syzkaller login: [ 269.370525][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 277.893344][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 277.978300][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. [ 278.055963][ T1859] netlink: 4 bytes leftover after parsing attributes in process `dhcpcd'. Warning: Permanently added '[localhost]:39672' (ECDSA) to the list of known hosts. 1970/01/01 00:05:21 fuzzer started 1970/01/01 00:05:33 dialing manager at localhost:40155 [ 340.754820][ T2026] cgroup: Unknown subsys name 'net' [ 341.936663][ T2026] cgroup: Unknown subsys name 'rlimit' 1970/01/01 00:05:41 syscalls: 2827 1970/01/01 00:05:41 code coverage: enabled 1970/01/01 00:05:41 comparison tracing: enabled 1970/01/01 00:05:41 extra coverage: enabled 1970/01/01 00:05:41 delay kcov mmap: mmap returned an invalid pointer 1970/01/01 00:05:41 setuid sandbox: enabled 1970/01/01 00:05:41 namespace sandbox: enabled 1970/01/01 00:05:42 Android sandbox: /sys/fs/selinux/policy does not exist 1970/01/01 00:05:42 fault injection: enabled 1970/01/01 00:05:42 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 1970/01/01 00:05:42 net packet injection: enabled 1970/01/01 00:05:42 net device setup: enabled 1970/01/01 00:05:42 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 1970/01/01 00:05:42 devlink PCI setup: PCI device 0000:00:10.0 is not available 1970/01/01 00:05:42 USB emulation: enabled 1970/01/01 00:05:42 hci packet injection: /dev/vhci does not exist 1970/01/01 00:05:42 wifi device emulation: /sys/class/mac80211_hwsim/ does not exist 1970/01/01 00:05:42 802.15.4 emulation: /sys/bus/platform/devices/mac802154_hwsim does not exist 1970/01/01 00:05:42 fetching corpus: 0, signal 0/2000 (executing program) 1970/01/01 00:05:49 fetching corpus: 50, signal 29751/33262 (executing program) 1970/01/01 00:05:53 fetching corpus: 100, signal 49845/54600 (executing program) 1970/01/01 00:05:56 fetching corpus: 150, signal 61557/67528 (executing program) 1970/01/01 00:05:58 fetching corpus: 200, signal 68719/75839 (executing program) 1970/01/01 00:06:02 fetching corpus: 250, signal 80520/88504 (executing program) 1970/01/01 00:06:04 fetching corpus: 300, signal 86130/95125 (executing program) 1970/01/01 00:06:07 fetching corpus: 350, signal 91438/101378 (executing program) 1970/01/01 00:06:09 fetching corpus: 399, signal 94663/105596 (executing program) 1970/01/01 00:06:15 fetching corpus: 449, signal 99485/111222 (executing program) 1970/01/01 00:06:18 fetching corpus: 499, signal 102925/115513 (executing program) 1970/01/01 00:06:21 fetching corpus: 548, signal 105219/118679 (executing program) 1970/01/01 00:06:25 fetching corpus: 598, signal 108511/122727 (executing program) 1970/01/01 00:06:29 fetching corpus: 648, signal 111818/126770 (executing program) 1970/01/01 00:06:31 fetching corpus: 698, signal 114663/130379 (executing program) 1970/01/01 00:06:34 fetching corpus: 748, signal 118113/134380 (executing program) 1970/01/01 00:06:37 fetching corpus: 797, signal 120948/137792 (executing program) 1970/01/01 00:06:40 fetching corpus: 847, signal 122336/139961 (executing program) 1970/01/01 00:06:43 fetching corpus: 897, signal 126687/144585 (executing program) 1970/01/01 00:06:46 fetching corpus: 947, signal 130199/148410 (executing program) 1970/01/01 00:06:49 fetching corpus: 997, signal 133445/151999 (executing program) 1970/01/01 00:06:52 fetching corpus: 1047, signal 136328/155288 (executing program) 1970/01/01 00:06:55 fetching corpus: 1097, signal 140178/159277 (executing program) 1970/01/01 00:06:58 fetching corpus: 1147, signal 142319/161768 (executing program) 1970/01/01 00:07:01 fetching corpus: 1197, signal 146489/165909 (executing program) 1970/01/01 00:07:03 fetching corpus: 1246, signal 148135/167949 (executing program) 1970/01/01 00:07:06 fetching corpus: 1296, signal 149516/169790 (executing program) 1970/01/01 00:07:09 fetching corpus: 1346, signal 151199/171886 (executing program) 1970/01/01 00:07:13 fetching corpus: 1396, signal 152625/173700 (executing program) 1970/01/01 00:07:16 fetching corpus: 1446, signal 158976/179102 (executing program) 1970/01/01 00:07:19 fetching corpus: 1495, signal 160106/180625 (executing program) 1970/01/01 00:07:22 fetching corpus: 1545, signal 162718/183194 (executing program) 1970/01/01 00:07:24 fetching corpus: 1595, signal 165215/185642 (executing program) 1970/01/01 00:07:27 fetching corpus: 1645, signal 166662/187239 (executing program) 1970/01/01 00:07:29 fetching corpus: 1694, signal 167541/188425 (executing program) 1970/01/01 00:07:33 fetching corpus: 1744, signal 168791/189897 (executing program) 1970/01/01 00:07:36 fetching corpus: 1794, signal 173465/193594 (executing program) 1970/01/01 00:07:39 fetching corpus: 1844, signal 174916/195131 (executing program) 1970/01/01 00:07:41 fetching corpus: 1894, signal 176467/196671 (executing program) 1970/01/01 00:07:44 fetching corpus: 1944, signal 177454/197834 (executing program) 1970/01/01 00:07:47 fetching corpus: 1994, signal 178348/198927 (executing program) 1970/01/01 00:07:52 fetching corpus: 2044, signal 180595/200904 (executing program) 1970/01/01 00:07:56 fetching corpus: 2093, signal 183444/203154 (executing program) 1970/01/01 00:08:00 fetching corpus: 2143, signal 185570/204948 (executing program) 1970/01/01 00:08:03 fetching corpus: 2193, signal 186576/206036 (executing program) 1970/01/01 00:08:08 fetching corpus: 2243, signal 188334/207533 (executing program) 1970/01/01 00:08:11 fetching corpus: 2293, signal 189293/208513 (executing program) 1970/01/01 00:08:14 fetching