last executing test programs: 3.707419162s ago: executing program 1 (id=2703): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000140)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x54, r1, 0x400, 0x70bd28, 0x25dfdbfb, {}, [@NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private0}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @multicast2}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @dev={0xac, 0x14, 0x14, 0x3a}}, @NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @private2={0xfc, 0x2, '\x00', 0x1}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000010}, 0x4010) r2 = openat$hwrng(0xffffff9c, &(0x7f0000000180), 0x0, 0x0) r3 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000200), r0) sendmsg$IEEE802154_LLSEC_LIST_DEV(r0, &(0x7f00000002c0)={&(0x7f00000001c0)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x14, r3, 0x100, 0x70bd28, 0x25dfdbfb, {}, ["", "", "", "", "", "", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4000081}, 0x0) sendmsg$NLBL_MGMT_C_LISTDEF(r0, &(0x7f00000003c0)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000380)={&(0x7f0000000340)={0x1c, r1, 0x8, 0xa, 0x25dfdbfe, {}, [@NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0x1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000090) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r2, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'erspan0\x00', 0x0, 0x1, 0x8, 0xfffff001, 0xff, {{0x7, 0x4, 0x1, 0x2, 0x1c, 0x65, 0x0, 0x5, 0x29, 0x0, @empty, @rand_addr=0x64010102, {[@noop, @ra={0x94, 0x4}]}}}}}) bind$xdp(r2, &(0x7f0000000480)={0x2c, 0x2, r4, 0x1f, r2}, 0x10) ioctl$TUNSETIFINDEX(0xffffffffffffffff, 0x400454da, &(0x7f00000004c0)=r4) r5 = syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000540), r0) sendmsg$NLBL_CALIPSO_C_ADD(r0, &(0x7f0000000600)={&(0x7f0000000500)={0x10, 0x0, 0x0, 0x20000}, 0xc, &(0x7f00000005c0)={&(0x7f0000000580)={0x3c, r5, 0x10, 0x70bd2c, 0x25dfdbfd, {}, [@NLBL_CALIPSO_A_DOI={0x8}, @NLBL_CALIPSO_A_MTYPE={0x8}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x2}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x1}, @NLBL_CALIPSO_A_DOI={0x8, 0x1, 0x3}]}, 0x3c}, 0x1, 0x0, 0x0, 0x20084000}, 0x4004804) ioctl$KDSKBMODE(r2, 0x4b45, &(0x7f0000000640)) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000680)={'wpan4\x00'}) sendmsg$IEEE802154_LLSEC_LIST_DEV(r0, &(0x7f0000000780)={&(0x7f00000006c0)={0x10, 0x0, 0x0, 0x8000000}, 0xc, &(0x7f0000000740)={&(0x7f0000000700)={0x14, r3, 0x8, 0x70bd27, 0x25dfdbfe, {}, ["", "", "", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x4800}, 0x40001) read$usbfs(r2, &(0x7f00000007c0)=""/195, 0xc3) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f00000008c0), r0) r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) sendmsg$IEEE802154_LLSEC_SETPARAMS(r6, &(0x7f00000009c0)={&(0x7f0000000900)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000980)={&(0x7f0000000940)={0x28, r3, 0x400, 0x70bd25, 0x25dfdbfe, {}, [@IEEE802154_ATTR_LLSEC_KEY_SOURCE_EXTENDED={0xc, 0x2d, {0xaaaaaaaaaaaa0202}}, @IEEE802154_ATTR_LLSEC_SECLEVEL={0x5, 0x2a, 0x6}]}, 0x28}, 0x1, 0x0, 0x0, 0xc000}, 0x840) r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000a40), r0) sendmsg$NLBL_UNLABEL_C_STATICADD(r7, &(0x7f0000000b40)={&(0x7f0000000a00)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000b00)={&(0x7f0000000a80)={0x78, r8, 0x400, 0x70bd25, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @local}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @NLBL_UNLABEL_A_SECCTX={0x1f, 0x7, 'system_u:object_r:usr_t:s0\x00'}, @NLBL_UNLABEL_A_ACPTFLG={0x5}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}, @NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @broadcast}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x78}, 0x1, 0x0, 0x0, 0xd5}, 0x10010) openat$pfkey(0xffffff9c, &(0x7f0000000b80), 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000bc0)) r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c40), r2) sendmsg$NL80211_CMD_TDLS_MGMT(r2, &(0x7f0000000d00)={&(0x7f0000000c00)={0x10, 0x0, 0x0, 0x14000408}, 0xc, &(0x7f0000000cc0)={&(0x7f0000000c80)={0x20, r9, 0x200, 0x70bd2d, 0x25dfdbfe, {{}, {@void, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x20}, 0x1, 0x0, 0x0, 0x2004091}, 0x4000000) sendmsg$IEEE802154_ASSOCIATE_REQ(r7, &(0x7f0000000e00)={&(0x7f0000000d40)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000dc0)={&(0x7f0000000d80)={0x24, r3, 0x2, 0x70bd2a, 0x25dfdbfb, {}, [@IEEE802154_ATTR_COORD_PAN_ID={0x6, 0xa, 0x3}, @IEEE802154_ATTR_CAPABILITY={0x5, 0x11, 0x9}]}, 0x24}, 0x1, 0x0, 0x0, 0x40}, 0x40000) getxattr(&(0x7f0000000e40)='./file0\x00', &(0x7f0000000e80)=@known='trusted.overlay.redirect\x00', &(0x7f0000000ec0)=""/4096, 0x1000) openat$proc_mixer(0xffffff9c, &(0x7f0000001ec0)='/proc/asound/card0/oss_mixer\x00', 0x464000, 0x0) accept$unix(r2, &(0x7f0000001f00), &(0x7f0000001f80)=0x6e) 2.95075255s ago: executing program 1 (id=2704): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) llistxattr(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)=""/136, 0x88) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)=ANY=[@ANYBLOB="666418", @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0, @ANYBLOB=',\x00']) read$FUSE(r0, &(0x7f00000093c0)={0x2020}, 0x2020) read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0xfffffffffffffffe, r1, {0x7, 0x1f, 0x0, 0x2162332, 0x1, 0x0, 0xffffffd6}}, 0x50) r2 = openat$tun(0xffffff9c, &(0x7f0000000300), 0x60000, 0x0) r3 = socket(0x1d, 0x2, 0x7) sendmsg$IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x20000000) r4 = openat$zero(0xffffff9c, &(0x7f0000001840), 0x4000, 0x0) r5 = openat2$dir(0xffffff9c, &(0x7f00000018c0)='./file0\x00', &(0x7f0000001900)={0x40040, 0x190, 0x8}, 0x18) linkat(r4, &(0x7f0000001880)='./file0\x00', r5, &(0x7f0000001940)='./file0\x00', 0x400) r6 = socket$can_bcm(0x1d, 0x2, 0x2) recvmsg$can_bcm(r6, &(0x7f0000001800)={&(0x7f0000000200)=@x25={0x9, @remote}, 0x80, &(0x7f0000000380)=[{&(0x7f0000000400)=""/4096, 0x1000}, {&(0x7f0000000280)=""/46, 0x2e}, {&(0x7f0000001400)=""/213, 0xd5}, {&(0x7f0000001500)=""/237, 0xed}, {&(0x7f0000001600)=""/250, 0xfa}, {&(0x7f00000002c0)=""/49, 0x31}, {&(0x7f0000000340)=""/41, 0x29}], 0x7, &(0x7f0000001700)=""/220, 0xdc}, 0x40000003) ioctl$F2FS_IOC_MOVE_RANGE(r2, 0xc020f509, 0x0) r7 = socket$l2tp(0x2, 0x2, 0x73) sendmsg$inet_sctp(r7, &(0x7f0000002240)={&(0x7f0000000f00)=@in={0x2, 0x0, @loopback}, 0x10, 0x0}, 0x0) r8 = syz_open_dev$vcsa(&(0x7f0000000000), 0x8, 0x842) close_range(r8, 0xffffffffffffffff, 0x2) bpf$OBJ_GET_MAP(0x7, &(0x7f0000000080)=@o_path={&(0x7f0000000000)='./file0\x00', 0x0, 0x4000, r0}, 0x18) stat(&(0x7f00000003c0)='./file0\x00', 0x0) 2.549671141s ago: executing program 0 (id=2707): r0 = fanotify_init(0x1, 0x0) ioctl$BTRFS_IOC_SYNC(r0, 0x5450, 0x0) r1 = socket(0x1d, 0x2, 0x6) ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000080)={0x1d, r2, 0x1, {0x1, 0x0, 0x3}, 0xff}, 0x18) sendmsg$DEVLINK_CMD_RATE_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000240)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4000010}, 0x4080) sendmsg$L2TP_CMD_NOOP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}, 0x1, 0x0, 0x0, 0x4000}, 0x4000100) sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000040)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x46058}, 0x8000) r3 = openat$fuse(0xffffff9c, &(0x7f0000000100), 0x2, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f00000004c0)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_IOCTL(r3, &(0x7f0000000140)={0x20, 0x0, r4, {0x5, 0x6, 0x6, 0xd5}}, 0x20) 1.423790709s ago: executing program 0 (id=2708): pipe2$9p(0x0, 0x0) dup(0xffffffffffffffff) pipe(&(0x7f0000000000)) r0 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r0, 0x8982, &(0x7f0000000000)) 1.318714917s ago: executing program 0 (id=2709): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$usbmon(&(0x7f0000000480), 0x0, 0x20140) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) close_range(r2, 0xffffffffffffffff, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) r4 = dup(r3) r5 = socket$inet6_udp(0xa, 0x2, 0x0) dup3(r4, r5, 0x0) sendmsg$NFC_CMD_ACTIVATE_TARGET(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x2c, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x1}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c000}, 0x4004000) 1.234928043s ago: executing program 0 (id=2710): syz_usb_connect$cdc_ecm(0x3, 0x0, 0x0, &(0x7f0000000d80)={0xa, &(0x7f0000000b40)={0xa, 0x6, 0x110, 0x2, 0x7, 0x6, 0xff, 0xe1}, 0x5, &(0x7f0000000b80)={0x5, 0xf, 0x5}, 0x2, [{0xe0, &(0x7f0000000bc0)=@string={0xe0, 0x3, "6077eaedd8cc71d3e2360a5db5679584c2ed152716e3837e49bc4689dce135e2f342a1d84f9f7f118af75ee600339457311405a2e023febc5dd5c7b391d9ca016d6e3ee69b5e7f05cc27926ef765bc37543c531f274d4c833361b8c8afbd230a93834446be4778137bd32d98596957b1e10f5cf5f7475b755d2d5851f8c10beee07d65ee3ede7fc30a01ecdd8495c4da09e02cebde828f2fd48d0770346beef840b3a3711a037b67f3e083268c29dbe91ebec19bb4e451bcfc05108060e505b619be02188f3a828a370b8cb52f8c0b2ab47fb32479a61b6c07c8f24a63d8"}}, {0x96, &(0x7f0000000cc0)=@string={0x96, 0x3, "3b1f1d36b816d0b409b373f01e27a6605f8011ad6d2db4e0f291ed9de2d277c5bffae8172e2d10d5513bb98d7e732818103e95252d046a079f90bd7ad75b03fadd2ba23efcccdd1e45689048b4e1d26bb99695e5e7d180c5bf8dd55061e051a96462c502b916ed45959868dad2ed998dfae91d9ea5112c853db972857d4e96f9e4ba5aedd8d0108113375452db993d3ab0e52ef9"}}]}) 1.15032291s ago: executing program 0 (id=2711): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$usbmon(&(0x7f0000000480), 0x0, 0x20140) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) close_range(r2, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)) sendmsg$ETHTOOL_MSG_TSINFO_GET(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}}, 0x90) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) dup(r3) socket$inet6_udp(0xa, 0x2, 0x0) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x6c, 0x0, 0x400, 0x70bd28, 0x25dfdbfe, {}, [@NLBL_MGMT_A_IPV6MASK={0x14, 0x6, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x7}, @NLBL_MGMT_A_IPV6ADDR={0x14, 0x5, @local}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @remote}, @NLBL_MGMT_A_CV4DOI={0x8, 0x4, 0xffffffffffffffff}, @NLBL_MGMT_A_IPV4MASK={0x8, 0x8, @rand_addr=0x64010100}, @NLBL_MGMT_A_CLPDOI={0x8, 0xc, 0x1}, @NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x6}]}, 0x6c}, 0x1, 0x0, 0x0, 0x895}, 0x4c001) 1.050009848s ago: executing program 0 (id=2712): r0 = gettid() r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000240), 0x0) read(r1, &(0x7f0000000b80)=""/215, 0xd7) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r1, 0x4040534e, &(0x7f0000000000)={0x32f, @tick=0xfffffffc, 0x0, {0x6}, 0x1, 0x1}) tkill(r0, 0x7) mlock(&(0x7f0000000000/0x800000)=nil, 0x800000) munlockall() (fail_nth: 1) 347.979572ms ago: executing program 1 (id=2713): pipe2$9p(&(0x7f0000000280)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) dup(r0) pipe(0x0) r1 = socket$l2tp(0x2, 0x2, 0x73) ioctl$sock_SIOCGIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(r1, 0x8982, &(0x7f0000000000)) 228.853102ms ago: executing program 1 (id=2714): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$usbmon(&(0x7f0000000480), 0x0, 0x20140) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) close_range(r2, 0xffffffffffffffff, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) r4 = dup(r3) r5 = socket$inet6_udp(0xa, 0x2, 0x0) dup3(r4, r5, 0x0) sendmsg$NFC_CMD_ACTIVATE_TARGET(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000880)={0x2c, 0x0, 0x1, 0x70bd2a, 0x25dfdbfd, {}, [@NFC_ATTR_DEVICE_INDEX={0x8}, @NFC_ATTR_TARGET_INDEX={0x8, 0x4, 0x1}, @NFC_ATTR_PROTOCOLS={0x8, 0x3, 0x1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x404c000}, 0x4004000) 79.618153ms ago: executing program 1 (id=2715): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) syz_open_dev$usbmon(&(0x7f0000000480), 0x0, 0x20140) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000000)={0xffffffffffffffff}) close_range(r2, 0xffffffffffffffff, 0x0) r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000200)='.\x00', 0x0, 0x0) r4 = dup(r3) r5 = socket$inet6_udp(0xa, 0x2, 0x0) dup3(r4, r5, 0x0) syz_genetlink_get_family_id$nfc(&(0x7f00000007c0), r0) 0s ago: executing program 1 (id=2716): r0 = openat$vcs(0xffffff9c, &(0x7f00000028c0), 0x900, 0x0) ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x5450, 0x0) creat(&(0x7f0000000740)='./file0\x00', 0x0) symlink(&(0x7f0000000000)='./file0\x00', 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1) syz_open_dev$hiddev(&(0x7f0000000000), 0x0, 0x84000) r1 = io_uring_setup(0x4f30, &(0x7f00000000c0)={0x0, 0x0, 0x200, 0x0, 0x278, 0x0, r0}) r2 = dup2(r1, r1) mlockall(0x1) mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil) r3 = socket$inet(0x2, 0x2, 0x0) ioctl$SIOCGIFHWADDR(r3, 0x8927, &(0x7f0000000100)={'lo\x00'}) r4 = fsopen(&(0x7f0000000080)='ramfs\x00', 0x0) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r2) ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000180)={'wlan0\x00', 0x0}) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000005c0)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) ioctl$KDGKBMODE(r9, 0x5451, 0x0) r10 = dup3(r8, r7, 0x0) ioctl$F2FS_IOC_MOVE_RANGE(r10, 0x541b, &(0x7f00000010c0)) sendmsg$NL80211_CMD_GET_KEY(r0, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="200000f7", @ANYRES16=r5, @ANYBLOB="200026bd7000fedbdf250900000008000300", @ANYRES32=r6, @ANYRES32=r5], 0x50}, 0x1, 0x0, 0x0, 0x44000}, 0x20040054) pipe2$watch_queue(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) r12 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r13 = ioctl$TIOCGPTPEER(r12, 0x5414, 0x20000007) ioctl$F2FS_IOC_SET_PIN_FILE(r13, 0x5450, 0x0) close$binfmt(r11) mmap(&(0x7f0000ffa000/0x3000)=nil, 0x3000, 0xc, 0x1010, r1, 0xca6000) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$SMC_PNETID_DEL(r11, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="000028bd7000fd48868b57e3dbdf2503008fd76a117fa5efeb5794f4c9fd47a67796070ab6ec527d1d16265098cae15235348036b8af1ccdbacf117613191b96056172fe56a3e6be1a1b43afa8738e6858cc623c442bc5cf098642c0319233d393de744c4cc97ce7bfe32eacc8c30794bddf1825e28367c1c8d60997900360e96ca1941360ff7ba4d0a48d68b3adb168709bb580244aab6950be315db09cee00003b561ca40825a9"], 0x14}, 0x1, 0x0, 0x0, 0x2004}, 0xb3d8271b087e7ff6) fcntl$addseals(r4, 0x2, 0x0) kernel console output (not intermixed with test programs): Number: syz [ 984.800324][ T3042] usb 2-1: config 0 descriptor?? [ 985.054251][ T3042] usb 2-1: Quirk or no altset; falling back to MIDI 1.0 [ 985.071811][ T3042] usb 2-1: invalid MIDI in EP 0 [ 985.190277][ T3042] snd-usb-audio 2-1:0.2: probe with driver snd-usb-audio failed with error -22 [ 985.204328][ T3042] usb 2-1: USB disconnect, device number 7 [ 985.770278][ T9519] batadv_slave_1: entered allmulticast mode [ 985.839225][ T9518] batadv_slave_1: left allmulticast mode [ 986.825350][ T3041] usb 1-1: USB disconnect, device number 9 [ 989.423240][ T31] audit: type=1400 audit(989.340:380): avc: denied { setopt } for pid=9545 comm="syz.0.1567" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 