Warning: Permanently added '10.128.0.54' (ECDSA) to the list of known hosts. 2020/01/07 08:32:58 fuzzer started 2020/01/07 08:33:00 dialing manager at 10.128.0.105:46783 2020/01/07 08:33:00 syscalls: 2789 2020/01/07 08:33:00 code coverage: enabled 2020/01/07 08:33:00 comparison tracing: enabled 2020/01/07 08:33:00 extra coverage: enabled 2020/01/07 08:33:00 setuid sandbox: enabled 2020/01/07 08:33:00 namespace sandbox: enabled 2020/01/07 08:33:00 Android sandbox: /sys/fs/selinux/policy does not exist 2020/01/07 08:33:00 fault injection: enabled 2020/01/07 08:33:00 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/01/07 08:33:00 net packet injection: enabled 2020/01/07 08:33:00 net device setup: enabled 2020/01/07 08:33:00 concurrency sanitizer: enabled 2020/01/07 08:33:00 devlink PCI setup: PCI device 0000:00:10.0 is not available syzkaller login: [ 65.367905][ T7968] KCSAN: could not find function: 'poll_schedule_timeout' [ 67.122251][ T7968] KCSAN: could not find function: 'calc_wb_limits' 2020/01/07 08:33:12 adding functions to KCSAN blacklist: 'xas_clear_mark' 'pid_update_inode' 'do_syslog' 'find_get_pages_range_tag' 'do_nanosleep' 'blk_mq_free_request' '__blk_queue_split' 'tick_sched_do_timer' '__find_get_block' 'kcm_rfree' 'mod_timer' '__mark_inode_dirty' 'pcpu_alloc' 'file_update_time' 'commit_echoes' 'ext4_has_free_clusters' 'run_timer_softirq' 'kauditd_thread' 'dd_has_work' 'blk_mq_sched_dispatch_requests' 'poll_schedule_timeout' 'ext4_free_inode' 'ext4_nonda_switch' 'exit_signals' 'shmem_add_to_page_cache' 'bio_chain' 'find_next_bit' 'do_signal_stop' 'timer_clear_idle' 'generic_write_end' 'vm_area_dup' 'echo_char' 'calc_wb_limits' 'evict' 'ep_poll' 'tomoyo_supervisor' 'ext4_free_inodes_count' 'futex_wait_queue_me' 'ext4_mb_good_group' 'taskstats_exit' 'sbitmap_queue_clear' 'copy_process' 'ext4_mark_iloc_dirty' 'complete_signal' 'mm_update_next_owner' '__inet_hash_connect' 'add_timer' 'common_perm_cond' 'wbt_issue' '__hrtimer_run_queues' '__dentry_kill' 'generic_file_read_iter' 'queue_access_lock' 'snd_seq_timer_get_cur_tick' '__get_user_pages' '__writeback_single_inode' 'wbc_detach_inode' '__ext4_new_inode' 'generic_fillattr' '__snd_rawmidi_transmit_ack' 'blk_mq_get_request' 'xas_find_marked' 'tick_nohz_idle_stop_tick' 'process_srcu' 'tick_do_update_jiffies64' 'blk_mq_dispatch_rq_list' 'ktime_get_real_seconds' 'rcu_gp_fqs_loop' 'atime_needs_update' 'do_wait' 'bio_endio' 'do_readlinkat' 'audit_log_start' 'iomap_dio_bio_actor' 'blk_mq_run_hw_queue' 'handle_mm_fault' 'rcu_gp_fqs_check_wake' '__lru_cache_add' '__dev_queue_xmit' 08:36:10 executing program 0: 08:36:10 executing program 1: [ 251.145864][ T7972] IPVS: ftp: loaded support on port[0] = 21 [ 251.252543][ T7972] chnl_net:caif_netlink_parms(): no params data found [ 251.311429][ T7972] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.318525][ T7972] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.328737][ T7972] device bridge_slave_0 entered promiscuous mode [ 251.341391][ T7975] IPVS: ftp: loaded support on port[0] = 21 [ 251.349225][ T7972] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.356283][ T7972] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.367702][ T7972] device bridge_slave_1 entered promiscuous mode 08:36:10 executing program 2: [ 251.410365][ T7972] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 251.439774][ T7972] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 251.477467][ T7972] team0: Port device team_slave_0 added [ 251.510667][ T7972] team0: Port device team_slave_1 added [ 251.529496][ T7975] chnl_net:caif_netlink_parms(): no params data found 08:36:10 executing program 3: [ 251.641188][ T7972] device hsr_slave_0 entered promiscuous mode [ 251.669076][ T7972] device hsr_slave_1 entered promiscuous mode [ 251.738503][ T7975] bridge0: port 1(bridge_slave_0) entered blocking state [ 251.760106][ T7975] bridge0: port 1(bridge_slave_0) entered disabled state [ 251.779810][ T7975] device bridge_slave_0 entered promiscuous mode [ 251.820015][ T7975] bridge0: port 2(bridge_slave_1) entered blocking state [ 251.824397][ T7978] IPVS: ftp: loaded support on port[0] = 21 [ 251.827177][ T7975] bridge0: port 2(bridge_slave_1) entered disabled state [ 251.860856][ T7975] device bridge_slave_1 entered promiscuous mode [ 251.877034][ T7980] IPVS: ftp: loaded support on port[0] = 21 [ 251.910689][ T7975] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 251.943921][ T7975] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 08:36:11 executing program 4: [ 251.981721][ T7975] team0: Port device team_slave_0 added [ 252.003421][ T7975] team0: Port device team_slave_1 added [ 252.100948][ T7975] device hsr_slave_0 entered promiscuous mode [ 252.149136][ T7975] device hsr_slave_1 entered promiscuous mode [ 252.198886][ T7975] debugfs: Directory 'hsr0' with parent '/' already present! 08:36:11 executing program 5: [ 252.264686][ T7972] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 252.274166][ T7982] IPVS: ftp: loaded support on port[0] = 21 [ 252.321027][ T7972] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 252.372463][ T7972] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 252.422781][ T7972] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 252.510004][ T7980] chnl_net:caif_netlink_parms(): no params data found [ 252.553679][ T7985] IPVS: ftp: loaded support on port[0] = 21 [ 252.575006][ T7978] chnl_net:caif_netlink_parms(): no params data found [ 252.588138][ T7980] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.595690][ T7980] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.603442][ T7980] device bridge_slave_0 entered promiscuous mode [ 252.625665][ T7980] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.632832][ T7980] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.640792][ T7980] device bridge_slave_1 entered promiscuous mode [ 252.684598][ T7980] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 252.696990][ T7980] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 252.721693][ T7978] bridge0: port 1(bridge_slave_0) entered blocking state [ 252.728757][ T7978] bridge0: port 1(bridge_slave_0) entered disabled state [ 252.738185][ T7978] device bridge_slave_0 entered promiscuous mode [ 252.747723][ T7978] bridge0: port 2(bridge_slave_1) entered blocking state [ 252.755172][ T7978] bridge0: port 2(bridge_slave_1) entered disabled state [ 252.763109][ T7978] device bridge_slave_1 entered promiscuous mode [ 252.781656][ T7975] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 252.849269][ T7975] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 252.901358][ T7975] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 252.955563][ T7975] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 253.049900][ T7980] team0: Port device team_slave_0 added [ 253.066224][ T7978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.078762][ T7978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.093039][ T7980] team0: Port device team_slave_1 added [ 253.122664][ T7982] chnl_net:caif_netlink_parms(): no params data found [ 253.148701][ T7978] team0: Port device team_slave_0 added [ 253.176925][ T7978] team0: Port device team_slave_1 added [ 253.190258][ T7985] chnl_net:caif_netlink_parms(): no params data found [ 253.251157][ T7980] device hsr_slave_0 entered promiscuous mode [ 253.289149][ T7980] device hsr_slave_1 entered promiscuous mode [ 253.338884][ T7980] debugfs: Directory 'hsr0' with parent '/' already present! [ 253.372580][ T7982] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.379704][ T7982] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.387374][ T7982] device bridge_slave_0 entered promiscuous mode [ 253.440952][ T7978] device hsr_slave_0 entered promiscuous mode [ 253.479249][ T7978] device hsr_slave_1 entered promiscuous mode [ 253.518899][ T7978] debugfs: Directory 'hsr0' with parent '/' already present! [ 253.544659][ T7982] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.551761][ T7982] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.559812][ T7982] device bridge_slave_1 entered promiscuous mode [ 253.579506][ T7982] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.603815][ T7982] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.649166][ T7972] 8021q: adding VLAN 0 to HW filter on device bond0 [ 253.660700][ T7985] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.667765][ T7985] bridge0: port 1(bridge_slave_0) entered disabled state [ 253.675931][ T7985] device bridge_slave_0 entered promiscuous mode [ 253.690264][ T7982] team0: Port device team_slave_0 added [ 253.697028][ T7982] team0: Port device team_slave_1 added [ 253.715648][ T7985] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.723413][ T7985] bridge0: port 2(bridge_slave_1) entered disabled state [ 253.731173][ T7985] device bridge_slave_1 entered promiscuous mode [ 253.752388][ T7975] 8021q: adding VLAN 0 to HW filter on device bond0 [ 253.760809][ T7985] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 253.800439][ T7982] device hsr_slave_0 entered promiscuous mode [ 253.839173][ T7982] device hsr_slave_1 entered promiscuous mode [ 253.898862][ T7982] debugfs: Directory 'hsr0' with parent '/' already present! [ 253.919748][ T7972] 8021q: adding VLAN 0 to HW filter on device team0 [ 253.934790][ T7985] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 253.959950][ T7980] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 254.001822][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 254.009782][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 254.040910][ T7980] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 254.084150][ T7985] team0: Port device team_slave_0 added [ 254.092050][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 254.100812][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 254.109426][ T7990] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.116468][ T7990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 254.124598][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 254.137035][ T7980] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 254.184382][ T7980] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 254.241532][ T7985] team0: Port device team_slave_1 added [ 254.248036][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 254.257434][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 254.266133][ T2923] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.273162][ T2923] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.281126][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 254.289109][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 254.301075][ T7982] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 254.341376][ T7982] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 254.380856][ T7978] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 254.431239][ T7978] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 254.471638][ T7978] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 254.544196][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 254.553445][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 254.564305][ T7975] 8021q: adding VLAN 0 to HW filter on device team0 [ 254.572141][ T7982] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 254.622792][ T7982] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 254.686370][ T7978] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 254.736124][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 254.745046][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 254.753809][ T7986] bridge0: port 1(bridge_slave_0) entered blocking state [ 254.760889][ T7986] bridge0: port 1(bridge_slave_0) entered forwarding state [ 254.830992][ T7985] device hsr_slave_0 entered promiscuous mode [ 254.869214][ T7985] device hsr_slave_1 entered promiscuous mode [ 254.908874][ T7985] debugfs: Directory 'hsr0' with parent '/' already present! [ 254.933581][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 254.941589][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 254.950248][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 254.958583][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 254.967128][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 254.975584][ T2923] bridge0: port 2(bridge_slave_1) entered blocking state [ 254.982688][ T2923] bridge0: port 2(bridge_slave_1) entered forwarding state [ 254.990522][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 254.999348][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 255.007941][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 255.016440][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 255.024948][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 255.033568][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 255.042249][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 255.050805][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 255.059320][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 255.067667][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 255.077140][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 255.085626][ T2923] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 255.099233][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 255.107853][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 255.116982][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 255.125458][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 255.137521][ T7975] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 255.150592][ T7972] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 255.161921][ T7972] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 