corpus: 2343, signal 190869/209839 (executing program) 1970/01/01 00:08:17 fetching corpus: 2393, signal 192240/210977 (executing program) 1970/01/01 00:08:20 fetching corpus: 2442, signal 193432/212066 (executing program) 1970/01/01 00:08:25 fetching corpus: 2492, signal 195919/213895 (executing program) 1970/01/01 00:08:27 fetching corpus: 2542, signal 199498/216281 (executing program) 1970/01/01 00:08:30 fetching corpus: 2592, signal 200445/217113 (executing program) 1970/01/01 00:08:34 fetching corpus: 2642, signal 203251/218910 (executing program) 1970/01/01 00:08:37 fetching corpus: 2692, signal 205370/220364 (executing program) 1970/01/01 00:08:39 fetching corpus: 2742, signal 207303/221621 (executing program) 1970/01/01 00:08:42 fetching corpus: 2792, signal 208167/222340 (executing program) 1970/01/01 00:08:44 fetching corpus: 2842, signal 209319/223159 (executing program) 1970/01/01 00:08:48 fetching corpus: 2892, signal 210335/223891 (executing program) 1970/01/01 00:08:50 fetching corpus: 2942, signal 211101/224481 (executing program) 1970/01/01 00:08:52 fetching corpus: 2992, signal 211855/225032 (executing program) 1970/01/01 00:08:55 fetching corpus: 3042, signal 212842/225743 (executing program) 1970/01/01 00:09:00 fetching corpus: 3091, signal 213581/226329 (executing program) 1970/01/01 00:09:04 fetching corpus: 3140, signal 214305/226836 (executing program) 1970/01/01 00:09:07 fetching corpus: 3190, signal 215788/227743 (executing program) 1970/01/01 00:09:09 fetching corpus: 3239, signal 216912/228442 (executing program) 1970/01/01 00:09:12 fetching corpus: 3289, signal 218170/229194 (executing program) 1970/01/01 00:09:15 fetching corpus: 3339, signal 219371/229889 (executing program) 1970/01/01 00:09:19 fetching corpus: 3389, signal 220462/230503 (executing program) 1970/01/01 00:09:22 fetching corpus: 3439, signal 220940/230877 (executing program) 1970/01/01 00:09:25 fetching corpus: 3489, signal 221454/231186 (executing program) 1970/01/01 00:09:28 fetching corpus: 3539, signal 222308/231660 (executing program) 1970/01/01 00:09:30 fetching corpus: 3589, signal 222898/232001 (executing program) 1970/01/01 00:09:32 fetching corpus: 3639, signal 223564/232378 (executing program) 1970/01/01 00:09:36 fetching corpus: 3688, signal 224146/232735 (executing program) 1970/01/01 00:09:39 fetching corpus: 3738, signal 225092/233196 (executing program) 1970/01/01 00:09:41 fetching corpus: 3788, signal 226207/233695 (executing program) 1970/01/01 00:09:44 fetching corpus: 3838, signal 228799/234640 (executing program) 1970/01/01 00:09:48 fetching corpus: 3888, signal 229683/235004 (executing program) 1970/01/01 00:09:53 fetching corpus: 3937, signal 230418/235276 (executing program) 1970/01/01 00:09:57 fetching corpus: 3987, signal 232037/235835 (executing program) 1970/01/01 00:09:59 fetching corpus: 4037, signal 232646/236084 (executing program) 1970/01/01 00:10:03 fetching corpus: 4087, signal 233732/236470 (executing program) 1970/01/01 00:10:08 fetching corpus: 4137, signal 234558/236771 (executing program) 1970/01/01 00:10:09 fetching corpus: 4156, signal 234759/236851 (executing program) 1970/01/01 00:10:10 fetching corpus: 4156, signal 234759/236880 (executing program) 1970/01/01 00:10:10 fetching corpus: 4156, signal 234759/236907 (executing program) 1970/01/01 00:10:10 fetching corpus: 4156, signal 234759/236928 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/236965 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/236991 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237016 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237038 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237061 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237092 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237120 (executing program) 1970/01/01 00:10:11 fetching corpus: 4157, signal 234761/237159 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237192 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237216 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237242 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237274 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237295 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237314 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237340 (executing program) 1970/01/01 00:10:12 fetching corpus: 4157, signal 234761/237378 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237404 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237427 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237449 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237475 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237505 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237529 (executing program) 1970/01/01 00:10:13 fetching corpus: 4157, signal 234761/237552 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237576 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237592 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237610 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237635 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237656 (executing program) 1970/01/01 00:10:14 fetching corpus: 4157, signal 234761/237677 (executing program) 1970/01/01 00:10:15 fetching corpus: 4157, signal 234761/237695 (executing program) 1970/01/01 00:10:15 fetching corpus: 4157, signal 234761/237714 (executing program) 1970/01/01 00:10:15 fetching corpus: 4157, signal 234761/237714 (executing program) 1970/01/01 00:12:08 starting 2 fuzzer processes 00:12:08 executing program 0: keyctl$KEYCTL_PKEY_VERIFY(0x11, 