[ 56.954380][ T26] audit: type=1800 audit(1572304802.633:25): pid=8727 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="cron" dev="sda1" ino=2414 res=0 [ 56.990218][ T26] audit: type=1800 audit(1572304802.633:26): pid=8727 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="mcstrans" dev="sda1" ino=2457 res=0 [ 57.015128][ T26] audit: type=1800 audit(1572304802.643:27): pid=8727 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="startpar" name="restorecond" dev="sda1" ino=2436 res=0 [....] Starting periodic command scheduler: cron[?25l[?1c7[ ok 8[?25h[?0c. [ 57.662878][ T8793] sshd (8793) used greatest stack depth: 22496 bytes left [....] Starting OpenBSD Secure Shell server: sshd[?25l[?1c7[ ok 8[?25h[?0c. Debian GNU/Linux 7 syzkaller ttyS0 Warning: Permanently added '10.128.1.32' (ECDSA) to the list of known hosts. 2019/10/28 23:20:12 fuzzer started 2019/10/28 23:20:14 dialing manager at 10.128.0.26:44167 2019/10/28 23:20:14 syscalls: 2541 2019/10/28 23:20:14 code coverage: enabled 2019/10/28 23:20:14 comparison tracing: enabled 2019/10/28 23:20:14 extra coverage: extra coverage is not supported by the kernel 2019/10/28 23:20:14 setuid sandbox: enabled 2019/10/28 23:20:14 namespace sandbox: enabled 2019/10/28 23:20:14 Android sandbox: /sys/fs/selinux/policy does not exist 2019/10/28 23:20:14 fault injection: enabled 2019/10/28 23:20:14 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2019/10/28 23:20:14 net packet injection: enabled 2019/10/28 23:20:14 net device setup: enabled 2019/10/28 23:20:14 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 23:22:21 executing program 0: syzkaller login: [ 196.141967][ T8893] IPVS: ftp: loaded support on port[0] = 21 23:22:21 executing program 1: [ 196.279836][ T8893] chnl_net:caif_netlink_parms(): no params data found [ 196.323927][ T8893] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.331906][ T8893] bridge0: port 1(bridge_slave_0) entered disabled state [ 196.340326][ T8893] device bridge_slave_0 entered promiscuous mode [ 196.349191][ T8893] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.356597][ T8893] bridge0: port 2(bridge_slave_1) entered disabled state [ 196.364809][ T8893] device bridge_slave_1 entered promiscuous mode [ 196.390031][ T8893] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 196.403458][ T8893] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 196.429283][ T8893] team0: Port device team_slave_0 added [ 196.437472][ T8893] team0: Port device team_slave_1 added [ 196.459406][ T8896] IPVS: ftp: loaded support on port[0] = 21 23:22:22 executing program 2: [ 196.536363][ T8893] device hsr_slave_0 entered promiscuous mode [ 196.601579][ T8893] device hsr_slave_1 entered promiscuous mode [ 196.674213][ T8898] IPVS: ftp: loaded support on port[0] = 21 23:22:22 executing program 3: [ 196.760147][ T8893] bridge0: port 2(bridge_slave_1) entered blocking state [ 196.767328][ T8893] bridge0: port 2(bridge_slave_1) entered forwarding state [ 196.775287][ T8893] bridge0: port 1(bridge_slave_0) entered blocking state [ 196.782423][ T8893] bridge0: port 1(bridge_slave_0) entered forwarding state [ 196.989022][ T8896] chnl_net:caif_netlink_parms(): no params data found [ 197.005371][ T8903] IPVS: ftp: loaded support on port[0] = 21 23:22:22 executing program 4: [ 197.126835][ T8898] chnl_net:caif_netlink_parms(): no params data found [ 197.148448][ T8893] 8021q: adding VLAN 0 to HW filter on device bond0 [ 197.233530][ T8893] 8021q: adding VLAN 0 to HW filter on device team0 [ 197.259455][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 197.277506][ T17] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.299386][ T17] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.314830][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 197.337492][ T8896] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.350414][ T8896] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.358464][ T8896] device bridge_slave_0 entered promiscuous mode 23:22:23 executing program 5: [ 197.380201][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 197.388905][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 197.403738][ T8907] IPVS: ftp: loaded support on port[0] = 21 [ 197.414624][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.421802][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 197.429755][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 197.441641][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 197.452558][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.459747][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 197.479830][ T8896] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.504002][ T8896] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.512343][ T8896] device bridge_slave_1 entered promiscuous mode [ 197.535771][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 197.544710][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 197.554374][ T8898] bridge0: port 1(bridge_slave_0) entered blocking state [ 197.563887][ T8898] bridge0: port 1(bridge_slave_0) entered disabled state [ 197.572115][ T8898] device bridge_slave_0 entered promiscuous mode [ 197.605722][ T8910] IPVS: ftp: loaded support on port[0] = 21 [ 197.616759][ T8898] bridge0: port 2(bridge_slave_1) entered blocking state [ 197.625975][ T8898] bridge0: port 2(bridge_slave_1) entered disabled state [ 197.634275][ T8898] device bridge_slave_1 entered promiscuous mode [ 197.657674][ T8898] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.668859][ T8896] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 197.707958][ T8893] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 197.718904][ T8893] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 197.732829][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 197.742122][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 197.750897][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 197.759773][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 197.768538][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 197.777193][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 197.785905][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 197.794201][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 197.802721][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 197.810796][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 197.822168][ T8898] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 197.832675][ T8896] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 197.874886][ T8896] team0: Port device team_slave_0 added [ 197.888412][ T8896] team0: Port device team_slave_1 added [ 197.908369][ T8903] chnl_net:caif_netlink_parms(): no params data found [ 197.943492][ T8898] team0: Port device team_slave_0 added [ 197.993754][ T8896] device hsr_slave_0 entered promiscuous mode [ 198.030831][ T8896] device hsr_slave_1 entered promiscuous mode [ 198.110335][ T8896] debugfs: Directory 'hsr0' with parent '/' already present! [ 198.124963][ T8893] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 198.140059][ T8898] team0: Port device team_slave_1 added [ 198.182450][ T8903] bridge0: port 1(bridge_slave_0) entered blocking state [ 198.189677][ T8903] bridge0: port 1(bridge_slave_0) entered disabled state [ 198.198080][ T8903] device bridge_slave_0 entered promiscuous mode [ 198.205917][ T8903] bridge0: port 2(bridge_slave_1) entered blocking state [ 198.213161][ T8903] bridge0: port 2(bridge_slave_1) entered disabled state [ 198.221211][ T8903] device bridge_slave_1 entered promiscuous mode [ 198.283567][ T8903] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 198.295126][ T8903] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 198.343393][ T8898] device hsr_slave_0 entered promiscuous mode [ 198.390629][ T8898] device hsr_slave_1 entered promiscuous mode [ 198.430308][ T8898] debugfs: Directory 'hsr0' with parent '/' already present! [ 198.471181][ T8903] team0: Port device team_slave_0 added [ 198.478612][ T8903] team0: Port device team_slave_1 added 23:22:24 executing program 0: syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0x1d, 0x80) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801}) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x8000002}, 0x1c) socket$inet6(0xa, 0x2, 0x0) r3 = syz_open_procfs(0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(0xffffffffffffffff, 0x800442d4, &(0x7f0000000340)) sendfile(0xffffffffffffffff, r3, 0x0, 0x0) ioctl$KVM_GET_MP_STATE(0xffffffffffffffff, 0x8004ae98, &(0x7f0000000240)) sendto$inet6(r2, 0x0, 0xfff3, 0x20000001, &(0x7f0000000040)={0xa, 0x2}, 0x1c) splice(r2, 0x0, r1, 0x0, 0x1000000000000009, 0xa) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) [ 198.614460][ T8903] device hsr_slave_0 entered promiscuous mode [ 198.660480][ T8903] device hsr_slave_1 entered promiscuous mode [ 198.720243][ T8903] debugfs: Directory 'hsr0' with parent '/' already present! [ 198.741011][ C0] hrtimer: interrupt took 31076 ns [ 198.817029][ T8907] chnl_net:caif_netlink_parms(): no params data found 23:22:24 executing program 0: syz_open_dev$admmidi(&(0x7f0000000280)='/dev/admmidi#\x00', 0x1d, 0x80) r0 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, &(0x7f0000000200)={'lo\x00@\x00', 0x1801}) ioctl$UI_ABS_SETUP(0xffffffffffffffff, 0x401c5504, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x8000002}, 0x1c) socket$inet6(0xa, 0x2, 0x0) r3 = syz_open_procfs(0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) ioctl$sock_bt_bnep_BNEPGETSUPPFEAT(0xffffffffffffffff, 0x800442d4, &(0x7f0000000340)) sendfile(0xffffffffffffffff, r3, 0x0, 0x0) ioctl$KVM_GET_MP_STATE(0xffffffffffffffff, 0x8004ae98, &(0x7f0000000240)) sendto$inet6(r2, 0x0, 0xfff3, 0x20000001, &(0x7f0000000040)={0xa, 0x2}, 0x1c) splice(r2, 0x0, r1, 0x0, 0x1000000000000009, 0xa) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) sendto$packet(r2, &(0x7f0000000340), 0xfffffffffffffd4d, 0x57, 0x0, 0x0) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8914, 0x0) r4 = socket$alg(0x26, 0x5, 0x0) bind$alg(r4, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) [ 198.919205][ T8910] chnl_net:caif_netlink_parms(): no params data found [ 199.037275][ T8910] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.044561][ T8910] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.052829][ T8910] device bridge_slave_0 entered promiscuous mode [ 199.061456][ T8907] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.068627][ T8907] bridge0: port 1(bridge_slave_0) entered disabled state [ 199.077965][ T8907] device bridge_slave_0 entered