Extracting prog: 17m24.805276477s
Minimizing prog: 1h42m41.072234579s
Simplifying prog options: 0s
Extracting C: 5m43.038750592s
Simplifying C: 1h14m45.274397657s


extracting reproducer from 18 programs
testing a last program of every proc
single: executing 5 programs separately with timeout 6m0s
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$auto_fuse_dir_operations_dir-mmap$auto-io_uring_setup$auto-close_range$auto-socket-openat$auto_snd_rawmidi_f_ops_rawmidi-prctl$auto-mmap$auto-socket$nl_generic-syz_genetlink_get_family_id$auto_nl80211-openat$auto_def_blk_fops_fs-ioctl$auto_HDIO_GETGEO-sendmsg$auto_NL80211_CMD_GET_WIPHY-openat$auto_kernfs_file_fops_kernfs_internal-mmap$auto-madvise$auto-madvise$auto-madvise$auto-openat$auto_proc_pagemap_operations_internal-ioctl$auto_PAGEMAP_SCAN
detailed listing:
executing program 0:
r0 = openat$auto_fuse_dir_operations_dir(0xffffffffffffff9c, &(0x7f0000000000)='/sys/devices/virtual/bluetooth/hci1/hci1:201\x00', 0x614782, 0x0)
mmap$auto(0x0, 0x5, 0xde, 0x9b72, r0, 0x8000)
io_uring_setup$auto(0x6, 0x0)
close_range$auto(0x2, 0x8, 0x0)
socket(0x1e, 0x805, 0x0)
openat$auto_snd_rawmidi_f_ops_rawmidi(0xffffffffffffff9c, &(0x7f00000003c0)='/dev/snd/midiC2D0\x00', 0x1, 0x0)
prctl$auto(0x3e, 0x1, 0x0, 0x1, 0x0)
mmap$auto(0x0, 0x400004, 0xdf, 0x9b72, 0xffffffffffffffff, 0x8000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$auto_nl80211(&(0x7f0000000640), r1)
r2 = openat$auto_def_blk_fops_fs(0xffffffffffffff9c, 0x0, 0x8001, 0x0)
ioctl$auto_HDIO_GETGEO(r2, 0x301, &(0x7f00000001c0))
sendmsg$auto_NL80211_CMD_GET_WIPHY(r1, &(0x7f0000001180)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)=ANY=[], 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0xc004)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, 0x0, 0xc0200, 0x0)
mmap$auto(0x0, 0x2020009, 0x3, 0xeb1, 0xfffffffffffffffa, 0x8000)
madvise$auto(0x0, 0xffffffffffff0005, 0x17)
madvise$auto(0x0, 0xffffffffffff0001, 0x15)
madvise$auto(0x0, 0xffffffffffff0005, 0x19)
r3 = openat$auto_proc_pagemap_operations_internal(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/pagemap\x00', 0x201, 0x0)
ioctl$auto_PAGEMAP_SCAN(r3, 0xc0606610, &(0x7f000000c380)={0x60, 0x0, 0x100000, 0x7fffffffefff, 0x2, 0x1, 0x8, 0xbff, 0x2c, 0x2c, 0x0, 0x2})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): socket$nl_generic-openat$auto_seq_oss_f_ops_seq_oss-read$auto_snd_timer_f_ops_timer-ioctl$auto_SNDRV_TIMER_IOCTL_SELECT-openat$auto_console_fops_tty_io-sendmsg$auto_OVS_VPORT_CMD_SET-write$auto_console_fops_tty_io-close_range$auto-socket$nl_generic-openat$auto_kvm_chardev_ops_kvm_main-close_range$auto-openat$auto_kvm_chardev_ops_kvm_main-ioctl$auto_KVM_CREATE_VM-ioctl$auto-ioctl$auto_KVM_GET_MSRS-close_range$auto-read$auto_full_fops_mem
detailed listing:
executing program 0:
socket$nl_generic(0x10, 0x3, 0x10)
openat$auto_seq_oss_f_ops_seq_oss(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer2\x00', 0x63a42, 0x0)
read$auto_snd_timer_f_ops_timer(0xffffffffffffffff, &(0x7f0000000100)=""/88, 0x58)
ioctl$auto_SNDRV_TIMER_IOCTL_SELECT(0xffffffffffffffff, 0x40345410, &(0x7f0000000000)={{0x0, 0x2, 0x200800, 0xffffffff, 0xfffffffb}, "0dd7fd004929347eeeccdf0732f77b1f6de0d6d51768a257a97ca5e9ca6310ea"})
r0 = openat$auto_console_fops_tty_io(0xffffffffffffff9c, &(0x7f0000000800)='/dev/tty0\x00', 0x102, 0x0)
sendmsg$auto_OVS_VPORT_CMD_SET(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000002dc0)=ANY=[@ANYBLOB="040018800000000000d000050045b4fc4d20e461a7cfa5a692e9acf2b3211425b1c77ecbbb4817d7e0b68da870a708c4fef613df8e2a3aa4f5bc3b401ba53f4d173f1490678a31f4b0f6f0449214088328691d7e50256cca2e6d3f13f71913920379252290dcbf4737db8cda9adf78cbf905c99c3437b3820e0bd7f03eefc4a8e38fcc95b6e2ea9ed3e3bfb6834b3186942569c4eacd7fd398f9bf37a5db3c4f24ae41b3e5ba97ce24b95425ed49d5cd5e614a03cc33f80d96b0e8bf0ac6b3b656ad590f443973a975e7ca80503e4956d91a36e7f80acca3"], 0x2550}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
