last executing test programs:
631.174149ms ago: executing program 2 (id=65):
fremovexattr(0xffffffffffffffff, &(0x7f0000000000))
581.154437ms ago: executing program 1 (id=66):
process_vm_readv(0x0, &(0x7f0000000000), 0x0, &(0x7f0000000000), 0x0, 0x0)
580.696568ms ago: executing program 1 (id=67):
mq_notify(0xffffffffffffffff, &(0x7f0000000000))
580.440636ms ago: executing program 2 (id=68):
syz_open_dev$I2C(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$I2C(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$I2C(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$I2C(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$I2C(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$I2C(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$I2C(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$I2C(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$I2C(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$I2C(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$I2C(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$I2C(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$I2C(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$I2C(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$I2C(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$I2C(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$I2C(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$I2C(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$I2C(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$I2C(&(0x7f0000000500), 0x4, 0x800)
579.943152ms ago: executing program 1 (id=70):
syz_open_dev$radio(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$radio(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$radio(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$radio(&(0x7f0000000100), 0x0, 0x800)
579.734669ms ago: executing program 0 (id=71):
rt_sigprocmask(0x0, &(0x7f0000000000), 0x0, 0x0)
577.220493ms ago: executing program 1 (id=72):
syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0)
syz_open_dev$evdev(&(0x7f0000000080), 0x0, 0x1)
syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x2)
syz_open_dev$evdev(&(0x7f0000000100), 0x0, 0x800)
syz_open_dev$evdev(&(0x7f0000000140), 0x1, 0x0)
syz_open_dev$evdev(&(0x7f0000000180), 0x1, 0x1)
syz_open_dev$evdev(&(0x7f00000001c0), 0x1, 0x2)
syz_open_dev$evdev(&(0x7f0000000200), 0x1, 0x800)
syz_open_dev$evdev(&(0x7f0000000240), 0x2, 0x0)
syz_open_dev$evdev(&(0x7f0000000280), 0x2, 0x1)
syz_open_dev$evdev(&(0x7f00000002c0), 0x2, 0x2)
syz_open_dev$evdev(&(0x7f0000000300), 0x2, 0x800)
syz_open_dev$evdev(&(0x7f0000000340), 0x3, 0x0)
syz_open_dev$evdev(&(0x7f0000000380), 0x3, 0x1)
syz_open_dev$evdev(&(0x7f00000003c0), 0x3, 0x2)
syz_open_dev$evdev(&(0x7f0000000400), 0x3, 0x800)
syz_open_dev$evdev(&(0x7f0000000440), 0x4, 0x0)
syz_open_dev$evdev(&(0x7f0000000480), 0x4, 0x1)
syz_open_dev$evdev(&(0x7f00000004c0), 0x4, 0x2)
syz_open_dev$evdev(&(0x7f0000000500), 0x4, 0x800)
573.707253ms ago: executing program 0 (id=73):
socket$rxrpc(0x21, 0x2, 0x0)
511.96102ms ago: executing program 2 (id=74):
newfstatat(0xffffffffffffff9c, &(0x7f0000000000), &(0x7f0000000000), 0x0)
511.819898ms ago: executing program 0 (id=75):
getcwd(&(0x7f0000000000), 0x0)
511.736941ms ago: executing program 0 (id=76):
eventfd2(0x0, 0x0)
511.660273ms ago: executing program 2 (id=77):
mlock(0x0, 0x0)
511.351811ms ago: executing program 1 (id=78):
inotify_rm_watch(0xffffffffffffffff, 0x0)
511.155724ms ago: executing program 0 (id=79):
eventfd(0x0)
509.315973ms ago: executing program 0 (id=80):
fspick(0xffffffffffffffff, &(0x7f0000000000), 0x0)
498.791759ms ago: executing program 2 (id=82):
pkey_mprotect(0x0, 0x0, 0x0, 0xffffffffffffffff)
60.347428ms ago: executing program 1 (id=81):
mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
0s ago: executing program 2 (id=84):
mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0)
mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0)
kernel console output (not intermixed with test programs):
Warning: Permanently added '[localhost]:35738' (ED25519) to the list of known hosts.
syzkaller login: [ 66.198138][ T5814] cgroup: Unknown subsys name 'net'
[ 66.367095][ T5814] cgroup: Unknown subsys name 'cpuset'
[ 66.372614][ T5814] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 68.415803][ T5814] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 75.056215][ T5925] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 75.156276][ T5923] ------------[ cut here ]------------
[ 75.158886][ T5923] Unexpected gfp: 0x400000 (__GFP_ACCOUNT). Fixing up to gfp: 0xdc0 (GFP_KERNEL|__GFP_ZERO). Fix your code!
