel_xmit+0x55d/0x9b0 [ 87.751702][ T54] udp_tunnel_xmit_skb+0x262/0x3b0 [ 87.756944][ T54] geneve_xmit+0x21dc/0x2d00 [ 87.761578][ T54] ? validate_xmit_xfrm+0xc1/0x1270 [ 87.766799][ T54] ? geneve_xmit+0x13a/0x2d00 [ 87.771544][ T54] ? __pfx_geneve_xmit+0x10/0x10 [ 87.776509][ T54] ? netif_skb_features+0x8b6/0xc90 [ 87.781739][ T54] ? validate_xmit_skb+0x9b8/0xff0 [ 87.786874][ T54] dev_hard_start_xmit+0x27a/0x7d0 [ 87.792023][ T54] __dev_queue_xmit+0x1b73/0x3f50 [ 87.797081][ T54] ? __dev_queue_xmit+0x2f4/0x3f50 [ 87.802214][ T54] ? __pfx___dev_queue_xmit+0x10/0x10 [ 87.807627][ T54] ? mark_lock+0x9a/0x360 [ 87.811978][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 87.818064][ T54] ? __ipv6_neigh_lookup_noref+0x4e1/0x680 [ 87.823916][ T54] ? ip6_finish_output2+0x107f/0x17b0 [ 87.829307][ T54] ? ip6_finish_output2+0x63a/0x17b0 [ 87.834608][ T54] ip6_finish_output2+0x1284/0x17b0 [ 87.839833][ T54] ? ip6_finish_output2+0x63a/0x17b0 [ 87.845140][ T54] ? __pfx_ip6_finish_output2+0x10/0x10 [ 87.850729][ T54] ? ip6_mtu+0x81/0x3f0 [ 87.854920][ T54] ip6_finish_output+0x41e/0x840 [ 87.859910][ T54] NF_HOOK+0x9e/0x430 [ 87.863909][ T54] ? icmp6_dst_alloc+0x3aa/0x420 [ 87.868861][ T54] ? __pfx_NF_HOOK+0x10/0x10 [ 87.873471][ T54] ? icmp6_dst_alloc+0x2bf/0x420 [ 87.878424][ T54] ? icmp6_dst_alloc+0x3aa/0x420 [ 87.883379][ T54] mld_sendpack+0x843/0xdb0 [ 87.887916][ T54] ? mld_sendpack+0x1e8/0xdb0 [ 87.892606][ T54] ? __pfx_mld_sendpack+0x10/0x10 [ 87.897669][ T54] ipv6_mc_dad_complete+0x88/0x490 [ 87.902902][ T54] addrconf_dad_completed+0x712/0xcd0 [ 87.908292][ T54] ? __pfx_addrconf_dad_completed+0x10/0x10 [ 87.914314][ T54] ? addrconf_dad_work+0x58a/0x16f0 [ 87.919569][ T54] addrconf_dad_work+0xdc2/0x16f0 [ 87.924632][ T54] ? __pfx_addrconf_dad_work+0x10/0x10 [ 87.930117][ T54] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 87.936476][ T54] ? process_scheduled_works+0x976/0x1840 [ 87.942210][ T54] process_scheduled_works+0xa66/0x1840 [ 87.947794][ T54] ? __pfx_process_scheduled_works+0x10/0x10 [ 87.953806][ T54] ? assign_work+0x364/0x3d0 [ 87.958415][ T54] worker_thread+0x870/0xd30 [ 87.963031][ T54] ? __kthread_parkme+0x169/0x1d0 [ 87.968071][ T54] ? __pfx_worker_thread+0x10/0x10 [ 87.973194][ T54] kthread+0x2f0/0x390 [ 87.977287][ T54] ? __pfx_worker_thread+0x10/0x10 [ 87.982409][ T54] ? __pfx_kthread+0x10/0x10 [ 87.987020][ T54] ret_from_fork+0x4b/0x80 [pid 5839] close(8) = -1 EBADF (Bad file descriptor) [pid 5839] close(9) = -1 EBADF (Bad file descriptor) [pid 5839] close(10) = -1 EBADF (Bad file descriptor) [pid 5839] close(11) = -1 EBADF (Bad file descriptor) [pid 5839] close(12) = -1 EBADF (Bad file descriptor) [pid 5839] close(13) = -1 EBADF (Bad file descriptor) [pid 5839] close(14) = -1 EBADF (Bad file descriptor) [pid 5839] close(15) = -1 EBADF (Bad