promiscuous mode [ 199.086822][ T8907] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.094009][ T8907] bridge0: port 2(bridge_slave_1) entered disabled state [ 199.102223][ T8907] device bridge_slave_1 entered promiscuous mode [ 199.116369][ T8910] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.126155][ T8910] bridge0: port 2(bridge_slave_1) entered disabled state 23:22:24 executing program 0: recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, 0x0) write(0xffffffffffffffff, 0x0, 0x0) socket$packet(0x11, 0x0, 0x300) socket$inet6(0xa, 0x2, 0x0) r0 = syz_open_dev$loop(&(0x7f0000000400)='/dev/loop#\x00', 0x0, 0x182) r1 = memfd_create(&(0x7f0000000100)='t\bnu\x00\x00\x00\x00\x00\x00\x00\x00\x00\x8c\x00', 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) pwritev(r1, &(0x7f0000000340)=[{&(0x7f0000000040)='\'', 0x1}], 0x1, 0x81805) sendfile(r0, r0, &(0x7f0000000000), 0x2000005) ioctl$LOOP_CLR_FD(r0, 0x4c01) ioctl$LOOP_SET_FD(r0, 0x4c00, r1) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0) [ 199.139698][ T8910] device bridge_slave_1 entered promiscuous mode [ 199.190057][ T8907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 199.219255][ T8896] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.256372][ T8910] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 199.271155][ T8907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 199.298355][ T8896] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.309127][ T8910] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 23:22:25 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000580)) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, 0x0) [ 199.341149][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 199.349072][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 199.360812][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 199.369511][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 199.379177][ T2856] bridge0: port 1(bridge_slave_0) entered blocking state [ 199.386331][ T2856] bridge0: port 1(bridge_slave_0) entered forwarding state [ 199.405045][ T8938] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use) [ 199.420713][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready 23:22:25 executing program 0: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3d, &(0x7f0000000040), 0x4) [ 199.453442][ T8903] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.470577][ T8916] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 199.493058][ T8916] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 199.501740][ T8916] bridge0: port 2(bridge_slave_1) entered blocking state [ 199.508823][ T8916] bridge0: port 2(bridge_slave_1) entered forwarding state [ 199.517003][ T8916] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 199.527943][ T8910] team0: Port device team_slave_0 added [ 199.538751][ T8910] team0: Port device team_slave_1 added [ 199.554031][ T8907] team0: Port device team_slave_0 added [ 199.565722][ T8907] team0: Port device team_slave_1 added [ 199.644306][ T8910] device hsr_slave_0 entered promiscuous mode [ 199.690794][ T8910] device hsr_slave_1 entered promiscuous mode [ 199.730264][ T8910] debugfs: Directory 'hsr0' with parent '/' already present! 23:22:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b761c6ec25b2bec0ba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377abaece6b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047526865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0xc018ae85, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, 0x0) [ 199.758046][ T8903] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.773491][ T8898] 8021q: adding VLAN 0 to HW filter on device bond0 [ 199.798348][ T8947] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 199.823159][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 199.832258][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 199.841406][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 199.849782][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 199.863198][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 199.878446][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 199.888420][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 199.896886][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 199.905081][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 199.914421][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 199.957470][ T8898] 8021q: adding VLAN 0 to HW filter on device team0 [ 199.982092][ T8896] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network 23:22:25 executing program 0: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)={0x15, 0x10, 0x8000000000000003}, 0x3c) bpf$PROG_LOAD(0x5, &(0x7f0000003a80)={0x1, 0x2, &(0x7f0000000340)=@raw=[@map={0x18, 0x0, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x3f000000}], &(0x7f0000000380)='GPL\x00', 0x7, 0xea, &(0x7f00000003c0)=""/234, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 200.000565][ T8896] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 200.014973][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 200.023812][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 200.033263][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 200.041838][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 200.057932][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 200.067018][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 200.081711][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.088810][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.094419][ T8953] BPF:hdr_len not found [ 200.104281][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 200.113497][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 200.122332][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.129536][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.141487][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 200.150828][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 200.207438][ T8896] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.215284][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 200.224331][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 200.232748][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 200.241949][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 200.254026][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 200.263999][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 200.273687][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 200.280924][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 200.288433][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 200.297752][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 200.306178][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 200.313340][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 200.363446][ T8907] device hsr_slave_0 entered promiscuous mode [ 200.420535][ T8907] device hsr_slave_1 entered promiscuous mode [ 200.460321][ T8907] debugfs: Directory 'hsr0' with parent '/' already present! [ 200.480609][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 200.488673][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 200.497122][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 200.506242][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 200.515814][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 200.525764][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 200.534645][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 200.543449][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 200.563943][ T8903] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 200.587134][ T8903] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 200.611021][ T8903] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 200.618415][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 200.627095][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 200.664053][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 200.674322][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 200.683464][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 200.709137][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready 23:22:26 executing program 1: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$TIPC_CMD_GET_REMOTE_MNG(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000440)={0x78cf7e7dbd08e023, 0x0, 0x0, 0x0, 0x0, {{}, 0x0, 0x4101}}, 0x1c}}, 0x0) perf_event_open(&(0x7f0000000500)={0x0, 0x70, 0x0, 0x5, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockopt$inet6_opts(0xffffffffffffffff, 0x29, 0x0, &(0x7f0000000580)=""/143, &(0x7f0000000340)=0xfee5) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)=0x14) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000180)={[{}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x6}, {0x0, 0x9, 0x3f, 0x0, 0x20, 0x40, 0x3f, 0x40, 0x7f, 0x3f}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 200.751544][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 200.809770][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 200.822703][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 200.835478][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 200.847229][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 200.866267][ T8898] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 200.961993][ T8898] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.096380][ T8907] 8021q: adding VLAN 0 to HW filter on device bond0 [ 201.134244][ T8910] 8021q: adding VLAN 0 to HW filter on device bond0 [ 201.157764][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 201.169162][ T8906] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 201.183651][ T8907] 8021q: adding VLAN 0 to HW filter on device team0 [ 201.197273][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready 23:22:26 executing program 2: r0 = creat(&(0x7f0000000040)='./bus\x00', 0x0) r1 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xb, 0x12, r1, 0x0) ftruncate(r0, 0x48280) r2 = open(&(0x7f00000004c0)='./bus\x00', 0x2, 0x0) write$P9_RATTACH(r2, &(0x7f0000000080)={0x14}, 0xfffffff4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = fcntl$dupfd(r4, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) 23:22:26 executing program 0: perf_event_open(&(0x7f0000000040)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000480)=[{&(0x7f0000010000)="02006800000f000000000000000000008128b14700000000d59863d20000000002000f2020cc00000000ff0700740000000000000000000000000000000000000000000000000000000000000000000000000000000000008a6e94c0000055aa", 0x60, 