989.668356][ T9550] could not allocate digest TFM handle blake2b-256 [ 989.744432][ T31] audit: type=1400 audit(989.660:381): avc: denied { append } for pid=9553 comm="syz.0.1570" name="hwrng" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=chr_file permissive=1 trawcon="system_u:object_r:newrole_exec_t:s0" [ 991.336427][ T9567] IPv6: Can't replace route, no match found [ 991.389444][ T31] audit: type=1400 audit(991.310:382): avc: denied { setopt } for pid=9566 comm="syz.1.1576" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 992.798347][ T111] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 993.068318][ T111] usb 2-1: New USB device found, idVendor=2c42, idProduct=1709, bcdDevice=ca.b7 [ 993.068670][ T111] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 993.068874][ T111] usb 2-1: Product: syz [ 993.068945][ T111] usb 2-1: Manufacturer: syz [ 993.069003][ T111] usb 2-1: SerialNumber: syz [ 993.097204][ T111] usb 2-1: config 0 descriptor?? [ 994.155316][ T111] usb 2-1: f81604_read: reg: 100f failed: -EPROTO [ 994.174565][ T111] usb 2-1: f81604_read: reg: 200f failed: -EPROTO [ 994.179159][ T111] usb 2-1: USB disconnect, device number 8 [ 994.181673][ T111] usb 2-1: f81604_read: reg: 100f failed: -ENODEV [ 994.202757][ T2949] usb 2-1: f81604_read: reg: 200f failed: -ENODEV [ 994.230926][ T111] usb 2-1: f81604_read: reg: 200f failed: -ENODEV [ 1024.976986][ T3042] usb 2-1: new full-speed USB device number 9 using dummy_hcd [ 1025.143102][ T3042] usb 2-1: not running at top speed; connect to a high speed hub [ 1025.148595][ T3042] usb 2-1: config 1 interface 0 has no altsetting 0 [ 1025.174156][ T3042] usb 2-1: New USB device found, idVendor=05ac, idProduct=0230, bcdDevice= 0.40 [ 1025.175481][ T3042] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1025.177609][ T3042] usb 2-1: Product: syz [ 1025.178366][ T3042] usb 2-1: Manufacturer: syz [ 1025.179184][ T3042] usb 2-1: SerialNumber: syz [ 1027.051516][ T3042] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/input/input7 [ 1027.078745][ T3042] usb 2-1: USB disconnect, device number 9 [ 1040.326615][ T111] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 1040.476578][ T111] usb 1-1: Using ep0 maxpacket: 32 [ 1040.483788][ T111] usb 1-1: config index 0 descriptor too short (expected 156, got 27) [ 1040.484175][ T111] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30 [ 1040.484321][ T111] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 150, changing to 11 [ 1040.484411][ T111] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid maxpacket 58427, setting to 1024 [ 1040.484490][ T111] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144 [ 1040.484569][ T111] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1040.501560][ T111] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66 [ 1040.501869][ T111] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172 [ 1040.501958][ T111] usb 1-1: Product: syz [ 1040.502079][ T111] usb 1-1: Manufacturer: syz [ 1040.502149][ T111] usb 1-1: SerialNumber: syz [ 1040.507043][ T111] usb 1-1: config 0 descriptor?? [ 1040.509966][ T9693] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1040.517493][ T111] ldusb 1-1:0.0: Interrupt out endpoint not found (using control endpoint instead) [ 1040.526983][ T111] ldusb 1-1:0.0: LD USB Device #0 now attached to major 180 minor 0 [ 1047.099111][ T31] audit: type=1400 audit(1047.020:383): avc: denied { map } for pid=9729 comm="syz.1.1607" path="socket:[18400]" dev="sockfs" ino=18400 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 1054.523396][ T111] usb 1-1: USB disconnect, device number 10 [ 1054.532693][ T111] ldusb 1-1:0.0: LD USB Device #0 now disconnected [ 1092.999708][ T9920] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 1100.090631][ T9942] netlink: 'syz.0.1651': attribute type 4 has an invalid length. [ 1100.108345][ T9942] netlink: 'syz.0.1651': attribute type 4 has an invalid length. [ 1100.776938][ T3041] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 1100.945095][ T3041] usb 1-1: config 0 has no interfaces? [ 1100.950714][ T3041] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1100.952190][ T3041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1100.953065][ T3041] usb 1-1: SerialNumber: syz [ 1100.955606][ T3041] usb 1-1: config 0 descriptor?? [ 1101.164471][ T9951] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1655'. [ 1101.173306][ T3041] usb 1-1: USB disconnect, device number 11 [ 1101.433973][ T9965] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1657'. [ 1101.510633][ T9965] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1101.541395][ T9965] 8021q: adding VLAN 0 to HW filter on device bond1 [ 1101.542592][ T9965] bond1: (slave wireguard0): The slave device specified does not support setting the MAC address [ 1101.543930][ T9965] bond1: (slave wireguard0): Error -95 calling set_mac_address [ 1101.893076][ T31] audit: type=1400 audit(1101.810:384): avc: denied { setopt } for pid=10008 comm="syz.0.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1101.897348][ T31] audit: type=1400 audit(1101.810:385): avc: denied { bind } for pid=10008 comm="syz.0.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1101.904826][ T31] audit: type=1400 audit(1101.820:386): avc: denied { listen } for pid=10008 comm="syz.0.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1101.911632][ T31] audit: type=1400 audit(1101.830:387): avc: denied { connect } for pid=10008 comm="syz.0.1660" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1101.924125][ T31] audit: type=1400 audit(1101.840:388): avc: denied { write } for pid=10008 comm="syz.0.1660" path="socket:[18669]" dev="sockfs" ino=18669 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1104.027738][ T8770] usb 1-1: new full-speed USB device number 12 using dummy_hcd [ 1104.166770][ T8770] usb 1-1: device descriptor read/64, error -71 [ 1104.416851][ T8770] usb 1-1: new full-speed USB device number 13 using dummy_hcd [ 1104.547638][ T8770] usb 1-1: device descriptor read/64, error -71 [ 1104.658710][ T8770] usb usb1-port1: attempt power cycle [ 1105.007554][ T8770] usb 1-1: new full-speed USB device number 14 using dummy_hcd [ 1105.040290][ T8770] usb 1-1: device descriptor read/8, error -71 [ 1105.277722][ T8770] usb 1-1: new full-speed USB device number 15 using dummy_hcd [ 1105.299339][ T8770] usb 1-1: device descriptor read/8, error -71 [ 1105.408577][ T8770] usb usb1-port1: unable to enumerate USB device [ 1119.981986][ T31] audit: type=1326 audit(1119.900:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10051 comm="syz.1.1673" exe="/syz-executor" sig=0 arch=40000028 syscall=240 compat=0 ip=0x131f20 code=0x7ffc0000 [ 1119.988595][ T31] audit: type=1326 audit(1119.910:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10051 comm="syz.1.1673" exe="/syz-executor" sig=0 arch=40000028 syscall=240 compat=0 ip=0x131f20 code=0x7ffc0000 [ 1119.994637][ T31] audit: type=1326 audit(1119.910:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10051 comm="syz.1.1673" exe="/syz-executor" sig=0 arch=40000028 syscall=71 compat=0 ip=0x131f20 code=0x7ffc0000 [ 1119.996575][ T31] audit: type=1326 audit(1119.910:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10051 comm="syz.1.1673" exe="/syz-executor" sig=0 arch=40000028 syscall=240 compat=0 ip=0x131f20 code=0x7ffc0000 [ 1120.006713][ T31] audit: type=1326 audit(1119.910:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10051 comm="syz.1.1673" exe="/syz-executor" sig=0 arch=40000028 syscall=240 compat=0 ip=0x131f20 code=0x7ffc0000 [ 1135.394262][T10065] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1678'. [ 1139.961894][ T31] audit: type=1400 audit(1139.880:394): avc: denied { bind } for pid=10087 comm="syz.0.1687" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 1140.430986][T10093] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1689'. [ 1157.505657][ T23] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 1157.795570][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1157.796597][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1157.796735][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1157.796890][ T23] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1157.797029][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1157.851205][ T23] usb 1-1: config 0 descriptor?? [ 1158.363908][ T23] plantronics 0003:047F:FFFF.0007: No inputs registered, leaving [ 1158.418001][ T23] plantronics 0003:047F:FFFF.0007: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 1158.593858][ T44] usb 1-1: USB disconnect, device number 16 [ 1164.241965][ T31] audit: type=1400 audit(1164.160:395): avc: denied { rename } for pid=10165 comm="syz.1.1707" name="file0" dev="tmpfs" ino=1212 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 1164.247025][ T31] audit: type=1400 audit(1164.160:396): avc: denied { unlink } for pid=10165 comm="syz.1.1707" name="file0" dev="tmpfs" ino=1212 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 1170.262494][ T31] audit: type=1400 audit(1170.180:397): avc: denied { connect } for pid=10196 comm="syz.1.1718" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rds_socket permissive=1 [ 1173.552714][ T31] audit: type=1400 audit(1173.470:398): avc: denied { create } for pid=10206 comm="syz.1.1720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1 [ 1173.554070][ T31] audit: type=1400 audit(1173.470:399): avc: denied { write } for pid=10206 comm="syz.1.1720" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_iscsi_socket permissive=1 [ 1173.570758][T10207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1720'. [ 1173.579411][T10207] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1720'. [ 1201.400187][T10310] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1741'. [ 1201.402329][T10310] netlink: 68 bytes leftover after parsing attributes in process `syz.0.1741'. [ 1204.206844][ T31] audit: type=1400 audit(1204.090:400): avc: denied { setattr } for pid=10314 comm="syz.1.1743" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=key permissive=1 [ 1221.676877][ C1] ip6_tunnel: ip6gretap0: Local routing loop detected! [ 1249.408994][T10458] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1770'. [ 1251.138276][ T9] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 1251.503977][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1251.518512][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1251.521574][ T9] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1251.537185][ T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1251.538738][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1251.550690][ T9] usb 1-1: config 0 descriptor?? [ 1252.113578][ T9] usbhid 1-1:0.0: can't add hid device: -71 [ 1252.131135][ T9] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1252.161783][ T9] usb 1-1: USB disconnect, device number 17 [ 1253.063328][ T31] audit: type=1400 audit(1252.980:401): avc: denied { mounton } for pid=10491 comm="syz.0.1775" path="/proc/809/cgroup" dev="proc" ino=19137 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1 [ 1253.070794][ T31] audit: type=1400 audit(1252.990:402): avc: denied { remount } for pid=10491 comm="syz.0.1775" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysfs_t tclass=filesystem permissive=1 [ 1253.084294][T10492] ======================================================= [ 1253.084294][T10492] WARNING: The mand mount option has been deprecated and [ 1253.084294][T10492] and is ignored by this kernel. Remove the mand [ 1253.084294][T10492] option from the mount to silence this warning. [ 1253.084294][T10492] ======================================================= [ 1253.986619][T10499] input: syz0 as /devices/virtual/input/input8 [ 1272.907260][ T44] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 1273.037146][ T44] usb 1-1: device descriptor read/64, error -71 [ 1273.276762][ T44] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 1273.408028][ T44] usb 1-1: device descriptor read/64, error -71 [ 1273.521316][ T44] usb usb1-port1: attempt power cycle [ 1273.857298][ T44] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 1273.879479][ T44] usb 1-1: device descriptor read/8, error -71 [ 1274.117059][ T44] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 1274.140064][ T44] usb 1-1: device descriptor read/8, error -71 [ 1274.247681][ T44] usb usb1-port1: unable to enumerate USB device [ 1283.907365][ T8614] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 1284.047590][ T8614] usb 1-1: device descriptor read/64, error -71 [ 1284.287087][ T8614] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 1284.417717][ T8614] usb 1-1: device descriptor read/64, error -71 [ 1284.527712][ T8614] usb usb1-port1: attempt power cycle [ 1284.867320][ T8614] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 1284.890145][ T8614] usb 1-1: device descriptor read/8, error -71 [ 1285.128659][ T8614] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 1285.149987][ T8614] usb 1-1: device descriptor read/8, error -71 [ 1285.258390][ T8614] usb usb1-port1: unable to enumerate USB device [ 1286.876779][T10699] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1296.970004][ T31] audit: type=1400 audit(1296.890:403): avc: denied { recv } for pid=14 comm="ksoftirqd/0" saddr=fe80::2 daddr=ff02::1 netif=eth0 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:unlabeled_t tclass=peer permissive=1 [ 1309.117715][T10797] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1313.833388][T10821] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1320.956890][T10863] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1321.297598][ T3041] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 1321.427494][ T3041] usb 2-1: device descriptor read/64, error -71 [ 1321.666745][ T3041] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 1321.797116][ T3041] usb 2-1: device descriptor read/64, error -71 [ 1321.909496][ T3041] usb usb2-port1: attempt power cycle [ 1322.247141][ T3041] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 1322.271646][ T3041] usb 2-1: device descriptor read/8, error -71 [ 1322.508508][ T3041] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 1322.530867][ T3041] usb 2-1: device descriptor read/8, error -71 [ 1322.637642][ T3041] usb usb2-port1: unable to enumerate USB device [ 1326.849844][T10906] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1335.453419][T10944] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1335.786896][ T3041] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 1335.926941][ T3041] usb 1-1: device descriptor read/64, error -71 [ 1336.168078][ T3041] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 1336.297297][ T3041] usb 1-1: device descriptor read/64, error -71 [ 1336.407972][ T3041] usb usb1-port1: attempt power cycle [ 1336.747458][ T3041] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 1336.780093][ T3041] usb 1-1: device descriptor read/8, error -71 [ 1337.017335][ T3041] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 