255.200801][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 255.212334][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 255.220547][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 255.227885][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 255.243394][ T7972] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 255.264505][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 255.272034][ T7986] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 255.302365][ T7975] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 255.321627][ T7985] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 255.367366][ T7980] 8021q: adding VLAN 0 to HW filter on device bond0 [ 255.390827][ T7978] 8021q: adding VLAN 0 to HW filter on device bond0 [ 255.398025][ T7985] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 255.465967][ T7982] 8021q: adding VLAN 0 to HW filter on device bond0 [ 255.475170][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 255.483961][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 255.493053][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 255.500754][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 255.508324][ T7985] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 255.560829][ T7985] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 255.624285][ T7972] device veth0_vlan entered promiscuous mode [ 255.637679][ T7978] 8021q: adding VLAN 0 to HW filter on device team0 [ 255.646743][ T7980] 8021q: adding VLAN 0 to HW filter on device team0 [ 255.654356][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 255.662510][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 255.671241][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 255.679109][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 255.686750][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 255.695406][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 255.704573][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 255.712748][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 255.724835][ T7972] device veth1_vlan entered promiscuous mode [ 255.759811][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 255.768016][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 255.776655][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 255.785423][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 255.793757][ T7990] bridge0: port 1(bridge_slave_0) entered blocking state [ 255.800813][ T7990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.808725][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 255.816771][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 255.824507][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 255.832953][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 255.841445][ T7990] bridge0: port 1(bridge_slave_0) entered blocking state [ 255.848461][ T7990] bridge0: port 1(bridge_slave_0) entered forwarding state [ 255.856340][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 255.864945][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 255.873487][ T7990] bridge0: port 2(bridge_slave_1) entered blocking state [ 255.880544][ T7990] bridge0: port 2(bridge_slave_1) entered forwarding state [ 255.888394][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 255.897294][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 255.905963][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 255.914619][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 255.923469][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 255.932122][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 255.940982][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 255.949524][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 255.957834][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 255.966524][ T7990] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 255.976122][ T7982] 8021q: adding VLAN 0 to HW filter on device team0 [ 256.001691][ T7978] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 256.011018][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 256.019461][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 256.027302][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 256.036094][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 256.044855][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 256.053336][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.060365][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.068189][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 256.076850][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 256.106983][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 256.115807][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 256.149586][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 256.158177][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 256.179855][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 256.188378][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready 08:36:15 executing program 0: keyctl$set_reqkey_keyring(0xe, 0x3) [ 256.197334][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.204398][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 256.214366][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 256.227031][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 256.235499][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready 08:36:15 executing program 0: shmctl$IPC_INFO(0x0, 0x3, &(0x7f0000004080)=""/39) [ 256.244210][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 256.253087][ T26] bridge0: port 2(bridge_slave_1) entered blocking state [ 256.260156][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state [ 256.271822][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 256.280712][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 256.293195][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.303562][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 256.322629][ T7975] device veth0_vlan entered promiscuous mode [ 256.340875][ T7980] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready 08:36:15 executing program 0: mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0) open$dir(&(0x7f0000000000)='./file0\x00', 0x0, 0x0) [ 256.365734][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 256.374207][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 256.382318][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 256.390988][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready 08:36:15 executing program 0: mkdir(&(0x7f0000000400)='./file0\x00', 0x0) bpf$OBJ_GET_PROG(0x7, &(0x7f0000000540)={&(0x7f0000000500)='./file0\x00'}, 0x10) [ 256.409790][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 256.418754][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 