0x1a0}]) [ 201.205991][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 201.217378][ T8910] 8021q: adding VLAN 0 to HW filter on device team0 [ 201.240618][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 201.249424][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 201.259551][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.266687][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 201.274716][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 201.283384][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 201.292308][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.299383][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 201.356285][ T26] kauditd_printk_skb: 3 callbacks suppressed [ 201.356300][ T26] audit: type=1804 audit(1572304947.033:31): pid=8984 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir295875131/syzkaller.3jY21y/1/bus" dev="sda1" ino=16530 res=1 [ 201.387552][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 201.398843][ T8982] loop0: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 [ 201.398857][ T26] audit: type=1804 audit(1572304947.033:32): pid=8984 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir295875131/syzkaller.3jY21y/1/bus" dev="sda1" ino=16530 res=1 [ 201.398861][ T8982] loop0: partition table partially beyond EOD, truncated [ 201.519144][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 201.527772][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 201.536404][ T8901] bridge0: port 1(bridge_slave_0) entered blocking state [ 201.543778][ T8901] bridge0: port 1(bridge_slave_0) entered forwarding state [ 201.551588][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 201.560185][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 201.568782][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 201.577601][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 201.586116][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 201.594957][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 201.603602][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 201.612170][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 201.623784][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 201.632502][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 201.641191][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 201.649840][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 201.658706][ T8901] bridge0: port 2(bridge_slave_1) entered blocking state [ 201.665966][ T8901] bridge0: port 2(bridge_slave_1) entered forwarding state [ 201.673713][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 201.683175][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 201.691138][ T8901] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 201.711619][ T8982] loop0: p1 size 2 extends beyond EOD, truncated [ 201.718025][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 201.728770][ T8982] loop0: p4 start 1854537728 is beyond EOD, truncated [ 201.730014][ T26] audit: type=1804 audit(1572304947.413:33): pid=8984 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir295875131/syzkaller.3jY21y/1/bus" dev="sda1" ino=16530 res=1 [ 201.740724][ T8982] loop0: p5 start 1854537728 is beyond EOD, truncated [ 201.775843][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 201.780525][ T8982] loop0: p6 start 1854537728 is beyond EOD, truncated [ 201.791540][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 201.792195][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 201.792853][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 201.817662][ T8982] loop0: p7 start 1854537728 is beyond EOD, truncated [ 201.824794][ T8982] loop0: p8 start 1854537728 is beyond EOD, truncated [ 201.838479][ T8982] loop0: p9 start 1854537728 is beyond EOD, truncated [ 201.841646][ T2856] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 201.858469][ T8982] loop0: p10 start 1854537728 is beyond EOD, truncated [ 201.865475][ T8982] loop0: p11 start 1854537728 is beyond EOD, truncated [ 201.885490][ T8907] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 201.894640][ T8982] loop0: p12 start 1854537728 is beyond EOD, truncated [ 201.900510][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 201.901636][ T8982] loop0: p13 start 1854537728 is beyond EOD, truncated [ 201.913040][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 201.916934][ T8982] loop0: p14 start 1854537728 is beyond EOD, truncated [ 201.925276][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 201.937643][ T8982] loop0: p15 start 1854537728 is beyond EOD, truncated [ 201.946540][ T8982] loop0: p16 start 1854537728 is beyond EOD, truncated [ 201.949473][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 201.960317][ T8982] loop0: p17 start 1854537728 is beyond EOD, truncated [ 201.968181][ T8982] loop0: p18 start 1854537728 is beyond EOD, truncated [ 201.975224][ T8982] loop0: p19 start 1854537728 is beyond EOD, truncated [ 201.982578][ T8982] loop0: p20 start 1854537728 is beyond EOD, truncated [ 201.985255][ T8910] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 201.996707][ T8982] loop0: p21 start 1854537728 is beyond EOD, truncated [ 202.003919][ T8982] loop0: p22 start 1854537728 is beyond EOD, truncated [ 202.011914][ T8982] loop0: p23 start 1854537728 is beyond EOD, truncated [ 202.018789][ T8982] loop0: p24 start 1854537728 is beyond EOD, truncated [ 202.025771][ T8982] loop0: p25 start 1854537728 is beyond EOD, truncated [ 202.033255][ T8982] loop0: p26 start 1854537728 is beyond EOD, truncated [ 202.040308][ T8982] loop0: p27 start 1854537728 is beyond EOD, truncated [ 202.047532][ T8982] loop0: p28 start 1854537728 is beyond EOD, truncated [ 202.054553][ T8982] loop0: p29 start 1854537728 is beyond EOD, truncated [ 202.061922][ T8982] loop0: p30 start 1854537728 is beyond EOD, truncated [ 202.069363][ T8982] loop0: p31 start 1854537728 is beyond EOD, truncated [ 202.076631][ T8982] loop0: p32 start 1854537728 is beyond EOD, truncated [ 202.083624][ T8982] loop0: p33 start 1854537728 is beyond EOD, truncated [ 202.087589][ T8910] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 202.090849][ T8982] loop0: p34 start 1854537728 is beyond EOD, truncated [ 202.090862][ T8982] loop0: p35 start 1854537728 is beyond EOD, truncated [ 202.090874][ T8982] loop0: p36 start 1854537728 is beyond EOD, truncated [ 202.090885][ T8982] loop0: p37 start 1854537728 is beyond EOD, truncated [ 202.090896][ T8982] loop0: p38 start 1854537728 is beyond EOD, truncated [ 202.090907][ T8982] loop0: p39 start 1854537728 is beyond EOD, truncated [ 202.090918][ T8982] loop0: p40 start 1854537728 is beyond EOD, truncated [ 202.090929][ T8982] loop0: p41 start 1854537728 is beyond EOD, truncated [ 202.090940][ T8982] loop0: p42 start 1854537728 is beyond EOD, truncated [ 202.090951][ T8982] loop0: p43 start 1854537728 is beyond EOD, truncated [ 202.090962][ T8982] loop0: p44 start 1854537728 is beyond EOD, truncated [ 202.090973][ T8982] loop0: p45 start 1854537728 is beyond EOD, truncated [ 202.090985][ T8982] loop0: p46 start 1854537728 is beyond EOD, truncated [ 202.090996][ T8982] loop0: p47 start 1854537728 is beyond EOD, truncated [ 202.091007][ T8982] loop0: p48 start 1854537728 is beyond EOD, truncated [ 202.091018][ T8982] loop0: p49 start 1854537728 is beyond EOD, truncated [ 202.091029][ T8982] loop0: p50 start 1854537728 is beyond EOD, truncated [ 202.091040][ T8982] loop0: p51 start 1854537728 is beyond EOD, truncated [ 202.091051][ T8982] loop0: p52 start 1854537728 is beyond EOD, truncated [ 202.091062][ T8982] loop0: p53 start 1854537728 is beyond EOD, truncated [ 202.091073][ T8982] loop0: p54 start 1854537728 is beyond EOD, truncated [ 202.091083][ T8982] loop0: p55 start 1854537728 is beyond EOD, truncated [ 202.091093][ T8982] loop0: p56 start 1854537728 is beyond EOD, truncated [ 202.091104][ T8982] loop0: p57 start 1854537728 is beyond EOD, truncated [ 202.091115][ T8982] loop0: p58 start 1854537728 is beyond EOD, truncated [ 202.091125][ T8982] loop0: p59 start 1854537728 is beyond EOD, truncated [ 202.091136][ T8982] loop0: p60 start 1854537728 is beyond EOD, truncated [ 202.091146][ T8982] loop0: p61 start 1854537728 is beyond EOD, truncated [ 202.091156][ T8982] loop0: p62 start 1854537728 is beyond EOD, truncated [ 202.091167][ T8982] loop0: p63 start 1854537728 is beyond EOD, truncated [ 202.091179][ T8982] loop0: p64 start 1854537728 is beyond EOD, truncated [ 202.091190][ T8982] loop0: p65 start 1854537728 is beyond EOD, truncated [ 202.091201][ T8982] loop0: p66 start 1854537728 is beyond EOD, truncated [ 202.091212][ T8982] loop0: p67 start 1854537728 is beyond EOD, truncated [ 202.091223][ T8982] loop0: p68 start 1854537728 is beyond EOD, truncated [ 202.091234][ T8982] loop0: p69 start 1854537728 is beyond EOD, truncated [ 202.091245][ T8982] loop0: p70 start 1854537728 is beyond EOD, truncated [ 202.091256][ T8982] loop0: p71 start 1854537728 is beyond EOD, truncated [ 202.091266][ T8982] loop0: p72 start 1854537728 is beyond EOD, truncated [ 202.091277][ T8982] loop0: p73 start 1854537728 is beyond EOD, truncated [ 202.091287][ T8982] loop0: p74 start 1854537728 is beyond EOD, truncated [ 202.091297][ T8982] loop0: p75 start 1854537728 is beyond EOD, truncated [ 202.091308][ T8982] loop0: p76 start 1854537728 is beyond EOD, truncated [ 202.091319][ T8982] loop0: p77 start 1854537728 is beyond EOD, truncated [ 202.091329][ T8982] loop0: p78 start 1854537728 is beyond EOD, truncated [ 202.091340][ T8982] loop0: p79 start 1854537728 is beyond EOD, truncated [ 202.091350][ T8982] loop0: p80 start 1854537728 is beyond EOD, truncated [ 202.091361][ T8982] loop0: p81 start 1854537728 is beyond EOD, truncated [ 202.091372][ T8982] loop0: p82 start 1854537728 is beyond EOD, truncated [ 202.091384][ T8982] loop0: p83 start 1854537728 is beyond EOD, truncated [ 202.091395][ T8982] loop0: p84 start 1854537728 is beyond EOD, truncated [ 202.091414][ T8982] loop0: p85 start 1854537728 is beyond EOD, truncated [ 202.091425][ T8982] loop0: p86 start 1854537728 is beyond EOD, truncated [ 202.091435][ T8982] loop0: p87 start 1854537728 is beyond EOD, truncated [ 202.091446][ T8982] loop0: p88 start 1854537728 is beyond EOD, truncated [ 202.091464][ T8982] loop0: p89 start 1854537728 is beyond EOD, truncated [ 202.150641][ T8982] loop0: p90 start 1854537728 is beyond EOD, truncated [ 202.492246][ T8982] loop0: p91 start 1854537728 is beyond EOD, truncated [ 202.499273][ T8982] loop0: p92 start 1854537728 is beyond EOD, truncated [ 202.507471][ T8982] loop0: p93 start 