Extracting prog: 1m7.334797381s
Minimizing prog: 20m56.396574034s
Simplifying prog options: 0s
Extracting C: 1m8.254944693s
Simplifying C: 5m24.345720838s
30 programs, timeouts [30s 1m40s 6m0s]
extracting reproducer from 30 programs
first checking the prog from the crash report
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-mmap-ioctl$KVM_RUN-bpf$PROG_LOAD_XDP-syz_mount_image$ext4-dup3
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
program crashed: kernel BUG in mmap_region
single: successfully extracted reproducer
found reproducer with 22 syscalls
minimizing guilty program
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-mmap-ioctl$KVM_RUN-bpf$PROG_LOAD_XDP-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-mmap-ioctl$KVM_RUN-bpf$PROG_LOAD_XDP
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
program did not crash
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-mmap-ioctl$KVM_RUN-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-ioctl$KVM_RUN-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program did not crash
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x2, 0x0}, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-syz_kvm_setup_cpu$x86-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000001680)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-ioctl$KVM_CREATE_VCPU-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-ioctl$VHOST_SET_VRING_ENDIAN-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_SET_VRING_ENDIAN(r5, 0x4008af13, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-openat$vhost_vsock-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_SET_USER_MEMORY_REGION-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-ioctl$KVM_CREATE_VM-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-openat$kvm-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-bpf$MAP_CREATE-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-sendmsg$ETHTOOL_MSG_LINKINFO_SET-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(0xffffffffffffffff, 0x0, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r1}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x18, 0x4, &(0x7f0000000980)=ANY=[@ANYBLOB="c274d829431ae95fb2f63bcd66645eb69a95a2a08132b014b1974d518b0246824edf791bff7ad821f2045a04bee35c828f59223b237c875a2f7bb2a1069b2b39237bc2f0fe75825d226669d76a79378b0d4ecfff80e19c23445e000000000000b594fdcdb3229c37b0582eb89d9cec9bc2085a76aa51986cb9acf8ee1b28e9f2a8306b498111eee12d8eccb5c2e42ce70b02a4bae0d7879b609718e63ddff07f494aaa44382ba5d9028a5b2c859a53df3541c0bbbad977b998a93a3b6e693b1c75ff78db7076a10867c521a64f7cb80d68df71fb4e5cde9a00"/234, @ANYRESDEC=r0, @ANYRESDEC], &(0x7f0000000180)='syzkaller\x00', 0x8, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-readlinkat-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-bpf$BPF_RAW_TRACEPOINT_OPEN-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-bpf$PROG_LOAD-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000e41f20207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000deab44f4850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD-mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x0, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100004b028ee7000000000000ea04850000007b00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$eJzs3MtvG8UfAPDvbh59N2l//QF9QA0FEVFImrRADxwAgdQLEhIcyjGkoSpNW9QEiVYVDQiVI+IvAI5ISJy4cAIJIeAE4gp3hFShXlo4IKO1dxO7sR3HeRjqz0eyM7MPz3x3d9azO1kH0LNK2VsSsT0ifomIoWq2foFS9c+tG1em/rxxZSqJcvmlP5LKcjdvXJkqFi3W25ZnRtKI9L0k9jcod/bS5bOTMzPTF/P82Ny5N8ZmL11+7My5ydPTp6fPTxw/fuzo+JNPTDzeVhxXl5mfxXVz39sXDuw98cqHL0yV49XvP8vquz2fXxtH1XBb5bZSilKUc4tTByvvD6360/9ddtSkk/4uVoQV6YuIbHcNVNr/UPTF4s4biuffXch806UKAusm+27atWRqX/43Xfj+Au5EiTYOPar4xs+uf4vXRvY/uu36M9n7dCX+W/mrOqc/0uxadrh6xd7XZP27Wn98eWiZ8rdHxMn5vz7KXtHwPgQAwNr6Kuv/PNqo/5fW9W125mMowxFxOCJ2R8T/ImJPRPw/7wfdHRH3rLD80m35pf2fn7Z0FFibsv7fU/nYVn3/L82XSBZyOyrxDySvnZmZPpJvk5EY2JTlx1uU8fVzP3/QbF6ppv+XvbLyi75gXo/f+zfVr3Nqcm5yFSHXuf5OxL7+RvEnCyMB2RbYGxH7Ovj8bJudeeTTA1l657al85ePv4U1GGcqfxLxcHX/z8dt8ReSaknNxifHNsfM9JGx4qhY6ocfr71Ymx+oSdfFv7m9mDZ3GmwD2f7f2vD4z+MvmkExXju78jKu/fp+02uapfs/iZPztUvkx3/NWSA7/geTlyvpwXzaW5NzcxfHIwbzCXXTJxbXLfLF8ln8I4cat//dEX9/nK+3PyKyg/jeiLgvIg7mdb8/Ih6IiEMt4v/u2Qdfb72FOjz+10AW/6lW+z9iOKkdr+8g0Xf22y+bld/e+e9YJTWST2nn/NduBVez7QAAAOC/Iq2MQSfpaJGuuTm1J7amMxdm5w6X4s3zp6pj1cMxkBZ3uoZq7oeO5/eGi/zEbfmjEbGr8p9GWyr50akLMzu6GThQeVanrv1Hmo6OVuf91uyfXoA7x4rG0WqfDvz8i7WvDLChPK8JvUv7h96l/UPv0v6hdzVq/1cjbnWhKsAG8/0PvUv7h96l/UPv0v6hJy19JL74oYVOnvRfTOw+sarV1z1RHlqXT55f+Vp96xRp1P5oR9NEEhGdFRFp62UG2yi9a4l02WWeXm6zDKzqNzGyxME8sSki2l3r6oZt1eIMkSRdOzkBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACsgX8CAAD//zMG3Y4=")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0) (fail_nth: 6)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program crashed: kernel BUG in mmap_region