256.431175][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 256.442158][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 256.453207][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 256.464268][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 256.472161][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 256.492595][ T7978] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.515001][ T7985] 8021q: adding VLAN 0 to HW filter on device bond0 08:36:15 executing program 0: r0 = socket$inet6(0xa, 0x2, 0x0) ioctl$sock_inet6_udp_SIOCINQ(r0, 0x541b, 0x0) [ 256.546658][ T7982] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 256.562204][ T7982] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 256.577447][ T7975] device veth1_vlan entered promiscuous mode [ 256.591913][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 256.609697][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 256.618247][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 256.634620][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready 08:36:15 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) socket(0x0, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) [ 256.650673][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 256.659530][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 256.667881][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 256.680722][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 256.706807][ T7980] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.718319][ T7985] 8021q: adding VLAN 0 to HW filter on device team0 [ 256.739479][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 256.749883][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.757372][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 256.767684][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 256.769493][ T8012] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 256.776653][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 256.799344][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 256.807918][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 256.817188][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 256.824789][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 256.851976][ T7982] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 256.883498][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 256.920711][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 256.942482][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 256.949610][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state 08:36:16 executing program 0: clone(0x100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) msgrcv(0x0, 0x0, 0x20c, 0x3, 0x0) 08:36:16 executing program 1: mknodat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) open$dir(&(0x7f00000001c0)='./file0\x00', 0x400000002c5, 0x0) [ 256.981690][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 256.997230][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 257.010324][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 257.017608][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 257.056119][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 257.079139][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 257.088221][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 257.125960][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 257.142111][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 257.170358][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 257.179197][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 257.187245][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 257.195215][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 257.210825][ T7978] device veth0_vlan entered promiscuous mode [ 257.227947][ T7985] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 257.242032][ T7985] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 257.255008][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 257.264022][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 257.272906][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 257.281677][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 257.290471][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 257.298714][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 257.307278][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 257.315636][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 257.324827][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 257.333417][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 257.344672][ T7980] device veth0_vlan entered promiscuous mode [ 257.366473][ T7978] device veth1_vlan entered promiscuous mode [ 257.373915][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 257.383666][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 257.396415][ T7980] device veth1_vlan entered promiscuous mode [ 257.422203][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 257.430377][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 257.438205][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 257.455052][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 257.462716][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 257.513062][ T7985] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 257.532461][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 257.545708][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready 08:36:16 executing program 2: r0 = semget$private(0x0, 0x20000000102, 0x0) semop(r0, &(0x7f0000000140)=[{0x7}, {0x0, 0x0, 0x1000}, {0x0, 0x1}, {}], 0x4) [ 257.559408][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 257.568714][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 257.577838][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 257.588537][ T7982] device veth0_vlan entered promiscuous mode [ 257.601438][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 257.617384][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 257.652205][ T7982] device veth1_vlan entered promiscuous mode 08:36:16 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000001a40)=ANY=[@ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x801}, 0x40) [ 257.694296][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 257.705579][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 257.716474][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 257.729823][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 257.778975][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 257.795904][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready 08:36:17 executing program 4: r0 = socket$l2tp(0x2, 0x2, 0x73) setsockopt$inet_MCAST_JOIN_GROUP(r0, 0x0, 0x2a, &(0x7f0000000000)={0x5, {{0x2, 0x0, @multicast2}}}, 0x1ee) [ 257.819952][ T7985] device veth0_vlan entered promiscuous mode [ 257.831633][ T8054] netlink: 'syz-executor.3': attribute type 18 has an invalid length. [ 257.844261][ T7985] device veth1_vlan entered promiscuous mode [ 257.853082][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 257.864355][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 257.879627][ T8054] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 257.884152][ T12] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 257.887933][ T8054] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 257.911241][ T8054] netlink: 'syz-executor.3': attribute type 1 has an invalid length. 