1337.039632][ T3041] usb 1-1: device descriptor read/8, error -71 [ 1337.148388][ T3041] usb usb1-port1: unable to enumerate USB device [ 1338.037362][ T31] audit: type=1400 audit(1337.950:404): avc: denied { relabelfrom } for pid=10998 comm="syz.1.1873" name="" dev="pipefs" ino=20635 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 1338.040607][T10999] SELinux: Context system_u:object_r:dbusd_exec_t:s0 is not valid (left unmapped). [ 1338.042555][ T31] audit: type=1400 audit(1337.960:405): avc: denied { relabelto } for pid=10998 comm="syz.1.1873" name="" dev="pipefs" ino=20635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=fifo_file permissive=1 trawcon="system_u:object_r:dbusd_exec_t:s0" [ 1340.399271][T11009] ref_tracker: memory allocation failure, unreliable refcount tracker. [ 1340.541719][T11013] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=136 sclass=netlink_audit_socket pid=11013 comm=syz.1.1878 [ 1346.237350][ T3041] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 1346.394779][ T3041] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1346.395189][ T3041] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 1346.395521][ T3041] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1346.395649][ T3041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1346.401272][ T3041] usb 1-1: config 0 descriptor?? [ 1360.994042][ T9] usb 1-1: USB disconnect, device number 30 [ 1363.273038][T11141] fuse: Bad value for 'fd' [ 1364.117796][T11162] fuse: Bad value for 'fd' [ 1364.442563][T11173] fuse: Bad value for 'fd' [ 1364.882582][T11183] fuse: Bad value for 'fd' [ 1370.794555][T11211] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1376.396999][T11252] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1381.942041][T11301] fuse: Bad value for 'fd' [ 1382.310255][T11309] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=0 sclass=netlink_audit_socket pid=11309 comm=syz.0.1974 [ 1382.686843][T11311] fuse: Bad value for 'fd' [ 1383.681565][T11321] fuse: Bad value for 'fd' [ 1387.805859][T11355] fuse: Bad value for 'group_id' [ 1387.808090][T11355] fuse: Bad value for 'group_id' [ 1388.285857][T11366] fuse: Bad value for 'group_id' [ 1388.289298][T11366] fuse: Bad value for 'group_id' [ 1388.848851][T11377] fuse: Bad value for 'group_id' [ 1388.850429][T11377] fuse: Bad value for 'group_id' [ 1391.787301][T11415] FAULT_INJECTION: forcing a failure. [ 1391.787301][T11415] name failslab, interval 1, probability 0, space 0, times 0 [ 1391.789064][T11415] CPU: 0 UID: 0 PID: 11415 Comm: syz.0.2018 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1391.789207][T11415] Hardware name: ARM-Versatile Express [ 1391.789236][T11415] Call trace: [ 1391.789281][T11415] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1391.789397][T11415] r7:00000c40 r6:00000000 r5:60000013 r4:8225e950 [ 1391.789422][T11415] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1391.789493][T11415] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1391.789571][T11415] r5:84200000 r4:82919cc0 [ 1391.789589][T11415] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1391.789670][T11415] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1391.789765][T11415] r8:84200000 r7:00000c40 r6:855e7da8 r5:00001000 r4:830016c0 [ 1391.789786][T11415] [<805235d8>] (should_failslab) from [<805083d4>] (__kmalloc_noprof+0x9c/0x458) [ 1391.789859][T11415] [<80508338>] (__kmalloc_noprof) from [<807bcee4>] (tomoyo_realpath_from_path+0x3c/0x17c) [ 1391.789971][T11415] r10:84200000 r9:8309f800 r8:00000000 r7:84c82f68 r6:855e7da8 r5:00001000 [ 1391.789996][T11415] r4:00000000 [ 1391.790013][T11415] [<807bcea8>] (tomoyo_realpath_from_path) from [<807b9028>] (tomoyo_path_number_perm+0xcc/0x22c) [ 1391.790108][T11415] r10:84200000 r9:00000000 r8:00000004 r7:0000540f r6:00000004 r5:81cd5df8 [ 1391.790137][T11415] r4:855e7da8 r3:826c0200 [ 1391.790155][T11415] [<807b8f5c>] (tomoyo_path_number_perm) from [<807bd908>] (tomoyo_file_ioctl+0x1c/0x20) [ 1391.790250][T11415] r9:855e7d80 r8:00000004 r7:00000000 r6:00000000 r5:0000540f r4:855e7d80 [ 1391.790273][T11415] [<807bd8ec>] (tomoyo_file_ioctl) from [<8076a974>] (security_file_ioctl+0x64/0x1e4) [ 1391.790363][T11415] [<8076a910>] (security_file_ioctl) from [<8056a2c4>] (sys_ioctl+0x4c/0xdc8) [ 1391.790441][T11415] r7:00000000 r6:855e7d81 r5:00000000 r4:0000540f [ 1391.790461][T11415] [<8056a278>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1391.790507][T11415] Exception stack(0xdfd61fa8 to 0xdfd61ff0) [ 1391.790546][T11415] 1fa0: 00000000 00000000 00000004 0000540f 00000000 00000000 [ 1391.790586][T11415] 1fc0: 00000000 00000000 0012fed0 00000036 002d0000 00000000 00006364 76b0d0bc [ 1391.790619][T11415] 1fe0: 76b0cec0 76b0ceb0 00019384 00131f20 [ 1391.790691][T11415] r10:00000036 r9:84200000 r8:8020029c r7:00000036 r6:0012fed0 r5:00000000 [ 1391.790719][T11415] r4:00000000 [ 1391.799915][T11415] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1393.977341][ T47] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 1394.135253][ T47] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1394.135673][ T47] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1394.135928][ T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1394.137051][ T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1394.141402][ T47] usb 1-1: config 0 descriptor?? [ 1394.151509][ T47] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1399.238165][T11468] fuse: Unknown parameter 'grou00000000000000000000' [ 1399.746441][T11478] fuse: Unknown parameter 'grou00000000000000000000' [ 1400.197986][T11491] fuse: Unknown parameter 'grou00000000000000000000' [ 1400.433997][T11495] fuse: Bad value for 'group_id' [ 1400.434627][T11495] fuse: Bad value for 'group_id' [ 1401.705693][T11503] fuse: Unknown parameter 'group_i00000000000000000000' [ 1401.923524][T11507] fuse: Bad value for 'group_id' [ 1401.924983][T11507] fuse: Bad value for 'group_id' [ 1403.218332][T11514] fuse: Unknown parameter 'group_i00000000000000000000' [ 1403.423846][T11518] fuse: Bad value for 'group_id' [ 1403.424280][T11518] fuse: Bad value for 'group_id' [ 1404.754372][T11525] fuse: Unknown parameter 'group_i00000000000000000000' [ 1406.212969][T11536] fuse: Unknown parameter 'group_id00000000000000000000' [ 1407.772982][T11547] fuse: Unknown parameter 'group_id00000000000000000000' [ 1408.731256][ T9] usb 1-1: USB disconnect, device number 31 [ 1408.839141][T11569] fuse: Unknown parameter 'group_id00000000000000000000' [ 1413.258466][T11555] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 1413.727219][ T9] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 1413.882627][ T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1413.883071][ T9] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1413.883424][ T9] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1413.883569][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1413.891192][ T9] usb 1-1: config 0 descriptor?? [ 1413.899886][ T9] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1416.527696][T11597] fuse: Bad value for 'user_id' [ 1416.527980][T11597] fuse: Bad value for 'user_id' [ 1423.051755][T11615] fuse: Bad value for 'user_id' [ 1423.054246][T11615] fuse: Bad value for 'user_id' [ 1427.624945][T11628] fuse: Bad value for 'user_id' [ 1427.625586][T11628] fuse: Bad value for 'user_id' [ 1428.478324][T11273] usb 1-1: USB disconnect, device number 32 [ 1428.709573][T11640] fuse: Unknown parameter 'grou00000000000000000000' [ 1428.883411][T11644] fuse: Bad value for 'fd' [ 1429.227112][ T47] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 1429.385121][ T47] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1429.385522][ T47] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1429.385804][ T47] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1429.386554][ T47] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1429.393171][ T47] usb 2-1: config 0 descriptor?? [ 1429.400974][ T47] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1432.072098][T11659] fuse: Unknown parameter 'grou00000000000000000000' [ 1432.185737][T11661] fuse: Bad value for 'fd' [ 1432.323098][T11663] fuse: Bad value for 'fd' [ 1435.693355][T11673] fuse: Unknown parameter 'grou00000000000000000000' [ 1435.940420][T11677] fuse: Bad value for 'fd' [ 1439.338579][T11687] fuse: Unknown parameter 'group_i00000000000000000000' [ 1439.691635][T11694] fuse: Bad value for 'fd' [ 1443.162204][T11704] fuse: Unknown parameter 'group_i00000000000000000000' [ 1443.514207][T11711] fuse: Bad value for 'fd' [ 1443.961843][ T44] usb 2-1: USB disconnect, device number 14 [ 1444.154298][T11724] fuse: Unknown parameter 'group_i00000000000000000000' [ 1444.255797][T11726] FAULT_INJECTION: forcing a failure. [ 1444.255797][T11726] name failslab, interval 1, probability 0, space 0, times 0 [ 1444.258508][T11726] CPU: 1 UID: 0 PID: 11726 Comm: syz.1.2123 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1444.258637][T11726] Hardware name: ARM-Versatile Express [ 1444.258714][T11726] Call trace: [ 1444.258757][T11726] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1444.259002][T11726] r7:8382ec00 r6:00000000 r5:60000013 r4:8225e950 [ 1444.259029][T11726] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1444.259115][T11726] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1444.259209][T11726] r5:8382ec00 r4:82919cc0 [ 1444.259231][T11726] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1444.259331][T11726] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1444.259443][T11726] r8:00000000 r7:8382ec00 r6:00400dc0 r5:85788f00 r4:830020c0 [ 1444.259467][T11726] [<805235d8>] (should_failslab) from [<80507404>] (__kmalloc_cache_noprof+0x4c/0x33c) [ 1444.259548][T11726] [<805073b8>] (__kmalloc_cache_noprof) from [<80734a24>] (fuse_file_alloc+0xd0/0xec) [ 1444.259641][T11726] r10:855e73c0 r9:00000000 r8:838c1a80 r7:00000001 r6:824656c0 r5:85788f00 [ 1444.259679][T11726] r4:838c1a80 [ 1444.259697][T11726] [<80734954>] (fuse_file_alloc) from [<80734b1c>] (fuse_file_open+0xb8/0x230) [ 1444.259786][T11726] r9:00000000 r8:851b1c00 r7:00000000 r6:00000000 r5:00000001 r4:85788f00 [ 1444.259812][T11726] [<80734a64>] (fuse_file_open) from [<80734df0>] (fuse_open+0x84/0x2fc) [ 1444.259899][T11726] r10:855e73c0 r9:85788f00 r8:00000000 r7:855e73c0 r6:00000000 r5:00000000 [ 1444.259929][T11726] r4:84c42280 [ 1444.259948][T11726] [<80734d6c>] (fuse_open) from [<8054b314>] (do_dentry_open+0x174/0x630) [ 1444.260029][T11726] r10:855e73c0 r9:00000000 r8:855e73e8 r7:80734d6c r6:84c42280 r5:00000000 [ 1444.260058][T11726] r4:855e73c0 [ 1444.260077][T11726] [<8054b1a0>] (do_dentry_open) from [<8054d0ec>] (vfs_open+0x2c/0xe8) [ 1444.260137][T11726] r8:ead7de58 r7:00000000 r6:855e73e8 r5:829205e0 r4:855e73c0 [ 1444.260159][T11726] [<8054d0c0>] (vfs_open) from [<80565a28>] (path_openat+0x30c/0x1150) [ 1444.260244][T11726] r6:ead7df20 r5:829205e0 r4:00000901 [ 1444.260269][T11726] [<8056571c>] (path_openat) from [<80566918>] (do_filp_open+0xac/0x148) [ 1444.260381][T11726] r10:00000005 r9:832e5000 r8:00000001 r7:ead7de58 r6:ead7df20 r5:8382ec00 [ 1444.260409][T11726] r4:ffffff9c [ 1444.260428][T11726] [<8056686c>] (do_filp_open) from [<8054d5f0>] (do_sys_openat2+0x90/0xe0) [ 1444.260522][T11726] r9:8382ec00 r8:8020029c r7:ffffff9c r6:ead7df58 r5:832e5000 r4:00000006 [ 1444.260548][T11726] [<8054d560>] (do_sys_openat2) from [<8054d944>] (sys_open+0x94/0xd0) [ 1444.260617][T11726] r7:00000005 r6:0012fed0 r5:00000000 r4:20000000 [ 1444.260639][T11726] [<8054d8b0>] (sys_open) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1444.260707][T11726] Exception stack(0xead7dfa8 to 0xead7dff0) [ 1444.260750][T11726] dfa0: 00000000 00000000 20000000 00000901 000000c0 00000000 [ 1444.260833][T11726] dfc0: 00000000 00000000 0012fed0 00000005 002d0000 00000000 00006364 76bc60bc [ 1444.260871][T11726] dfe0: 76bc5ec0 76bc5eb0 00019384 00131f20 [ 1444.260901][T11726] r5:00000000 r4:00000000 [ 1444.414002][T11730] fuse: Bad value for 'fd' [ 1444.767246][ T44] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 1444.924618][ T44] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1444.925134][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1444.925270][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1444.925396][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1444.931812][ T44] usb 2-1: config 0 descriptor?? [ 1444.941568][ T44] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1446.847853][T11745] fuse: Unknown parameter 'group_id00000000000000000000' [ 1447.101564][T11749] fuse: Invalid rootmode [ 1450.389996][T11760] fuse: Unknown parameter 'group_id00000000000000000000' [ 1450.662162][T11765] fuse: Invalid rootmode [ 1453.978346][T11776] fuse: Unknown parameter 'group_id00000000000000000000' [ 1454.144942][T11780] fuse: Invalid rootmode [ 1457.627316][T11790] fuse: Bad value for 'user_id' [ 1457.627781][T11790] fuse: Bad value for 'user_id' [ 1458.023980][T11796] fuse: Bad value for 'rootmode' [ 1459.498455][T11273] usb 2-1: USB disconnect, device number 15 [ 1459.678947][T11811] fuse: Bad value for 'user_id' [ 1459.682036][T11811] fuse: Bad value for 'user_id' [ 1461.271154][T11818] fuse: Bad value for 'rootmode' [ 1461.657964][ T47] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 1461.833367][ T47] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1461.833886][ T47] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1461.834077][ T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1461.834188][ T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1461.841448][ T47] usb 1-1: config 0 descriptor?? [ 1461.850586][ T47] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1464.831275][T11836] fuse: Bad value for 'user_id' [ 1464.831761][T11836] fuse: Bad value for 'user_id' [ 1468.068683][T11845] fuse: Bad value for 'rootmode' [ 1468.368160][T11851] fuse: Bad value for 'fd' [ 1471.611444][T11860] fuse: Unknown parameter 'use00000000000000000000' [ 1471.907574][T11866] fuse: Bad value for 'fd' [ 1475.669055][T11874] fuse: Unknown parameter 'use00000000000000000000' [ 1476.375007][ T44] usb 1-1: USB disconnect, device number 33 [ 1476.554885][T11888] fuse: Bad value for 'fd' [ 1478.379042][T11895] fuse: Unknown parameter 'use00000000000000000000' [ 1478.717640][ T44] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 1478.873283][ T44] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1478.874760][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1478.876846][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1478.878096][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1478.882583][ T44] usb 2-1: config 0 descriptor?? [ 1478.891925][ T44] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1482.467177][T11910] fuse: Bad value for 'fd' [ 1482.677500][T11915] fuse: Unknown parameter 'user_i00000000000000000000' [ 1482.794222][T11917] FAULT_INJECTION: forcing a failure. [ 1482.794222][T11917] name failslab, interval 1, probability 0, space 0, times 0 [ 1482.797258][T11917] CPU: 0 UID: 0 PID: 11917 Comm: syz.0.2175 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1482.797685][T11917] Hardware name: ARM-Versatile Express [ 1482.797716][T11917] Call trace: [ 1482.797756][T11917] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1482.797883][T11917] r7:8324b000 r6:00000000 r5:60000013 r4:8225e950 [ 1482.797906][T11917] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1482.797979][T11917] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1482.798061][T11917] r5:8324b000 r4:82919cc0 [ 1482.798079][T11917] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1482.798168][T11917] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1482.798378][T11917] r8:00000000 r7:8324b000 r6:00000820 r5:851ba300 r4:830a6b40 [ 1482.798404][T11917] [<805235d8>] (should_failslab) from [<80508050>] (kmem_cache_alloc_noprof+0x4c/0x334) [ 1482.798483][T11917] [<80508004>] (kmem_cache_alloc_noprof) from [<815369f8>] (skb_clone+0x60/0x1c8) [ 1482.798578][T11917] r10:000001a2 r9:85602900 r8:856f2c00 r7:851ba300 r6:8531aec0 r5:851ba300 [ 1482.798602][T11917] r4:00000820 [ 1482.798619][T11917] [<81536998>] (skb_clone) from [<8164d6c8>] (__netlink_deliver_tap+0x1f4/0x28c) [ 1482.798737][T11917] r5:00000007 r4:8531a800 [ 1482.798755][T11917] [<8164d4d4>] (__netlink_deliver_tap) from [<8165076c>] (netlink_unicast+0x280/0x29c) [ 1482.798823][T11917] r10:00000000 r9:00000000 r8:84bb1b80 r7:851ba300 r6:85602900 r5:00000007 [ 1482.798850][T11917] r4:856f2c00 [ 1482.798866][T11917] [<816504ec>] (netlink_unicast) from [<81650954>] (netlink_sendmsg+0x1cc/0x444) [ 1482.798934][T11917] r9:00000000 r8:00000000 r7:84998800 r6:00000007 r5:851ba300 r4:eb345e68 [ 1482.798956][T11917] [<81650788>] (netlink_sendmsg) from [<81522da4>] (__sock_sendmsg+0x44/0x78) [ 1482.799043][T11917] r10:81e52d40 r9:20000080 r8:00000000 r7:83662c80 r6:83662c80 r5:eb345e68 [ 1482.799115][T11917] r4:00000000 [ 1482.799138][T11917] [<81522d60>] (__sock_sendmsg) from [<81522e78>] (sock_write_iter+0xa0/0xfc) [ 1482.799221][T11917] r7:83662c80 r6:855e7c00 r5:eb345f08 r4:eb345ef0 [ 1482.799241][T11917] [<81522dd8>] (sock_write_iter) from [<805511d4>] (vfs_write+0x3a4/0x44c) [ 1482.799322][T11917] r7:8324b000 r6:00000007 r5:855e7c00 r4:00000000 [ 1482.799343][T11917] [<80550e30>] (vfs_write) from [<80551440>] (ksys_write+0xc8/0xe8) [ 1482.799427][T11917] r10:00000004 r9:8324b000 r8:8020029c r7:00000007 r6:20000080 r5:855e7c00 [ 1482.799453][T11917] r4:855e7c01 [ 1482.799470][T11917] [<80551378>] (ksys_write) from [<80551470>] (sys_write+0x10/0x14) [ 1482.799548][T11917] r7:00000004 r6:0012fed0 r5:00000000 r4:00000000 [ 1482.799570][T11917] [<80551460>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1482.799625][T11917] Exception stack(0xeb345fa8 to 0xeb345ff0) [ 1482.799680][T11917] 5fa0: 00000000 00000000 00000003 20000080 00000007 00000000 [ 1482.799721][T11917] 5fc0: 00000000 00000000 0012fed0 00000004 002d0000 00000000 00006364 76b700bc [ 1482.799755][T11917] 5fe0: 76b6fec0 76b6feb0 00019384 00131f20 [ 1485.480222][T11922] fuse: Bad value for 'fd' [ 1485.672252][T11926] fuse: Unknown parameter 'user_i00000000000000000000' [ 1486.464522][T11936] fuse: Bad value for 'fd' [ 1486.605358][T11940] fuse: Unknown parameter 'user_i00000000000000000000' [ 1488.937034][T11947] fuse: Invalid rootmode [ 1489.132757][T11951] fuse: Unknown parameter 'user_id00000000000000000000' [ 1489.682972][T11959] fuse: Invalid rootmode [ 1489.880797][T11963] fuse: Unknown parameter 'user_id00000000000000000000' [ 1493.463982][T11901] usb 2-1: USB disconnect, device number 16 [ 1493.688573][T11987] fuse: Invalid rootmode [ 1493.928004][T11991] fuse: Unknown parameter 'user_id00000000000000000000' [ 1494.568611][T11965] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1494.917075][T11273] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 1495.110897][T11273] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1495.111454][T11273] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1495.111682][T11273] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1495.123800][T11273] usb 1-1: config 0 descriptor?? [ 1495.149482][T11273] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1495.162644][T12003] fuse: Bad value for 'rootmode' [ 1495.339705][T12009] fuse: Bad value for 'fd' [ 1500.021008][T12011] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1500.198144][T12030] fuse: Bad value for 'rootmode' [ 1500.397650][T12034] fuse: Bad value for 'fd' [ 1505.087674][T12036] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1505.323119][T12055] fuse: Bad value for 'rootmode' [ 1508.002419][T12060] fuse: Bad value for 'fd' [ 1509.652061][T11901] usb 1-1: USB disconnect, device number 34 [ 1509.735742][T12078] fuse: Bad value for 'fd' [ 1509.831097][T12080] fuse: Unknown parameter 'use00000000000000000000' [ 1512.461244][T12089] fuse: Unknown parameter '0x0000000000000003' [ 1512.682408][T12062] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1512.767348][ T23] usb 1-1: new high-speed USB device number 35 using dummy_hcd [ 1512.790632][T12098] fuse: Bad value for 'fd' [ 1512.887222][T12100] fuse: Unknown parameter 'use00000000000000000000' [ 1512.934927][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1512.935528][ T23] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1512.935634][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1512.941345][ T23] usb 1-1: config 0 descriptor?? [ 1512.959768][ T23] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1515.605857][T12108] fuse: Unknown parameter '0x0000000000000003' [ 1520.319082][T12110] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1520.441135][T12128] fuse: Bad value for 'fd' [ 1520.559586][T12130] fuse: Unknown parameter 'use00000000000000000000' [ 1520.679147][T12132] FAULT_INJECTION: forcing a failure. [ 1520.679147][T12132] name failslab, interval 1, probability 0, space 0, times 0 [ 1520.681149][T12132] CPU: 1 UID: 0 PID: 12132 Comm: syz.1.2228 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1520.681293][T12132] Hardware name: ARM-Versatile Express [ 1520.681327][T12132] Call trace: [ 1520.681376][T12132] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1520.681513][T12132] r7:83a2b000 r6:00000000 r5:60000013 r4:8225e950 [ 1520.681539][T12132] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1520.681621][T12132] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1520.681723][T12132] r5:83a2b000 r4:82919cc0 [ 1520.681744][T12132] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1520.681842][T12132] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1520.681958][T12132] r8:00000000 r7:83a2b000 r6:00000cc0 r5:20000000 r4:830a1a80 [ 1520.681984][T12132] [<805235d8>] (should_failslab) from [<80508050>] (kmem_cache_alloc_noprof+0x4c/0x334) [ 1520.682071][T12132] [<80508004>] (kmem_cache_alloc_noprof) from [<8055fc60>] (getname_flags.part.0+0x28/0x18c) [ 1520.682174][T12132] r10:000000e6 r9:00000000 r8:ffffff9c r7:00000000 r6:82465848 r5:20000000 [ 1520.682203][T12132] r4:20000000 [ 1520.682223][T12132] [<8055fc38>] (getname_flags.part.0) from [<80564bf8>] (getname_flags+0x3c/0x50) [ 1520.682328][T12132] r9:00000000 r8:ffffff9c r7:20000040 r6:00000100 r5:00000000 r4:20000000 [ 1520.682355][T12132] [<80564bbc>] (getname_flags) from [<80589f18>] (path_getxattrat+0x150/0x17c) [ 1520.682443][T12132] r5:20000000 r4:00000009 [ 1520.682464][T12132] [<80589dc8>] (path_getxattrat) from [<8058a108>] (sys_lgetxattr+0x30/0x38) [ 1520.682544][T12132] r9:83a2b000 r8:8020029c r7:000000e6 r6:0012fed0 r5:00000000 r4:00000000 [ 1520.682571][T12132] [<8058a0d8>] (sys_lgetxattr) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1520.682629][T12132] Exception stack(0xec4e5fa8 to 0xec4e5ff0) [ 1520.682719][T12132] 5fa0: 00000000 00000000 20000000 20000040 00000000 00000000 [ 1520.682765][T12132] 5fc0: 00000000 00000000 0012fed0 000000e6 002d0000 00000000 00006364 76bc60bc [ 1520.682804][T12132] 5fe0: 76bc5ec0 76bc5eb0 00019384 00131f20 [ 1523.263511][T12136] fuse: Unknown parameter '0x0000000000000003' [ 1526.560189][T12145] fuse: Unknown parameter 'user_i00000000000000000000' [ 1526.777260][T12149] fuse: Unknown parameter '0x0000000000000003' [ 1527.534501][ T44] usb 1-1: USB disconnect, device number 35 [ 1527.749544][T12162] fuse: Unknown parameter 'user_i00000000000000000000' [ 1527.968182][T12167] fuse: Unknown parameter '0x0000000000000003' [ 1528.336802][ T44] usb 1-1: new high-speed USB device number 36 using dummy_hcd [ 1528.498443][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 21 [ 1528.498987][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1528.499269][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1528.503977][ T44] usb 1-1: config 0 descriptor?? [ 1528.514929][ T44] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1530.665327][T12181] fuse: Unknown parameter 'user_i00000000000000000000' [ 1530.851536][T12185] fuse: Unknown parameter '0x0000000000000003' [ 1535.570366][T12187] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1539.316757][T12211] fuse: Unknown parameter 'user_id00000000000000000000' [ 1539.612386][T12216] fuse: Unknown parameter 'fd0x0000000000000003' [ 1543.070698][ T23] usb 1-1: USB disconnect, device number 36 [ 1544.289910][T12218] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1544.370004][T12245] fuse: Unknown parameter 'user_id00000000000000000000' [ 1544.655472][T12250] fuse: Unknown parameter 'fd0x0000000000000003' [ 1544.997623][T11901] usb 2-1: new high-speed USB device number 17 using dummy_hcd [ 1545.155319][T11901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1545.156562][T11901] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1545.156860][T11901] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1545.156959][T11901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1545.163351][T11901] usb 2-1: config 0 descriptor?? [ 1545.174026][T11901] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1550.995314][T12262] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1551.102606][T12279] fuse: Unknown parameter 'user_id00000000000000000000' [ 1551.390581][T12284] fuse: Unknown parameter 'fd0x0000000000000003' [ 1559.214154][T12293] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512 [ 1559.311539][T12309] fuse: Bad value for 'fd' [ 1559.757837][ T23] usb 2-1: USB disconnect, device number 17 [ 1562.772079][T12334] fuse: Bad value for 'fd' [ 1563.166957][T11901] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 1563.329360][T11901] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1563.329751][T11901] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1563.330047][T11901] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1563.330177][T11901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1563.338429][T11901] usb 1-1: config 0 descriptor?? [ 1563.350491][T11901] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 1566.203512][T12355] fuse: Bad value for 'fd' [ 1572.803745][T12376] fuse: Unknown parameter '0x0000000000000003' [ 1577.918493][T11901] usb 1-1: USB disconnect, device number 37 [ 1578.088696][T12398] fuse: Unknown parameter '0x0000000000000003' [ 1579.488718][T11901] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 1579.644454][T11901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1579.644928][T11901] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1579.645234][T11901] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1579.645327][T11901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1579.650119][T11901] usb 2-1: config 0 descriptor?? [ 1579.660698][T11901] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 1581.671851][T12419] fuse: Unknown parameter '0x0000000000000003' [ 1587.777401][T12438] fuse: Unknown parameter '0x0000000000000003' [ 1593.965390][T12455] fuse: Unknown parameter '0x0000000000000003' [ 1594.223817][ T23] usb 2-1: USB disconnect, device number 18 [ 1596.963612][T12478] fuse: Unknown parameter '0x0000000000000003' [ 1597.417940][ T23] usb 1-1: new high-speed USB device number 38 using dummy_hcd [ 1597.584827][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1597.585854][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1597.587092][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1597.587934][ T23] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1597.588538][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1597.594354][ T23] usb 1-1: config 0 descriptor?? [ 1598.028247][ T23] usbhid 1-1:0.0: can't add hid device: -71 [ 1598.029638][ T23] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1598.041195][ T23] usb 1-1: USB disconnect, device number 38 [ 1598.251173][T12502] fuse: Unknown parameter 'fd0x0000000000000003' [ 1600.357069][ T44] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 1600.514695][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1600.515088][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1600.515317][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1600.515479][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1600.515565][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1600.521349][ T44] usb 2-1: config 0 descriptor?? [ 1600.948590][ T44] usbhid 2-1:0.0: can't add hid device: -71 [ 1600.949440][ T44] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1600.956851][ T44] usb 2-1: USB disconnect, device number 19 [ 1601.111322][T12529] fuse: Unknown parameter 'fd0x0000000000000003' [ 1601.866938][ T44] usb 1-1: new high-speed USB device number 39 using dummy_hcd [ 1602.023661][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1602.024105][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1602.024348][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1602.024489][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1602.024576][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1602.031354][ T44] usb 1-1: config 0 descriptor?? [ 1602.463746][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1602.464297][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1602.469781][ T44] usb 1-1: USB disconnect, device number 39 [ 1602.659215][T12553] fuse: Unknown parameter 'fd0x0000000000000003' [ 1604.504774][T12580] FAULT_INJECTION: forcing a failure. [ 1604.504774][T12580] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1604.507703][T12580] CPU: 1 UID: 0 PID: 12580 Comm: syz.0.2324 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1604.507817][T12580] Hardware name: ARM-Versatile Express [ 1604.507848][T12580] Call trace: [ 1604.507892][T12580] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1604.508034][T12580] r7:00000000 r6:00000000 r5:60000013 r4:8225e950 [ 1604.508059][T12580] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1604.508140][T12580] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1604.508231][T12580] r5:83240c00 r4:82950750 [ 1604.508250][T12580] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1604.508347][T12580] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1604.508475][T12580] r8:ed25deb8 r7:00000000 r6:00000001 r5:76b6ff30 r4:00000001 [ 