[ 75.167799][ T5923] WARNING: mm/vmalloc.c:3938 at vmalloc_fix_flags+0x9c/0xe0, CPU#0: syz-executor/5923
[ 75.171689][ T5923] Modules linked in:
[ 75.173940][ T5923] CPU: 0 UID: 0 PID: 5923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)
[ 75.178571][ T5923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 75.183629][ T5923] RIP: 0010:vmalloc_fix_flags+0x9c/0xe0
[ 75.185860][ T5923] Code: 81 e6 1f 52 ee ff 89 74 24 30 81 e3 e0 ad 11 00 89 5c 24 20 90 48 c7 c7 20 db 76 8b 4c 89 fa 89 d9 4d 89 f0 e8 85 8d 6c ff 90 <0f> 0b 90 90 8b 44 24 20 48 c7 04 24 0e 36 e0 45 4b c7 04 2c 00 00
[ 75.193407][ T5923] RSP: 0018:ffffc90003c87b00 EFLAGS: 00010246
[ 75.195861][ T5923] RAX: 53760b09cb046a00 RBX: 0000000000000dc0 RCX: ffff88810be457c0
[ 75.199427][ T5923] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 75.202686][ T5923] RBP: ffffc90003c87b98 R08: 0000000000000003 R09: 0000000000000004
[ 75.206248][ T5923] R10: dffffc0000000000 R11: fffffbfff1bba708 R12: 1ffff92000790f60
[ 75.209353][ T5923] R13: dffffc0000000000 R14: ffffc90003c87b20 R15: ffffc90003c87b30
[ 75.212522][ T5923] FS: 000055555dc61500(0000) GS:ffff88818e8be000(0000) knlGS:0000000000000000
[ 75.216937][ T5923] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 75.219983][ T5923] CR2: 0000001b2ed63fff CR3: 0000000113a48000 CR4: 00000000000006f0
[ 75.223272][ T5923] Call Trace:
[ 75.224647][ T5923]
[ 75.225863][ T5923] ? __pfx_vmalloc_fix_flags+0x10/0x10
[ 75.228119][ T5923] __vmalloc_noprof+0xf2/0x120
[ 75.230063][ T5923] bpf_prog_alloc_no_stats+0x4a/0x4d0
[ 75.232267][ T5923] bpf_prog_alloc+0x3c/0x1a0
[ 75.234479][ T5923] bpf_prog_create_from_user+0xa7/0x440
[ 75.236790][ T5923] ? __pfx_seccomp_check_filter+0x10/0x10
[ 75.239445][ T5923] do_seccomp+0x7b1/0xd90
[ 75.241440][ T5923] ? __pfx_do_seccomp+0x10/0x10
[ 75.243983][ T5923] ? lockdep_hardirqs_on+0x9c/0x150
[ 75.246392][ T5923] ? static_key_count+0x41/0x70
[ 75.248479][ T5923] ? security_task_prctl+0x163/0x190
[ 75.250626][ T5923] __se_sys_prctl+0xc3c/0x1830
[ 75.252629][ T5923] ? __pfx___se_sys_prctl+0x10/0x10
[ 75.255023][ T5923] ? do_syscall_64+0xbe/0xfa0
[ 75.256993][ T5923] ? __x64_sys_prctl+0x20/0xc0
[ 75.259033][ T5923] do_syscall_64+0xfa/0xfa0
[ 75.260953][ T5923] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.263672][ T5923] ? exc_page_fault+0xab/0x100
[ 75.266021][ T5923] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.268973][ T5923] RIP: 0033:0x7f40c6590b0d
[ 75.270819][ T5923] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 18 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 9d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 1b 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00
[ 75.278835][ T5923] RSP: 002b:00007ffdf8a5bd40 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[ 75.282377][ T5923] RAX: ffffffffffffffda RBX: 00007f40c662cf80 RCX: 00007f40c6590b0d
[ 75.287517][ T5923] RDX: 00007ffdf8a5bda0 RSI: 0000000000000002 RDI: 0000000000000016
[ 75.290686][ T5923] RBP: 00007ffdf8a5bdb0 R08: 0000000000000006 R09: 0000000000000071
[ 75.293951][ T5923] R10: 0000000000000071 R11: 0000000000000246 R12: 000000000000006d