08:36:17 executing program 5: r0 = socket$inet(0x2, 0x3, 0x3) getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000080)={{{@in6=@loopback, @in=@remote}}, {{@in=@loopback}, 0x0, @in6=@empty}}, &(0x7f0000000000)=0xfffffffffffffee3) 08:36:17 executing program 0: msgsnd(0x0, &(0x7f0000000100)={0x2}, 0x8, 0x0) 08:36:17 executing program 1: syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x1, 0x10200) r0 = dup(0xffffffffffffffff) write$cgroup_type(r0, &(0x7f0000000000)='threaded\x00', 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000340), 0x4) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}, 0x2}) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)) socket(0x8, 0x806, 0x0) symlinkat(&(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000300)='./file0\x00') write$binfmt_misc(r3, &(0x7f0000000940)=ANY=[@ANYBLOB="5300000044a60cabec2e1520000000000000001000fff64017db9820000000003b08d403ffff633b06736d24c3f2c876d6990100000000e41f7024cb9a098e0f85f9a2e30004000000000000ec6e26560000080000ab31c3a45780fa9dcf6af90dbbede53b853b80751187600301b9f01c936f71358e9ec3ff8897ad63aa106dd21ef6e8a7530000000000070000000000000099ebe2b9093d27b1ed47c6044089f75f1c85ee9bebf0b2da9f2f8b540c33b826b10d4377a6b36d7d7355dff4629c84279c9c1dc51e5162f1d69b8f733bef386da1969f9b5b9da86631327808bcc75d600ca49766dbbc675414978c0538c2ae089655dd37eb1b96e2e06843dafc0f2a28295e0c966ef3397e769d79ad847fa311ac0610e849576d235a341961de7a2eca351337e443ef092440a70fcf314144df08894806c505e9a8f69ee4c80912ddad9a28bbe936225ff3080c82f0154d73ddcdcdf700e4d47b538674edd3b1ade80bb99fe37e7eb863ab7c3dba23914fcfa2f0939dc89a8159f0a700000000000000000000000022cee61a84a84b8eec696eb65f92c61edf2a48c0d7c55ec05e3ee2327abc9fa8bdb97aef030cd526b466d5750bb2ce4498516227e8867fa8856a5fba69b7b1ca9cb0809ef423005081e36242e9b65ff7332ac9a7bf444e21a3f087ede5a214a33e434fe2799a6ea352132a083f07844f8ed0740b88d4e51ed853aa9c"], 0x58) r6 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r6, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x3}, 0xb) shutdown(r6, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r6, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10) r7 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r6, 0x84, 0x7b, &(0x7f0000000280)={r8}, &(0x7f00000002c0)=0x18) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000200)={r8, 0x58, &(0x7f0000000180)=[@in6={0xa, 0x4e21, 0x39, @dev={0xfe, 0x80, [], 0xc}, 0x693bd245}, @in={0x2, 0x4e23, @local}, @in6={0xa, 0x4e22, 0xae7b, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x2a}}, 0x8}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000240)=0x10) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x2, 0x0, 0xfffffdac) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x8642957429963afa, @perf_bp={0x0, 0x8}, 0x10080, 0x7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="18f60a2111586ff65f2573aab50febd1d64fbb4158f63355602481443fece7a1f642d7754be2dbbcd0a5afdcf5e5f5fa7bac7fa790a735e74bb290d2ccdd91d9eacb6ed623261827e03be7b7622d9dabee3c4c88") 08:36:17 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000300)={0x34, 0x0, &(0x7f00000002c0)}) 08:36:17 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000001a40)=ANY=[@ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x801}, 0x40) [ 258.103272][ T8067] netlink: 'syz-executor.3': attribute type 18 has an invalid length. [ 258.126310][ T8067] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 258.144602][ T8067] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 258.160064][ C1] sd 0:0:1:0: [sg0] tag#6397 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 258.170515][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB: Test Unit Ready [ 258.176970][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.186556][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.196156][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.205761][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.215347][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.224956][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.234552][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.244157][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.253785][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.263389][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.272995][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.282593][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.292208][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:17 executing program 4: socket$kcm(0x11, 0xa, 0x300) socket$kcm(0x2, 0x1000000000000002, 0x0) socket$kcm(0xa, 0x2, 0x11) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='cgroup.stat\x00', 0x26e1, 0x0) r1 = socket$kcm(0x2, 0x2, 0x0) setsockopt$sock_attach_bpf(r1, 0x1, 0x3e, &(0x7f00000002c0)=r0, 0x161) sendmsg$kcm(r1, &(0x7f0000003d00)={&(0x7f0000000380)=@in={0x2, 0x4e23, @multicast1}, 0x80, 0x0}, 0xfd00) 08:36:17 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pselect6(0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x0, 0x1c9c380}, 0x0) 08:36:17 executing program 0: io_uring_setup(0xf05, &(0x7f0000000500)) [ 258.301919][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.311503][ C1] sd 0:0:1:0: [sg0] tag#6397 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.327077][ T8067] netlink: 'syz-executor.3': attribute type 1 has an invalid length. 