1854537728 is beyond EOD, truncated [ 202.514925][ T8982] loop0: p94 start 1854537728 is beyond EOD, truncated [ 202.521927][ T8982] loop0: p95 start 1854537728 is beyond EOD, truncated [ 202.528997][ T8982] loop0: p96 start 1854537728 is beyond EOD, truncated [ 202.540203][ T8982] loop0: p97 start 1854537728 is beyond EOD, truncated [ 202.547089][ T8982] loop0: p98 start 1854537728 is beyond EOD, truncated [ 202.555611][ T8982] loop0: p99 start 1854537728 is beyond EOD, truncated [ 202.562593][ T8982] loop0: p100 start 1854537728 is beyond EOD, truncated [ 202.569782][ T8982] loop0: p101 start 1854537728 is beyond EOD, truncated [ 202.600576][ T8982] loop0: p102 start 1854537728 is beyond EOD, truncated [ 202.607616][ T8982] loop0: p103 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 4: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0x0, 0x80, 0x0, 0x0, 0x1}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$SNDRV_TIMER_IOCTL_PVERSION(0xffffffffffffffff, 0x80045400, 0x0) sendmsg$xdp(0xffffffffffffffff, 0x0, 0x0) getpeername$packet(0xffffffffffffffff, 0x0, 0x0) socket(0x2000000000000021, 0x0, 0x0) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000003c0)={&(0x7f00000000c0), 0xc, &(0x7f0000000300)={&(0x7f0000000280)=@gettclass={0x28, 0x2a, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff1}, {0x0, 0xa}}}, 0x28}}, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x600, 'wrr\x00'}, 0x2c) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) 23:22:28 executing program 5: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000080)={0x84, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x600, 'wrr\x00'}, 0x2c) 23:22:28 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000f3ff95000000000000001739f486a0ef063f58e57c4f3c167972fc5489a4ef75c6020d447d9d0070d52bafd9c4365dde7f3bbfcb8129a6ef0ba516b4f002e9e67ef97a9029fd336949c2aba9c74e66b880084c49dc9d0654d6538094d26a9eacb2ae39233f0494a84bee05438afb2c0c710cdaee6d1639c8a46f7f20161953d412002048bf8f117b054e35b249bdca000c81d6ddd903a3083406d3746b10dd8184a31dc0fd9204d487c0e827c48e74be901c460b8b"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r2, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1, 0x0, 0x0, 0x3}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000540)='Z', 0x1}], 0x1}}], 0x2, 0x0) 23:22:28 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:28 executing program 2: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x0, 0x8d}, 0x0) socket(0x10, 0x0, 0x0) write(0xffffffffffffffff, &(0x7f0000000200)="fc00000049000701ac092500090007000aab0700080000000000e293210001c0000000000000000000000000090000f547472b4911ea50a79b384b46fe000000bc00020000036c6c256f1a272fdf0d11512fd633d44000000000008934d07302ade01720d7d5bbc91a3e2e80772c05f70c9ddef2fe082038f4f8b29d3ef3", 0x7e) sched_setattr(0x0, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) keyctl$restrict_keyring(0x1d, 0x0, 0x0, &(0x7f00000003c0)='\x00P\x9fV\xaf\xfa\xdd\xffu\xf0\xfb\xd5\xbd\xe9F,\x00;\xf1\x93>:\x81\xf0\x82:1\xef\xa9\xaeE?\xcdQ\xb8\xb9') clone(0xc0000000, 0x0, &(0x7f0000000300), &(0x7f0000000440), &(0x7f0000000540)="15758fe55e27aa88071885ed2b13972a5001ba55bbe6f5987b2e4cdf1c9b64103e35d6dcec45261a2f3e0f8a55b72131348b37212a2d0f1e2681737f749cbbd90c4148d264873dca0dfcba226b4ec4353a4d83afbf44b394bac20f47558b9ed0f014ba1aee47d2bd1ecea28bc128659d0c95655697c17ad7b84afc6bc72ef47f0543ae2ad80c18292d80") r0 = socket$inet6(0xa, 0x2, 0x0) recvmmsg(r0, &(0x7f0000008880), 0x0, 0x2000, 0x0) sendfile(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x7fffffff) pipe(&(0x7f0000000180)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x30, 0x2, 0x0, 0x0, 0x3, 0x4}, 0x0) mkdir(&(0x7f0000002000)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) symlink(&(0x7f0000000140)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38//../file0\x00', &(0x7f00000002c0)='./file0\x00') creat(&(0x7f0000000400)='./file0\x00', 0x0) [ 202.625425][ T8982] loop0: p104 start 1854537728 is beyond EOD, truncated [ 202.640788][ T8982] loop0: p105 start 1854537728 is beyond EOD, truncated [ 202.647836][ T8982] loop0: p106 start 1854537728 is beyond EOD, truncated [ 202.667080][ T8982] loop0: p107 start 1854537728 is beyond EOD, truncated [ 202.700270][ T8982] loop0: p108 start 1854537728 is beyond EOD, truncated [ 202.707393][ T8982] loop0: p109 start 1854537728 is beyond EOD, truncated [ 202.743628][ T8982] loop0: p110 start 1854537728 is beyond EOD, truncated [ 202.763873][ T9009] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead. [ 202.778121][ T8982] loop0: p111 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:28 executing program 5: openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) write$cgroup_pid(0xffffffffffffffff, 0x0, 0x0) close(0xffffffffffffffff) write$cgroup_type(0xffffffffffffffff, 0x0, 0x0) perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x1) r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000200)='/group.sta\x9f\xd4t\x00+\x04J{\t\xab\v\x02t\xe1\t\x85\xa6\xfa\x15\xb3[\xa6\x94!\xf2\x04\xde\xc5f\x8a\x06\x00\x00\x00\xb9\x0f\xf8`\xe0\x1f&+\xaf\xacu\nm\\\xe2Y\xcba\xea\f\xd9DXX>\xef/\xc5\x97\xea\x93\xa7\xde\xc9\xb4\x16\x8eF\x8b\xe0Wm\x1d\x0e\xbf\x8b\xc4G\x8f\x8e\xd8[T|i$\x88\x04\x00\x00\x00\x00\x00\x00\x00\x90\x1eB\x8b\x98\xad\xd17_Q\xe15\x84\x8f\xea\x98\xc6\xe3WE\x11\xe0\xc6\x1f\xf2/\xf6\x1f', 0x2761, 0x0) sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x26b, &(0x7f0000000f80), 0x1fa}, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x800, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f00000002c0)={0x0, 0x70, 0x0, 0x0, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xffffffff, 0x0, 0x3, 0x1, @perf_bp, 0x8000, 0x9, 0x1, 0xb, 0x100000001}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x9) r1 = socket$kcm(0x11, 0x0, 0x300) recvmsg$kcm(r1, &(0x7f0000002600)={&(0x7f0000002240)=@ll={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @local}, 0x80, 0x0}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x2, [], r2, 0x1, 0xffffffffffffffff, 0x8, &(0x7f0000000280)={0x9, 0x4}, 0x8, 0x10, 0x0}, 0x70) r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000400)='/dev/vga_arbiter\x00', 0x100, 0x0) getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, &(0x7f00000003c0)={'ipvs\x00'}, 0x0) ioctl$KVM_SET_NR_MMU_PAGES(r3, 0xae44, 0x0) ioctl$PERF_EVENT_IOC_PERIOD(r0, 0x4030582a, &(0x7f0000000000)) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) [ 202.812209][ T8982] loop0: p112 start 1854537728 is beyond EOD, truncated [ 202.814074][ T9007] IPVS: ftp: loaded support on port[0] = 21 [ 202.842052][ T8982] loop0: p113 start 1854537728 is beyond EOD, truncated [ 202.874704][ T8982] loop0: p114 start 1854537728 is beyond EOD, truncated [ 202.890310][ T8982] loop0: p115 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 4: r0 = socket$inet6(0xa, 0x400000000002, 0x0) connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x8000006}, 0x1c) sendmmsg(r0, &(0x7f0000000000)=[{{&(0x7f0000000580)=@in={0x2, 0x4e20, @multicast2}, 0x80, 0x0}}], 0x1, 0x0) [ 202.924334][ T8982] loop0: p116 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, &(0x7f0000e5b000)={0x2, 0x4e20, @multicast1}, 0x10) connect$inet(r0, &(0x7f0000ccb000)={0x2, 0x4e20}, 0x10) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000f3ff95000000000000001739f486a0ef063f58e57c4f3c167972fc5489a4ef75c6020d447d9d0070d52bafd9c4365dde7f3bbfcb8129a6ef0ba516b4f002e9e67ef97a9029fd336949c2aba9c74e66b880084c49dc9d0654d6538094d26a9eacb2ae39233f0494a84bee05438afb2c0c710cdaee6d1639c8a46f7f20161953d412002048bf8f117b054e35b249bdca000c81d6ddd903a3083406d3746b10dd8184a31dc0fd9204d487c0e827c48e74be901c460b8b"], &(0x7f00002bf000)='syzkaller\x00', 0x4, 0x436, &(0x7f0000000040)=""/183}, 0x48) r2 = socket$kcm(0x29, 0x1000000000002, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r2, 0x89e0, &(0x7f000031aff8)={r0, r1}) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendmmsg$inet(r2, &(0x7f0000000e80)=[{{0x0, 0x0, &(0x7f0000000400)=[{0x0}], 0x1, 0x0, 0x0, 0x3}}, {{0x0, 0x0, &(0x7f00000008c0)=[{&(0x7f0000000540)='Z', 0x1}], 0x1}}], 0x2, 0x0) [ 203.000556][ T8982] loop0: p117 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) [ 203.058072][ T8982] loop0: p118 start 1854537728 is beyond EOD, truncated [ 203.113420][ T8982] loop0: p119 start 1854537728 is beyond EOD, truncated [ 203.146546][ T8982] loop0: p120 start 1854537728 is beyond EOD, truncated 23:22:28 executing program 4: capset(&(0x7f0000000180)={0x20071026}, &(0x7f0000000100)) openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x60440, 0x0) [ 203.193670][ T8982] loop0: p121 start 1854537728 is beyond EOD, truncated [ 203.263994][ T8982] loop0: p122 start 1854537728 is beyond EOD, truncated [ 203.290675][ T8982] loop0: p123 start 1854537728 is beyond EOD, truncated [ 203.297664][ T8982] loop0: p124 start 1854537728 is beyond EOD, truncated [ 203.317396][ T9044] capability: warning: `syz-executor.4' uses deprecated v2 capabilities in a way that may be insecure [ 203.390715][ T8982] loop0: p125 start 1854537728 is beyond EOD, truncated [ 203.436379][ T8982] loop0: p126 start 1854537728 is beyond EOD, truncated [ 203.448488][ T8982] loop0: p127 start 1854537728 is beyond EOD, truncated [ 203.465691][ T8982] loop0: p128 start 1854537728 is beyond EOD, truncated [ 203.487249][ T8982] loop0: p129 start 1854537728 is beyond EOD, truncated [ 203.516756][ T8982] loop0: p130 start 1854537728 is beyond EOD, truncated [ 203.540198][ T8982] loop0: p131 start 1854537728 is beyond EOD, truncated [ 203.547187][ T8982] loop0: p132 start 1854537728 is beyond EOD, truncated [ 203.570770][ T9007] IPVS: ftp: loaded support on port[0] = 21 [ 203.574363][ T8982] loop0: p133 start 1854537728 is beyond EOD, truncated [ 203.584157][ T8982] loop0: p134 start 1854537728 is beyond EOD, truncated [ 203.591620][ T8982] loop0: p135 start 1854537728 is beyond EOD, truncated [ 203.598586][ T8982] loop0: p136 start 1854537728 is beyond EOD, truncated [ 203.605648][ T8982] loop0: p137 start 1854537728 is beyond EOD, truncated [ 203.613282][ T8982] loop0: p138 start 1854537728 is beyond EOD, truncated [ 203.620740][ T8982] loop0: p139 start 1854537728 is beyond EOD, truncated [ 203.627819][ T8982] loop0: p140 start 1854537728 is beyond EOD, truncated [ 203.635728][ T8982] loop0: p141 start 1854537728 is beyond EOD, truncated [ 203.642996][ T8982] loop0: p142 start 1854537728 is beyond EOD, truncated [ 203.650054][ T8982] loop0: p143 start 1854537728 is beyond EOD, truncated [ 203.657325][ T8982] loop0: p144 start 1854537728 is beyond EOD, truncated [ 203.664564][ T8982] loop0: p145 start 1854537728 