failed to mmap coverage filter bitmapbad coverage filter bitmap sizecompat_50_____semctl13$GETNCNTcompat_50_____semctl13$GETZCNTcompat_50_____semctl13$IPC_RMIDcompat_50_____semctl13$IPC_SETcompat_50_____semctl13$IPC_STATcompat_50___shmctl13$SHM_UNLOCKioctl$HDAUDIO_FGRP_WIDGET_INFOioctl$WSDISPLAYIO_GETACTIVESCREENioctl$WSKBDIO_GETDEFAULTKEYREPEATioctl$WSKBDIO_SETDEFAULTKEYREPEATioctl$_O_WSDISPLAYIO_SETKEYBOARD/dev/vhci%lluSYZFAIL: %s (errno %d: %s) pos=%p region=[%p:%p]output overflowfailed to chmod /dev/faultclock_gettime failedcover mmap failedsetsid failedevent already setcontrol pipe write failedfailed to open /dev/dev/%spath=%sfailed to chmod vhci/dev/kcovopen of /dev/kcov failedfrom=%d, to=%dfailed to dup cover fdioctl remote attach failedioctl init trace write failedSIGSEGV on %p, skipping SIGSEGV on %p, exiting (errno %d) pthread_mutex_init failedpthread_cond_init failedrmdir(%s) failedopendir(%s) failed..%s/%slstat(%s) failedunlink(%s) failed>#%d [%llums] -> %s(, failed to open /dev/faultnth=%dFAULT_IOC_ENABLE failedthr=%d, cov=%utoo much coverFAULT_IOC_GETINFO failedFAULT_IOC_DISABLE failed#%d [%llums] <- %s=0x%llx errno=%d cover=%u fault=%d rerun=%dwant %p, got %pmmap of output file failedformat=%llubad binary format in swapsize=%llubad big-endian int sizeoff=%llu, len=%llubitmask for string formatcopyin: bad argument sizebad strdec size%020llubad strhex size0x%016llxbad stroct size%023llounknown binary formatvsnprintf failedstring='%s'command=%s: %dcommand failedcommand '%s': %d tun_id=%dtun_id out of range/dev/tap%difconfig %s destroyifconfig %s createdevice=%stun: can't open devicedup2(tunfd, kTunFd) failedaa:aa:aa:aa:aa:aaifconfig %s link %s172.20.%d.170aa:aa:aa:aa:aa:bb172.20.%d.187arp -s %s %sfe80::%02xaaifconfig %s inet6 %sfe80::%02xbbndp -s %s%%%s %s%02x pos=%p: [%p:%p)input command overflows inputresult=%lldcommand refers to bad resultcopyout: bad argument sizetun: read failedextracted seq: %08x extracted ack: %08x INOUTsyz_usb_connect: configured syz_usb_connect: dev: %p syz_usb_connect: dev is null failed to close kOutFdtype=%llxinvalid kcov comp typencomps=%utoo many comparisonsready=%d done=%d executing=%dindex=%lldresult overflows kMaxCommandsnegative runningbag inet checksum sizesize=%lldbad checksum const chunk sizekind=%llubad checksum chunk kindbad checksum kindtype=%llubad argument typecall_num=%lluinvalid syscall numbersyscall=%sexecuting disabled syscallsyz_usbsyz_80211_inject_frameargs=%llubad argument binary formatbad argument bitfieldbad result argument formatout of opened kcov threadspthread_create failedout of threadsbad thread state in schedule./%dfailed to mkdircontrol pipe read failedmagic=0x%llxbad execute request magicsize=0x%llxbad