1604.508500][T12580] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1604.508591][T12580] [<80966fd8>] (should_fail_usercopy) from [<808bf138>] (kstrtouint_from_user+0x54/0x13c) [ 1604.508685][T12580] [<808bf0e4>] (kstrtouint_from_user) from [<806052d0>] (proc_fail_nth_write+0x40/0xe8) [ 1604.508795][T12580] r8:ed25df68 r7:83240c00 r6:00000001 r5:855e7480 r4:00000001 [ 1604.508820][T12580] [<80605290>] (proc_fail_nth_write) from [<80550edc>] (vfs_write+0xac/0x44c) [ 1604.508910][T12580] r5:855e7480 r4:80605290 [ 1604.508932][T12580] [<80550e30>] (vfs_write) from [<805513ec>] (ksys_write+0x74/0xe8) [ 1604.509020][T12580] r10:00000004 r9:83240c00 r8:8020029c r7:00000000 r6:00000002 r5:855e7480 [ 1604.509050][T12580] r4:855e7483 [ 1604.509069][T12580] [<80551378>] (ksys_write) from [<80551470>] (sys_write+0x10/0x14) [ 1604.509151][T12580] r7:00000004 r6:00000004 r5:76b6ff30 r4:00000001 [ 1604.509175][T12580] [<80551460>] (sys_write) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1604.509238][T12580] Exception stack(0xed25dfa8 to 0xed25dff0) [ 1604.509283][T12580] dfa0: 00000001 76b6ff30 00000004 76b6ff30 00000001 00000000 [ 1604.509326][T12580] dfc0: 00000001 76b6ff30 00000004 00000004 002d0000 00000000 00006364 76b700bc [ 1604.509363][T12580] dfe0: 00000158 76b6fed0 000d7d50 0012febc [ 1604.867941][T11901] usb 1-1: new high-speed USB device number 40 using dummy_hcd [ 1605.021010][T11901] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1605.021329][T11901] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1605.021573][T11901] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1605.021748][T11901] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1605.021927][T11901] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1605.026751][T11901] usb 1-1: config 0 descriptor?? [ 1605.459764][T11901] usbhid 1-1:0.0: can't add hid device: -71 [ 1605.460289][T11901] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1605.465657][T11901] usb 1-1: USB disconnect, device number 40 [ 1607.127462][ T23] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 1607.301385][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1607.304409][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1607.306702][ T23] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1607.308097][ T23] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1607.309585][ T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1607.317683][ T23] usb 2-1: config 0 descriptor?? [ 1607.743048][ T23] usbhid 2-1:0.0: can't add hid device: -71 [ 1607.744109][ T23] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1607.750038][ T23] usb 2-1: USB disconnect, device number 20 [ 1609.087171][ T3041] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 1609.241626][ T3041] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1609.242004][ T3041] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1609.242151][ T3041] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1609.242298][ T3041] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1609.242413][ T3041] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1609.247109][ T3041] usb 2-1: config 0 descriptor?? [ 1609.693383][ T3041] usbhid 2-1:0.0: can't add hid device: -71 [ 1609.697393][ T3041] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1609.708851][ T3041] usb 2-1: USB disconnect, device number 21 [ 1610.616928][ T3041] usb 1-1: new high-speed USB device number 41 using dummy_hcd [ 1610.785451][ T3041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1610.787351][ T3041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1610.788090][ T3041] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1610.788854][ T3041] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1610.789419][ T3041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1610.792715][ T3041] usb 1-1: config 0 descriptor?? [ 1611.423751][ T3041] usbhid 1-1:0.0: can't add hid device: -71 [ 1611.425911][ T3041] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1611.448881][ T3041] usb 1-1: USB disconnect, device number 41 [ 1612.718096][ T3041] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 1612.891512][ T3041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1612.893528][ T3041] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1612.898554][ T3041] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1612.900504][ T3041] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1612.901771][ T3041] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1612.909059][ T3041] usb 1-1: config 0 descriptor?? [ 1613.561870][ T3041] usbhid 1-1:0.0: can't add hid device: -71 [ 1613.562823][ T3041] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1613.579766][ T3041] usb 1-1: USB disconnect, device number 42 [ 1614.567333][ T44] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 1614.736349][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1614.736767][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1614.736876][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1614.737014][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1614.737092][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1614.741865][ T44] usb 1-1: config 0 descriptor?? [ 1615.376352][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1615.376912][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1615.383481][ T44] usb 1-1: USB disconnect, device number 43 [ 1616.686606][ T44] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 1616.842134][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1616.842442][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1616.842627][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1616.842864][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1616.842914][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1616.848371][ T44] usb 1-1: config 0 descriptor?? [ 1617.476963][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1617.477287][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1617.483510][ T44] usb 1-1: USB disconnect, device number 44 [ 1618.667191][ T44] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 1618.846953][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1618.847346][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1618.847829][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1618.848273][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1618.848430][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1618.855034][ T44] usb 1-1: config 0 descriptor?? [ 1619.500106][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1619.500792][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1619.511182][ T44] usb 1-1: USB disconnect, device number 45 [ 1622.827001][ T44] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 1622.990184][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1622.990592][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1622.990883][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1622.991036][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1622.991134][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1622.998569][ T44] usb 1-1: config 0 descriptor?? [ 1623.666799][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1623.667407][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1623.679683][ T44] usb 1-1: USB disconnect, device number 46 [ 1627.729759][ T47] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 1627.901973][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1627.906905][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1627.908780][ T47] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1627.911754][ T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1627.913156][ T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1627.921350][ T47] usb 1-1: config 0 descriptor?? [ 1628.577219][ T47] usbhid 1-1:0.0: can't add hid device: -71 [ 1628.581582][ T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1628.591434][ T47] usb 1-1: USB disconnect, device number 47 [ 1628.694897][T12954] fuse: Bad value for 'group_id' [ 1628.695261][T12954] fuse: Bad value for 'group_id' [ 1628.823600][T12956] FAULT_INJECTION: forcing a failure. [ 1628.823600][T12956] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1628.824050][T12956] CPU: 0 UID: 0 PID: 12956 Comm: syz.0.2383 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1628.824229][T12956] Hardware name: ARM-Versatile Express [ 1628.824260][T12956] Call trace: [ 1628.824300][T12956] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1628.825004][T12956] r7:00000000 r6:00000000 r5:60000013 r4:8225e950 [ 1628.825135][T12956] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1628.825224][T12956] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1628.825337][T12956] r5:85155400 r4:82950750 [ 1628.825537][T12956] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1628.825663][T12956] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1628.825771][T12956] r8:76b6ff30 r7:00000000 r6:00000000 r5:edad9f68 r4:00000002 [ 1628.825798][T12956] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1628.825887][T12956] [<80966fd8>] (should_fail_usercopy) from [<8058be30>] (simple_read_from_buffer+0x80/0x13c) [ 1628.826021][T12956] [<8058bdb0>] (simple_read_from_buffer) from [<80603f90>] (proc_fail_nth_read+0xb8/0x100) [ 1628.826117][T12956] r10:00000001 r9:80603ed8 r8:00000002 r7:edad9f68 r6:0000000f r5:76b6ff30 [ 1628.826174][T12956] r4:85155400 r3:edad9e9f [ 1628.826199][T12956] [<80603ed8>] (proc_fail_nth_read) from [<80550648>] (vfs_read+0x98/0x320) [ 1628.826289][T12956] r8:76b6ff30 r7:edad9f68 r6:85155400 r5:0000000f r4:857789c0 [ 1628.826312][T12956] [<805505b0>] (vfs_read) from [<805512f0>] (ksys_read+0x74/0xe8) [ 1628.826393][T12956] r10:00000003 r9:85155400 r8:8020029c r7:00000000 r6:00000000 r5:857789c0 [ 1628.826420][T12956] r4:857789c3 [ 1628.826439][T12956] [<8055127c>] (ksys_read) from [<80551374>] (sys_read+0x10/0x14) [ 1628.826521][T12956] r7:00000003 r6:00000006 r5:76b6ff30 r4:0000000f [ 1628.826544][T12956] [<80551364>] (sys_read) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1628.826614][T12956] Exception stack(0xedad9fa8 to 0xedad9ff0) [ 1628.826685][T12956] 9fa0: 0000000f 76b6ff30 00000006 76b6ff30 0000000f 00000000 [ 1628.826733][T12956] 9fc0: 0000000f 76b6ff30 00000006 00000003 002d0000 00000000 00006364 76b700bc [ 1628.826769][T12956] 9fe0: 00000158 76b6fed0 000d7d50 0012fdf4 [ 1629.306817][ T47] usb 1-1: new high-speed USB device number 48 using dummy_hcd [ 1629.463691][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1629.465221][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1629.467041][ T47] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1629.468721][ T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1629.469920][ T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1629.475335][ T47] usb 1-1: config 0 descriptor?? [ 1630.116956][ T47] usbhid 1-1:0.0: can't add hid device: -71 [ 1630.118271][ T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1630.126473][ T47] usb 1-1: USB disconnect, device number 48 [ 1630.506907][T12992] fuse: Bad value for 'group_id' [ 1630.508135][T12992] fuse: Bad value for 'group_id' [ 1630.957162][ T47] usb 1-1: new high-speed USB device number 49 using dummy_hcd [ 1631.123418][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1631.124937][ T47] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1631.126804][ T47] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1631.128313][ T47] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1631.129465][ T47] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1631.134893][ T47] usb 1-1: config 0 descriptor?? [ 1631.772390][ T47] usbhid 1-1:0.0: can't add hid device: -71 [ 1631.773839][ T47] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1631.782690][ T47] usb 1-1: USB disconnect, device number 49 [ 1633.919476][T13025] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1633.928374][T13025] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1634.626984][T13025] hsr_slave_0: entered promiscuous mode [ 1634.628151][T13025] hsr_slave_1: entered promiscuous mode [ 1634.629467][T13025] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1634.629653][T13025] Cannot create hsr debugfs directory [ 1634.891120][T13025] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1634.949157][T13025] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1635.020183][T13025] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1635.077424][T13025] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1635.191795][T13025] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1635.198710][T13025] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1635.202985][T13025] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1635.209257][T13025] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1635.892807][T13025] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1636.027434][ T44] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 1636.189885][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1636.190274][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1636.190504][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1636.190685][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1636.190766][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1636.197463][ T44] usb 2-1: config 0 descriptor?? [ 1636.855276][ T44] usbhid 2-1:0.0: can't add hid device: -71 [ 1636.859805][ T44] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1636.866710][ T44] usb 2-1: USB disconnect, device number 22 [ 1638.254796][T13025] veth0_vlan: entered promiscuous mode [ 1638.272951][T13025] veth1_vlan: entered promiscuous mode [ 1638.328290][T13025] veth0_macvtap: entered promiscuous mode [ 1638.338347][T13025] veth1_macvtap: entered promiscuous mode [ 1638.390827][T13025] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1638.391255][T13025] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1638.391536][T13025] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1638.391710][T13025] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1638.499657][ T31] audit: type=1400 audit(1638.420:406): avc: denied { mounton } for pid=13025 comm="syz-executor" path="/syzkaller.A880AK/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=24965 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 1638.512583][ T31] audit: type=1400 audit(1638.430:407): avc: denied { mount } for pid=13025 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 1638.517471][ T31] audit: type=1400 audit(1638.430:408): avc: denied { mounton } for pid=13025 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 1638.637284][T13415] fuse: Bad value for 'group_id' [ 1638.637665][T13415] fuse: Bad value for 'group_id' [ 1639.606909][ T44] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 1639.786758][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1639.788596][ T44] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1639.791074][ T44] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1639.794333][ T44] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1639.796514][ T44] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1639.803462][ T44] usb 1-1: config 0 descriptor?? [ 1640.454838][ T44] usbhid 1-1:0.0: can't add hid device: -71 [ 1640.455558][ T44] usbhid 1-1:0.0: probe with driver usbhid failed with error -71 [ 1640.470429][ T44] usb 1-1: USB disconnect, device number 50 [ 1645.178324][T13470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1645.187330][T13470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1645.954441][T13470] hsr_slave_0: entered promiscuous mode [ 1645.961357][T13470] hsr_slave_1: entered promiscuous mode [ 1645.963681][T13470] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1645.964736][T13470] Cannot create hsr debugfs directory [ 1646.234071][T13470] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1646.328992][T13470] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1646.391336][T13470] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1646.445316][T13470] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 1646.584504][T13470] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1646.597171][T13470] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1646.608877][T13470] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1646.620418][T13470] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1647.315738][T13470] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1649.747014][T13470] veth0_vlan: entered promiscuous mode [ 1649.771924][T13470] veth1_vlan: entered promiscuous mode [ 1649.827957][T13470] veth0_macvtap: entered promiscuous mode [ 1649.840679][T13470] veth1_macvtap: entered promiscuous mode [ 1649.897109][T13470] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.899186][T13470] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.900371][T13470] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1649.901541][T13470] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1650.396870][T11901] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 1650.559111][T11901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1650.560881][T11901] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1650.562104][T11901] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1650.563477][T11901] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1650.564571][T11901] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1650.571040][T11901] usb 2-1: config 0 descriptor?? [ 1651.215158][T11901] usbhid 2-1:0.0: can't add hid device: -71 [ 1651.217636][T11901] usbhid 2-1:0.0: probe with driver usbhid failed with error -71 [ 1651.224609][T11901] usb 2-1: USB disconnect, device number 23 [ 1655.497174][ T23] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 1655.654039][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1655.654471][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1655.654830][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1655.655038][ T23] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1655.655132][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1655.664705][ T23] usb 1-1: config 0 descriptor?? [ 1656.090959][ T23] plantronics 0003:047F:FFFF.0008: No inputs registered, leaving [ 1656.097390][ T23] plantronics 0003:047F:FFFF.0008: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 1656.294540][ T44] usb 1-1: USB disconnect, device number 51 [ 1659.527142][ T44] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 1659.695435][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1659.699539][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1659.701931][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1659.703770][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1659.705416][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1659.712871][ T44] usb 2-1: config 0 descriptor?? [ 1660.150075][ T44] plantronics 0003:047F:FFFF.0009: No inputs registered, leaving [ 1660.155159][ T44] plantronics 0003:047F:FFFF.0009: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 1660.352131][ T47] usb 2-1: USB disconnect, device number 24 [ 1663.536926][ T44] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 1663.704499][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1663.713519][ T44] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1663.717273][ T44] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 1663.719166][ T44] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 1663.720468][ T44] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1663.725020][ T44] usb 2-1: config 0 descriptor?? [ 1664.152072][ T44] plantronics 0003:047F:FFFF.000A: No inputs registered, leaving [ 1664.160202][ T44] plantronics 0003:047F:FFFF.000A: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0 [ 1664.357956][ T44] usb 2-1: USB disconnect, device number 25 [ 1666.777694][T14025] fuse: Unknown parameter 'grou00000000000000000000' [ 1670.955939][T14049] fuse: Unknown parameter 'grou00000000000000000000' [ 1674.905207][T14074] fuse: Unknown parameter 'grou00000000000000000000' [ 1678.761232][T14108] fuse: Unknown parameter 'group_i00000000000000000000' [ 1680.980171][T14127] fuse: Unknown parameter 'group_i00000000000000000000' [ 1684.555704][T14152] fuse: Unknown parameter 'group_i00000000000000000000' [ 1687.935735][T14177] fuse: Unknown parameter 'group_id00000000000000000000' [ 1691.360658][T14203] fuse: Unknown parameter 'group_id00000000000000000000' [ 1693.709802][T14224] fuse: Unknown parameter 'group_id00000000000000000000' [ 1697.049415][T14249] fuse: Bad value for 'user_id' [ 1697.051165][T14249] fuse: Bad value for 'user_id' [ 1703.069830][ T31] audit: type=1400 audit(1702.990:409): avc: denied { execute } for pid=14299 comm="syz.0.2492" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=26791 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 1703.243797][T14303] FAULT_INJECTION: forcing a failure. [ 1703.243797][T14303] name failslab, interval 1, probability 0, space 0, times 0 [ 1703.244103][T14303] CPU: 1 UID: 0 PID: 14303 Comm: syz.0.2493 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1703.244174][T14303] Hardware name: ARM-Versatile Express [ 1703.244191][T14303] Call trace: [ 1703.244213][T14303] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1703.244286][T14303] r7:00000d40 r6:00000000 r5:60000013 r4:8225e950 [ 1703.244300][T14303] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1703.244342][T14303] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1703.244392][T14303] r5:8383a400 r4:82919cc0 [ 1703.244402][T14303] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1703.244473][T14303] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1703.244542][T14303] r8:8383a400 r7:00000d40 r6:855e7e68 r5:0000001d r4:83001240 [ 1703.244556][T14303] [<805235d8>] (should_failslab) from [<805083d4>] (__kmalloc_noprof+0x9c/0x458) [ 1703.244602][T14303] [<80508338>] (__kmalloc_noprof) from [<807bcdec>] (tomoyo_encode2+0x64/0xf0) [ 1703.244659][T14303] r10:00000fff r9:8309e400 r8:00000000 r7:834dfe58 r6:855e7e68 r5:852d0ffc [ 1703.244675][T14303] r4:852d0fea [ 1703.244684][T14303] [<807bcd88>] (tomoyo_encode2) from [<807bce9c>] (tomoyo_encode+0x24/0x30) [ 1703.244741][T14303] r9:8309e400 r8:00000000 r7:834dfe58 r6:855e7e68 r5:00001000 r4:852d0feb [ 1703.244754][T14303] [<807bce78>] (tomoyo_encode) from [<807bcf28>] (tomoyo_realpath_from_path+0x80/0x17c) [ 1703.244806][T14303] r5:00001000 r4:852d0000 [ 1703.244816][T14303] [<807bcea8>] (tomoyo_realpath_from_path) from [<807b9028>] (tomoyo_path_number_perm+0xcc/0x22c) [ 1703.244872][T14303] r10:8383a400 r9:00000000 r8:00000003 r7:4004f50d r6:00000004 r5:81cd5df8 [ 1703.244889][T14303] r4:855e7e68 r3:826c0200 [ 1703.244899][T14303] [<807b8f5c>] (tomoyo_path_number_perm) from [<807bd908>] (tomoyo_file_ioctl+0x1c/0x20) [ 1703.244956][T14303] r9:855e7e40 r8:00000003 r7:20000100 r6:20000100 r5:4004f50d r4:855e7e40 [ 1703.244970][T14303] [<807bd8ec>] (tomoyo_file_ioctl) from [<8076a974>] (security_file_ioctl+0x64/0x1e4) [ 1703.245026][T14303] [<8076a910>] (security_file_ioctl) from [<8056a2c4>] (sys_ioctl+0x4c/0xdc8) [ 1703.245075][T14303] r7:20000100 r6:855e7e41 r5:00000000 r4:4004f50d [ 1703.245087][T14303] [<8056a278>] (sys_ioctl) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1703.245114][T14303] Exception stack(0xe04e9fa8 to 0xe04e9ff0) [ 1703.245135][T14303] 9fa0: 00000000 00000000 00000003 4004f50d 20000100 00000000 [ 1703.245159][T14303] 9fc0: 00000000 00000000 0012fed0 00000036 002d0000 00000000 00006364 76b120bc [ 1703.245178][T14303] 9fe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1703.245201][T14303] r10:00000036 r9:8383a400 r8:8020029c r7:00000036 r6:0012fed0 r5:00000000 [ 1703.245216][T14303] r4:00000000 [ 1703.263306][T14303] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1703.695480][T14318] fuse: Bad value for 'fd' [ 1704.912810][T14342] fuse: Bad value for 'fd' [ 1707.264405][T14371] fuse: Bad value for 'fd' [ 1707.388815][T14373] FAULT_INJECTION: forcing a failure. [ 1707.388815][T14373] name failslab, interval 1, probability 0, space 0, times 0 [ 1707.389515][T14373] CPU: 0 UID: 0 PID: 14373 Comm: syz.0.2508 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1707.389670][T14373] Hardware name: ARM-Versatile Express [ 1707.389730][T14373] Call trace: [ 1707.389882][T14373] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1707.390030][T14373] r7:83a3c800 r6:00000000 r5:60000013 r4:8225e950 [ 1707.390169][T14373] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1707.390319][T14373] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1707.390522][T14373] r5:83a3c800 r4:82919cc0 [ 1707.390920][T14373] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1707.391107][T14373] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1707.391252][T14373] r8:00000000 r7:83a3c800 r6:00000cc0 r5:ffffffff r4:830a6b40 [ 1707.391421][T14373] [<805235d8>] (should_failslab) from [<805079e4>] (kmem_cache_alloc_node_noprof+0x50/0x338) [ 1707.391859][T14373] [<80507994>] (kmem_cache_alloc_node_noprof) from [<81530150>] (__alloc_skb+0x138/0x160) [ 1707.391957][T14373] r10:00000000 r9:00000000 r8:00000cc0 r7:00000000 r6:830a6b40 r5:ffffffff [ 1707.392016][T14373] r4:828060c0 [ 1707.392091][T14373] [<81530018>] (__alloc_skb) from [<81650298>] (netlink_alloc_large_skb+0x88/0xa0) [ 1707.392235][T14373] r8:00000000 r7:85b97800 r6:00000010 r5:84cadb80 r4:00000140 [ 1707.392259][T14373] [<81650210>] (netlink_alloc_large_skb) from [<816508bc>] (netlink_sendmsg+0x134/0x444) [ 1707.392319][T14373] r5:84cadb80 r4:e04c1f20 [ 1707.392337][T14373] [<81650788>] (netlink_sendmsg) from [<81522da4>] (__sock_sendmsg+0x44/0x78) [ 1707.392468][T14373] r10:00000000 r9:e04c1dc4 r8:e04c1dc4 r7:00000000 r6:84cadb80 r5:e04c1f20 [ 1707.392556][T14373] r4:00000000 [ 1707.392579][T14373] [<81522d60>] (__sock_sendmsg) from [<81523614>] (____sys_sendmsg+0x298/0x2cc) [ 1707.392770][T14373] r7:00000000 r6:84cadb80 r5:24040850 r4:e04c1f20 [ 1707.392801][T14373] [<8152337c>] (____sys_sendmsg) from [<81525420>] (___sys_sendmsg+0x9c/0xd0) [ 1707.393041][T14373] r10:e04c1e24 r9:20000180 r8:24040850 r7:00000000 r6:84cadb80 r5:e04c1f20 [ 1707.393116][T14373] r4:00000000 [ 1707.393240][T14373] [<81525384>] (___sys_sendmsg) from [<815258b8>] (__sys_sendmsg+0x8c/0xe0) [ 1707.393575][T14373] r10:00000128 r9:83a3c800 r8:845b6240 r7:24040850 r6:20000180 r5:845b6241 [ 1707.393819][T14373] r4:00000003 [ 1707.393992][T14373] [<8152582c>] (__sys_sendmsg) from [<81525920>] (sys_sendmsg+0x14/0x18) [ 1707.394331][T14373] r8:8020029c r7:00000128 r6:0012fed0 r5:00000000 r4:00000000 [ 1707.394356][T14373] [<8152590c>] (sys_sendmsg) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1707.394470][T14373] Exception stack(0xe04c1fa8 to 0xe04c1ff0) [ 1707.394645][T14373] 1fa0: 00000000 00000000 00000003 20000180 24040850 00000000 [ 1707.394812][T14373] 1fc0: 00000000 00000000 0012fed0 00000128 002d0000 00000000 00006364 76b120bc [ 1707.395112][T14373] 1fe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1707.971555][T14388] fuse: Invalid rootmode [ 1710.888571][T14414] fuse: Invalid rootmode [ 1713.655462][T14438] fuse: Invalid rootmode [ 1714.572359][T14436] FAULT_INJECTION: forcing a failure. [ 1714.572359][T14436] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1714.572926][T14436] CPU: 0 UID: 0 PID: 14436 Comm: syz.1.2521 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1714.573008][T14436] Hardware name: ARM-Versatile Express [ 1714.573036][T14436] Call trace: [ 1714.573078][T14436] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1714.573529][T14436] r7:00000000 r6:00000000 r5:60000013 r4:8225e950 [ 1714.573552][T14436] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1714.573623][T14436] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1714.573718][T14436] r5:841dec00 r4:82950750 [ 1714.573737][T14436] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1714.573827][T14436] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1714.573952][T14436] r8:76ba9f30 r7:00000000 r6:00000000 r5:ea831f68 r4:00000002 [ 1714.574023][T14436] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1714.574376][T14436] [<80966fd8>] (should_fail_usercopy) from [<8058be30>] (simple_read_from_buffer+0x80/0x13c) [ 1714.574478][T14436] [<8058bdb0>] (simple_read_from_buffer) from [<80603f90>] (proc_fail_nth_read+0xb8/0x100) [ 1714.574573][T14436] r10:00000001 r9:80603ed8 r8:00000002 r7:ea831f68 r6:0000000f r5:76ba9f30 [ 1714.574595][T14436] r4:841dec00 r3:ea831e9f [ 1714.574620][T14436] [<80603ed8>] (proc_fail_nth_read) from [<80550648>] (vfs_read+0x98/0x320) [ 1714.574724][T14436] r8:76ba9f30 r7:ea831f68 r6:841dec00 r5:0000000f r4:845b63c0 [ 1714.574747][T14436] [<805505b0>] (vfs_read) from [<805512f0>] (ksys_read+0x74/0xe8) [ 1714.574791][T14436] r10:00000003 r9:841dec00 r8:8020029c r7:00000000 r6:00000000 r5:845b63c0 [ 1714.574803][T14436] r4:845b63c3 [ 1714.574811][T14436] [<8055127c>] (ksys_read) from [<80551374>] (sys_read+0x10/0x14) [ 1714.574878][T14436] r7:00000003 r6:00000004 r5:76ba9f30 r4:0000000f [ 1714.574892][T14436] [<80551364>] (sys_read) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1714.574930][T14436] Exception stack(0xea831fa8 to 0xea831ff0) [ 1714.574953][T14436] 1fa0: 0000000f 76ba9f30 00000004 76ba9f30 0000000f 00000000 [ 1714.575042][T14436] 1fc0: 0000000f 76ba9f30 00000004 00000003 002d0000 00000000 00006364 76baa0bc [ 1714.575067][T14436] 1fe0: 00000158 76ba9ed0 000d7d50 0012fdf4 [ 1715.150183][T14458] fuse: Bad value for 'rootmode' [ 1719.746802][ T31] audit: type=1400 audit(1719.660:410): avc: denied { read } for pid=14529 comm="syz.1.2538" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 1722.535614][ T31] audit: type=1400 audit(1722.450:411): avc: denied { setattr } for pid=14557 comm="syz.0.2545" name="nbd0" dev="devtmpfs" ino=635 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 1722.630955][ T31] audit: type=1400 audit(1722.550:412): avc: denied { setopt } for pid=14564 comm="syz.0.2548" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 1723.682988][T14573] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=0 sclass=netlink_tcpdiag_socket