is beyond EOD, truncated [ 203.671966][ T8982] loop0: p146 start 1854537728 is beyond EOD, truncated [ 203.678996][ T8982] loop0: p147 start 1854537728 is beyond EOD, truncated [ 203.686188][ T8982] loop0: p148 start 1854537728 is beyond EOD, truncated [ 203.694402][ T8982] loop0: p149 start 1854537728 is beyond EOD, truncated [ 203.701925][ T8982] loop0: p150 start 1854537728 is beyond EOD, truncated [ 203.708974][ T8982] loop0: p151 start 1854537728 is beyond EOD, truncated [ 203.719692][ T8982] loop0: p152 start 1854537728 is beyond EOD, truncated [ 203.727117][ T8982] loop0: p153 start 1854537728 is beyond EOD, truncated [ 203.734541][ T8982] loop0: p154 start 1854537728 is beyond EOD, truncated [ 203.741874][ T8982] loop0: p155 start 1854537728 is beyond EOD, truncated [ 203.748814][ T8982] loop0: p156 start 1854537728 is beyond EOD, truncated [ 203.748826][ T8982] loop0: p157 start 1854537728 is beyond EOD, truncated [ 203.748836][ T8982] loop0: p158 start 1854537728 is beyond EOD, truncated [ 203.748847][ T8982] loop0: p159 start 1854537728 is beyond EOD, truncated [ 203.748858][ T8982] loop0: p160 start 1854537728 is beyond EOD, truncated [ 203.748873][ T8982] loop0: p161 start 1854537728 is beyond EOD, truncated [ 203.748881][ T8982] loop0: p162 start 1854537728 is beyond EOD, truncated [ 203.748889][ T8982] loop0: p163 start 1854537728 is beyond EOD, truncated [ 203.748902][ T8982] loop0: p164 start 1854537728 is beyond EOD, truncated [ 203.763748][ T8982] loop0: p165 start 1854537728 is beyond EOD, truncated [ 203.777566][ T8982] loop0: p166 start 1854537728 is beyond EOD, truncated [ 203.800216][ T8982] loop0: p167 start 1854537728 is beyond EOD, truncated [ 203.812584][ T8982] loop0: p168 start 1854537728 is beyond EOD, truncated [ 203.840078][ T8982] loop0: p169 start 1854537728 is beyond EOD, truncated [ 203.847377][ T8982] loop0: p170 start 1854537728 is beyond EOD, truncated [ 203.855644][ T8982] loop0: p171 start 1854537728 is beyond EOD, truncated [ 203.864080][ T8982] loop0: p172 start 1854537728 is beyond EOD, truncated [ 203.872360][ T8982] loop0: p173 start 1854537728 is beyond EOD, truncated [ 203.879351][ T8982] loop0: p174 start 1854537728 is beyond EOD, truncated [ 203.879363][ T8982] loop0: p175 start 1854537728 is beyond EOD, truncated [ 203.879375][ T8982] loop0: p176 start 1854537728 is beyond EOD, truncated [ 203.879386][ T8982] loop0: p177 start 1854537728 is beyond EOD, truncated [ 203.879402][ T8982] loop0: p178 start 1854537728 is beyond EOD, truncated [ 203.901839][ T8982] loop0: p179 start 1854537728 is beyond EOD, truncated [ 203.922834][ T8982] loop0: p180 start 1854537728 is beyond EOD, truncated [ 203.922846][ T8982] loop0: p181 start 1854537728 is beyond EOD, truncated [ 203.922857][ T8982] loop0: p182 start 1854537728 is beyond EOD, truncated [ 203.922867][ T8982] loop0: p183 start 1854537728 is beyond EOD, truncated [ 203.922877][ T8982] loop0: p184 start 1854537728 is beyond EOD, truncated [ 203.922893][ T8982] loop0: p185 start 1854537728 is beyond EOD, truncated [ 203.922909][ T8982] loop0: p186 start 1854537728 is beyond EOD, truncated [ 203.922920][ T8982] loop0: p187 start 1854537728 is beyond EOD, truncated [ 203.922931][ T8982] loop0: p188 start 1854537728 is beyond EOD, truncated [ 203.922942][ T8982] loop0: p189 start 1854537728 is beyond EOD, truncated [ 203.922952][ T8982] loop0: p190 start 1854537728 is beyond EOD, truncated [ 203.922967][ T8982] loop0: p191 start 1854537728 is beyond EOD, truncated [ 203.936861][ T8982] loop0: p192 start 1854537728 is beyond EOD, truncated [ 203.965708][ T8982] loop0: p193 start 1854537728 is beyond EOD, truncated [ 203.965719][ T8982] loop0: p194 start 1854537728 is beyond EOD, truncated [ 203.965727][ T8982] loop0: p195 start 1854537728 is beyond EOD, truncated [ 203.965735][ T8982] loop0: p196 start 1854537728 is beyond EOD, truncated [ 203.965742][ T8982] loop0: p197 start 1854537728 is beyond EOD, truncated [ 203.965750][ T8982] loop0: p198 start 1854537728 is beyond EOD, truncated [ 203.965757][ T8982] loop0: p199 start 1854537728 is beyond EOD, truncated [ 203.965766][ T8982] loop0: p200 start 1854537728 is beyond EOD, truncated [ 203.965774][ T8982] loop0: p201 start 1854537728 is beyond EOD, truncated [ 203.965782][ T8982] loop0: p202 start 1854537728 is beyond EOD, truncated [ 203.965791][ T8982] loop0: p203 start 1854537728 is beyond EOD, truncated [ 203.965800][ T8982] loop0: p204 start 1854537728 is beyond EOD, truncated [ 203.965809][ T8982] loop0: p205 start 1854537728 is beyond EOD, truncated [ 203.965818][ T8982] loop0: p206 start 1854537728 is beyond EOD, truncated [ 203.965827][ T8982] loop0: p207 start 1854537728 is beyond EOD, truncated [ 203.965836][ T8982] loop0: p208 start 1854537728 is beyond EOD, truncated [ 203.965845][ T8982] loop0: p209 start 1854537728 is beyond EOD, truncated [ 203.965853][ T8982] loop0: p210 start 1854537728 is beyond EOD, truncated [ 203.965862][ T8982] loop0: p211 start 1854537728 is beyond EOD, truncated [ 203.965871][ T8982] loop0: p212 start 1854537728 is beyond EOD, truncated [ 203.965879][ T8982] loop0: p213 start 1854537728 is beyond EOD, truncated [ 203.965897][ T8982] loop0: p214 start 1854537728 is beyond EOD, truncated [ 203.965906][ T8982] loop0: p215 start 1854537728 is beyond EOD, truncated [ 203.965915][ T8982] loop0: p216 start 1854537728 is beyond EOD, truncated [ 203.965924][ T8982] loop0: p217 start 1854537728 is beyond EOD, truncated [ 203.965933][ T8982] loop0: p218 start 1854537728 is beyond EOD, truncated [ 203.965941][ T8982] loop0: p219 start 1854537728 is beyond EOD, truncated [ 203.965950][ T8982] loop0: p220 start 1854537728 is beyond EOD, truncated [ 203.965958][ T8982] loop0: p221 start 1854537728 is beyond EOD, truncated [ 203.965966][ T8982] loop0: p222 start 1854537728 is beyond EOD, truncated [ 203.965975][ T8982] loop0: p223 start 1854537728 is beyond EOD, truncated [ 203.965984][ T8982] loop0: p224 start 1854537728 is beyond EOD, truncated [ 203.965992][ T8982] loop0: p225 start 1854537728 is beyond EOD, truncated [ 203.966001][ T8982] loop0: p226 start 1854537728 is beyond EOD, truncated [ 203.966009][ T8982] loop0: p227 start 1854537728 is beyond EOD, truncated [ 203.966018][ T8982] loop0: p228 start 1854537728 is beyond EOD, truncated [ 203.966027][ T8982] loop0: p229 start 1854537728 is beyond EOD, truncated [ 203.966036][ T8982] loop0: p230 start 1854537728 is beyond EOD, truncated [ 203.966046][ T8982] loop0: p231 start 1854537728 is beyond EOD, truncated [ 203.966055][ T8982] loop0: p232 start 1854537728 is beyond EOD, truncated [ 203.966065][ T8982] loop0: p233 start 1854537728 is beyond EOD, truncated [ 203.966074][ T8982] loop0: p234 start 1854537728 is beyond EOD, truncated [ 203.966082][ T8982] loop0: p235 start 1854537728 is beyond EOD, truncated [ 203.966092][ T8982] loop0: p236 start 1854537728 is beyond EOD, truncated [ 203.966101][ T8982] loop0: p237 start 1854537728 is beyond EOD, truncated [ 203.966111][ T8982] loop0: p238 start 1854537728 is beyond EOD, truncated [ 203.966121][ T8982] loop0: p239 start 1854537728 is beyond EOD, truncated [ 203.966132][ T8982] loop0: p240 start 1854537728 is beyond EOD, truncated [ 203.966142][ T8982] loop0: p241 start 1854537728 is beyond EOD, truncated [ 203.966152][ T8982] loop0: p242 start 1854537728 is beyond EOD, truncated [ 203.966162][ T8982] loop0: p243 start 1854537728 is beyond EOD, truncated [ 203.966172][ T8982] loop0: p244 start 1854537728 is beyond EOD, truncated [ 203.966183][ T8982] loop0: p245 start 1854537728 is beyond EOD, truncated [ 203.966193][ T8982] loop0: p246 start 1854537728 is beyond EOD, truncated [ 203.966203][ T8982] loop0: p247 start 1854537728 is beyond EOD, truncated [ 203.966214][ T8982] loop0: p248 start 1854537728 is beyond EOD, truncated [ 203.966223][ T8982] loop0: p249 start 1854537728 is beyond EOD, truncated [ 203.966235][ T8982] loop0: p250 start 1854537728 is beyond EOD, truncated [ 203.966246][ T8982] loop0: p251 start 1854537728 is beyond EOD, truncated [ 203.966256][ T8982] loop0: p252 start 1854537728 is beyond EOD, truncated [ 203.966268][ T8982] loop0: p253 start 1854537728 is beyond EOD, truncated [ 203.966278][ T8982] loop0: p254 start 1854537728 is beyond EOD, truncated [ 203.966288][ T8982] loop0: p255 start 1854537728 is beyond EOD, truncated 23:22:30 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x1}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) syz_read_part_table(0x0, 0x1, &(0x7f0000000480)=[{&(0x7f0000010000)="02006800000f000000000000000000008128b14700000000d59863d20000000002000f2020cc00000000ff0700740000000000000000000000000000000000000000000000000000000000000000000000000000000000008a6e94c0000055aa", 0x60, 0x1a0}]) 23:22:30 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:30 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$KVM_SET_NESTED_STATE(r2, 0x4080aebf, &(0x7f0000000980)={0x0, 0x0, 0x2080, {}, [], "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", "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"}) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) r6 = fcntl$dupfd(r4, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) dup2(r3, r2) 23:22:30 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000)='/dev/net/tun\x00', 0x802, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000340)={'nr0\x01\x00', 0x1002}) r1 = socket$kcm(0x29, 0x5, 0x0) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000ac0)='nr0\x01\x00`\xa1\x9e\xf9\xd2\xc6s\xd9\xa1W\x1c\xb9\xe16\x9b\xcda\xef~Iy:\xe1\x87\x12\xec\xeb\x1d\xaav\x94\x01\x00\x01\x00\xbb\xd3[\x17\f\x10u\x1d9\xae\xb6a\xd8c\xe4\x9b\x8cO;=\xadH\x90+[-l\xfd\n\xbd7,c\xbc\xf5\xd7\r\xf3\xfdM.\x8dD<\x88\xbc\x0eV7\xdd45\xbe\xd4\xde]i<\x9ax\x1c\x86>\x05\xd8\xa6\xf8h\x9a[\xe2\x92\x16\x06\x1f?\xf1X\x8bk9fx\xe7\xba\x156\x04\x15-~C\xb1\xec\xcb#1\xeb\x8e\xb1\xedU\x86\xdc\xf8\xb3\xb0\xb9\x996\x1aD\xff,\"\xc2\xab\xbe\xf4-\xd2N\xab\xe6r3F\xa6\xe4m\x04\x99\xa2\x14B\xd8\xd0\r\xcbW\xf0\x13\xffu\x95\xed\xd0\xff\ai0\xde6u\xd3A\x17\xa4N\xb0\xe4\xf82\x93\xd7|\xde^U\x11\x02\x1dm\xa4NW\xe4:>6\xbdH\xd2\xa8[\xf4\xfdJ\x80N\x83\xf2\xf3\xcf7\x8a\xca\x91\xe5u#D\xbd\xdfCZ\xf5\xe2\x87\xd4\xe2s7\xb4\xad\xa1\x1b&!\x982\xeck+8Dk;\x95\xfe7q\xe9\xf4,\xa3\x0f\xb2\x1e\x12\xf0\xa3\xd8\xbc-\x85EJ\xf9\xfc\xc0#-\x8f\xd9\tD\x8b\x01\xf4lY=1\xea\x1c\x92de\xe3ZA\x99\a\x9c<\xa4\x11(\xb1|\xb0\x1f\xbf[R\x01\x00\xfd\x02\x02*\xda7\xfe\xcc\x14\xb6\xc8\xc8\x83\x18\x83\xb8Z\x11\x06\xf2\xf8g\x02\rR\x9f\x17\xa3P\xf2\r\xd3\xbfQ\xa9\x8c\xfd\xa7\f\f\x9d\xcb\x11\x83\xfd?