execute prog sizebad timeoutsneed_prog: no programclone failedfailed to chdirspawned worker pid %d killing hanging pid %d child failedSKIPFAILOKversionsetupfeature=%sleaksetup_kcsan_filterlistKCSAN is not implementedtest=== RUN %s --- %-4s %s execunknown commandmmap of data segment failedmmap of input file failedfailed to mkdtempfailed to chmoddup2(0, kInPipeFd) faileddup2(1, kOutPipeFd) faileddup2(2, 1) faileddup2(2, 0) failedread=%dhandshake read failedbad handshake magicsyz-cover-bitmapfaied to stat coverage filterwant=%p, got=%psandbox fork failedspawned loop pid %d loop exited with status %d nobodygetpwnam_r("nobody") failedfailed to setgroupsfailed to setgidfailed to setuidunknown sandbox type./syzkaller.XXXXXXtest_copyintest_csum_inettest_csum_inet_acctest_coverage_filter____semctl50$GETALL____semctl50$GETNCNT____semctl50$GETPID____semctl50$GETVAL____semctl50$GETZCNT____semctl50$IPC_RMID____semctl50$IPC_SET____semctl50$IPC_STAT____semctl50$SETALL____semctl50$SETVAL__clock_getres50__clock_gettime50__clock_settime50__clone__fhopen40__fhstat50__fhstatvfs190__fstat50__futimes50__getcwd__getdents30__getfh30__getitimer50__getlogin__getrusage50__getvfsstat90__lstat50__lutimes50__mount50__msync13__nanosleep50__posix_chown__posix_fadvise50__posix_fchown__posix_lchown__posix_rename__select50__setitimer50__stat50__utimes50__vfork14__wait450_ksem_close_ksem_destroy_ksem_getvalue_ksem_init_ksem_open_ksem_post_ksem_timedwait_ksem_trywait_ksem_unlink_ksem_wait_lwp_continue_lwp_create_lwp_ctl_lwp_detach_lwp_exit_lwp_getname_lwp_getprivate_lwp_kill_lwp_self_lwp_setname_lwp_setprivate_lwp_suspend_lwp_unpark_lwp_unpark_all_lwp_wait_lwp_wakeupaccept$inetaccept$inet6accept$unixaccessacctbindbind$inetbind$inet6bind$unixclock_nanosleepcompat_09_ogetdomainnamecompat_09_osetdomainnamecompat_09_ounamecompat_12_fstat12compat_12_getdirentriescompat_12_lstat12compat_12_msynccompat_12_stat12compat_14___semctl$GETALLcompat_14___semctl$GETNCNTcompat_14___semctl$GETPIDcompat_14___semctl$GETVALcompat_14___semctl$GETZCNTcompat_14___semctl$IPC_RMIDcompat_14___semctl$IPC_SETcompat_14___semctl$IPC_STATcompat_14___semctl$SETALLcompat_14___semctl$SETVALcompat_14_msgctl$IPC_RMIDcompat_14_msgctl$IPC_SETcompat_14_msgctl$IPC_STATcompat_14_shmctl$IPC_RMIDcompat_14_shmctl$IPC_SETcompat_14_shmctl$IPC_STATcompat_14_shmctl$SHM_LOCKcompat_14_shmctl$SHM_UNLOCKcompat_20_fstatfscompat_20_getfsstatcompat_20_statfscompat_30___fhstat30compat_30___fstat13compat_30___lstat13compat_30___stat13compat_30_fhopencompat_30_fhstatcompat_30_fhstatvfs1compat_30_getdentscompat_30_getfhcompat_30_socketcompat_40_mountcompat_43_fstat43compat_43_lstat43compat_43_oacceptcompat_43_ocreatcompat_43_oftruncatecompat_43_ogetdirentriescompat_43_ogethostidcompat_43_ogethostnamecompat_43_ogetpeernamecompat_43_ogetrlimitcompat_43_ogetsocknamecompat_43_olseekcompat_43_ommapcompat_43_orecvcompat_43_orecvfromcompat_43_orecvmsgcompat_43_osendcompat_43_osendmsgcompat_43_osethostidcompat_43_osethostnamecompat_43_osetrlimitcompat_43_otruncatecompat_43_stat43compat_50_____semctl13$GETALLcompat_50_____semctl13$GETPIDcompat_50_____semctl13$GETVALcompat_50_____semctl13$SETALLcompat_50_____semctl13$SETVALcompat_50___fstat30compat_50___lstat30compat_50___msgctl13$IPC_RMIDcompat_50___msgctl13$IPC_SETcompat_50___msgctl13$IPC_STATcompat_50___shmctl13$IPC_RMIDcompat_50___shmctl13$IPC_SETcompat_50___shmctl13$IPC_STATcompat_50___shmctl13$SHM_LOCKcompat_50___stat30compat_50__lwp_parkcompat_50_clock_getrescompat_50_clock_gettimecompat_50_clock_settimecompat_50_futimescompat_50_getitimercompat_50_getrusagecompat_50_lutimescompat_50_mknodcompat_50_nanosleepcompat_50_quotactlcompat_50_selectcompat_50_setitimercompat_50_utimescompat_50_wait4compat_60__lwp_parkcompat_90_fhstatvfs1compat_90_fstatvfs1compat_90_getvfsstatcompat_90_statvfs1connect$inetconnect$inet6connect$unixdupdup2dup3execvefaccessatfchdirfchflagsfchmodfchmodatfchownatfchrootfcntl$dupfdfcntl$getflagsfcntl$getownfcntl$lockfcntl$setflagsfcntl$setownfcntl$setstatusfdatasyncfktraceflockfpathconffstatatfsyncgetegidgeteuidgetgidgetgroupsgetpeername$inetgetpeername$inet6getpeername$unixgetpgidgetpgrpgetpidgetppidgetprioritygetsidgetsockname$inetgetsockname$inet6getsockname$unixgetsockoptgetsockopt$SO_PEERCREDgetsockopt$inet_optsgetsockopt$sock_credgetsockopt$sock_intgetsockopt$sock_lingergetsockopt$sock_timevalgetuidioctl$CONS_GETVERSioctl$FIOASYNCioctl$FIOGETBMAPioctl$FIOGETOWNioctl$FIONBIOioctl$FIONREADioctl$FIONSPACEioctl$FIONWRITEioctl$FIOSEEKDATAioctl$FIOSEEKHOLEioctl$FIOSETOWNioctl$HDAUDIO_AFG_CODEC_INFOioctl$HDAUDIO_AFG_WIDGET_INFOioctl$HDAUDIO_FGRP_CODEC_INFOioctl$HDAUDIO_FGRP_GETCONFIGioctl$HDAUDIO_FGRP_INFOioctl$HDAUDIO_FGRP_SETCONFIGioctl$I2C_IOCTL_EXECioctl$KDDISABIOioctl$KDENABIOioctl$KDGETLEDioctl$KDGKBMODEioctl$KDMKTONEioctl$KDSETLEDioctl$KDSETMODEioctl$KDSETRADioctl$KDSKBMODEioctl$NETBSD_DM_IOCTLioctl$OFIOGETBMAPioctl$TPROF_IOC_GETINFOioctl$TPROF_IOC_GETSTATioctl$TPROF_IOC_STARTioctl$TPROF_IOC_STOPioctl$VT_ACTIVATEioctl$VT_GETACTIVEioctl$VT_OPENQRYioctl$VT_RELDISPioctl$VT_WAITACTIVEioctl$WSDISPLAYIO_ADDSCREENioctl$WSDISPLAYIO_DELSCREENioctl$WSDISPLAYIO_DGSCROLLioctl$WSDISPLAYIO_DOBLITioctl$WSDISPLAYIO_DSSCROLLioctl$WSDISPLAYIO_GBORDERioctl$WSDISPLAYIO_GCURMAXioctl$WSDISPLAYIO_GCURPOSioctl$WSDISPLAYIO_GCURSORioctl$WSDISPLAYIO_GETCMAPioctl$WSDISPLAYIO_GETPARAMioctl$WSDISPLAYIO_GETWSCHARioctl$WSDISPLAYIO_GET_BUSIDioctl$WSDISPLAYIO_GET_EDIDioctl$WSDISPLAYIO_GET_FBINFOioctl$WSDISPLAYIO_GINFOioctl$WSDISPLAYIO_GMODEioctl$WSDISPLAYIO_GMSGATTRSioctl$WSDISPLAYIO_GTYPEioctl$WSDISPLAYIO_GVIDEOioctl$WSDISPLAYIO_LDFONTioctl$WSDISPLAYIO_LINEBYTESioctl$WSDISPLAYIO_PUTCMAPioctl$WSDISPLAYIO_PUTWSCHARioctl$WSDISPLAYIO_SBORDERioctl$WSDISPLAYIO_SCURPOSioctl$WSDISPLAYIO_SCURSORioctl$WSDISPLAYIO_SETPARAMioctl$WSDISPLAYIO_SETVERSIONioctl$WSDISPLAYIO_SET_POLLINGioctl$WSDISPLAYIO_SFONTioctl$WSDISPLAYIO_SMODEioctl$WSDISPLAYIO_SMSGATTRSioctl$WSDISPLAYIO_SPROGRESSioctl$WSDISPLAYIO_SSPLASHioctl$WSDISPLAYIO_SVIDEOioctl$WSDISPLAYIO_WAITBLITioctl$WSKBDIO_BELLioctl$WSKBDIO_COMPLEXBELLioctl$WSKBDIO_GETBELLioctl$WSKBDIO_GETDEFAULTBELLioctl$WSKBDIO_GETENCODINGioctl$WSKBDIO_GETKEYCLICKioctl$WSKBDIO_GETKEYREPEATioctl$WSKBDIO_GETLEDSioctl$WSKBDIO_GETMAPioctl$WSKBDIO_GETMODEioctl$WSKBDIO_GETSCROLLioctl$WSKBDIO_GTYPEioctl$WSKBDIO_SETBELLioctl$WSKBDIO_SETDEFAULTBELLioctl$WSKBDIO_SETENCODINGioctl$WSKBDIO_SETKEYCLICKioctl$WSKBDIO_SETKEYREPEATioctl$WSKBDIO_SETLEDSioctl$WSKBDIO_SETMAPioctl$WSKBDIO_SETMODEioctl$WSKBDIO_SETSCROLLioctl$WSKBDIO_SETVERSIONioctl$WSMOUSEIO_GCALIBCOORDSioctl$WSMOUSEIO_GETIDioctl$WSMOUSEIO_GETREPEATioctl$WSMOUSEIO_GTYPEioctl$WSMOUSEIO_SCALIBCOORDSioctl$WSMOUSEIO_SETREPEATioctl$WSMOUSEIO_SETVERSIONioctl$WSMOUSEIO_SRATEioctl$WSMOUSEIO_SRESioctl$WSMOUSEIO_SSCALEioctl$WSMUXIO_ADD_DEVICEioctl$WSMUXIO_INJECTEVENTioctl$WSMUXIO_LIST_DEVICESioctl$WSMUXIO_OINJECTEVENTioctl$WSMUXIO_REMOVE_DEVICElchflagslchmodlistenmadvisemincoreminheritmkdiratmknod$loopmknodatmlockmlockallmodctl$MODCTL_EXISTSmodctl$MODCTL_LOADmodctl$MODCTL_STATmodctl$MODCTL_UNLOADmprotectmsggetmsgget$privatemsgrcvmsgsndmunlockmunlockallmunmapopen$diropenatopenat$dmopenat$hdaudioopenat$i2copenat$tprofopenat$wsconspacceptpipepipe2pollposix_spawnpreadpreadvprofilptracepwritepwritevrasctlreadlinkreadlinkatrecvfrom$inetrecvfrom$inet6recvfrom$unixrecvmmsgrenameatrmdirsemgetsemget$privatesemopsendmmsgsendmsg$unixsendtosendto$inetsendto$inet6sendto$unixsetegidseteuidsetpgidsetprioritysetregidsetreuidsetsockoptsetsockopt$inet6_MRT6_ADD_MFCsetsockopt$inet6_MRT6_ADD_MIFsetsockopt$inet6_MRT6_DEL_MFCsetsockopt$inet_optssetsockopt$sock_credsetsockopt$sock_intsetsockopt$sock_lingersetsockopt$sock_timevalshmatshmdtshmgetshmget$privateshutdownsocket$inetsocket$inet6socket$unixsocketpairsocketpair$unixswapctl$SWAP_CTLswapctl$SWAP_DUMPDEVswapctl$SWAP_GETDUMPDEVswapctl$SWAP_NSWAPswapctl$SWAP_OFFswapctl$SWAP_ONswapctl$SWAP_STATSsymlinksymlinkatsyz_builtin0syz_builtin1syz_builtin2syz_builtin3syz_builtin4syz_builtin5syz_emit_ethernetsyz_execute_funcsyz_extract_tcp_ressyz_extract_tcp_res$synacksyz_usb_connectsyz_usb_connect$cdc_ecmsyz_usb_connect$cdc_ncmsyz_usb_connect$hidsyz_usb_connect$printersyz_usb_connect$uac1syz_usb_disconnectumaskundeleteunlinkatunmountutimensatvfork>BCDEBCDEBCDE4Vx4Vx"3DUfw̻wfUD3"4Vx"3DUfw̻wfUD3""3DUfw̻wfUD3":g@`@b@e@@@@j@q@C@C@C@2P@S@{д@,T(@p@,T@@,SC@E@E@`E@C@C@5E@C@C@C@C@C@C@C@C@D@>@<*@J@F(@Y@(@l@5@@#@@!