pid=14573 comm=syz.1.2550 [ 1724.897324][T14578] FAULT_INJECTION: forcing a failure. [ 1724.897324][T14578] name failslab, interval 1, probability 0, space 0, times 0 [ 1724.897637][T14578] CPU: 0 UID: 0 PID: 14578 Comm: syz.1.2552 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1724.897704][T14578] Hardware name: ARM-Versatile Express [ 1724.897725][T14578] Call trace: [ 1724.897746][T14578] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1724.897817][T14578] r7:83a3c800 r6:00000000 r5:60000013 r4:8225e950 [ 1724.897829][T14578] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1724.897876][T14578] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1724.897920][T14578] r5:83a3c800 r4:82919cc0 [ 1724.897928][T14578] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1724.897974][T14578] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1724.898027][T14578] r8:00000000 r7:83a3c800 r6:00000cc0 r5:ffffffff r4:830a6b40 [ 1724.898048][T14578] [<805235d8>] (should_failslab) from [<805079e4>] (kmem_cache_alloc_node_noprof+0x50/0x338) [ 1724.898130][T14578] [<80507994>] (kmem_cache_alloc_node_noprof) from [<81530150>] (__alloc_skb+0x138/0x160) [ 1724.898190][T14578] r10:00000000 r9:00000000 r8:00000cc0 r7:00000000 r6:830a6b40 r5:ffffffff [ 1724.898203][T14578] r4:828060c0 [ 1724.898211][T14578] [<81530018>] (__alloc_skb) from [<81650298>] (netlink_alloc_large_skb+0x88/0xa0) [ 1724.898253][T14578] r8:00000000 r7:84b01400 r6:00000014 r5:84c38c80 r4:00000140 [ 1724.898263][T14578] [<81650210>] (netlink_alloc_large_skb) from [<816508bc>] (netlink_sendmsg+0x134/0x444) [ 1724.898293][T14578] r5:84c38c80 r4:ead49f20 [ 1724.898301][T14578] [<81650788>] (netlink_sendmsg) from [<81522da4>] (__sock_sendmsg+0x44/0x78) [ 1724.898342][T14578] r10:00000000 r9:ead49dc4 r8:ead49dc4 r7:00000000 r6:84c38c80 r5:ead49f20 [ 1724.898354][T14578] r4:00000000 [ 1724.898361][T14578] [<81522d60>] (__sock_sendmsg) from [<81523614>] (____sys_sendmsg+0x298/0x2cc) [ 1724.898402][T14578] r7:00000000 r6:84c38c80 r5:00004000 r4:ead49f20 [ 1724.898412][T14578] [<8152337c>] (____sys_sendmsg) from [<81525420>] (___sys_sendmsg+0x9c/0xd0) [ 1724.898457][T14578] r10:ead49e24 r9:20000100 r8:00004000 r7:00000000 r6:84c38c80 r5:ead49f20 [ 1724.898470][T14578] r4:00000000 [ 1724.898477][T14578] [<81525384>] (___sys_sendmsg) from [<815258b8>] (__sys_sendmsg+0x8c/0xe0) [ 1724.898554][T14578] r10:00000128 r9:83a3c800 r8:845b6b40 r7:00004000 r6:20000100 r5:845b6b41 [ 1724.898576][T14578] r4:00000003 [ 1724.898591][T14578] [<8152582c>] (__sys_sendmsg) from [<81525920>] (sys_sendmsg+0x14/0x18) [ 1724.898813][T14578] r8:8020029c r7:00000128 r6:0012fed0 r5:00000000 r4:00000000 [ 1724.898907][T14578] [<8152590c>] (sys_sendmsg) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1724.898974][T14578] Exception stack(0xead49fa8 to 0xead49ff0) [ 1724.899039][T14578] 9fa0: 00000000 00000000 00000003 20000100 00004000 00000000 [ 1724.899062][T14578] 9fc0: 00000000 00000000 0012fed0 00000128 002d0000 00000000 00006364 76baa0bc [ 1724.899152][T14578] 9fe0: 76ba9ec0 76ba9eb0 00019384 00131f20 [ 1725.020509][ T31] audit: type=1400 audit(1724.940:413): avc: denied { ioctl } for pid=14579 comm="syz.1.2553" path="socket:[27239]" dev="sockfs" ino=27239 ioctlcmd=0x660c scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=llc_socket permissive=1 [ 1725.575691][T14593] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14593 comm=syz.0.2557 [ 1725.665608][T14599] fuse: Unknown parameter 'user_i00000000000000000000' [ 1725.773464][T14601] FAULT_INJECTION: forcing a failure. [ 1725.773464][T14601] name failslab, interval 1, probability 0, space 0, times 0 [ 1725.773939][T14601] CPU: 1 UID: 0 PID: 14601 Comm: syz.0.2560 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1725.774046][T14601] Hardware name: ARM-Versatile Express [ 1725.774077][T14601] Call trace: [ 1725.774120][T14601] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1725.774318][T14601] r7:00000d40 r6:00000000 r5:60000013 r4:8225e950 [ 1725.775004][T14601] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1725.775215][T14601] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1725.775354][T14601] r5:832f1800 r4:82919cc0 [ 1725.775380][T14601] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1725.775576][T14601] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1725.777023][T14601] r8:832f1800 r7:00000d40 r6:855e7628 r5:0000001d r4:83001240 [ 1725.777189][T14601] [<805235d8>] (should_failslab) from [<805083d4>] (__kmalloc_noprof+0x9c/0x458) [ 1725.777345][T14601] [<80508338>] (__kmalloc_noprof) from [<807bcdec>] (tomoyo_encode2+0x64/0xf0) [ 1725.777594][T14601] r10:00000fff r9:853ebc00 r8:00000000 r7:83765dd0 r6:855e7628 r5:852d3ffd [ 1725.777675][T14601] r4:852d3feb [ 1725.777700][T14601] [<807bcd88>] (tomoyo_encode2) from [<807bce9c>] (tomoyo_encode+0x24/0x30) [ 1725.777828][T14601] r9:853ebc00 r8:00000000 r7:83765dd0 r6:855e7628 r5:00001000 r4:852d3fec [ 1725.777854][T14601] [<807bce78>] (tomoyo_encode) from [<807bcf28>] (tomoyo_realpath_from_path+0x80/0x17c) [ 1725.777953][T14601] r5:00001000 r4:852d3000 [ 1725.777974][T14601] [<807bcea8>] (tomoyo_realpath_from_path) from [<807b92d8>] (tomoyo_check_open_permission+0x150/0x1c0) [ 1725.778076][T14601] r10:855e7600 r9:00000004 r8:84569980 r7:00004000 r6:00000000 r5:855e7628 [ 1725.778110][T14601] r4:00000001 r3:00000001 [ 1725.778131][T14601] [<807b9188>] (tomoyo_check_open_permission) from [<807bdd8c>] (tomoyo_file_open+0x34/0x38) [ 1725.778238][T14601] r9:00000000 r8:855e7628 r7:00000000 r6:84c43900 r5:81ccd880 r4:855e7600 [ 1725.778266][T14601] [<807bdd58>] (tomoyo_file_open) from [<8077a6f8>] (security_file_open+0x54/0x194) [ 1725.778362][T14601] r5:81ccd880 r4:855e7600 [ 1725.778381][T14601] [<8077a6a4>] (security_file_open) from [<8054b288>] (do_dentry_open+0xe8/0x630) [ 1725.778447][T14601] r5:81ccd880 r4:855e7600 [ 1725.778467][T14601] [<8054b1a0>] (do_dentry_open) from [<8054d0ec>] (vfs_open+0x2c/0xe8) [ 1725.778613][T14601] r8:eae3de58 r7:00000000 r6:855e7628 r5:829205e0 r4:855e7600 [ 1725.778802][T14601] [<8054d0c0>] (vfs_open) from [<80565a28>] (path_openat+0x30c/0x1150) [ 1725.778998][T14601] r6:eae3df20 r5:829205e0 r4:00004000 [ 1725.779238][T14601] [<8056571c>] (path_openat) from [<80566918>] (do_filp_open+0xac/0x148) [ 1725.779384][T14601] r10:00000142 r9:832e3000 r8:00000003 r7:eae3de58 r6:eae3df20 r5:832f1800 [ 1725.779414][T14601] r4:ffffff9c [ 1725.779435][T14601] [<8056686c>] (do_filp_open) from [<8054d5f0>] (do_sys_openat2+0x90/0xe0) [ 1725.779537][T14601] r9:832f1800 r8:8020029c r7:ffffff9c r6:eae3df58 r5:832e3000 r4:00000005 [ 1725.779562][T14601] [<8054d560>] (do_sys_openat2) from [<8054da18>] (sys_openat+0x98/0xd4) [ 1725.779659][T14601] r7:00000142 r6:00000000 r5:76b11ab0 r4:ffffff9c [ 1725.779684][T14601] [<8054d980>] (sys_openat) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1725.779974][T14601] Exception stack(0xeae3dfa8 to 0xeae3dff0) [ 1725.780167][T14601] dfa0: 00084000 76b11ab0 ffffff9c 76b11ab0 00084000 00000000 [ 1725.780281][T14601] dfc0: 00084000 76b11ab0 00000000 00000142 00000000 00000000 00006364 76b120bc [ 1725.780384][T14601] dfe0: 81010301 76b11a68 000d7d50 0012fd18 [ 1725.780539][T14601] r5:76b11ab0 r4:00084000 [ 1725.787837][T14601] ERROR: Out of memory at tomoyo_realpath_from_path. [ 1726.885423][T14607] fuse: Bad value for 'group_id' [ 1726.887927][T14607] fuse: Bad value for 'group_id' [ 1727.716934][T14614] fuse: Unknown parameter 'user_i00000000000000000000' [ 1729.771832][ T31] audit: type=1400 audit(1729.690:414): avc: denied { getopt } for pid=14632 comm="syz.1.2573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 1729.786681][ T31] audit: type=1400 audit(1729.700:415): avc: denied { connect } for pid=14632 comm="syz.1.2573" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 1730.064741][ T31] audit: type=1400 audit(1729.980:416): avc: denied { listen } for pid=14625 comm="syz.0.2570" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=smc_socket permissive=1 [ 1731.706738][T14639] fuse: Unknown parameter ' ' [ 1731.842578][T14643] FAULT_INJECTION: forcing a failure. [ 1731.842578][T14643] name failslab, interval 1, probability 0, space 0, times 0 [ 1731.843031][T14643] CPU: 1 UID: 0 PID: 14643 Comm: syz.0.2576 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1731.843127][T14643] Hardware name: ARM-Versatile Express [ 1731.843160][T14643] Call trace: [ 1731.843210][T14643] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1731.843760][T14643] r7:83a3c800 r6:00000000 r5:60000013 r4:8225e950 [ 1731.843829][T14643] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1731.844174][T14643] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1731.844405][T14643] r5:83a3c800 r4:82919cc0 [ 1731.844457][T14643] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1731.844564][T14643] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1731.844679][T14643] r8:00000000 r7:83a3c800 r6:00400dc0 r5:00000001 r4:83002000 [ 1731.844707][T14643] [<805235d8>] (should_failslab) from [<80507404>] (__kmalloc_cache_noprof+0x4c/0x33c) [ 1731.844880][T14643] [<805073b8>] (__kmalloc_cache_noprof) from [<8073adfc>] (fuse_alloc_forget+0x28/0x2c) [ 1731.845455][T14643] r10:00000000 r9:eb299cfc r8:8591f380 r7:853eac00 r6:835fcf80 r5:00000001 [ 1731.845624][T14643] r4:eb299d00 [ 1731.845689][T14643] [<8073add4>] (fuse_alloc_forget) from [<807305ac>] (fuse_lookup_name+0x6c/0x280) [ 1731.845803][T14643] [<80730540>] (fuse_lookup_name) from [<80730850>] (fuse_lookup+0x90/0x174) [ 1731.846070][T14643] r10:00000000 r9:00000001 r8:00000001 r7:00000000 r6:835fcf68 r5:84c43900 [ 1731.846120][T14643] r4:835fcf68 [ 1731.846148][T14643] [<807307c0>] (fuse_lookup) from [<8055fe50>] (__lookup_slow+0x8c/0x140) [ 1731.846248][T14643] r9:00000000 r8:eb299e38 r7:84c43900 r6:00000001 r5:83765d48 r4:835fcf68 [ 1731.846275][T14643] [<8055fdc4>] (__lookup_slow) from [<80563e38>] (walk_component+0x104/0x170) [ 1731.846380][T14643] r9:00000000 r8:00000001 r7:00000001 r6:eb299e30 r5:84c43980 r4:83765d48 [ 1731.846408][T14643] [<80563d34>] (walk_component) from [<80564a94>] (path_lookupat+0x5c/0x184) [ 1731.846516][T14643] r9:00000000 r8:eb299f24 r7:832e3010 r6:eb299f24 r5:00000000 r4:eb299e30 [ 1731.846544][T14643] [<80564a38>] (path_lookupat) from [<80564fd0>] (filename_lookup+0xd4/0x1a4) [ 1731.846708][T14643] r7:00000001 r6:83a3c800 r5:832e3000 r4:ffffff9c [ 1731.846735][T14643] [<80564efc>] (filename_lookup) from [<805650dc>] (kern_path+0x3c/0x54) [ 1731.846857][T14643] r9:83a3c800 r8:00000000 r7:eb299f6c r6:eb299f24 r5:00000001 r4:832e3000 [ 1731.846884][T14643] [<805650a0>] (kern_path) from [<80824c3c>] (lookup_bdev+0x50/0xc8) [ 1731.846984][T14643] r6:83a3c800 r5:eb299f68 r4:832e1000 [ 1731.847007][T14643] [<80824bec>] (lookup_bdev) from [<805fbb60>] (sys_quotactl+0x90/0x3a8) [ 1731.847088][T14643] r6:83a3c800 r5:00000000 r4:832e1000 [ 1731.847110][T14643] [<805fbad0>] (sys_quotactl) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1731.847168][T14643] Exception stack(0xeb299fa8 to 0xeb299ff0) [ 1731.847211][T14643] 9fa0: 00000000 00000000 00000000 20002ac0 00000000 00000000 [ 1731.847257][T14643] 9fc0: 00000000 00000000 0012fed0 00000083 002d0000 00000000 00006364 76b120bc [ 1731.847294][T14643] 9fe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1731.847338][T14643] r10:00000083 r9:83a3c800 r8:8020029c r7:00000083 r6:0012fed0 r5:00000000 [ 1731.847366][T14643] r4:00000000 [ 1732.010453][T14648] fuse: Unknown parameter 'user_id00000000000000000000' [ 1732.699454][T14667] fuse: Unknown parameter ' ' [ 1733.719250][ T31] audit: type=1400 audit(1733.640:417): avc: denied { accept } for pid=14700 comm="syz.1.2595" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 1733.792832][T14701] SELinux: unrecognized netlink message: protocol=9 nlmsg_type=367 sclass=netlink_audit_socket pid=14701 comm=syz.1.2595 [ 1733.814340][T14671] FAULT_INJECTION: forcing a failure. [ 1733.814340][T14671] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1733.814616][T14671] CPU: 0 UID: 0 PID: 14671 Comm: syz.0.2587 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1733.814705][T14671] Hardware name: ARM-Versatile Express [ 1733.814724][T14671] Call trace: [ 1733.814744][T14671] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1733.814817][T14671] r7:00000000 r6:00000000 r5:60000013 r4:8225e950 [ 1733.814830][T14671] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1733.814871][T14671] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1733.814916][T14671] r5:85150c00 r4:82950750 [ 1733.814924][T14671] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1733.814971][T14671] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1733.815020][T14671] r8:76b11f30 r7:00000000 r6:00000000 r5:eb335f68 r4:00000002 [ 1733.815030][T14671] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1733.815074][T14671] [<80966fd8>] (should_fail_usercopy) from [<8058be30>] (simple_read_from_buffer+0x80/0x13c) [ 1733.815118][T14671] [<8058bdb0>] (simple_read_from_buffer) from [<80603f90>] (proc_fail_nth_read+0xb8/0x100) [ 1733.815167][T14671] r10:00000001 r9:80603ed8 r8:00000002 r7:eb335f68 r6:0000000f r5:76b11f30 [ 1733.815181][T14671] r4:85150c00 r3:eb335e9f [ 1733.815190][T14671] [<80603ed8>] (proc_fail_nth_read) from [<80550648>] (vfs_read+0x98/0x320) [ 1733.815235][T14671] r8:76b11f30 r7:eb335f68 r6:85150c00 r5:0000000f r4:845b6300 [ 1733.815246][T14671] [<805505b0>] (vfs_read) from [<805512f0>] (ksys_read+0x74/0xe8) [ 1733.815288][T14671] r10:00000003 r9:85150c00 r8:8020029c r7:00000000 r6:00000000 r5:845b6300 [ 1733.815301][T14671] r4:845b6303 [ 1733.815309][T14671] [<8055127c>] (ksys_read) from [<80551374>] (sys_read+0x10/0x14) [ 1733.815348][T14671] r7:00000003 r6:00000004 r5:76b11f30 r4:0000000f [ 1733.815358][T14671] [<80551364>] (sys_read) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1733.815387][T14671] Exception stack(0xeb335fa8 to 0xeb335ff0) [ 1733.815407][T14671] 5fa0: 0000000f 76b11f30 00000004 76b11f30 0000000f 00000000 [ 1733.815427][T14671] 5fc0: 0000000f 76b11f30 00000004 00000003 002d0000 00000000 00006364 76b120bc [ 1733.815444][T14671] 5fe0: 00000158 76b11ed0 000d7d50 0012fdf4 [ 1733.913058][T14704] SELinux: Context system_u:object_r:ppp_device_t:s0 is not valid (left unmapped). [ 1733.918115][ T31] audit: type=1400 audit(1733.830:418): avc: denied { relabelto } for pid=14703 comm="syz.1.2596" name=".log" dev="tmpfs" ino=466 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:ppp_device_t:s0" [ 1733.918473][ T31] audit: type=1400 audit(1733.830:419): avc: denied { associate } for pid=14703 comm="syz.1.2596" name=".log" dev="tmpfs" ino=466 scontext=system_u:object_r:unlabeled_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 srawcon="system_u:object_r:ppp_device_t:s0" [ 1733.947041][ T31] audit: type=1400 audit(1733.860:420): avc: denied { unlink } for pid=13470 comm="syz-executor" name=".log" dev="tmpfs" ino=466 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="system_u:object_r:ppp_device_t:s0" [ 1733.988255][T14706] binder: 