write$auto_console_fops_tty_io(r0, &(0x7f0000000000)="c80d1b5d399b50", 0xfdef)
close_range$auto(0x2, 0x8, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f0000000000), 0x101000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
r2 = openat$auto_kvm_chardev_ops_kvm_main(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$auto_KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$auto(0x3, 0xae41, r2)
ioctl$auto_KVM_GET_MSRS(r1, 0x4140aecd, &(0x7f0000000040)={0x7})
close_range$auto(0x2, 0x8, 0x0)
read$auto_full_fops_mem(0xffffffffffffffff, &(0x7f0000000180)=""/135, 0x87)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-openat$auto_proc_oom_adj_operations_base-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
single: successfully extracted reproducer
found reproducer with 12 syscalls
minimizing guilty program
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-openat$auto_proc_oom_adj_operations_base-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
socket$nl_generic(0x10, 0x3, 0x10)

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-openat$auto_proc_oom_adj_operations_base-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-openat$auto_proc_oom_adj_operations_base-sendmsg$auto_GTP_CMD_NEWPDP-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-openat$auto_proc_oom_adj_operations_base-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
openat$auto_proc_oom_adj_operations_base(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/oom_adj\x00', 0x48402, 0x0)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-openat$auto_kernfs_file_fops_kernfs_internal-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
openat$auto_kernfs_file_fops_kernfs_internal(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/devices/virtual/block/nullb0/ro\x00', 0xacec2, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-write$auto-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
write$auto(0xffffffffffffffff, &(0x7f0000001340)='\x04\"\x8e U\x00\x00\x00\xb8\n08\xc6\xb05>ha9\x89|e\x00\x00\x00\xa8%\xdc~kD\xa1\x1b\xc3\xe4\xc7\x89\x0e\xd4\x88\xac\x95\xacS\xe9$\xe7*\xcd\x8b\x9b\xd0o\xc7\xd8\xf7\x8a@%\x1d\xf8b\x14[H\xa2` \xb2\xef\xd7\xac\xfak\xb7\x02\x00}\xbcv\xfc\xe6\xbf\x14\x82jO\xde\xda\xda\x929\xd3\x04\xd0\xa2\xa0\xa6\xcb\x86\x15\xac\xcc\xf8\xa2\x01Z\x83`\xa1d\xedj8\x1e\xcc\x0fD\xa4\xe3\xa5\xba\xf9\xbe\x85\f\xbbrY\xb9\xc77\xd9d\xb5\x16\xc1\xe9\xe5\xc8X_\xefPG\x86=\x17>3\xb2\xdd\xbd\xa9\xe4R\x9c\xb0j[\"\f\xfb\tNz\xf4X]\xb90\x1c\xc3\x91jd\xe9\xb9\x87I\x19\xe4\x16\xa4\xad\xdcJ\xe4\x00\xd03/\x13,3\x87K\xd0J\xbb\xb9B\xff\xd9\xf1\xed\x04\xeb\x8d\x92\xa7-\x91\x8ai\xc6j\xeb\x90#1\x1d\xfd\xa3\xfeO\xcc\xe0\xe5\x1d\x8e\xedd\f,\t\xd8\x10Ho.z4\'\xe2\xad`\x94\xa6\xa2\xb2\xd6zMB\xf5\xcd\r7MO\x8f\xbc7%\xf1\xbbxB\xb4q\xa0\xe1-\x1c\xa2\xeb\xc0C\x04\x00\xfcG\xb6\x1e\x82\xaao\x1a\xa7\xbdw\x8b\xe6\bI\xfc\xa1\a\"\xe6\xc7z\xac\xe6\xce\xe34\x16\x9bdp\xb9\x02R\b\x83\x95\xde\x93\x12hP\xcbr6F\x84\xa7sf\xea\x8a\x1aee\xa4\xd0~\x00IC\xefT\xdc_G=]\xa3\xcb\xe0\x9f\n\xc5%\xe8PT\x87\xa4\xf3?<U\x92\x88e\xbb\xe9\xef\xb2\xf0M\xdc<\xfbg\x9e\x7f,\xb1\x89\xb8\x8a\xa4+\xf1\xe1\x06\xa1\xda\xb8\xae\xb8Do6^\xb9\x9e\xee\xec6G\x00\xbc|\xbf\x91\x00\x9f\xdc&\a\x1a\x91S5 \xe9m\xcd\xcb\x8d\xbe\xb7f\xdb\xe9i\xf4\x99\xfb\xde\xe5\xf76\xbdS\xdc\x94\x0e\x97\xf3F\x82\xd9\x1f;u^\xed\xd2\xad:\xa0\x89\xf6\x18\xef|\xfa\xd6\x1bj\xc1\xde\xaa\x02\xfa\x16\xef\xce@J\xf2=\xb1\x9d\x14\x06\xecq\r\x85\xb3\x0f4\x1cu\xdd\xdfy\xb3\xd1dWN\x88\xf6V\xff\xe0\xa7B\x93OD\x8d\xab\xe0Y\bI\bB\xc1\x92\t\x89T\b\x18IX\xd1s\xb6\xc0\xe9O{_\xff-\xd7\x88z\xc5\x99\xf0\x96\x02\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcdM\xb8\x1a\xad&', 0x2)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendfile$auto-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendfile$auto(0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x3)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-syz_genetlink_get_family_id$auto_ovs_ct_limit-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