testing program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
detailed listing:
executing program 0:
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000f, 0x4008032, 0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000740)='./file0\x00', 0x22000406, &(0x7f0000000900)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@init_itable}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@nouid32}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x84, 0x4bb, &(0x7f0000000280)="$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")
program did not crash
extracting C reproducer
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program crashed: kernel BUG in mmap_region
simplifying C reproducer
testing compiled C program (duration=36.634891015s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program did not crash
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program did not crash
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program did not crash
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program crashed: kernel BUG in mmap_region
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program crashed: kernel BUG in mmap_region
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program crashed: kernel BUG in mmap_region
testing compiled C program (duration=36.634891015s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): mmap-syz_mount_image$ext4
program crashed: kernel BUG in mmap_region
reproducing took 28m36.332070366s
repro crashed as (corrupted=false):
------------[ cut here ]------------
kernel BUG at mm/mmap.c:2831!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 304 Comm: syz-executor340 Not tainted 6.1.93-syzkaller-00068-gb5e374dda921 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
RIP: 0010:mmap_region+0x2278/0x23a0 mm/mmap.c:2831
Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 37 fb ff ff 48 89 df e8 89 72 09 00 e9 2a fb ff ff e8 6f 4c c2 ff 0f 0b e8 68 4c c2 ff <0f> 0b 65 8b 05 6f b8 4e 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
RSP: 0018:ffffc90000f57a40 EFLAGS: 00010293
RAX: ffffffff81b358e8 RBX: 0000000020b35fff RCX: ffff8881097e5100
RDX: 0000000000000000 RSI: 0000000020b35fff RDI: 0000000020b36000
RBP: ffffc90000f57c50 R08: ffffffff81b34511 R09: ffffffff850fbd43
R10: 0000000000000003 R11: ffff8881097e5100 R12: ffffc90000f57ba8
R13: dffffc0000000000 R14: 0000000020000000 R15: 0000000020b36000
FS: 00007fb964c566c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055ffccdb1fc0 CR3: 0000000122780000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
do_mmap+0x853/0xe30 mm/mmap.c:1475
vm_mmap_pgoff+0x208/0x430 mm/util.c:525
ksys_mmap_pgoff+0xed/0x1e0 mm/mmap.c:1521
__do_sys_mmap arch/x86/kernel/sys_x86_64.c:93 [inline]
__se_sys_mmap arch/x86/kernel/sys_x86_64.c:86 [inline]
__x64_sys_mmap+0x103/0x120 arch/x86/kernel/sys_x86_64.c:86
x64_sys_call+0x67/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:10
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:81
entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fb964ca1229
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 1b 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb964c561f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
RAX: ffffffffffffffda RBX: 00007fb964d206a8 RCX: 00007fb964ca1229
RDX: 000000000200000f RSI: 0000000000b36000 RDI: 0000000020000000
RBP: 00007fb964d206a0 R08: 00000000ffffffff R09: 0000000000000000
R10: 0000000004008032 R11: 0000000000000246 R12: 00007fb964c56210
R13: 0000000000000001 R14: 5f646165726f6964 R15: 0030656c69662f2e
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:mmap_region+0x2278/0x23a0 mm/mmap.c:2831
Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 37 fb ff ff 48 89 df e8 89 72 09 00 e9 2a fb ff ff e8 6f 4c c2 ff 0f 0b e8 68 4c c2 ff <0f> 0b 65 8b 05 6f b8 4e 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
RSP: 0018:ffffc90000f57a40 EFLAGS: 00010293
RAX: ffffffff81b358e8 RBX: 0000000020b35fff RCX: ffff8881097e5100
RDX: 0000000000000000 RSI: 0000000020b35fff RDI: 0000000020b36000
RBP: ffffc90000f57c50 R08: ffffffff81b34511 R09: ffffffff850fbd43
R10: 0000000000000003 R11: ffff8881097e5100 R12: ffffc90000f57ba8
R13: dffffc0000000000 R14: 0000000020000000 R15: 0000000020b36000
FS: 00007fb964c566c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055ffccd58e58 CR3: 0000000122780000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
final repro crashed as (corrupted=false):
------------[ cut here ]------------
kernel BUG at mm/mmap.c:2831!