08:36:17 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000001a40)=ANY=[@ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x801}, 0x40) [ 258.466239][ T8096] netlink: 'syz-executor.3': attribute type 18 has an invalid length. [ 258.484070][ T8096] netlink: 'syz-executor.3': attribute type 3 has an invalid length. [ 258.520324][ C0] sd 0:0:1:0: [sg0] tag#6398 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 258.530728][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB: Test Unit Ready [ 258.537155][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.546736][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.556310][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.565892][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.575493][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.585092][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.594706][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.604313][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.613900][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.623501][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.633132][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.642719][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.652277][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.661841][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:17 executing program 2: select(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000000140)={0x6}, &(0x7f0000000180)={0x0, 0x7530}) 08:36:17 executing program 4: r0 = openat$ion(0xffffffffffffff9c, &(0x7f00000004c0)='/dev/ion\x00', 0x0, 0x0) ioctl$ION_IOC_HEAP_QUERY(r0, 0xc0184908, &(0x7f0000000300)={0x0, 0x0, 0x0}) 08:36:17 executing program 0: r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0) 08:36:17 executing program 5: r0 = socket$nl_route(0x10, 0x3, 0x0) recvmsg(r0, &(0x7f0000000100)={&(0x7f0000000040)=@alg, 0x80, &(0x7f00000000c0), 0x1000000000000145, &(0x7f0000000300)=""/142, 0x8e}, 0x0) [ 258.671396][ C0] sd 0:0:1:0: [sg0] tag#6398 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 [ 258.756820][ C1] hrtimer: interrupt took 37231 ns 08:36:18 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$netlink(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r2, &(0x7f0000000100)={&(0x7f0000000080), 0xc, &(0x7f00000000c0)={&(0x7f0000001a40)=ANY=[@ANYBLOB="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"], 0x13c}, 0x1, 0x0, 0x0, 0x801}, 0x40) 08:36:18 executing program 1: openat$adsp1(0xffffffffffffff9c, &(0x7f0000000000)='/dev/adsp1\x00', 0x0, 0x0) 08:36:18 executing program 0: syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x1, 0x10200) r0 = dup(0xffffffffffffffff) write$cgroup_type(r0, &(0x7f0000000000)='threaded\x00', 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000340), 0x4) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}, 0x2}) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) r4 = dup(0xffffffffffffffff) ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)) socket(0x8, 0x806, 0x0) symlinkat(&(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000300)='./file0\x00') write$binfmt_misc(r3, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x58) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x3}, 0xb) shutdown(r5, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10) r6 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x7b, &(0x7f0000000280)={r7}, &(0x7f00000002c0)=0x18) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000200)={r7, 0x58, &(0x7f0000000180)=[@in6={0xa, 0x4e21, 0x39, @dev={0xfe, 0x80, [], 0xc}, 0x693bd245}, @in={0x2, 0x4e23, @local}, @in6={0xa, 0x4e22, 0xae7b, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x2a}}, 0x8}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000240)=0x10) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x2, 0x0, 0xfffffdac) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x8642957429963afa, @perf_bp={0x0, 0x8}, 0x10080, 0x7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="18f60a2111586ff65f2573aab50febd1d64fbb4158f63355602481443fece7a1f642d7754be2dbbcd0a5afdcf5e5f5fa7bac7fa790a735e74bb290d2ccdd91d9eacb6ed623261827e03be7b7622d9dabee3c4c88") 08:36:18 executing program 5: bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={0xffffffffffffffff, 0x0, 0x2aaa1d104d74145f}, 0xc) 08:36:18 executing program 2: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc(aes-aesni)\x00'}, 0x58) 08:36:18 executing program 4: r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/hwrng\x00', 0x0, 0x0) read$char_usb(r0, 0x0, 0x0) 08:36:18 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) select(0x40, &(0x7f00000000c0), &(0x7f0000000100)={0x9}, &(0x7f0000000140)={0x6}, 0x0) 08:36:18 executing program 2: r0 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040)='/dev/vcs\x00', 0x0, 0x0) ioctl$sock_inet_SIOCDELRT(r0, 0x890c, 0x0) 08:36:18 executing program 5: mknod(&(0x7f00000000c0)='./file0\x00', 0x810c, 0x0) 08:36:18 executing program 4: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000380)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'veth0\x00'}) 08:36:18 executing program 3: bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000100)={&(0x7f00000000c0)='./file0\x00'}, 0x10) [ 259.413899][ C1] sd 0:0:1:0: [sg0] tag#6399 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 259.424309][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB: Test Unit Ready [ 259.430775][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440367][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:18 executing program 5: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(0xffffffffffffffff, 0x0, 0x0) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x3) [ 259.440395][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440422][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:18 executing program 1: r0 = socket(0x840000000002, 0x3, 0x200000000000ff) sendmsg$TIPC_NL_PEER_REMOVE(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}}, 0x1) [ 259.440467][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:18 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_int(r0, 0x6, 0x17, 0x0, &(0x7f0000000080)) [ 259.440501][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440525][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440557][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440579][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440601][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440640][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440662][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440689][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440716][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.440741][ C1] sd 0:0:1:0: [sg0] tag#6399 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.748856][ C1] sd 0:0:1:0: [sg0] tag#6336 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 259.748882][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB: Test Unit Ready [ 259.748922][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.748947][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.748971][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749014][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749039][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749064][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749087][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749111][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749147][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749173][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749199][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749224][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749254][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749279][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 