[ 75.297090][ T5923] R13: 00007ffdf8a5c1d8 R14: 00007ffdf8a5c458 R15: 0000000000000000
[ 75.300278][ T5923]
[ 75.301532][ T5923] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 75.304531][ T5923] CPU: 0 UID: 0 PID: 5923 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full)
[ 75.308296][ T5923] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 75.312262][ T5923] Call Trace:
[ 75.313606][ T5923]
[ 75.314795][ T5923] dump_stack_lvl+0x99/0x250
[ 75.316667][ T5923] ? __asan_memcpy+0x40/0x70
[ 75.318487][ T5923] ? __pfx_dump_stack_lvl+0x10/0x10
[ 75.320713][ T5923] ? __pfx__printk+0x10/0x10
[ 75.323085][ T5923] vpanic+0x237/0x6d0
[ 75.324932][ T5923] ? __pfx_vpanic+0x10/0x10
[ 75.326940][ T5923] ? is_bpf_text_address+0x292/0x2b0
[ 75.328990][ T5923] ? is_bpf_text_address+0x26/0x2b0
[ 75.331097][ T5923] panic+0xb9/0xc0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 75.332555][ T5923] ? __pfx_panic+0x10/0x10
[ 75.334505][ T5923] __warn+0x318/0x4d0
[ 75.336131][ T5923] ? vmalloc_fix_flags+0x9c/0xe0
[ 75.338190][ T5923] ? vmalloc_fix_flags+0x9c/0xe0
[ 75.340140][ T5923] report_bug+0x2be/0x4f0
[ 75.341889][ T5923] ? vmalloc_fix_flags+0x9c/0xe0
[ 75.343889][ T5923] ? vmalloc_fix_flags+0x9c/0xe0
[ 75.345836][ T5923] ? vmalloc_fix_flags+0x9e/0xe0
[ 75.347980][ T5923] handle_bug+0x84/0x160
[ 75.349816][ T5923] exc_invalid_op+0x1a/0x50
[ 75.351755][ T5923] asm_exc_invalid_op+0x1a/0x20
[ 75.353876][ T5923] RIP: 0010:vmalloc_fix_flags+0x9c/0xe0
[ 75.356132][ T5923] Code: 81 e6 1f 52 ee ff 89 74 24 30 81 e3 e0 ad 11 00 89 5c 24 20 90 48 c7 c7 20 db 76 8b 4c 89 fa 89 d9 4d 89 f0 e8 85 8d 6c ff 90 <0f> 0b 90 90 8b 44 24 20 48 c7 04 24 0e 36 e0 45 4b c7 04 2c 00 00
[ 75.363567][ T5923] RSP: 0018:ffffc90003c87b00 EFLAGS: 00010246
[ 75.366234][ T5923] RAX: 53760b09cb046a00 RBX: 0000000000000dc0 RCX: ffff88810be457c0
[ 75.370384][ T5923] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000002
[ 75.373835][ T5923] RBP: ffffc90003c87b98 R08: 0000000000000003 R09: 0000000000000004
[ 75.377091][ T5923] R10: dffffc0000000000 R11: fffffbfff1bba708 R12: 1ffff92000790f60
[ 75.380206][ T5923] R13: dffffc0000000000 R14: ffffc90003c87b20 R15: ffffc90003c87b30
[ 75.383340][ T5923] ? __pfx_vmalloc_fix_flags+0x10/0x10
[ 75.385743][ T5923] __vmalloc_noprof+0xf2/0x120
[ 75.387836][ T5923] bpf_prog_alloc_no_stats+0x4a/0x4d0
[ 75.389891][ T5923] bpf_prog_alloc+0x3c/0x1a0
[ 75.391625][ T5923] bpf_prog_create_from_user+0xa7/0x440
[ 75.393803][ T5923] ? __pfx_seccomp_check_filter+0x10/0x10
[ 75.396026][ T5923] do_seccomp+0x7b1/0xd90
[ 75.397722][ T5923] ? __pfx_do_seccomp+0x10/0x10
[ 75.399617][ T5923] ? lockdep_hardirqs_on+0x9c/0x150
[ 75.401564][ T5923] ? static_key_count+0x41/0x70
[ 75.403486][ T5923] ? security_task_prctl+0x163/0x190
[ 75.405633][ T5923] __se_sys_prctl+0xc3c/0x1830
[ 75.407576][ T5923] ? __pfx___se_sys_prctl+0x10/0x10
[ 75.409805][ T5923] ? do_syscall_64+0xbe/0xfa0
[ 75.411936][ T5923] ? __x64_sys_prctl+0x20/0xc0
[ 75.414187][ T5923] do_syscall_64+0xfa/0xfa0
[ 75.416152][ T5923] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.418525][ T5923] ? exc_page_fault+0xab/0x100