@@@@@ҕ@@@@(@<@P@a@s@@@@@@@Ȗ@(і@ޖ@@@1@@@(@4@>@H@V@d@v@@@@@@ŗ@З@ڗ@@@@@@#@.@>@L@Y@d@:r@5~@E@?@6@D@<@>Ę@7Θ@Cۘ@=@9@A@B@8@;;@*@6@C@O@!V@3[@h`@hj@hu@h@ J@"@^@l@=@@@@@ҙ@@@@A@/@I@d@~@@@Ϛ@@@ @:@T@m@@@@ԛ@@ @@0@A@V@j@~@@*@+@gȜ@ۜ@@a@ @>@(0@cB@S@h@@@W@ĝ@ٝ@@@G@f!@}5@qH@eX@rk@@X@@@&ў@-(@-@-@-H@-h@-@-@-+@-I@-g@{@@.@.ʟ@.@/@/#@/A@/ȇ@/_@r@@@@@͠@ߠ@V@u@@)@=@P@]a@Su@@@@@fӡ@d@e@b@b@b@b#@)'@Z,@1@;@8@B@I@#R@|Y@~@{b@k@)s@\@\@\@\@\@\¢@\Ң@ܢ@ @E@@@@_^@@+ 15:29:04 executing program 4: open$dir(&(0x7f0000000040)='./file0\x00', 0x20000, 0x4) symlink(&(0x7f0000000080)='.\x00', &(0x7f0000000000)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) r1 = openat(0xffffffffffffffff, &(0x7f0000001640)='/proc/self/exe\x00', 0x0, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1, 0x10, r1, 0x0, 0x0) preadv(r0, &(0x7f0000001580)=[{0x0}], 0x1, 0x0) mknod(&(0x7f0000000000)='./file0\x00', 0x2876, 0x40000800) r2 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) ioctl$FIOSETOWN(r2, 0x4004667f, 0x0) r3 = open$dir(&(0x7f0000000000)='./file0\x00', 0x400004000011830a, 0x0) write(r3, &(0x7f0000000780)="089267d3ff4f0b87969f", 0x100ad) socket(0x18, 0x1, 0x0) socket(0x18, 0x2, 0x0) getpgid(0x0) 15:29:04 executing program 1: r0 = openat(0xffffffffffffffff, &(0x7f0000001640)='/proc/self/exe\x00', 0x0, 0x0) r1 = compat_30_fhopen(&(0x7f0000000040)={{[0x3ff, 0x3]}, {0x3, 0x2000, "aaa231882ffa00911cc23607f1cffe00"}}, 0x40) mmap(&(0x7f00003b8000/0x3000)=nil, 0x3000, 0x4, 0x12, r1, 0x0, 0x8) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1, 0x10, r0, 0x0, 0x0) r2 = socket(0x18, 0x1, 0x0) r3 = socket(0x18, 0x2, 0x0) setsockopt(r3, 0x1000000000029, 0x4, &(0x7f0000000000)="06000000", 0x4) dup2(r3, r2) connect$unix(r2, &(0x7f00000000c0)=@abs={0x682eb13985c518e6, 0x7}, 0x1c) compat_50___fstat30(r2, &(0x7f0000000140)) mknod(&(0x7f0000000000)='./file0\x00', 0x2876, 0xffffffffffffffff) r4 = open(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) setsockopt(r4, 0x400, 0xfffffc01, &(0x7f0000000200)="e66abb0643ca7e1f586cc409ddb43d00bf6c9322361b621633b15607a29139d915403e0bb604b67f2ab87044a577b85a07eb8543458e7172e834bcb3e3eb56e7cb60a3756d17339d74cee0fe9734916453fca9e779278182824f84e2177ba12621a35b691b7799fec7ac40e101d792623091a1c4dec0e9f752dd09456693e642bf10da7b56bc9bc3ffdfc8e263855387b149892fe606b0da5783951a5f0f015de179b510de015792", 0xa8) ioctl$FIOSETOWN(r4, 0x8004747d, &(0x7f0000000100)) 15:29:04 executing program 2: fork() __wait450(0x0, 0x0, 0x1, 0x0) r0 = getpgrp() compat_50_wait4(r0, &(0x7f0000000000), 0x20060, &(0x7f0000000040))