259.749302][ C1] sd 0:0:1:0: [sg0] tag#6336 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 08:36:19 executing program 0: syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x1, 0x10200) r0 = dup(0xffffffffffffffff) write$cgroup_type(r0, &(0x7f0000000000)='threaded\x00', 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000340), 0x4) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}, 0x2}) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) r4 = dup(0xffffffffffffffff) ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)) socket(0x8, 0x806, 0x0) symlinkat(&(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000300)='./file0\x00') write$binfmt_misc(r3, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x58) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x3}, 0xb) shutdown(r5, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10) r6 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x7b, &(0x7f0000000280)={r7}, &(0x7f00000002c0)=0x18) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000200)={r7, 0x58, &(0x7f0000000180)=[@in6={0xa, 0x4e21, 0x39, @dev={0xfe, 0x80, [], 0xc}, 0x693bd245}, @in={0x2, 0x4e23, @local}, @in6={0xa, 0x4e22, 0xae7b, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x2a}}, 0x8}, @in={0x2, 0x4e21, @local}]}, &(0x7f0000000240)=0x10) r8 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x2, 0x0, 0xfffffdac) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r8, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, &(0x7f0000000100)="460f300f07c483614804ee08440f20c03506000000440f22c0c402f93473230f09f20f013cb9b805000000b9c00000000f01d90fc728c4c1f9e79f2e000000", 0x3f}], 0x1, 0x0, 0x0, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x8642957429963afa, @perf_bp={0x0, 0x8}, 0x10080, 0x7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_RUN(r8, 0xae80, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="18f60a2111586ff65f2573aab50febd1d64fbb4158f63355602481443fece7a1f642d7754be2dbbcd0a5afdcf5e5f5fa7bac7fa790a735e74bb290d2ccdd91d9eacb6ed623261827e03be7b7622d9dabee3c4c88") 08:36:19 executing program 1: r0 = syz_open_dev$evdev(&(0x7f0000000140)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCGABS20(r0, 0x80184560, 0x0) 08:36:19 executing program 4: r0 = socket$netlink(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000000)=0x1f, 0x4) bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40040a00}, 0xc) 08:36:19 executing program 5: r0 = socket$packet(0x11, 0x3, 0x300) sendmsg(r0, &(0x7f0000001d00)={&(0x7f0000000400)=@hci={0x1f, 0x0, 0x1}, 0x80, &(0x7f0000001680)=[{&(0x7f0000000480)="15b7d98da0a931e75e637cf4325e", 0xe}], 0x1}, 0x0) 08:36:19 executing program 3: 08:36:19 executing program 2: 08:36:19 executing program 4: 08:36:19 executing program 3: 08:36:19 executing program 2: syz_open_dev$mouse(&(0x7f0000000380)='/dev/input/mouse#\x00', 0x1, 0x10200) r0 = dup(0xffffffffffffffff) write$cgroup_type(r0, &(0x7f0000000000)='threaded\x00', 0x8) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0)='/dev/kvm\x00', 0x0, 0x0) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x6, &(0x7f0000000340), 0x4) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$UFFDIO_ZEROPAGE(0xffffffffffffffff, 0xc020aa04, &(0x7f0000000080)={{&(0x7f0000ffb000/0x1000)=nil, 0x1000}, 0x2}) ioctl$KVM_ENABLE_CAP(r2, 0x4068aea3, 0x0) r3 = syz_open_dev$sg(&(0x7f0000000000)='/dev/sg#\x00', 0x0, 0x5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r4) ioctl$SCSI_IOCTL_TEST_UNIT_READY(0xffffffffffffffff, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)) socket(0x8, 0x806, 0x0) symlinkat(&(0x7f00000002c0)='./file0\x00', 0xffffffffffffffff, &(0x7f0000000300)='./file0\x00') write$binfmt_misc(r3, &(0x7f0000000940)=ANY=[@ANYBLOB="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"], 0x58) r5 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt$inet_sctp6_SCTP_EVENTS(r5, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x3}, 0xb) shutdown(r5, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r5, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000180)=0x10) r6 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r6, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r5, 0x84, 0x7b, &(0x7f0000000280)={r7}, &(0x7f00000002c0)=0x18) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x8642957429963afa, @perf_bp={0x0, 0x8}, 0x10080, 0x7f}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) clone(0x0, 0x0, &(0x7f0000000500), &(0x7f0000000540), &(0x7f0000000580)="18f60a2111586ff65f2573aab50febd1d64fbb4158f63355602481443fece7a1f642d7754be2dbbcd0a5afdcf5e5f5fa7bac7fa790a735e74bb290d2ccdd91d9eacb6ed623261827e03be7b7622d9dabee3c4c88") [ 260.594210][ C0] sd 0:0:1:0: [sg0] tag#6337 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 260.604617][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB: Test Unit Ready [ 260.611114][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.620713][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.630551][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:19 executing program 4: 08:36:19 executing program 5: 08:36:19 executing program 1: [ 260.640144][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.649997][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.659571][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.669157][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.678735][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.688405][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.698075][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.707686][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.717294][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.726887][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.736816][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.746426][ C0] sd 0:0:1:0: [sg0] tag#6337 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.781174][ C1] sd 0:0:1:0: [sg0] tag#6338 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 260.791944][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB: Test Unit Ready [ 260.798397][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.809883][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.819567][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.837429][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.847016][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.856598][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.866175][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.875751][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.885334][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.896581][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.906160][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.915746][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.925354][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.935013][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 