------------[ cut here ]------------ WARNING: kernel/bpf/verifier.c:2817 at reg_bounds_sanity_check+0x3c0/0x428 kernel/bpf/verifier.c:2817, CPU#1: syz.1.501/5858 verifier bug: REG INVARIANTS VIOLATION (true_reg1): range bounds violation u64=[0xffffdfcd, 0xffffffffffffdfcc] s64=[0x80000000ffffdfcd, 0x7fffffffffffdfcc] u32=[0xffffdfcd, 0xffffdfcc] s32=[0xffffdfcd, 0xffffdfcc] var_off=(0xffffdfcc, 0xffffffff00000000) Modules linked in: Kernel panic - not syncing: kernel: panic_on_warn set ... CPU: 1 UID: 0 PID: 5858 Comm: syz.1.501 Tainted: G L syzkaller #0 PREEMPT Tainted: [L]=SOFTLOCKUP Hardware name: ARM-Versatile Express Call trace: [<80201a14>] (dump_backtrace) from [<80201b08>] (show_stack+0x18/0x1c arch/arm/kernel/traps.c:257) r7:8281f9b4 r6:00000000 r5:822a8688 r4:00000001 [<80201af0>] (show_stack) from [<8021e410>] (__dump_stack lib/dump_stack.c:94 [inline]) [<80201af0>] (show_stack) from [<8021e410>] (dump_stack_lvl+0x5c/0x70 lib/dump_stack.c:120) [<8021e3b4>] (dump_stack_lvl) from [<8021e43c>] (dump_stack+0x18/0x1c lib/dump_stack.c:129) r7:8281f9b4 r6:00000000 r5:84f76e40 r4:82a80d14 [<8021e424>] (dump_stack) from [<8020260c>] (vpanic+0x114/0x320 kernel/panic.c:650) [<802024f8>] (vpanic) from [<8020284c>] (trace_suspend_resume+0x0/0x104 kernel/panic.c:787) r7:803e1414 [<80202818>] (panic) from [<80250a70>] (check_panic_on_warn kernel/panic.c:524 [inline]) [<80202818>] (panic) from [<80250a70>] (get_taint+0x0/0x1c kernel/panic.c:519) r3:8280c544 r2:00000001 r1:8228f394 r0:82296c60 [<802509f8>] (check_panic_on_warn) from [<80250bec>] (__warn+0x98/0x1ac kernel/panic.c:1062) [<80250b54>] (__warn) from [<80250ee8>] (warn_slowpath_fmt+0x1e8/0x1f4 kernel/panic.c:1097) r8:00000009 r7:822aefec r6:dfc1d8c4 r5:84f76e40 r4:00000000 [<80250d04>] (warn_slowpath_fmt) from [<803e1414>] (reg_bounds_sanity_check+0x3c0/0x428 kernel/bpf/verifier.c:2817) r10:85fe0000 r9:ffffdfcd r8:80000000 r7:ffffdfcd r6:ffffdfcc r5:822af794 r4:8700a230 [<803e1054>] (reg_bounds_sanity_check) from [<803ee368>] (reg_set_min_max kernel/bpf/verifier.c:17165 [inline]) [<803e1054>] (reg_bounds_sanity_check) from [<803ee368>] (reg_set_min_max+0x1d4/0x298 kernel/bpf/verifier.c:17132) r10:00000001 r9:00000010 r8:85fe0000 r7:8543e310 r6:8700a310 r5:8700a230 r4:8543e230 [<803ee194>] (reg_set_min_max) from [<803fefc0>] (check_cond_jmp_op+0xc84/0x1988 kernel/bpf/verifier.c:17622) r10:8700a000 r9:00000010 r8:85e27c00 r7:ffffffff r6:80000000 r5:85eb80c0 r4:dfa990c0 r3:8543e230 [<803fe33c>] (check_cond_jmp_op) from [<8040561c>] (do_check_insn kernel/bpf/verifier.c:21185 [inline]) [<803fe33c>] (check_cond_jmp_op) from [<8040561c>] (do_check kernel/bpf/verifier.c:21325 [inline]) [<803fe33c>] (check_cond_jmp_op) from [<8040561c>] (do_check_common+0x2584/0x3214 kernel/bpf/verifier.c:24667) r10:85fe4000 r9:85fe0000 r8:dfa990c0 r7:85fe6000 r6:00000018 r5:dfa99078 r4:dfa99000 [<80403098>] (do_check_common) from [<80409220>] (do_check_main kernel/bpf/verifier.c:24750 [inline]) [<80403098>] (do_check_common) from [<80409220>] (bpf_check+0x2290/0x2d30 kernel/bpf/verifier.c:26073) r10:85fe6000 r9:00000001 r8:85fe0000 r7:00000a7b r6:85fe08bc r5:00000000 r4:00000016 [<80406f90>] (bpf_check) from [<803da758>] (bpf_prog_load+0x5b8/0xdec kernel/bpf/syscall.c:3089) r10:dfa99000 r9:84f76e40 r8:856dbb30 r7:dfc1dd18 r6:00000000 r5:00000000 r4:dfc1deb0 [<803da1a0>] (bpf_prog_load) from [<803dbf80>] (__sys_bpf+0x2d8/0x2038 kernel/bpf/syscall.c:6228) r10:00000005 r9:00000000 r8:dfc1de50 r7:00000048 r6:84f76e40 r5:200054c0 r4:00000000 [<803dbca8>] (__sys_bpf) from [<803de278>] (__do_sys_bpf kernel/bpf/syscall.c:6341 [inline]) [<803dbca8>] (__sys_bpf) from [<803de278>] (sys_bpf+0x2c/0x48 kernel/bpf/syscall.c:6339) r10:00000182 r9:84f76e40 r8:8020029c r7:00000182 r6:003463b0 r5:00000000 r4:00000000 [<803de24c>] (sys_bpf) from [<80200060>] (ret_fast_syscall+0x0/0x1c arch/arm/mm/proc-v7.S:67) Exception stack(0xdfc1dfa8 to 0xdfc1dff0) dfa0: 00000000 00000000 00000005 200054c0 00000048 00000000 dfc0: 00000000 00000000 003463b0 00000182 00346378 00000000 003d0f00 76f570dc dfe0: 76f56e88 76f56e78 00018bc4 00130300 Rebooting in 86400 seconds..