invalid opcode: 0000 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 304 Comm: syz-executor340 Not tainted 6.1.93-syzkaller-00068-gb5e374dda921 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
RIP: 0010:mmap_region+0x2278/0x23a0 mm/mmap.c:2831
Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 37 fb ff ff 48 89 df e8 89 72 09 00 e9 2a fb ff ff e8 6f 4c c2 ff 0f 0b e8 68 4c c2 ff <0f> 0b 65 8b 05 6f b8 4e 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
RSP: 0018:ffffc90000f57a40 EFLAGS: 00010293
RAX: ffffffff81b358e8 RBX: 0000000020b35fff RCX: ffff8881097e5100
RDX: 0000000000000000 RSI: 0000000020b35fff RDI: 0000000020b36000
RBP: ffffc90000f57c50 R08: ffffffff81b34511 R09: ffffffff850fbd43
R10: 0000000000000003 R11: ffff8881097e5100 R12: ffffc90000f57ba8
R13: dffffc0000000000 R14: 0000000020000000 R15: 0000000020b36000
FS: 00007fb964c566c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055ffccdb1fc0 CR3: 0000000122780000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
Call Trace:
do_mmap+0x853/0xe30 mm/mmap.c:1475
vm_mmap_pgoff+0x208/0x430 mm/util.c:525
ksys_mmap_pgoff+0xed/0x1e0 mm/mmap.c:1521
__do_sys_mmap arch/x86/kernel/sys_x86_64.c:93 [inline]
__se_sys_mmap arch/x86/kernel/sys_x86_64.c:86 [inline]
__x64_sys_mmap+0x103/0x120 arch/x86/kernel/sys_x86_64.c:86
x64_sys_call+0x67/0x9a0 arch/x86/include/generated/asm/syscalls_64.h:10
do_syscall_x64 arch/x86/entry/common.c:51 [inline]
do_syscall_64+0x3b/0xb0 arch/x86/entry/common.c:81
entry_SYSCALL_64_after_hwframe+0x68/0xd2
RIP: 0033:0x7fb964ca1229
Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 61 1b 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
RSP: 002b:00007fb964c561f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
RAX: ffffffffffffffda RBX: 00007fb964d206a8 RCX: 00007fb964ca1229
RDX: 000000000200000f RSI: 0000000000b36000 RDI: 0000000020000000
RBP: 00007fb964d206a0 R08: 00000000ffffffff R09: 0000000000000000
R10: 0000000004008032 R11: 0000000000000246 R12: 00007fb964c56210
R13: 0000000000000001 R14: 5f646165726f6964 R15: 0030656c69662f2e
Modules linked in:
---[ end trace 0000000000000000 ]---
RIP: 0010:mmap_region+0x2278/0x23a0 mm/mmap.c:2831
Code: 03 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 37 fb ff ff 48 89 df e8 89 72 09 00 e9 2a fb ff ff e8 6f 4c c2 ff 0f 0b e8 68 4c c2 ff <0f> 0b 65 8b 05 6f b8 4e 7e 41 89 c6 4c 89 f0 48 c1 e8 06 48 8d 3c
RSP: 0018:ffffc90000f57a40 EFLAGS: 00010293
RAX: ffffffff81b358e8 RBX: 0000000020b35fff RCX: ffff8881097e5100
RDX: 0000000000000000 RSI: 0000000020b35fff RDI: 0000000020b36000
RBP: ffffc90000f57c50 R08: ffffffff81b34511 R09: ffffffff850fbd43
R10: 0000000000000003 R11: ffff8881097e5100 R12: ffffc90000f57ba8
R13: dffffc0000000000 R14: 0000000020000000 R15: 0000000020b36000
FS: 00007fb964c566c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000055ffccd58e58 CR3: 0000000122780000 CR4: 00000000003506a0
DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400