\x87\x94\v\xb4x\xb0|L\x11\x03\x94\xc0\r=\x17\x95P\x89\xf2\xca\x97\xbb\xe0u\x12L\x9b\x85\x96\xe0\b\xbf\n\x02\x1bR\r>\xd1P\x10;\xb9o\xc2>\t\x0eZ9\x0f\xa1\xc2\x96\x1c\xff\xca\x98\xa8$sj\x99\b\xc7\x94F \xfd\x11H\xc3\xaaM\x8a\x98\x96\xd5\xab\xc6\x01\n1\bN\x14\xd5\fp\x8e\xd7\n^\xa0\xbfP\xd4\xd0~\xach#5\xd9\x11\xba\xb9Z\x95\xe7z\xec\xf7\x01V\xce\xcd\xc39\xb3\xa2\x8b\xd6H\x9bhsK\xbd\x9a/\xc9\xd3\x9f\xbb') write$cgroup_subtree(r0, &(0x7f0000000040)=ANY=[@ANYBLOB="00030e80493f1ec2cec9607e8864c45700d7026b826c9427809b4aac96ce8f706220e809624ea06de6e411393b23519f1d0ee2be0da28a3e2dc3b84b183afeb440b598675ac2b98b3f695c92967a856be80db869e97d2096605a44592a8fcd0e1a31ae16f1c5efc8048155727443abf0245f5b6dcfe4ef91"], 0xfdef) 23:22:30 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) 23:22:30 executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f0000000500)={0x0, 0x70, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)=0x14) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x0, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) [ 204.556107][ T9057] device nr0 entered promiscuous mode 23:22:30 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:30 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) [ 204.792290][ T9066] loop0: p1 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 [ 204.792304][ T9066] loop0: partition table partially beyond EOD, [ 204.891557][ T9066] truncated [ 204.895143][ T9066] loop0: p1 size 2 extends beyond EOD, truncated [ 204.908672][ T9066] loop0: p4 start 1854537728 is beyond EOD, truncated [ 204.916072][ T9066] loop0: p5 start 1854537728 is beyond EOD, truncated [ 204.928891][ T9066] loop0: p6 start 1854537728 is beyond EOD, truncated [ 204.949773][ T9066] loop0: p7 start 1854537728 is beyond EOD, truncated [ 204.967930][ T9074] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 204.976144][ T9066] loop0: p8 start 1854537728 is beyond EOD, truncated [ 204.989655][ T9066] loop0: p9 start 1854537728 is beyond EOD, truncated [ 204.996958][ T9066] loop0: p10 start 1854537728 is beyond EOD, truncated [ 205.006544][ T9066] loop0: p11 start 1854537728 is beyond EOD, truncated [ 205.013695][ T9066] loop0: p12 start 1854537728 is beyond EOD, truncated [ 205.020832][ T9066] loop0: p13 start 1854537728 is beyond EOD, truncated [ 205.028291][ T9066] loop0: p14 start 1854537728 is beyond EOD, truncated [ 205.035453][ T9066] loop0: p15 start 1854537728 is beyond EOD, truncated [ 205.042651][ T9066] loop0: p16 start 1854537728 is beyond EOD, truncated [ 205.049758][ T9066] loop0: p17 start 1854537728 is beyond EOD, truncated [ 205.059927][ T9066] loop0: p18 start 1854537728 is beyond EOD, truncated [ 205.067109][ T9066] loop0: p19 start 1854537728 is beyond EOD, truncated [ 205.074785][ T9066] loop0: p20 start 1854537728 is beyond EOD, truncated [ 205.086904][ T9066] loop0: p21 start 1854537728 is beyond EOD, truncated 23:22:30 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) [ 205.094231][ T9066] loop0: p22 start 1854537728 is beyond EOD, truncated [ 205.107545][ T9066] loop0: p23 start 1854537728 is beyond EOD, truncated [ 205.114858][ T9066] loop0: p24 start 1854537728 is beyond EOD, truncated [ 205.128134][ T9066] loop0: p25 start 1854537728 is beyond EOD, truncated [ 205.135370][ T9066] loop0: p26 start 1854537728 is beyond EOD, truncated [ 205.148942][ T9066] loop0: p27 start 1854537728 is beyond EOD, truncated [ 205.159104][ T9066] loop0: p28 start 1854537728 is beyond EOD, truncated [ 205.170389][ T9066] loop0: p29 start 1854537728 is beyond EOD, truncated [ 205.179941][ T9066] loop0: p30 start 1854537728 is beyond EOD, truncated [ 205.200223][ T9066] loop0: p31 start 1854537728 is beyond EOD, truncated [ 205.207109][ T9066] loop0: p32 start 1854537728 is beyond EOD, truncated [ 205.225927][ T9066] loop0: p33 start 1854537728 is beyond EOD, truncated [ 205.232874][ T9066] loop0: p34 start 1854537728 is beyond EOD, truncated [ 205.232888][ T9066] loop0: p35 start 1854537728 is beyond EOD, truncated [ 205.232903][ T9066] loop0: p36 start 1854537728 is beyond EOD, truncated [ 205.232914][ T9066] loop0: p37 start 1854537728 is beyond EOD, truncated [ 205.232925][ T9066] loop0: p38 start 1854537728 is beyond EOD, truncated [ 205.232936][ T9066] loop0: p39 start 1854537728 is beyond EOD, truncated [ 205.232946][ T9066] loop0: p40 start 1854537728 is beyond EOD, truncated [ 205.232955][ T9066] loop0: p41 start 1854537728 is beyond EOD, truncated [ 205.232967][ T9066] loop0: p42 start 1854537728 is beyond EOD, truncated [ 205.232977][ T9066] loop0: p43 start 1854537728 is beyond EOD, truncated [ 205.232986][ T9066] loop0: p44 start 1854537728 is beyond EOD, truncated [ 205.232997][ T9066] loop0: p45 start 1854537728 is beyond EOD, truncated [ 205.233007][ T9066] loop0: p46 start 1854537728 is beyond EOD, truncated [ 205.233017][ T9066] loop0: p47 start 1854537728 is beyond EOD, truncated [ 205.233027][ T9066] loop0: p48 start 1854537728 is beyond EOD, truncated [ 205.233036][ T9066] loop0: p49 start 1854537728 is beyond EOD, truncated [ 205.233047][ T9066] loop0: p50 start 1854537728 is beyond EOD, truncated 23:22:31 executing program 5: r0 = syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) [ 205.233058][ T9066] loop0: p51 start 1854537728 is beyond EOD, truncated [ 205.233069][ T9066] loop0: p52 start 1854537728 is beyond EOD, truncated [ 205.233078][ T9066] loop0: p53 start 1854537728 is beyond EOD, truncated [ 205.233088][ T9066] loop0: p54 start 1854537728 is beyond EOD, truncated [ 205.233099][ T9066] loop0: p55 start 1854537728 is beyond EOD, truncated [ 205.233109][ T9066] loop0: p56 start 1854537728 is beyond EOD, truncated [ 205.233118][ T9066] loop0: p57 start 1854537728 is beyond EOD, truncated [ 205.233126][ T9066] loop0: p58 start 1854537728 is beyond EOD, truncated [ 205.233136][ T9066] loop0: p59 start 1854537728 is beyond EOD, truncated [ 205.233145][ T9066] loop0: p60 start 1854537728 is beyond EOD, truncated [ 205.233154][ T9066] loop0: p61 start 1854537728 is beyond EOD, truncated [ 205.233163][ T9066] loop0: p62 start 1854537728 is beyond EOD, truncated [ 205.233173][ T9066] loop0: p63 start 1854537728 is beyond EOD, truncated [ 205.233184][ T9066] loop0: p64 start 1854537728 is beyond EOD, truncated [ 205.233195][ T9066] loop0: p65 start 1854537728 is beyond EOD, truncated [ 205.233205][ T9066] loop0: p66 start 1854537728 is beyond EOD, truncated [ 205.233215][ T9066] loop0: p67 start 1854537728 is beyond EOD, truncated [ 205.233226][ T9066] loop0: p68 start 1854537728 is beyond EOD, truncated [ 205.233241][ T9066] loop0: p69 start 1854537728 is beyond EOD, truncated [ 205.233251][ T9066] loop0: p70 start 1854537728 is beyond EOD, truncated [ 205.254325][ T9066] loop0: p71 start 1854537728 is beyond EOD, truncated [ 205.254344][ T9066] loop0: p72 start 1854537728 is beyond EOD, truncated [ 205.280160][ T9066] loop0: p73 start 1854537728 is beyond EOD, truncated [ 205.288836][ T9066] loop0: p74 start 1854537728 is beyond EOD, truncated [ 205.288848][ T9066] loop0: p75 start 1854537728 is beyond EOD, truncated [ 205.288859][ T9066] loop0: p76 start 1854537728 is beyond EOD, truncated [ 205.288870][ T9066] loop0: p77 start 1854537728 is beyond EOD, truncated [ 205.288880][ T9066] loop0: p78 start 1854537728 is beyond EOD, truncated 23:22:31 executing program 5: poll(&(0x7f0000000300)=[{}], 0x1, 0x0) [ 205.288892][ T9066] loop0: p79 start 1854537728 is beyond EOD, truncated [ 205.288902][ T9066] loop0: p80 start 1854537728 is beyond EOD, truncated [ 205.288913][ T9066] loop0: p81 start 1854537728 is beyond EOD, truncated [ 205.288925][ T9066] loop0: p82 start 1854537728 is beyond EOD, truncated [ 205.288937][ T9066] loop0: p83 start 1854537728 is beyond EOD, truncated [ 205.288947][ T9066] loop0: p84 start 1854537728 is beyond EOD, truncated [ 205.288959][ T9066] loop0: p85 start 1854537728 is beyond EOD, truncated [ 205.288969][ T9066] loop0: p86 start 1854537728 is beyond EOD, truncated [ 205.288984][ T9066] loop0: p87 start 1854537728 is beyond EOD, truncated [ 205.311492][ T9066] loop0: p88 start 1854537728 is beyond EOD, truncated [ 205.360263][ T9066] loop0: p89 start 1854537728 is beyond EOD, truncated [ 205.429444][ T9066] loop0: p90 start 1854537728 is beyond EOD, truncated [ 205.451808][ T9066] loop0: p91 start 1854537728 is beyond EOD, truncated [ 205.550460][ T9066] loop0: p92 start 1854537728 is beyond EOD, truncated [ 205.581468][ T9066] loop0: p93 start 1854537728 is beyond EOD, truncated 23:22:31 executing program 5: poll(&(0x7f0000000300)=[{}], 0x1, 0x0) [ 205.596066][ T9066] loop0: p94 start 1854537728 is beyond EOD, truncated [ 205.604278][ T9066] loop0: p95 start 1854537728 is beyond EOD, truncated [ 205.604293][ T9066] loop0: p96 start 1854537728 is beyond EOD, truncated [ 205.604311][ T9066] loop0: p97 start 1854537728 is beyond EOD, truncated [ 205.715198][ T9066] loop0: p98 start 1854537728 is beyond EOD, truncated [ 205.757665][ T9066] loop0: p99 start 1854537728 is beyond EOD, truncated [ 205.796658][ T9066] loop0: p100 start 1854537728 is beyond EOD, truncated [ 205.856010][ T9066] loop0: p101 start 1854537728 is beyond EOD, truncated [ 205.887995][ T9066] loop0: p102 start 1854537728 is beyond EOD, truncated [ 205.925831][ T9057] device nr0 entered promiscuous mode [ 205.936548][ T9066] loop0: p103 start 1854537728 is beyond EOD, truncated [ 205.975327][ T9066] loop0: p104 start 1854537728 is beyond EOD, truncated [ 205.983692][ T9066] loop0: p105 start 1854537728 is beyond EOD, truncated [ 205.995991][ T9066] loop0: p106 start 1854537728 is beyond EOD, truncated [ 206.004038][ T9066] loop0: p107 start 1854537728 is beyond EOD, truncated [ 206.016840][ T9066] loop0: p108 start 1854537728 is beyond EOD, truncated [ 206.025089][ T9066] loop0: p109 start 1854537728 is beyond EOD, truncated [ 206.037986][ T9066] loop0: p110 start 1854537728 is beyond EOD, truncated [ 206.046083][ T9066] loop0: p111 start 1854537728 is beyond EOD, truncated [ 206.058367][ T9066] loop0: p112 start 1854537728 is beyond EOD, truncated [ 206.066452][ T9066] loop0: p113 start 1854537728 is beyond EOD, truncated [ 206.079374][ T9066] loop0: p114 start 1854537728 is beyond EOD, truncated [ 206.087825][ T9066] loop0: p115 start 1854537728 is beyond EOD, truncated [ 206.099994][ T9066] loop0: p116 start 1854537728 is beyond EOD, truncated [ 206.108075][ T9066] loop0: p117 start 1854537728 is beyond EOD, truncated [ 206.121274][ T9066] loop0: p118 start 1854537728 is beyond EOD, truncated [ 206.128312][ T9066] loop0: p119 start 1854537728 is beyond EOD, truncated [ 206.141449][ T9066] loop0: p120 start 1854537728 is beyond