0x0, 0x0, 0x0, 0x0) 00:12:09 executing program 1: syz_emit_ethernet(0x2b, &(0x7f0000000400)={@random="0bbf30d0d179", @link_local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, {0x11, 0x0, 0x0, @multicast1, "95"}}}}}, 0x0) [ 763.012917][ T2040] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 763.129664][ T2040] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 766.047378][ T2039] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 766.277573][ T2039] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 776.779737][ T2040] device hsr_slave_0 entered promiscuous mode [ 776.849935][ T2040] device hsr_slave_1 entered promiscuous mode [ 779.024717][ T2039] device hsr_slave_0 entered promiscuous mode [ 779.076774][ T2039] device hsr_slave_1 entered promiscuous mode [ 779.107888][ T2039] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 779.114090][ T2039] Cannot create hsr debugfs directory [ 786.654483][ T2040] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 786.787533][ T2040] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 786.914604][ T2040] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 787.136678][ T2040] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 788.584470][ T2039] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 788.942530][ T2039] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 789.110708][ T2039] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 789.334162][ T2039] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 801.399380][ T2040] 8021q: adding VLAN 0 to HW filter on device bond0 [ 803.009391][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 803.139810][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 803.398060][ T2039] 8021q: adding VLAN 0 to HW filter on device bond0 [ 804.723102][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 804.778316][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 811.329359][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 811.416006][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 812.478325][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 812.550936][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 812.580550][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 812.670466][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 812.696284][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 812.720174][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 812.753012][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 812.799306][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 813.259899][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 813.738091][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 814.005050][ T829] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 814.066339][ T829] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 814.485292][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 814.518453][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 815.113219][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 815.159282][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 816.009294][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 816.078162][ T2097] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 816.234072][ T2039] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 816.686516][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 816.697229][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 817.458140][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 817.475726][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 840.297626][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 840.413358][ T83] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 841.018853][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 841.085557][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 850.496440][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 850.565847][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 850.792991][ T2039] device veth0_vlan entered promiscuous mode [ 850.897324][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 850.979955][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 851.697989][ T2039] device veth1_vlan entered promiscuous mode [ 853.329241][ T2040] device veth0_vlan entered promiscuous mode [ 853.598103][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 853.684224][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 853.827229][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 853.890083][ T2662] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 855.003716][ T2040] device veth1_vlan entered promiscuous mode [ 855.120031][ T2676] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 855.176596][ T2676] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 855.624012][ T2039] device veth0_macvtap entered promiscuous mode [ 856.303532][ T2039] device veth1_macvtap entered promiscuous mode [ 856.514279][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 858.217317][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 858.248394][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 858.509065][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 858.549601][ T2661] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 858.934031][ T2676] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 858.998194][ T2676] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 859.127449][ T2040] device veth0_macvtap entered promiscuous mode [ 859.287763][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 859.469147][ T2039] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 859.493453][ T2039] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 859.495529][ T2039] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 859.497813][ T2039] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 859.927906][ T2040] device veth1_macvtap entered promiscuous mode [ 862.549837][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 862.639433][ T2228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 863.415051][ T2283] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 863.483703][ T2283] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 863.798530][ T2040] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.800130][ T2040] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.823547][ T2040] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 863.825111][ T2040] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 00:14:33 executing program 0: keyctl$KEYCTL_PKEY_VERIFY(0x11, 0x0, 0x0, 0x0, 0x0) 00:14:38 executing program 1: syz_emit_ethernet(0x2b, &(0x7f0000000400)={@random="0bbf30d0d179", @link_local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, {0x11, 0x0, 0x0, @multicast1, "95"}}}}}, 0x0) 00:14:40 executing program 0: keyctl$KEYCTL_PKEY_VERIFY(0x11, 0x0, 0x0, 0x0, 0x0) 00:14:42 executing program 1: syz_emit_ethernet(0x2b, &(0x7f0000000400)={@random="0bbf30d0d179", @link_local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, {0x11, 0x0, 0x0, @multicast1, "95"}}}}}, 0x0) 00:14:45 executing program 0: keyctl$KEYCTL_PKEY_VERIFY(0x11, 0x0, 0x0, 0x0, 0x0) 00:14:47 executing program 1: syz_emit_ethernet(0x2b, &(0x7f0000000400)={@random="0bbf30d0d179", @link_local, @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1d, 0x0, 0x0, 0x0, 0x2, 0x0, @private, @multicast1}, {0x11, 0x0, 0x0, @multicast1, "95"}}}}}, 0x0) 00:14:52 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:14:53 executing program 1: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$FBIO_WAITFORVSYNC(r0, 0x40044620, 0x0) [ 896.840417][ C0] vkms_vblank_simulate: vblank timer overrun 00:14:57 executing program 1: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:14:57 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:15:01 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) [ 903.365496][ T2749] syz-executor.1: vmalloc error: size 1974272, page order 0, failed to allocate pages, mode:0xcc2(GFP_KERNEL|__GFP_HIGHMEM), nodemask=(null),cpuset=syz1,mems_allowed=0 [ 903.554901][ T2749] CPU: 1 PID: 2749 Comm: syz-executor.1 Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 903.557033][ T2749] Hardware name: riscv-virtio,qemu (DT) [ 903.558338][ T2749] Call Trace: [ 903.559346][ T2749] [] dump_backtrace+0x2e/0x3c [ 903.561041][ T2749] [] show_stack+0x34/0x40 [ 903.563174][ T2749] [] dump_stack_lvl+0xe4/0x150 [ 903.564746][ T2749] [] dump_stack+0x1c/0x24 [ 903.566203][ T2749] [] warn_alloc+0x170/0x212 [ 903.567614][ T2749] [] __vmalloc_node_range+0xa36/0xab2 [ 903.569083][ T2749] [] __vmalloc+0x76/0x8e [ 903.570402][ T2749] [] snd_dma_vmalloc_alloc+0x46/0x5a [ 903.572828][ T2749] [] __snd_dma_alloc_pages+0x48/0x70 [ 903.574387][ T2749] [] snd_dma_alloc_dir_pages+0xba/0x124 [ 903.575848][ T2749] [] snd_pcm_lib_malloc_pages+0x26c/0x4f8 [ 903.577752][ T2749] [] snd_pcm_hw_params+0x8a0/0xc34 [ 903.580185][ T2749] [] snd_pcm_kernel_ioctl+0x122/0x1fc [ 903.581826][ T2749] [] snd_pcm_oss_change_params_locked+0xe72/0x260a [ 903.583297][ T2749] [] snd_pcm_oss_ioctl+0x261e/0x299e [ 903.585147][ T2749] [] sys_ioctl+0x75c/0x139e [ 903.586676][ T2749] [] ret_from_syscall+0x0/0x2 [ 903.795856][ T2749] Mem-Info: [ 903.798864][ T2749] active_anon:37 inactive_anon:51096 isolated_anon:0 [ 903.798864][ T2749] active_file:1792 inactive_file:3819 isolated_file:0 [ 903.798864][ T2749] unevictable:768 dirty:11 writeback:0 [ 903.798864][ T2749] slab_reclaimable:5354 slab_unreclaimable:23938 [ 903.798864][ T2749] mapped:10385 shmem:809 pagetables:348 bounce:0 [ 903.798864][ T2749] kernel_misc_reclaimable:0 [ 903.798864][ T2749] free:233892 free_pcp:1262 free_cma:4096 [ 903.904358][ T2749] Node 0 active_anon:148kB inactive_anon:204384kB active_file:7168kB inactive_file:15276kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:41540kB dirty:44kB writeback:0kB shmem:3236kB writeback_tmp:0kB kernel_stack:2768kB pagetables:1392kB all_unreclaimable? no [ 903.908553][ T2749] Node 0 DMA32 free:935568kB boost:0kB min:4684kB low:6056kB high:7428kB reserved_highatomic:0KB active_anon:148kB inactive_anon:204384kB active_file:7168kB inactive_file:15276kB unevictable:3072kB writepending:44kB present:2095104kB managed:1375480kB mlocked:0kB bounce:0kB free_pcp:5012kB local_pcp:2236kB free_cma:16384kB [ 903.963562][ T2749] lowmem_reserve[]: 0 0 0 [ 903.966296][ T2749] Node 0 DMA32: 148*4kB (UME) 54*8kB (ME) 25*16kB (UME) 20*32kB (UME) 8*64kB (UME) 3*128kB (UE) 1*256kB (M) 1*512kB (M) 0*1024kB 3*2048kB (UME) 226*4096kB (MC) = 935568kB [ 904.074743][ T2749] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 904.077000][ T2749] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 904.079440][ T2749] 6424 total pagecache pages [ 904.080683][ T2749] 0 pages in swap cache [ 904.127081][ T2749] Swap cache stats: add 0, delete 0, find 0/0 [ 904.128667][ T2749] Free swap = 0kB [ 904.129681][ T2749] Total swap = 0kB [ 904.130857][ T2749] 523776 pages RAM [ 904.204396][ T2749] 0 pages HighMem/MovableOnly [ 904.205762][ T2749] 179906 pages reserved [ 904.206754][ T2749] 4096 pages cma reserved 00:15:06 executing program 1: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:06 executing program 