[ 75.420454][ T5923] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.422857][ T5923] RIP: 0033:0x7f40c6590b0d
[ 75.424645][ T5923] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 18 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 9d 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 1b 48 8b 54 24 18 64 48 2b 14 25 28 00 00 00
[ 75.432339][ T5923] RSP: 002b:00007ffdf8a5bd40 EFLAGS: 00000246 ORIG_RAX: 000000000000009d
[ 75.435509][ T5923] RAX: ffffffffffffffda RBX: 00007f40c662cf80 RCX: 00007f40c6590b0d
[ 75.438223][ T5923] RDX: 00007ffdf8a5bda0 RSI: 0000000000000002 RDI: 0000000000000016
[ 75.440700][ T5923] RBP: 00007ffdf8a5bdb0 R08: 0000000000000006 R09: 0000000000000071
[ 75.443684][ T5923] R10: 0000000000000071 R11: 0000000000000246 R12: 000000000000006d
[ 75.447292][ T5923] R13: 00007ffdf8a5c1d8 R14: 00007ffdf8a5c458 R15: 0000000000000000
[ 75.449943][ T5923]
[ 75.451787][ T5923] Kernel Offset: disabled
[ 75.453353][ T5923] Rebooting in 86400 seconds..
VM DIAGNOSIS:
20:24:58 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000031 RBX=0000000000000031 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc90003c872b0
R8 =ffff888169f28237 R9 =1ffff1102d3e5046 R10=dffffc0000000000 R11=ffffffff851c21e0
R12=dffffc0000000000 R13=ffffffff99856948 R14=ffffffff99b6b080 R15=0000000000000000
RIP=ffffffff851c225c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 000055555dc61500 ffffffff 00c00000
GS =0000 ffff88818e8be000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000001b2ed63fff CR3=0000000113a48000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=ffffffffffffffff ffff00ff00000000 XMM05=0000000000000021 0000000000005f66
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=ffffffffffffff00 ffffffffffff0000 XMM09=6174735f64616f6c 66666f5f74665f66
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000
info registers vcpu 1
CPU#1
RAX=0000000000000001 RBX=dffffc0000000000 RCX=ffff888101bcba80 RDX=0000000000000000
RSI=0000000000000008 RDI=ffff888104f124b8 RBP=ffff888104f12490 RSP=ffffc900029d7580
R8 =ffff888104f124bf R9 =1ffff110209e2497 R10=dffffc0000000000 R11=ffffed10209e2498
R12=ffff888104f124b0 R13=0000000000000063 R14=0000000000000062 R15=0000000000000001
RIP=ffffffff822857e0 RFL=00000203 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f81f5174c80 ffffffff 00c00000
GS =0000 ffff8882a9ebe000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f7e68db3000 CR3=0000000112420000 CR4=000006f0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000000000000000 0000000000000000 XMM01=0000000000000000 0000000000000000
XMM02=0000000000000000 0000000000000000 XMM03=0000000000000000 0000000000000000
XMM04=00ff000000000000 ff00000000000000 XMM05=0000000000000021 0000000000005f66
XMM06=0000000000000000 0000000000000000 XMM07=0000000000000000 0000000000000000
XMM08=ffffffffffffff00 ffffffffffff0000 XMM09=6174735f64616f6c 66666f5f74665f66
XMM10=0000000000000000 0000000000000000 XMM11=0000000000000000 0000000000000000
XMM12=0000000000000000 0000000000000000 XMM13=0000000000000000 0000000000000000
XMM14=0000000000000000 0000000000000000 XMM15=0000000000000000 0000000000000000