EOD, truncated [ 206.148648][ T9066] loop0: p121 start 1854537728 is beyond EOD, truncated [ 206.155755][ T9066] loop0: p122 start 1854537728 is beyond EOD, truncated [ 206.165302][ T9066] loop0: p123 start 1854537728 is beyond EOD, truncated [ 206.172319][ T9066] loop0: p124 start 1854537728 is beyond EOD, truncated [ 206.172331][ T9066] loop0: p125 start 1854537728 is beyond EOD, truncated [ 206.172343][ T9066] loop0: p126 start 1854537728 is beyond EOD, truncated [ 206.172353][ T9066] loop0: p127 start 1854537728 is beyond EOD, truncated [ 206.172362][ T9066] loop0: p128 start 1854537728 is beyond EOD, truncated [ 206.172372][ T9066] loop0: p129 start 1854537728 is beyond EOD, truncated [ 206.172382][ T9066] loop0: p130 start 1854537728 is beyond EOD, truncated [ 206.172398][ T9066] loop0: p131 start 1854537728 is beyond EOD, truncated [ 206.172407][ T9066] loop0: p132 start 1854537728 is beyond EOD, truncated [ 206.186388][ T9066] loop0: p133 start 1854537728 is beyond EOD, truncated [ 206.201371][ T9066] loop0: p134 start 1854537728 is beyond EOD, truncated [ 206.201384][ T9066] loop0: p135 start 1854537728 is beyond EOD, truncated [ 206.201395][ T9066] loop0: p136 start 1854537728 is beyond EOD, truncated [ 206.201407][ T9066] loop0: p137 start 1854537728 is beyond EOD, truncated [ 206.201417][ T9066] loop0: p138 start 1854537728 is beyond EOD, truncated [ 206.201428][ T9066] loop0: p139 start 1854537728 is beyond EOD, truncated [ 206.201439][ T9066] loop0: p140 start 1854537728 is beyond EOD, truncated [ 206.201450][ T9066] loop0: p141 start 1854537728 is beyond EOD, truncated [ 206.201466][ T9066] loop0: p142 start 1854537728 is beyond EOD, truncated [ 206.215398][ T9066] loop0: p143 start 1854537728 is beyond EOD, truncated [ 206.229280][ T9066] loop0: p144 start 1854537728 is beyond EOD, truncated [ 206.229293][ T9066] loop0: p145 start 1854537728 is beyond EOD, truncated [ 206.229304][ T9066] loop0: p146 start 1854537728 is beyond EOD, truncated [ 206.229315][ T9066] loop0: p147 start 1854537728 is beyond EOD, truncated [ 206.243331][ T9066] loop0: p148 start 1854537728 is beyond EOD, truncated [ 206.257208][ T9066] loop0: p149 start 1854537728 is beyond EOD, truncated [ 206.272158][ T9066] loop0: p150 start 1854537728 is beyond EOD, truncated [ 206.286664][ T9066] loop0: p151 start 1854537728 is beyond EOD, truncated [ 206.299358][ T9066] loop0: p152 start 1854537728 is beyond EOD, truncated [ 206.313400][ T9066] loop0: p153 start 1854537728 is beyond EOD, truncated [ 206.329627][ T9066] loop0: p154 start 1854537728 is beyond EOD, truncated [ 206.341385][ T9066] loop0: p155 start 1854537728 is beyond EOD, truncated [ 206.360242][ T9066] loop0: p156 start 1854537728 is beyond EOD, truncated [ 206.371027][ T9066] loop0: p157 start 1854537728 is beyond EOD, truncated [ 206.391877][ T9066] loop0: p158 start 1854537728 is beyond EOD, truncated [ 206.409700][ T9066] loop0: p159 start 1854537728 is beyond EOD, truncated [ 206.420838][ T9066] loop0: p160 start 1854537728 is beyond EOD, truncated [ 206.437798][ T9066] loop0: p161 start 1854537728 is beyond EOD, truncated [ 206.450208][ T9066] loop0: p162 start 1854537728 is beyond EOD, truncated [ 206.457200][ T9066] loop0: p163 start 1854537728 is beyond EOD, truncated [ 206.472448][ T9066] loop0: p164 start 1854537728 is beyond EOD, truncated [ 206.495817][ T9066] loop0: p165 start 1854537728 is beyond EOD, truncated [ 206.503085][ T9066] loop0: p166 start 1854537728 is beyond EOD, truncated [ 206.510054][ T9066] loop0: p167 start 1854537728 is beyond EOD, truncated [ 206.517699][ T9066] loop0: p168 start 1854537728 is beyond EOD, truncated [ 206.524869][ T9066] loop0: p169 start 1854537728 is beyond EOD, truncated [ 206.532595][ T9066] loop0: p170 start 1854537728 is beyond EOD, truncated [ 206.539531][ T9066] loop0: p171 start 1854537728 is beyond EOD, truncated [ 206.546561][ T9066] loop0: p172 start 1854537728 is beyond EOD, truncated [ 206.553628][ T9066] loop0: p173 start 1854537728 is beyond EOD, truncated [ 206.560657][ T9066] loop0: p174 start 1854537728 is beyond EOD, truncated [ 206.567617][ T9066] loop0: p175 start 1854537728 is beyond EOD, truncated [ 206.574690][ T9066] loop0: p176 start 1854537728 is beyond EOD, truncated [ 206.581766][ T9066] loop0: p177 start 1854537728 is beyond EOD, truncated [ 206.588700][ T9066] loop0: p178 start 1854537728 is beyond EOD, truncated [ 206.596319][ T9066] loop0: p179 start 1854537728 is beyond EOD, truncated [ 206.603343][ T9066] loop0: p180 start 1854537728 is beyond EOD, truncated [ 206.610332][ T9066] loop0: p181 start 1854537728 is beyond EOD, truncated [ 206.617264][ T9066] loop0: p182 start 1854537728 is beyond EOD, truncated [ 206.624341][ T9066] loop0: p183 start 1854537728 is beyond EOD, truncated [ 206.631328][ T9066] loop0: p184 start 1854537728 is beyond EOD, truncated [ 206.638398][ T9066] loop0: p185 start 1854537728 is beyond EOD, truncated [ 206.645409][ T9066] loop0: p186 start 1854537728 is beyond EOD, truncated [ 206.652798][ T9066] loop0: p187 start 1854537728 is beyond EOD, truncated [ 206.659736][ T9066] loop0: p188 start 1854537728 is beyond EOD, truncated [ 206.667528][ T9066] loop0: p189 start 1854537728 is beyond EOD, truncated [ 206.675475][ T9066] loop0: p190 start 1854537728 is beyond EOD, truncated [ 206.682680][ T9066] loop0: p191 start 1854537728 is beyond EOD, truncated [ 206.689622][ T9066] loop0: p192 start 1854537728 is beyond EOD, truncated [ 206.689635][ T9066] loop0: p193 start 1854537728 is beyond EOD, truncated [ 206.689650][ T9066] loop0: p194 start 1854537728 is beyond EOD, truncated [ 206.689666][ T9066] loop0: p195 start 1854537728 is beyond EOD, truncated [ 206.689675][ T9066] loop0: p196 start 1854537728 is beyond EOD, truncated [ 206.703774][ T9066] loop0: p197 start 1854537728 is beyond EOD, truncated [ 206.731720][ T9066] loop0: p198 start 1854537728 is beyond EOD, truncated [ 206.738730][ T9066] loop0: p199 start 1854537728 is beyond EOD, truncated [ 206.745770][ T9066] loop0: p200 start 1854537728 is beyond EOD, truncated [ 206.752775][ T9066] loop0: p201 start 1854537728 is beyond EOD, truncated [ 206.752786][ T9066] loop0: p202 start 1854537728 is beyond EOD, truncated [ 206.752797][ T9066] loop0: p203 start 1854537728 is beyond EOD, truncated [ 206.752807][ T9066] loop0: p204 start 1854537728 is beyond EOD, truncated [ 206.752817][ T9066] loop0: p205 start 1854537728 is beyond EOD, truncated [ 206.752827][ T9066] loop0: p206 start 1854537728 is beyond EOD, truncated [ 206.752838][ T9066] loop0: p207 start 1854537728 is beyond EOD, truncated [ 206.752848][ T9066] loop0: p208 start 1854537728 is beyond EOD, truncated [ 206.752863][ T9066] loop0: p209 start 1854537728 is beyond EOD, truncated [ 206.752873][ T9066] loop0: p210 start 1854537728 is beyond EOD, truncated [ 206.752884][ T9066] loop0: p211 start 1854537728 is beyond EOD, truncated [ 206.752893][ T9066] loop0: p212 start 1854537728 is beyond EOD, truncated [ 206.752907][ T9066] loop0: p213 start 1854537728 is beyond EOD, truncated [ 206.752916][ T9066] loop0: p214 start 1854537728 is beyond EOD, truncated [ 206.752926][ T9066] loop0: p215 start 1854537728 is beyond EOD, truncated [ 206.752935][ T9066] loop0: p216 start 1854537728 is beyond EOD, truncated [ 206.752945][ T9066] loop0: p217 start 1854537728 is beyond EOD, truncated [ 206.752954][ T9066] loop0: p218 start 1854537728 is beyond EOD, truncated [ 206.752964][ T9066] loop0: p219 start 1854537728 is beyond EOD, truncated [ 206.752975][ T9066] loop0: p220 start 1854537728 is beyond EOD, truncated 23:22:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4188aea7, &(0x7f0000000080)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb}) r3 = dup3(r0, r1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000100)='/dev/fuse\x00', 0x2, 0x0) r6 = fcntl$dupfd(r4, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) dup2(r3, r2) 23:22:32 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:32 executing program 3: futex(&(0x7f0000000140)=0x1, 0x0, 0x1, &(0x7f00000002c0), 0x0, 0x0) 23:22:32 executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f0000000500)={0x0, 0x70, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)=0x14) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x0, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:22:32 executing program 5: poll(&(0x7f0000000300)=[{}], 0x1, 0x0) 23:22:32 executing program 4: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0xc, &(0x7f0000000040), 0x4) [ 206.752985][ T9066] loop0: p221 start 1854537728 is beyond EOD, truncated [ 206.752997][ T9066] loop0: p222 start 1854537728 is beyond EOD, truncated [ 206.753007][ T9066] loop0: p223 start 1854537728 is beyond EOD, truncated [ 206.753018][ T9066] loop0: p224 start 1854537728 is beyond EOD, truncated [ 206.753029][ T9066] loop0: p225 start 1854537728 is beyond EOD, truncated [ 206.753040][ T9066] loop0: p226 start 1854537728 is beyond EOD, truncated [ 206.753050][ T9066] loop0: p227 start 1854537728 is beyond EOD, truncated [ 206.753060][ T9066] loop0: p228 start 1854537728 is beyond EOD, truncated [ 206.753070][ T9066] loop0: p229 start 1854537728 is beyond EOD, truncated [ 206.753079][ T9066] loop0: p230 start 1854537728 is beyond EOD, truncated [ 206.753089][ T9066] loop0: p231 start 1854537728 is beyond EOD, truncated [ 206.753101][ T9066] loop0: p232 start 1854537728 is beyond EOD, truncated [ 206.753111][ T9066] loop0: p233 start 1854537728 is beyond EOD, truncated [ 206.753122][ T9066] loop0: p234 start 1854537728 is beyond EOD, truncated [ 206.753132][ T9066] loop0: p235 start 1854537728 is beyond EOD, truncated [ 206.753143][ T9066] loop0: p236 start 1854537728 is beyond EOD, truncated [ 206.753153][ T9066] loop0: p237 start 1854537728 is beyond EOD, truncated [ 206.753164][ T9066] loop0: p238 start 1854537728 is beyond EOD, truncated [ 206.753174][ T9066] loop0: p239 start 1854537728 is beyond EOD, truncated [ 206.753185][ T9066] loop0: p240 start 1854537728 is beyond EOD, truncated [ 206.753195][ T9066] loop0: p241 start 1854537728 is beyond EOD, truncated [ 206.753206][ T9066] loop0: p242 start 1854537728 is beyond EOD, truncated 23:22:32 executing program 3: r0 = socket$inet6(0xa, 