0: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:15:11 executing program 1: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:11 executing program 0: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:15 executing program 1: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:15 executing program 0: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:21 executing program 1: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:15:21 executing program 0: r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000), 0xc82, 0x0) ioctl$SNDCTL_DSP_SETFRAGMENT(r0, 0xc004500a, &(0x7f0000000100)) ioctl$SNDCTL_DSP_GETOSPACE(r0, 0x8010500c, &(0x7f0000000080)) 00:15:23 executing program 1: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:15:27 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002580), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000025c0)) 00:15:27 executing program 1: r0 = syz_open_dev$sndpcmp(&(0x7f0000002100), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_FORWARD(r0, 0x5452, &(0x7f0000000000)=0x400) 00:15:30 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002580), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000025c0)) 00:15:32 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000640)=@framed={{}, [@alu={0x4, 0x1, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78) 00:15:34 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002580), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000025c0)) 00:15:35 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000640)=@framed={{}, [@alu={0x4, 0x1, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78) 00:15:38 executing program 0: r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000002580), 0x0) ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r0, 0xc0505405, &(0x7f00000025c0)) 00:15:38 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000640)=@framed={{}, [@alu={0x4, 0x1, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78) 00:15:42 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000200)='\x00', 0x1, 0x0, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10) 00:15:43 executing program 1: bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x4, &(0x7f0000000640)=@framed={{}, [@alu={0x4, 0x1, 0x1}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x78) 00:15:46 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000200)='\x00', 0x1, 0x0, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10) 00:15:50 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:15:51 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000200)='\x00', 0x1, 0x0, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10) 00:15:54 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:15:55 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) sendto$inet(r0, &(0x7f0000000200)='\x00', 0x1, 0x0, &(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10) 00:16:00 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:03 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:06 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:10 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:17 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:20 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:25 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) 00:16:31 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:16:32 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1a000, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$sock_inet_SIOCADDRT(r1, 0x890b, &(0x7f0000000100)={0x0, {0x2, 0x0, @empty}, {0x2, 0x0, @local}, {0x2, 0x0, @empty}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}) sendto$inet(r0, &(0x7f0000000000)='=', 0x1, 0x0, 0x0, 0x0) [ 994.513407][ T27] audit: type=1800 audit(993.390:2): pid=2823 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=637 res=0 errno=0 00:16:35 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1001.137468][ T27] audit: type=1800 audit(1000.020:3): pid=2828 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=640 res=0 errno=0 00:16:41 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:16:43 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1004.709764][ T27] audit: type=1800 audit(1003.630:4): pid=2830 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=636 res=0 errno=0 00:16:45 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1006.555462][ T27] audit: type=1800 audit(1005.470:5): pid=2832 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=641 res=0 errno=0 00:16:47 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1009.453501][ T27] audit: type=1800 audit(1008.370:6): pid=2834 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=638 res=0 errno=0 [ 1011.043610][ T27] audit: type=1800 audit(1009.960:7): pid=2836 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=645 res=0 errno=0 00:16:51 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:16:53 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1015.534605][ T27] audit: type=1800 audit(1014.450:8): pid=2838 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=644 res=0 errno=0 [ 1015.854352][ T27] audit: type=1800 audit(1014.770:9): pid=2840 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=645 res=0 errno=0 00:16:57 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:16:59 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1021.739024][ T27] audit: type=1800 audit(1020.660:10): pid=2844 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=644 res=0 errno=0 [ 1022.160836][ T27] audit: type=1800 audit(1021.080:11): pid=2845 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=645 