syz_genetlink_get_family_id$auto_ovs_ct_limit(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-close_range$auto-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
close_range$auto(0x2, 0x8, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-socketpair$auto-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
socketpair$auto(0x1e, 0x1, 0x8000000000000000, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): write$auto_tracing_mark_fops_trace-sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
write$auto_tracing_mark_fops_trace(0xffffffffffffffff, 0x0, 0x0)
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, 0x0, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program did not crash
testing program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=6m0s, {Threaded:true Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
simplifying C reproducer
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:4 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:false NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:false NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:true UseTmpDir:false HandleSegv:true Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:true UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:false Swap:true UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: no output from test machine
a never seen crash title: no output from test machine, ignore
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: no output from test machine
validation run: crashed=true
testing program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
detailed listing:
executing program 0:
sendmsg$auto_GTP_CMD_NEWPDP(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={0x0}, 0x1, 0x0, 0x0, 0x20004050}, 0x4000084)
lstat$auto(0x0, &(0x7f0000000180)={0x4, 0x1c, 0x9, 0x63, 0x0, 0x0, 0x0, 0xffc, 0x8, 0x80000000000000a, 0x0, 0x9, 0x9, 0xffffffff80000000, 0xd, 0x6, 0x200000100103})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r0, 0x89fc, &(0x7f0000000040)={'bridge0\x00'})

program crashed: INFO: task hung in corrupted
validation run: crashed=true
reproducing took 3h36m23.546394267s
repro crashed as (corrupted=true):
INFO: task kworker/u8:11:3427 blocked for more than 144 seconds.
      Not tainted syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:11   state:D stack:26760 pid:3427  tgid:3427  ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x1139/0x6150 kernel/sched/core.c:6863

report is corrupted, running repro again
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
report is corrupted, running repro again
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
report is corrupted, running repro again
testing compiled C program (duration=6m0s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:true IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false CallComments:true LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): sendmsg$auto_GTP_CMD_NEWPDP-lstat$auto-socket$nl_generic-ioctl$sock_SIOCGIFINDEX
program crashed: INFO: task hung in corrupted
final repro crashed as (corrupted=true):
INFO: task kworker/u8:4:72 blocked for more than 143 seconds.
      Not tainted syzkaller #0
"echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
task:kworker/u8:4    state:D stack:24152 pid:72    tgid:72    ppid:2      task_flags:0x4208060 flags:0x00080000
Workqueue: ipv6_addrconf addrconf_dad_work
Call Trace:
 <TASK>
 context_switch kernel/sched/core.c:5256 [inline]
 __schedule+0x1139/0x6150 kernel/sched/core.c:6863
 __schedule_loop kernel/sched/core.c:6945 [inline]
 schedule+0xe7/0x3a0 kernel/sched/core.c:6960
 schedule_preempt_disabled+0x13/0x30 kernel/sched/core.c:7017