file descriptor) [pid 5839] close(16) = -1 EBADF (Bad file descriptor) [pid 5839] close(17) = -1 EBADF (Bad file descriptor) [pid 5839] close(18) = -1 EBADF (Bad file descriptor) [pid 5839] close(19) = -1 EBADF (Bad file descriptor) [pid 5839] close(20) = -1 EBADF (Bad file descriptor) [pid 5839] close(21) = -1 EBADF (Bad file descriptor) [pid 5839] close(22) = -1 EBADF (Bad file descriptor) [pid 5839] close(23) = -1 EBADF (Bad file descriptor) [pid 5839] close(24) = -1 EBADF (Bad file descriptor) [pid 5839] close(25) = -1 EBADF (Bad file descriptor) [pid 5839] close(26) = -1 EBADF (Bad file descriptor) [ 87.991451][ T54] ? __pfx_kthread+0x10/0x10 [ 87.996058][ T54] ret_from_fork_asm+0x1a/0x30 [ 88.000847][ T54] [ 88.003986][ T54] ---[ end trace ]--- [ 88.008006][ T54] Kernel panic - not syncing: UBSAN: panic_on_warn set ... [ 88.015263][ T54] CPU: 1 UID: 0 PID: 54 Comm: kworker/u8:3 Not tainted 6.13.0-rc3-syzkaller-00180-g4f619d518db9 #0 [ 88.025962][ T54] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 88.036031][ T54] Workqueue: ipv6_addrconf addrconf_dad_work [ 88.042045][ T54] Call Trace: [ 88.045336][ T54] [ 88.048278][ T54] dump_stack_lvl+0x241/0x360 [ 88.052994][ T54] ? __pfx_dump_stack_lvl+0x10/0x10 [ 88.058232][ T54] ? __pfx__printk+0x10/0x10 [ 88.062840][ T54] ? lockdep_hardirqs_on+0x99/0x150 [ 88.068082][ T54] ? vscnprintf+0x5d/0x90 [ 88.072431][ T54] panic+0x349/0x880 [ 88.076347][ T54] ? check_panic_on_warn+0x21/0xb0 [ 88.081489][ T54] ? __pfx_panic+0x10/0x10 [ 88.085939][ T54] ? _printk+0xd5/0x120 [ 88.090112][ T54] ? __pfx__printk+0x10/0x10 [ 88.094715][ T54] ? lockdep_unlock+0x16a/0x300 [ 88.099586][ T54] check_panic_on_warn+0x86/0xb0 [ 88.104548][ T54] __ubsan_handle_shift_out_of_bounds+0x3e7/0x420 [ 88.110990][ T54] ? rcu_read_lock_bh_held+0x7e/0x120 [ 88.116396][ T54] flow_classify+0x24d5/0x25b0 [ 88.121294][ T54] ? __pfx_flow_classify+0x10/0x10 [ 88.126417][ T54] ? lockdep_unlock+0x16a/0x300 [ 88.131307][ T54] ? rcu_lockdep_current_cpu_online+0x37/0x120 [ 88.137585][ T54] tcf_classify+0x420/0x1160 [ 88.142206][ T54] sfb_enqueue+0x3ad/0x18b0 [ 88.146739][ T54] ? do_raw_spin_lock+0x14f/0x370 [ 88.151773][ T54] ? __pfx_sfb_enqueue+0x10/0x10 [ 88.156727][ T54] ? __pfx_do_raw_spin_lock+0x10/0x10 [ 88.162113][ T54] dev_qdisc_enqueue+0x4b/0x290 [ 88.166990][ T54] __dev_queue_xmit+0xf0e/0x3f50 [ 88.171963][ T54] ? __dev_queue_xmit+0x2f4/0x3f50 [ 88.177096][ T54] ? __pfx___dev_queue_xmit+0x10/0x10 [ 88.182505][ T54] ? mark_lock+0x9a/0x360 [ 88.186855][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 88.192856][ T54] ? ip_finish_output2+0xa14/0x1390 [ 88.198073][ T54] ? ip_finish_output2+0x45f/0x1390 [ 88.203300][ T54] ip_finish_output2+0xd41/0x1390 [ 88.208350][ T54] ? ip_finish_output2+0x45f/0x1390 [ 88.213591][ T54] ? __pfx_ip_finish_output+0x10/0x10 [ 88.218980][ T54] ? __pfx_ip_finish_output2+0x10/0x10 [ 88.224496][ T54] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 88.229368][ T54] ? __ip_finish_output+0x349/0x400 [ 88.234604][ T54] iptunnel_xmit+0x55d/0x9b0 [ 88.239216][ T54] udp_tunnel_xmit_skb+0x262/0x3b0 [ 88.244367][ T54] geneve_xmit+0x21dc/0x2d00 [ 88.248999][ T54] ? validate_xmit_xfrm+0xc1/0x1270 [ 88.254224][ T54] ? geneve_xmit+0x13a/0x2d00 [ 88.258929][ T54] ? __pfx_geneve_xmit+0x10/0x10 [ 88.263893][ T54] ? netif_skb_features+0x8b6/0xc90 [ 88.269126][ T54] ? validate_xmit_skb+0x9b8/0xff0 [ 88.274274][ T54] dev_hard_start_xmit+0x27a/0x7d0 [ 88.279431][ T54] __dev_queue_xmit+0x1b73/0x3f50 [ 88.284517][ T54] ? __dev_queue_xmit+0x2f4/0x3f50 [ 88.289644][ T54] ? __pfx___dev_queue_xmit+0x10/0x10 [ 88.295055][ T54] ? mark_lock+0x9a/0x360 [ 88.299410][ T54] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 88.305411][ T54] ? __ipv6_neigh_lookup_noref+0x4e1/0x680 [ 88.311246][ T54] ? ip6_finish_output2+0x107f/0x17b0 [ 88.316668][ T54] ? ip6_finish_output2+0x63a/0x17b0 [ 88.321974][ T54] ip6_finish_output2+0x1284/0x17b0 [ 88.327206][ T54] ? ip6_finish_output2+0x63a/0x17b0 [ 88.332516][ T54] ? __pfx_ip6_finish_output2+0x10/0x10 [ 88.338083][ T54] ? ip6_mtu+0x81/0x3f0 [ 88.342255][ T54] ip6_finish_output+0x41e/0x840 [ 88.347225][ T54] NF_HOOK+0x9e/0x430 [ 88.351233][ T54] ? icmp6_dst_alloc+0x3aa/0x420 [ 88.356186][ T54] ? __pfx_NF_HOOK+0x10/0x10 [ 88.360813][ T54] ? icmp6_dst_alloc+0x2bf/0x420 [ 88.365769][ T54] ? icmp6_dst_alloc+0x3aa/0x420 [ 88.370734][ T54] mld_sendpack+0x843/0xdb0 [ 88.375272][ T54] ? mld_sendpack+0x1e8/0xdb0 [ 88.379967][ T54] ? __pfx_mld_sendpack+0x10/0x10 [ 88.385027][ T54] ipv6_mc_dad_complete+0x88/0x490 [ 88.390173][ T54] addrconf_dad_completed+0x712/0xcd0 [ 88.395571][ T54] ? __pfx_addrconf_dad_completed+0x10/0x10 [ 88.401500][ T54] ? addrconf_dad_work+0x58a/0x16f0 [ 88.406736][ T54] addrconf_dad_work+0xdc2/0x16f0 [ 88.411799][ T54] ? __pfx_addrconf_dad_work+0x10/0x10 [ 88.417278][ T54] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 88.423631][ T54] ? process_scheduled_works+0x976/0x1840 [ 88.429362][ T54] process_scheduled_works+0xa66/0x1840 [ 88.434965][ T54] ? __pfx_process_scheduled_works+0x10/0x10 [ 88.440968][ T54] ? assign_work+0x364/0x3d0 [ 88.445581][ T54] worker_thread+0x870/0xd30 [ 88.450199][ T54] ? __kthread_parkme+0x169/0x1d0 [ 88.455242][ T54] ? __pfx_worker_thread+0x10/0x10 [ 88.460387][ T54] kthread+0x2f0/0x390 [ 88.464475][ T54] ? __pfx_worker_thread+0x10/0x10 [ 88.469599][ T54] ? __pfx_kthread+0x10/0x10 [ 88.474227][ T54] ret_from_fork+0x4b/0x80 [ 88.478666][ T54] ? __pfx_kthread+0x10/0x10 [ 88.483275][ T54] ret_from_fork_asm+0x1a/0x30 [ 88.488078][ T54] [ 88.491418][ T54] Kernel Offset: disabled [ 88.495807][ T54] Rebooting in 86400 seconds..