res=0 errno=0 00:17:03 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:17:03 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1027.384577][ T27] audit: type=1800 audit(1026.300:12): pid=2849 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=644 res=0 errno=0 [ 1028.249805][ T27] audit: type=1800 audit(1027.150:13): pid=2850 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=645 res=0 errno=0 00:17:09 executing program 1: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:17:11 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) [ 1034.704533][ T27] audit: type=1800 audit(1033.620:14): pid=2855 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="file1" dev="vda" ino=644 res=0 errno=0 [ 1034.753960][ T27] audit: type=1800 audit(1033.670:15): pid=2854 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=645 res=0 errno=0 00:17:15 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:17:18 executing program 1: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) listen(r0, 0x0) shutdown(r0, 0x0) [ 1041.915532][ T27] audit: type=1800 audit(1040.830:16): pid=2858 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=644 res=0 errno=0 00:17:23 executing program 0: syz_io_uring_setup(0x12a3, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f00000a0000)=nil, &(0x7f00000b0000)=nil, &(0x7f0000000100), &(0x7f0000000140)=0x0) r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x10e042, 0x0) r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0) fallocate(r2, 0x0, 0x0, 0x400) r3 = mmap$IORING_OFF_SQ_RING(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x1000007, 0x13, r1, 0x0) ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f0000000300)=0x400450) syz_io_uring_submit(r3, r0, &(0x7f00000006c0)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0}, 0x0) 00:17:24 executing program 1: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) listen(r0, 0x0) shutdown(r0, 0x0) [ 1048.165316][ T27] audit: type=1800 audit(1047.090:17): pid=2863 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="vda" ino=642 res=0 errno=0 00:17:30 executing program 1: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) listen(r0, 0x0) shutdown(r0, 0x0) 00:17:32 executing program 0: setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000f00)={0x0, 0x0, 0xee00}, 0xc) r0 = getpid() process_vm_readv(r0, &(0x7f0000000f00), 0x2, &(0x7f0000000dc0)=[{&(0x7f0000000e40)=""/163, 0xa3}, {&(0x7f0000002ac0)=""/252, 0xfc}, {&(0x7f0000002bc0)=""/209, 0xd1}, {&(0x7f0000000b40)=""/228}, {&(0x7f0000000c40)=""/90}, {&(0x7f0000002f00)=""/4096}, {&(0x7f0000000cc0)=""/211}], 0x3, 0x0) 00:17:35 executing program 1: r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @multicast2}}, 0x1c) listen(r0, 0x0) shutdown(r0, 0x0) 00:17:35 executing program 0: setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000f00)={0x0, 0x0, 0xee00}, 0xc) r0 = getpid() process_vm_readv(r0, &(0x7f0000000f00), 0x2, &(0x7f0000000dc0)=[{&(0x7f0000000e40)=""/163, 0xa3}, {&(0x7f0000002ac0)=""/252, 0xfc}, {&(0x7f0000002bc0)=""/209, 0xd1}, {&(0x7f0000000b40)=""/228}, {&(0x7f0000000c40)=""/90}, {&(0x7f0000002f00)=""/4096}, {&(0x7f0000000cc0)=""/211}], 0x3, 0x0) 00:17:40 executing program 0: setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000f00)={0x0, 0x0, 0xee00}, 0xc) r0 = getpid() process_vm_readv(r0, &(0x7f0000000f00), 0x2, &(0x7f0000000dc0)=[{&(0x7f0000000e40)=""/163, 0xa3}, {&(0x7f0000002ac0)=""/252, 0xfc}, {&(0x7f0000002bc0)=""/209, 0xd1}, {&(0x7f0000000b40)=""/228}, {&(0x7f0000000c40)=""/90}, {&(0x7f0000002f00)=""/4096}, {&(0x7f0000000cc0)=""/211}], 0x3, 0x0) 00:17:41 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) 00:17:46 executing program 0: setsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000f00)={0x0, 0x0, 0xee00}, 0xc) r0 = getpid() process_vm_readv(r0, &(0x7f0000000f00), 0x2, &(0x7f0000000dc0)=[{&(0x7f0000000e40)=""/163, 0xa3}, {&(0x7f0000002ac0)=""/252, 0xfc}, {&(0x7f0000002bc0)=""/209, 0xd1}, {&(0x7f0000000b40)=""/228}, {&(0x7f0000000c40)=""/90}, {&(0x7f0000002f00)=""/4096}, {&(0x7f0000000cc0)=""/211}], 0x3, 0x0) [ 1068.347936][ T2879] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1068.473889][ T2876] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:17:50 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) 00:17:53 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1077.467663][ T2888] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1077.502733][ T2885] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1079.248040][ T2891] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1079.383628][ T2889] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. 00:17:58 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) 00:18:00 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1085.226779][ T2898] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1085.296180][ T2895] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:18:05 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1088.109751][ T2900] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1088.177928][ T2899] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. 