0x8000000000080001, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000003c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000a00)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff010000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000094440000000000000000000000050000000a00000000000000ff02000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000ff010000000000000000000000000001000000000000000000000000edffffffffffffff000000000000000000000000000000000000000000000000000000000000000000000000000000e2ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000ff02000000000000000000000000000100000000080000000000000000000000000000000000000000000000000040ac0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a00000000000000ff01000000000000000000000000000100000000000000000000000000000000000000001c0000000000000000000000000000a613a2230000000000000000000000dfd0282e31b8046d600000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ded937a77f657744296e5d4300000000000404110061ca7c55a5e42d81d14334c789375b23d36d0b7bd15e04e813cd723f47ce56dffa04c1f203e51942829b669c021a132a47ccf4ac88c150bfed88c8aa4d9defaf6839814663b22c44fc5c577657253c50de4d1797c8a8195d482f8537d4f9aeaf495c01d5a31348917325b55b4136f49a20b50d881350d03870439d9749097585033723069099a0c14b7ca9b9fdbba4b31e8658d38d801fc0741fd6d09437d0c202fb169986510e42a9013102247ae529fe94b9529742c76d1825a441f8205c765deabf008b3e6ac5064c0c2ca8030c651abbfe7fe8803ff6a2a5de91470a21ed3a29fbe853bf2625e006004540a74b2b69d9add19c110c2cccfc32f7f99ea69994f81d903641120915cdcf49efeed42a2054e0544b5f53f43e4f7ab5b6037071e14229606aa0c3d7b7313232a904dbaedc6bd9fe7a1e54afc699624941b6c58fe24ca2338d97bbae7b60c350e72039f84320e39fdf444997aa080a882a81da917d4739bcbb223be6ab216c4426283ebf2a37e3e88b6c09b5cde0603e2f899871f52e76054243f680e620f6896c8c78a66f84e43692478c0135b491ac8248dd51f11f90704784f1912f13541c500158cae97708faf31b49"], 0x310) setsockopt$inet6_MCAST_MSFILTER(r0, 0x29, 0x30, &(0x7f0000000240)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90) [ 206.753216][ T9066] loop0: p243 start 1854537728 is beyond EOD, truncated [ 206.753227][ T9066] loop0: p244 start 1854537728 is beyond EOD, truncated [ 206.753237][ T9066] loop0: p245 start 1854537728 is beyond EOD, truncated [ 206.753248][ T9066] loop0: p246 start 1854537728 is beyond EOD, truncated [ 206.753258][ T9066] loop0: p247 start 1854537728 is beyond EOD, truncated [ 206.753268][ T9066] loop0: p248 start 1854537728 is beyond EOD, truncated 23:22:32 executing program 5: r0 = syz_open_dev$mice(0x0, 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) [ 206.753278][ T9066] loop0: p249 start 1854537728 is beyond EOD, truncated [ 206.753288][ T9066] loop0: p250 start 1854537728 is beyond EOD, truncated [ 206.753303][ T9066] loop0: p251 start 1854537728 is beyond EOD, truncated [ 206.780261][ T9066] loop0: p252 start 1854537728 is beyond EOD, truncated [ 206.788321][ T9066] loop0: p253 start 1854537728 is beyond EOD, truncated [ 206.803166][ T9066] loop0: p254 start 1854537728 is beyond EOD, truncated [ 206.816543][ T9066] loop0: p255 start 1854537728 is beyond EOD, truncated 23:22:32 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) close(r1) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:32 executing program 4: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f0000000500)={0x0, 0x70, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x0, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:22:32 executing program 5: r0 = syz_open_dev$mice(0x0, 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) 23:22:33 executing program 3: r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x17, &(0x7f0000000180)=@gcm_256={{}, "fb50c58bdebada1f", "f41244cbcc0deeeb567c7c8deeaa44315419f1f9dd329dece6ba50cb5f992549", "f47da3a6", "41ee6ef335a429b0"}, 0x38) 23:22:33 executing program 0: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x1) ioctl$TCFLSH(r0, 0x8926, 0x960000000000) 23:22:33 executing program 2: openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='cpuacct.stat\x00', 0x0, 0x0) ptrace$setsig(0x4203, 0x0, 0x0, &(0x7f00000002c0)={0x0, 0x1}) write(0xffffffffffffffff, &(0x7f0000000040)="0f42", 0x2) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) perf_event_open(&(0x7f0000000500)={0x0, 0x70, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffe}, 0x0, 0x0, 0xffffffffffffffff, 0x0) getsockname$packet(0xffffffffffffffff, &(0x7f0000000340), &(0x7f0000000380)=0x14) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000740)={0x3, 0x2, 0xf000, 0x1000, &(0x7f0000000000/0x1000)=nil}) syz_open_dev$cec(&(0x7f00000001c0)='/dev/cec#\x00', 0x0, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0xfb, 0x0, 0x0, 0x0, 0x400000000000000]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$KVM_NMI(r2, 0xae9a) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000380)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:22:33 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:33 executing program 5: r0 = syz_open_dev$mice(0x0, 0x0, 0x0) poll(&(0x7f0000000300)=[{r0}], 0x1, 0x0) 23:22:33 executing program 3: r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x17, &(0x7f0000000180)=@gcm_256={{}, "fb50c58bdebada1f", "f41244cbcc0deeeb567c7c8deeaa44315419f1f9dd329dece6ba50cb5f992549", "f47da3a6", "41ee6ef335a429b0"}, 0x38) 23:22:33 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup3(r3, r4, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x119000}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, 0x0, 0xfffffffffffffea0, 0x0, 0x0, 0xfffffffffffffd9c) ioctl$KVM_NMI(r2, 0xae9a) socketpair$unix(0x1, 0x0, 0x0, 0x0) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(0xffffffffffffffff, 0x84, 0x6d, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="3b0000003ba481ed8556d031ec7264f9033bd298627f811efe9113e59d7bd929d785e6f509f3241767e4001fd188f56422754600"/63], &(0x7f0000000000)=0x43) ioctl$KVM_SET_PIT2(0xffffffffffffffff, 0x4070aea0, &(0x7f0000000040)={[{0xffff7fff, 0x51}]}) ioctl$KVM_RUN(r2, 0xae80, 0x0) 23:22:33 executing program 5: syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(0x0, 0x0, 0x0) 23:22:33 executing program 3: r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x17, &(0x7f0000000180)=@gcm_256={{}, "fb50c58bdebada1f", "f41244cbcc0deeeb567c7c8deeaa44315419f1f9dd329dece6ba50cb5f992549", "f47da3a6", "41ee6ef335a429b0"}, 0x38) 23:22:33 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) 23:22:33 executing program 3: r0 = socket$inet(0x2b, 0x801, 0x0) connect$inet(r0, &(0x7f0000000000)={0x2, 0x0, @remote}, 0x10) setsockopt$inet_tcp_TLS_TX(r0, 0x6, 0x17, &(0x7f0000000180)=@gcm_256={{}, "fb50c58bdebada1f", "f41244cbcc0deeeb567c7c8deeaa44315419f1f9dd329dece6ba50cb5f992549", "f47da3a6", "41ee6ef335a429b0"}, 0x38) 23:22:33 executing program 5: syz_open_dev$mice(&(0x7f0000000100)='/dev/input/mice\x00', 0x0, 0x0) poll(0x0, 0x0, 0x0) [ 208.090874][ T9159] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. 23:22:33 executing program 1: socketpair$unix(0x1, 0x1000000000005, 0x0, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x21, &(0x7f0000000040), 0x4) [ 208.196302][ T9179] kvm: emulating exchange as write [ 208.306310][ T9187] ------------[ cut here ]------------ [ 208.326626][ T9187] refcount_t: underflow; use-after-free. [ 208.341303][ T9187] WARNING: CPU: 0 PID: 9187 at lib/refcount.c:190 refcount_sub_and_test_checked+0x1d0/0x200 [ 208.346046][ T9162] kobject: 'rx-0' (0000000045bfbeea): kobject_cleanup, parent 000000007c03285e [ 208.351408][ T9187] Kernel panic - not syncing: panic_on_warn set ... [ 208.351435][ T9187] CPU: 0 PID: 9187 Comm: syz-executor.3 Not tainted 5.4.0-rc5-next-20191028 #0 [ 208.351441][ T9187] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 208.351446][ T9187] Call Trace: [ 208.351465][ T9187] dump_stack+0x172/0x1f0 [ 208.351483][ T9187] ? refcount_sub_and_test_checked+0x190/0x200 [ 208.351495][ T9187] panic+0x2e3/0x75c [ 208.351507][ T9187] ? add_taint.cold+0x16/0x16 [ 208.351527][ T9187] ? __kasan_check_write+0x14/0x20 [ 208.351540][ T9187] ? __warn.cold+0x14/0x35 [ 208.351549][ T9187] ? __warn+0xd9/0x1d0 [ 208.351570][ T9187] ? refcount_sub_and_test_checked+0x1d0/0x200 [ 208.351581][ T9187] __warn.cold+0x2f/0x35 [ 208.432314][ T9187] ? refcount_sub_and_test_checked+0x1d0/0x200 [ 208.438457][ T9187] report_bug+0x289/0x300 [ 208.442869][ T9187] do_error_trap+0x11b/0x200 [ 208.447447][ T9187] do_invalid_op+0x37/0x50 [ 208.451958][ T9187] ? refcount_sub_and_test_checked+0x1d0/0x200 [ 208.458306][ T9187] invalid_op+0x23/0x30 [ 208.462471][ T9187] RIP: 0010:refcount_sub_and_test_checked+0x1d0/0x200 [ 208.469225][ T9187] Code: 1d 8b 31 7e 06 31 ff 89 de e8 4c 8c 2d fe 84 db 75 94 e8 03 8b 2d fe 48 c7 c7 e0 ed e6 87 c6 05 6b 31 7e 06 01 e8 88 97 fe fd <0f> 0b e9 75 ff ff ff e8 e4 8a 2d fe e9 6e ff ff ff 48 89 df e8 f7 [ 208.488898][ T9187] RSP: 0018:ffff888059cffcb0 EFLAGS: 00010286 [ 208.494945][ T9187] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 208.502902][ T9187] RDX: 0000000000000000 RSI: ffffffff815d0de6 RDI: ffffed100b39ff88 [ 208.510857][ T9187] RBP: ffff888059cffd48 R08: ffff88809514e640 R09: ffffed1015d06161 [ 208.519512][ T9187] R10: ffffed1015d06160 R11: ffff8880ae830b07 R12: 00000000ffffffff [ 208.527462][ T9187] R13: 0000000000000001 R14: ffff888059cffd20 R15: 0000000000000000 [ 208.535434][ T9187] ? vprintk_func+0x86/0x189 [ 208.540035][ T9187] ? refcount_dec_not_one+0x1f0/0x1f0 [ 208.545391][ T9187] ? __sk_free+0x100/0x360 [ 208.549799][ T9187] refcount_dec_and_test_checked+0x1b/0x20 [ 208.555602][ T9187] smc_release+0x236/0x3e0 [ 208.561528][ T9187] __sock_release+0xce/0x280 [ 208.566104][ T9187] sock_close+0x1e/0x30 [ 208.570247][ T9187] __fput+0x2ff/0x890 [ 208.574216][ T9187] ? __sock_release+0x280/0x280 [ 208.579573][ T9187] ____fput+0x16/0x20 [ 208.583542][ T9187] task_work_run+0x145/0x1c0 [ 208.588149][ T9187] exit_to_usermode_loop+0x316/0x380 [ 208.593433][ T9187] do_syscall_64+0x65f/0x760 [ 208.598010][ T9187] entry_SYSCALL_64_after_hwframe+0x49/0xbe [ 208.603885][ T9187] RIP: 0033:0x413ad1 [ 208.607763][ T9187] Code: 75 14 b8 03 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 04 1b 00 00 c3 48 83 ec 08 e8 0a fc ff ff 48 89 04 24 b8 03 00 00 00 0f 05 <48> 8b 3c 24 48 89 c2 e8 53 fc ff ff 48 89 d0 48 83 c4 08 48 3d 01 [ 208.627350][ T9187] RSP: 002b:00007ffc1756b340 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 208.635770][ T9187] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 0000000000413ad1 [ 208.643920][ T9187] RDX: 0000001b30020000 RSI: 0000000000000000 RDI: 0000000000000003 [ 208.651877][ T9187] RBP: 0000000000000001 R08: ffffffff8100a6b3 R09: 00000000048f3177 [ 208.659833][ T9187] R10: 00007ffc1756b420 R11: 0000000000000293 R12: 000000000075bf20 [ 208.667910][ T9187] R13: 0000000000032d88 R14: 0000000000760380 R15: 000000000075bf2c [ 208.675923][ T9187] ? do_syscall_64+0x3f3/0x760 [ 208.682378][ T9187] Kernel Offset: disabled [ 208.689359][ T9187] Rebooting in 86400 seconds..