260.944596][ C1] sd 0:0:1:0: [sg0] tag#6338 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 08:36:20 executing program 0: 08:36:20 executing program 3: 08:36:20 executing program 4: 08:36:20 executing program 1: 08:36:20 executing program 5: 08:36:20 executing program 3: 08:36:20 executing program 4: 08:36:20 executing program 5: 08:36:20 executing program 2: 08:36:20 executing program 1: 08:36:20 executing program 0: r0 = syz_open_dev$evdev(&(0x7f0000000040)='/dev/input/event#\x00', 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, "9f50ec18bc0f5209dfe982fd2c11941844be60260750438b50b586573f4205f0"}) 08:36:20 executing program 3: 08:36:20 executing program 4: 08:36:20 executing program 5: 08:36:20 executing program 3: [ 261.685003][ C1] sd 0:0:1:0: [sg0] tag#6339 FAILED Result: hostbyte=DID_ABORT driverbyte=DRIVER_OK cmd_age=0s [ 261.695415][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB: Test Unit Ready [ 261.701876][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[00]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.711469][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[10]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.721067][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[20]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.730655][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[30]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.740333][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[40]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.749951][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[50]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.759566][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[60]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.769160][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[70]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.778761][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[80]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.788355][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[90]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.797941][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[a0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.807544][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[b0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.817139][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[c0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 08:36:20 executing program 4: 08:36:21 executing program 1: [ 261.826746][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[d0]: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 261.836316][ C1] sd 0:0:1:0: [sg0] tag#6339 CDB[e0]: 00 00 00 00 00 00 00 00 00 00 00 00 08:36:21 executing program 3: 08:36:21 executing program 2: 08:36:21 executing program 1: 08:36:21 executing program 5: 08:36:21 executing program 3: 08:36:21 executing program 0: 08:36:21 executing program 4: 08:36:21 executing program 2: 08:36:21 executing program 1: 08:36:21 executing program 5: 08:36:21 executing program 3: 08:36:21 executing program 0: 08:36:21 executing program 1: 08:36:21 executing program 4: 08:36:21 executing program 2: 08:36:21 executing program 5: 08:36:21 executing program 3: 08:36:21 executing program 4: 08:36:21 executing program 1: 08:36:21 executing program 0: 08:36:21 executing program 2: [ 262.765417][ T8109] ================================================================== [ 262.773520][ T8109] BUG: KCSAN: data-race in d_delete / lookup_fast [ 262.779905][ T8109] [ 262.782220][ T8109] read to 0xffff888125244900 of 4 bytes by task 3992 on cpu 0: [ 262.789776][ T8109] lookup_fast+0xdf/0x6c0 [ 262.794128][ T8109] walk_component+0x6d/0xd90 [ 262.798833][ T8109] path_lookupat.isra.0+0x13a/0x5a0 [ 262.804026][ T8109] filename_lookup+0x145/0x2b0 [ 262.808773][ T8109] user_path_at_empty+0x4c/0x70 [ 262.813617][ T8109] do_readlinkat+0x84/0x220 [ 262.818101][ T8109] __x64_sys_readlink+0x51/0x70 [ 262.822960][ T8109] do_syscall_64+0xcc/0x3a0 [ 262.827448][ T8109] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 262.833327][ T8109] [ 262.835644][ T8109] write to 0xffff888125244900 of 4 bytes by task 8109 on cpu 1: [ 262.843774][ T8109] d_delete+0xcc/0xe0 [ 262.847738][ T8109] vfs_unlink+0x398/0x3e0 [ 262.852051][ T8109] do_unlinkat+0x32b/0x530 [ 262.856447][ T8109] __x64_sys_unlink+0x3b/0x50 [ 262.861115][ T8109] do_syscall_64+0xcc/0x3a0 [ 262.865612][ T8109] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 262.871481][ T8109] [ 262.873788][ T8109] Reported by Kernel Concurrency Sanitizer on: [ 262.879931][ T8109] CPU: 1 PID: 8109 Comm: udevd Not tainted 5.5.0-rc1-syzkaller #0 [ 262.887798][ T8109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 262.897930][ T8109] ================================================================== [ 262.906227][ T8109] Kernel panic - not syncing: panic_on_warn set ... [ 262.912796][ T8109] CPU: 1 PID: 8109 Comm: udevd Not tainted 5.5.0-rc1-syzkaller #0 [ 262.920577][ T8109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 262.930617][ T8109] Call Trace: [ 262.933900][ T8109] dump_stack+0x11d/0x181 [ 262.938215][ T8109] panic+0x210/0x640 [ 262.944352][ T8109] ? vprintk_func+0x8d/0x140 [ 262.948937][ T8109] kcsan_report.cold+0xc/0xd [ 262.953515][ T8109] kcsan_setup_watchpoint+0x3fe/0x460 [ 262.958895][ T8109] __tsan_unaligned_write4+0xc7/0x110 [ 262.964266][ T8109] d_delete+0xcc/0xe0 [ 262.968253][ T8109] vfs_unlink+0x398/0x3e0 [ 262.972572][ T8109] ? apparmor_path_unlink+0x36/0x40 [ 262.978014][ T8109] do_unlinkat+0x32b/0x530 [ 262.982419][ T8109] __x64_sys_unlink+0x3b/0x50 [ 262.987081][ T8109] do_syscall_64+0xcc/0x3a0 [ 262.991853][ T8109] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 262.997727][ T8109] RIP: 0033:0x7f5c7d3b35d7 [ 263.002133][ T8109] Code: 48 3d 00 f0 ff ff 77 03 48 98 c3 48 8b 15 59 38 2b 00 f7 d8 64 89 02 48 83 c8 ff c3 90 90 90 90 90 90 90 b8 57 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 31 38 2b 00 31 d2 48 29 c2 64 [ 263.026820][ T8109] RSP: 002b:00007ffd6500bad8 EFLAGS: 00000202 ORIG_RAX: 0000000000000057 [ 263.035211][ T8109] RAX: ffffffffffffffda RBX: 00000000016f90c0 RCX: 00007f5c7d3b35d7 [ 263.043167][ T8109] RDX: 00007ffd6500bb03 RSI: 000000000041cce6 RDI: 00007ffd6500baf0 [ 263.051124][ T8109] RBP: 00000000016e0250 R08: 0000000000000000 R09: 0000000000000001 [ 263.059262][ T8109] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000072 [ 263.067221][ T8109] R13: 0000000000625500 R14: 00000000016e0250 R15: 000000000000000b [ 263.076399][ T8109] Kernel Offset: disabled [ 263.080742][ T8109] Rebooting in 86400 seconds..