00:18:10 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1092.288532][ T2905] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1092.427774][ T2903] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:18:17 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1099.095823][ T2907] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1099.297663][ T2908] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1102.419786][ T2021] BUG: Bad page map in process syz-fuzzer pte:ffffaf800f08c1a0 pmd:23ca2c01 [ 1102.427827][ T2021] addr:000000c0091fc000 vm_flags:00100073 anon_vma:ffffaf800d66fd00 mapping:0000000000000000 index:c0091fc [ 1102.434282][ T2021] file:(null) fault:0x0 mmap:0x0 readpage:0x0 [ 1102.436749][ T2021] CPU: 1 PID: 2021 Comm: syz-fuzzer Not tainted 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1102.438271][ T2021] Hardware name: riscv-virtio,qemu (DT) [ 1102.439242][ T2021] Call Trace: [ 1102.440040][ T2021] [] dump_backtrace+0x2e/0x3c [ 1102.442533][ T2021] [] show_stack+0x34/0x40 [ 1102.443861][ T2021] [] dump_stack_lvl+0xe4/0x150 [ 1102.445227][ T2021] [] dump_stack+0x1c/0x24 [ 1102.446536][ T2021] [] print_bad_pte+0x3d4/0x4a0 [ 1102.447884][ T2021] [] vm_normal_page+0x20c/0x22a [ 1102.449684][ T2021] [] unmap_page_range+0x6d0/0x13f0 [ 1102.451650][ T2021] [] zap_page_range+0x28e/0x430 [ 1102.453600][ T2021] [] madvise_vma_behavior+0xf5e/0x1250 [ 1102.454986][ T2021] [] madvise_walk_vmas+0x186/0x23e [ 1102.456308][ T2021] [] do_madvise+0x2f4/0x3a8 [ 1102.457620][ T2021] [] sys_madvise+0x38/0x48 [ 1102.458906][ T2021] [] ret_from_syscall+0x0/0x2 [ 1102.462627][ T2021] Disabling lock debugging due to kernel taint [ 1102.682368][ T2021] BUG: Bad page map in process syz-fuzzer pte:ffffffff801110e4 pmd:23ca2c01 [ 1102.683731][ T2021] addr:000000c0091fd000 vm_flags:00100073 anon_vma:ffffaf800d66fd00 mapping:0000000000000000 index:c0091fd [ 1102.685214][ T2021] file:(null) fault:0x0 mmap:0x0 readpage:0x0 [ 1102.686718][ T2021] CPU: 0 PID: 2021 Comm: syz-fuzzer Tainted: G B 5.17.0-rc1-syzkaller-00002-g0966d385830d #0 [ 1102.688710][ T2021] Hardware name: riscv-virtio,qemu (DT) [ 1102.689516][ T2021] Call Trace: [ 1102.690478][ T2021] [] dump_backtrace+0x2e/0x3c [ 1102.692465][ T2021] [] show_stack+0x34/0x40 [ 1102.693680][ T2021] [] dump_stack_lvl+0xe4/0x150 [ 1102.695034][ T2021] [] dump_stack+0x1c/0x24 [ 1102.696331][ T2021] [] print_bad_pte+0x3d4/0x4a0 [ 1102.697560][ T2021] [] vm_normal_page+0x20c/0x22a [ 1102.698608][ T2021] [] unmap_page_range+0x6d0/0x13f0 [ 1102.699737][ T2021] [] zap_page_range+0x28e/0x430 [ 1102.701566][ T2021] [] madvise_vma_behavior+0xf5e/0x1250 [ 1102.702852][ T2021] [] madvise_walk_vmas+0x186/0x23e [ 1102.704116][ T2021] [] do_madvise+0x2f4/0x3a8 [ 1102.705284][ T2021] [] sys_madvise+0x38/0x48 [ 1102.706453][ T2021] [] ret_from_syscall+0x0/0x2 [ 1103.650404][ T2911] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:18:22 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) 00:18:23 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1105.049900][ T2916] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1105.075077][ T2914] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. 00:18:24 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1106.140882][ T2918] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1106.175055][ T2917] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:18:25 executing program 1: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1107.474227][ T2922] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1107.498621][ T2920] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. 00:18:26 executing program 0: r0 = socket$inet_sctp(0x2, 0x1, 0x84) bind$inet(0xffffffffffffffff, &(0x7f0000000080)={0x2, 0x4e23, @loopback}, 0x10) sendto$inet(r0, &(0x7f0000001340)="8a", 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e23, @loopback}, 0x10) r1 = socket$netlink(0x10, 0x3, 0x0) readv(r1, &(0x7f0000000880)=[{&(0x7f0000001680)=""/4096, 0x1000}], 0x1) r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000580), 0x0, 0x0) ioctl$TCXONC(r2, 0x540f, 0xea007) r3 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x26e1, 0x0) write$P9_RREADLINK(r3, &(0x7f0000000000)=ANY=[], 0x10) fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000) sendmsg$DCCPDIAG_GETSOCK(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c03000026000139"], 0x36c}}, 0x0) [ 1108.407613][ T2925] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. [ 1108.457231][ T2923] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.1'. 00:18:28 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) [ 1109.348039][ T2927] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. [ 1109.362707][ T2926] netlink: 840 bytes leftover after parsing attributes in process `syz-executor.0'. 00:18:28 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:29 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:29 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:30 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:30 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:31 executing program 1: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@ipv6_delrule={0x24, 0x21, 0x11, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_L3MDEV={0x5, 0x13, 0x1}]}, 0x24}}, 0x0) 00:18:32 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="b8000000130001"], 0xb8}}, 0x0) 00:18:32 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:32 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="b8000000130001"], 0xb8}}, 0x0) 00:18:33 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:33 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="b8000000130001"], 0xb8}}, 0x0) 00:18:34 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:35 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:35 executing program 0: r0 = socket$netlink(0x10, 0x3, 0x6) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000500)=ANY=[@ANYBLOB="b8000000130001"], 0xb8}}, 0x0) 00:18:36 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:36 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:37 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:37 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:38 executing program 1: r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$DCCPDIAG_GETSOCK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="6c0300004e0001a1"], 0x36c}}, 0x0) 00:18:38 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:39 executing program 0: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:39 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:40 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:41 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:41 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x83, 0x0, 0x0) 00:18:42 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:43 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:43 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:44 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:44 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:45 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:46 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:47 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:47 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:48 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:48 executing program 0: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:48 executing program 1: r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r0) r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$NLBL_CIPSOV4_C_ADD(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000003c0)={0x3c, r1, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MLSCATLST={0x10, 0xc, 0x0, 0x1, [{0xc, 0xb, 0x0, 0x1, [@NLBL_CIPSOV4_A_MLSCATREM={0x8, 0xa, 0xcdb}]}]}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x1}, @NLBL_CIPSOV4_A_MLSLVLLST={0x4}, @NLBL_CIPSOV4_A_TAGLST={0x4}]}, 0x3c}}, 0x0) 00:18:49 executing program 0: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{}, 'port1\x00'}) 00:18:50 executing program 0: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{}, 'port1\x00'}) 00:18:50 executing program 1: r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x0) ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r0, 0xc0a85352, &(0x7f00000000c0)={{}, 'port1\x00'}) VM DIAGNOSIS: 07:43:27 Registers: info registers vcpu 0 pc ffffffff80115baa mhartid 0000000000000000 mstatus 00000000000001a0 mip 00000000000000a0 mie 000000000000020a mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff80113092 sepc ffffffff8046dffa mcause 8000000000000007 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80115b96 x2/sp ffffaf8021fbefe0 x3/gp ffffffff85863ac0 x4/tp ffffaf800e63e100 x5/t0 0000000000046000 x6/t1 fffff5ef0437b090 x7/t2 00007fffdd4e51b7 x8/s0 ffffaf8021fbf100 x9/s1 ffffffff8343c840 x10/a0 ffffaf805a9c8840 x11/a1 0000000000000003 x12/a2 1ffff5f00b539108 x13/a3 ffffffff80115b96 x14/a4 0000000000000000 x15/a5 0000000000000120 x16/a6 0000000000f00000 x17/a7 ffffaf8021bd8487 x18/s2 ffffaf805a9c8840 x19/s3 ffffaf800e63e100 x20/s4 ffffaf800e63eb18 x21/s5 bb58ab100034ac49 x22/s6 ffffffff86c1a620 x23/s7 0000000000000003 x24/s8 ffffffff85889780 x25/s9 1ffff5f0043f7e00 x26/s10 0000000000000002 x27/s11 ffffaf800e63f100 x28/t3 fffffffff3f3f300 x29/t4 fffff5ef0437b090 x30/t5 fffff5ef0437b091 x31/t6 0000000000040000 f0/ft0 0000000000000000 f1/ft1 0000000000000000 f2/ft2 0000000000000000 f3/ft3 0000000000000000 f4/ft4 0000000000000000 f5/ft5 0000000000000000 f6/ft6 0000000000000000 f7/ft7 0000000000000000 f8/fs0 0000000000000000 f9/fs1 0000000000000000 f10/fa0 0000000000000000 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000 info registers vcpu 1 pc ffffffff80dc337e mhartid 0000000000000001 mstatus 00000000000000a0 mip 0000000000000000 mie 00000000000002aa mideleg 0000000000000222 medeleg 000000000000b109 mtvec 0000000080000540 stvec ffffffff800055d4 mepc ffffffff8000f97e sepc ffffffff8011d6d4 mcause 0000000000000009 scause 8000000000000005 mtval 0000000000000000 stval 0000000000000000 x0/zero 0000000000000000 x1/ra ffffffff80dc337e x2/sp ffffaf800ced7090 x3/gp ffffffff85863ac0 x4/tp ffffaf800ed99840 x5/t0 ffffffff86bcb657 x6/t1 cd4cad8cac18b000 x7/t2 0000000000000000 x8/s0 ffffaf800ced70c0 x9/s1 ffffffff86e58900 x10/a0 ffffffff86e58948 x11/a1 ffff8f800066c000 x12/a2 1ffffffff0dcb129 x13/a3 ffffffff80dc337e x14/a4 0000000000000000 x15/a5 ffffffff86e58948 x16/a6 ffffffff86e589f1 x17/a7 ffffffff80dcc9fe x18/s2 ffff8f800066c000 x19/s3 0000000000000066 x20/s4 ffffffff86e58900 x21/s5 ffffffff80dc333e x22/s6 0000000000000000 x23/s7 ffffffff86bcb6c0 x24/s8 0000000000000010 x25/s9 ffffffff86e58958 x26/s10 0000000000000010 x27/s11 0000000000000000 x28/t3 fffffffff3f3f300 x29/t4 ffffffff80112282 x30/t5 1ffff5f0019dadc0 x31/t6 ffffffff86bcb657 f0/ft0 3f8440127da20188 f1/ft1 0000000000000000 f2/ft2 3fe0000000000000 f3/ft3 3f745b4000af061a f4/ft4 41257ef000000000 f5/ft5 403995c01a39fbd7 f6/ft6 3fe0648071037c36 f7/ft7 3fa314d3dd049030 f8/fs0 3fefe41a7695b40a f9/fs1 3fa0336067cb48f0 f10/fa0 3f777c981e643768 f11/fa1 0000000000000000 f12/fa2 0000000000000000 f13/fa3 0000000000000000 f14/fa4 0000000000000000 f15/fa5 0000000000000000 f16/fa6 0000000000000000 f17/fa7 0000000000000000 f18/fs2 0000000000000000 f19/fs3 0000000000000000 f20/fs4 0000000000000000 f21/fs5 0000000000000000 f22/fs6 0000000000000000 f23/fs7 0000000000000000 f24/fs8 0000000000000000 f25/fs9 0000000000000000 f26/fs10 0000000000000000 f27/fs11 0000000000000000 f28/ft8 0000000000000000 f29/ft9 0000000000000000 f30/ft10 0000000000000000 f31/ft11 0000000000000000