14705:14706 ioctl f505 0 returned -22 [ 1736.848839][T14729] FAULT_INJECTION: forcing a failure. [ 1736.848839][T14729] name failslab, interval 1, probability 0, space 0, times 0 [ 1736.850600][T14729] CPU: 0 UID: 0 PID: 14729 Comm: syz.1.2603 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1736.850743][T14729] Hardware name: ARM-Versatile Express [ 1736.850771][T14729] Call trace: [ 1736.850817][T14729] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1736.850931][T14729] r7:83a2bc00 r6:00000000 r5:60000013 r4:8225e950 [ 1736.850955][T14729] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1736.851028][T14729] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1736.851112][T14729] r5:83a2bc00 r4:82919cc0 [ 1736.851131][T14729] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1736.851219][T14729] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1736.851323][T14729] r8:00000000 r7:83a2bc00 r6:00000820 r5:849c9f00 r4:830a6b40 [ 1736.851345][T14729] [<805235d8>] (should_failslab) from [<80508050>] (kmem_cache_alloc_noprof+0x4c/0x334) [ 1736.851426][T14729] [<80508004>] (kmem_cache_alloc_noprof) from [<815369f8>] (skb_clone+0x60/0x1c8) [ 1736.851524][T14729] r10:000001a2 r9:85b75c80 r8:85716400 r7:849c9f00 r6:848976c0 r5:849c9f00 [ 1736.851552][T14729] r4:00000820 [ 1736.851571][T14729] [<81536998>] (skb_clone) from [<8164d6c8>] (__netlink_deliver_tap+0x1f4/0x28c) [ 1736.851647][T14729] r5:00000024 r4:84897000 [ 1736.851666][T14729] [<8164d4d4>] (__netlink_deliver_tap) from [<8165076c>] (netlink_unicast+0x280/0x29c) [ 1736.851927][T14729] r10:00000000 r9:00000000 r8:848a0dc0 r7:849c9f00 r6:85b75c80 r5:00000024 [ 1736.851958][T14729] r4:85716400 [ 1736.851980][T14729] [<816504ec>] (netlink_unicast) from [<81650954>] (netlink_sendmsg+0x1cc/0x444) [ 1736.852084][T14729] r9:00000000 r8:00000000 r7:85b94000 r6:00000024 r5:849c9f00 r4:eb5c9e98 [ 1736.852108][T14729] [<81650788>] (netlink_sendmsg) from [<81522da4>] (__sock_sendmsg+0x44/0x78) [ 1736.852192][T14729] r10:00000122 r9:845b6900 r8:845b6901 r7:76ba8e1c r6:84c38280 r5:eb5c9e98 [ 1736.852218][T14729] r4:00000000 [ 1736.852403][T14729] [<81522d60>] (__sock_sendmsg) from [<81524c14>] (__sys_sendto+0x110/0x160) [ 1736.852498][T14729] r7:76ba8e1c r6:84c38280 r5:00000000 r4:00000000 [ 1736.852520][T14729] [<81524b04>] (__sys_sendto) from [<81524c80>] (sys_sendto+0x1c/0x24) [ 1736.852615][T14729] r9:83a2bc00 r8:8020029c r7:00000122 r6:00000000 r5:0000000c r4:76ba8e1c [ 1736.852640][T14729] [<81524c64>] (sys_sendto) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1736.852705][T14729] Exception stack(0xeb5c9fa8 to 0xeb5c9ff0) [ 1736.852745][T14729] 9fa0: 76ba8e1c 0000000c 00000003 76ba8eb0 00000024 00000000 [ 1736.852785][T14729] 9fc0: 76ba8e1c 0000000c 00000000 00000122 00000003 00000000 76ba8eb0 76baa0bc [ 1736.852849][T14729] 9fe0: 00000000 76ba8df0 000d7d50 001343b8 [ 1737.490747][T14745] FAULT_INJECTION: forcing a failure. [ 1737.490747][T14745] name failslab, interval 1, probability 0, space 0, times 0 [ 1737.491252][T14745] CPU: 1 UID: 0 PID: 14745 Comm: syz.0.2607 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1737.491338][T14745] Hardware name: ARM-Versatile Express [ 1737.491369][T14745] Call trace: [ 1737.491425][T14745] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1737.491669][T14745] r7:83a31800 r6:00000000 r5:60000013 r4:8225e950 [ 1737.491859][T14745] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1737.492022][T14745] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1737.492124][T14745] r5:83a31800 r4:82919cc0 [ 1737.492245][T14745] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1737.492440][T14745] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1737.492580][T14745] r8:00000000 r7:83a31800 r6:00400dc0 r5:82822690 r4:830020c0 [ 1737.492661][T14745] [<805235d8>] (should_failslab) from [<80507404>] (__kmalloc_cache_noprof+0x4c/0x33c) [ 1737.492937][T14745] [<805073b8>] (__kmalloc_cache_noprof) from [<8055d690>] (alloc_pipe_info+0x6c/0x238) [ 1737.493438][T14745] r10:855e7900 r9:8291ca2c r8:855e79c0 r7:00100000 r6:83a31800 r5:82822690 [ 1737.493675][T14745] r4:00000000 [ 1737.493903][T14745] [<8055d624>] (alloc_pipe_info) from [<8059a808>] (splice_direct_to_actor+0x24c/0x2d8) [ 1737.494257][T14745] r9:00000009 r8:855e79c0 r7:855e79c0 r6:83a31800 r5:eb57dea0 r4:00000000 [ 1737.494290][T14745] [<8059a5bc>] (splice_direct_to_actor) from [<8059aa50>] (do_splice_direct+0x88/0xc8) [ 1737.494585][T14745] r10:855e7900 r9:00000009 r8:855e79c0 r7:00000000 r6:00000000 r5:855e79c1 [ 1737.494700][T14745] r4:eb57df20 [ 1737.494924][T14745] [<8059a9c8>] (do_splice_direct) from [<8054f730>] (do_sendfile+0x39c/0x43c) [ 1737.495063][T14745] r7:00000000 r6:83a31800 r4:00000000 [ 1737.495088][T14745] [<8054f394>] (do_sendfile) from [<80551908>] (sys_sendfile+0xec/0x100) [ 1737.495184][T14745] r10:000000bb r9:00000003 r8:00000004 r7:00000000 r6:00000000 r5:00000000 [ 1737.495566][T14745] r4:00000000 [ 1737.495764][T14745] [<8055181c>] (sys_sendfile) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1737.495867][T14745] Exception stack(0xeb57dfa8 to 0xeb57dff0) [ 1737.495974][T14745] dfa0: 00000000 00000000 00000003 00000004 00000000 00000009 [ 1737.496136][T14745] dfc0: 00000000 00000000 0012fed0 000000bb 002d0000 00000000 00006364 76b120bc [ 1737.496394][T14745] dfe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1737.496628][T14745] r9:83a31800 r8:8020029c r7:000000bb r6:0012fed0 r5:00000000 r4:00000000 [ 1738.741151][T14763] FAULT_INJECTION: forcing a failure. [ 1738.741151][T14763] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1738.743104][T14763] CPU: 0 UID: 0 PID: 14763 Comm: syz.0.2612 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1738.743248][T14763] Hardware name: ARM-Versatile Express [ 1738.743282][T14763] Call trace: [ 1738.743325][T14763] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1738.743449][T14763] r7:76b10e1c r6:00000000 r5:60000013 r4:8225e950 [ 1738.743476][T14763] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1738.743601][T14763] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1738.743696][T14763] r5:85150c00 r4:82950750 [ 1738.743717][T14763] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1738.743814][T14763] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1738.743918][T14763] r8:845b6601 r7:76b10e1c r6:eb605ee4 r5:0000000c r4:0000000c [ 1738.743944][T14763] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1738.744031][T14763] [<80966fd8>] (should_fail_usercopy) from [<8152367c>] (move_addr_to_kernel+0x34/0xf8) [ 1738.744120][T14763] [<81523648>] (move_addr_to_kernel) from [<81524bd4>] (__sys_sendto+0xd0/0x160) [ 1738.744212][T14763] r7:76b10e1c r6:84c38280 r5:00000000 r4:00000000 [ 1738.744238][T14763] [<81524b04>] (__sys_sendto) from [<81524c80>] (sys_sendto+0x1c/0x24) [ 1738.744338][T14763] r9:85150c00 r8:8020029c r7:00000122 r6:00000000 r5:0000000c r4:76b10e1c [ 1738.744365][T14763] [<81524c64>] (sys_sendto) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1738.744435][T14763] Exception stack(0xeb605fa8 to 0xeb605ff0) [ 1738.744479][T14763] 5fa0: 76b10e1c 0000000c 00000004 76b10eb0 00000024 00000000 [ 1738.744573][T14763] 5fc0: 76b10e1c 0000000c 00000000 00000122 00000004 00000000 76b10eb0 76b120bc [ 1738.744611][T14763] 5fe0: 00000000 76b10df0 000d7d50 001343b8 [ 1739.440548][T14780] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 1739.442192][T14780] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 1739.658798][ T44] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 1739.827179][ T44] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1739.829149][ T44] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1739.829950][ T44] usb 1-1: Product: syz [ 1739.830594][ T44] usb 1-1: Manufacturer: syz [ 1739.831211][ T44] usb 1-1: SerialNumber: syz [ 1740.581815][ T31] audit: type=1400 audit(1740.500:421): avc: denied { create } for pid=14792 comm="syz.1.2618" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=x25_socket permissive=1 [ 1740.817185][ T31] audit: type=1400 audit(1740.730:422): avc: denied { getattr } for pid=14795 comm="syz.1.2619" path="socket:[28268]" dev="sockfs" ino=28268 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=key_socket permissive=1 [ 1742.168232][ T31] audit: type=1400 audit(1742.090:423): avc: denied { create } for pid=14822 comm="syz.1.2624" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 1745.846620][T14841] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=14841 comm=syz.1.2628 [ 1747.092677][T14860] FAULT_INJECTION: forcing a failure. [ 1747.092677][T14860] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1747.093116][T14860] CPU: 1 UID: 0 PID: 14860 Comm: syz.1.2634 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1747.093203][T14860] Hardware name: ARM-Versatile Express [ 1747.093229][T14860] Call trace: [ 1747.093274][T14860] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1747.093392][T14860] r7:ec005e20 r6:00000000 r5:60000013 r4:8225e950 [ 1747.093415][T14860] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1747.093495][T14860] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1747.093602][T14860] r5:83a3c800 r4:82950750 [ 1747.093619][T14860] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1747.093719][T14860] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1747.093816][T14860] r8:00000080 r7:ec005e20 r6:20000100 r5:00000000 r4:ec005f20 [ 1747.093838][T14860] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1747.093957][T14860] [<80966fd8>] (should_fail_usercopy) from [<815252a4>] (copy_msghdr_from_user+0x50/0x130) [ 1747.094058][T14860] [<81525254>] (copy_msghdr_from_user) from [<815253fc>] (___sys_sendmsg+0x78/0xd0) [ 1747.094157][T14860] r8:00000080 r7:00000000 r6:83659180 r5:ec005f20 r4:ec005e64 [ 1747.094180][T14860] [<81525384>] (___sys_sendmsg) from [<815258b8>] (__sys_sendmsg+0x8c/0xe0) [ 1747.094282][T14860] r10:00000128 r9:83a3c800 r8:855e7540 r7:00000080 r6:20000100 r5:855e7541 [ 1747.094309][T14860] r4:00000003 [ 1747.094325][T14860] [<8152582c>] (__sys_sendmsg) from [<81525920>] (sys_sendmsg+0x14/0x18) [ 1747.094541][T14860] r8:8020029c r7:00000128 r6:0012fed0 r5:00000000 r4:00000000 [ 1747.094989][T14860] [<8152590c>] (sys_sendmsg) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1747.095249][T14860] Exception stack(0xec005fa8 to 0xec005ff0) [ 1747.095453][T14860] 5fa0: 00000000 00000000 00000003 20000100 00000080 00000000 [ 1747.095653][T14860] 5fc0: 00000000 00000000 0012fed0 00000128 002d0000 00000000 00006364 76baa0bc [ 1747.095725][T14860] 5fe0: 76ba9ec0 76ba9eb0 00019384 00131f20 [ 1747.639138][T14875] fuse: Unknown parameter '0x0000000000000003' [ 1748.285193][T14892] fuse: Unknown parameter '0x0000000000000003' [ 1749.413113][ T31] audit: type=1400 audit(1749.330:424): avc: denied { ioctl } for pid=14893 comm="syz.1.2644" path="socket:[28693]" dev="sockfs" ino=28693 ioctlcmd=0x8983 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 1749.462680][ T8770] usb 1-1: USB disconnect, device number 52 [ 1750.081053][T14911] fuse: Unknown parameter '0x0000000000000003' [ 1750.954490][T14922] fuse: Unknown parameter 'fd0x0000000000000003' [ 1751.704526][T14933] fuse: Unknown parameter 'fd0x0000000000000003' [ 1754.449948][T14970] FAULT_INJECTION: forcing a failure. [ 1754.449948][T14970] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 1754.451628][T14970] CPU: 0 UID: 0 PID: 14970 Comm: syz.1.2673 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1754.451749][T14970] Hardware name: ARM-Versatile Express [ 1754.451791][T14970] Call trace: [ 1754.451832][T14970] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1754.451970][T14970] r7:ec7b5e20 r6:00000000 r5:60000013 r4:8225e950 [ 1754.451994][T14970] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1754.452071][T14970] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1754.452158][T14970] r5:8383ec00 r4:82950750 [ 1754.452176][T14970] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1754.452266][T14970] [<80966d98>] (should_fail_ex) from [<80966fd4>] (should_fail+0x14/0x18) [ 1754.452365][T14970] r8:24000000 r7:ec7b5e20 r6:200001c0 r5:00000000 r4:ec7b5f20 [ 1754.452387][T14970] [<80966fc0>] (should_fail) from [<80966ff4>] (should_fail_usercopy+0x1c/0x20) [ 1754.452475][T14970] [<80966fd8>] (should_fail_usercopy) from [<815252a4>] (copy_msghdr_from_user+0x50/0x130) [ 1754.452570][T14970] [<81525254>] (copy_msghdr_from_user) from [<815253fc>] (___sys_sendmsg+0x78/0xd0) [ 1754.452673][T14970] r8:24000000 r7:00000000 r6:84c39400 r5:ec7b5f20 r4:ec7b5e64 [ 1754.452694][T14970] [<81525384>] (___sys_sendmsg) from [<815258b8>] (__sys_sendmsg+0x8c/0xe0) [ 1754.452809][T14970] r10:00000128 r9:8383ec00 r8:845b69c0 r7:24000000 r6:200001c0 r5:845b69c1 [ 1754.452838][T14970] r4:00000004 [ 1754.452858][T14970] [<8152582c>] (__sys_sendmsg) from [<81525920>] (sys_sendmsg+0x14/0x18) [ 1754.452964][T14970] r8:8020029c r7:00000128 r6:0012fed0 r5:00000000 r4:00000000 [ 1754.452986][T14970] [<8152590c>] (sys_sendmsg) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1754.453050][T14970] Exception stack(0xec7b5fa8 to 0xec7b5ff0) [ 1754.453095][T14970] 5fa0: 00000000 00000000 00000004 200001c0 24000000 00000000 [ 1754.453140][T14970] 5fc0: 00000000 00000000 0012fed0 00000128 002d0000 00000000 00006364 76baa0bc [ 1754.453176][T14970] 5fe0: 76ba9ec0 76ba9eb0 00019384 00131f20 [ 1755.497286][ T3041] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 1755.643006][T14973] sctp: [Deprecated]: syz.0.2669 (pid 14973) Use of int in max_burst socket option deprecated. [ 1755.643006][T14973] Use struct sctp_assoc_value instead [ 1755.655050][ T31] audit: type=1400 audit(1755.570:425): avc: denied { setattr } for pid=14959 comm="syz.0.2669" name="NETLINK" dev="sockfs" ino=28813 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 1755.658253][ T3041] usb 2-1: Using ep0 maxpacket: 8 [ 1755.669324][ T3041] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 1755.683079][ T3041] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1755.683470][ T3041] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1755.683706][ T3041] usb 2-1: Product: syz [ 1755.683925][ T3041] usb 2-1: Manufacturer: Ἳ㘝ᚸ듐댉✞悦聟광⵭釲鷭틢앷謹៨⴮픐㭑趹獾ᠨ㸐▕Эݪ邟窽寗糖⯝㺢쳼ờ桅䢐毒隹퇧얀趿僕ꥑ扤˅ᚹ䗭颕趙鸝ᆥ蔬뤽蕲乽練뫤탘脐㜓剔駛㨽冷 [ 1755.684133][ T3041] usb 2-1: SerialNumber: syz [ 1755.694602][T14987] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1755.915588][ T3041] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71 [ 1755.921101][ T3041] usb 2-1: USB disconnect, device number 26 [ 1760.347525][T11901] usb 2-1: new high-speed USB device number 27 using dummy_hcd [ 1760.517325][T11901] usb 2-1: Using ep0 maxpacket: 8 [ 1760.523935][T11901] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 1760.534062][T11901] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1760.535557][T11901] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1760.536740][T11901] usb 2-1: Product: syz [ 1760.537190][T11901] usb 2-1: Manufacturer: Ἳ㘝ᚸ듐댉✞悦聟광⵭釲鷭틢앷謹៨⴮픐㭑趹獾ᠨ㸐▕Эݪ邟窽寗糖⯝㺢쳼ờ桅䢐毒隹퇧얀趿僕ꥑ扤˅ᚹ䗭颕趙鸝ᆥ蔬뤽蕲乽練뫤탘脐㜓剔駛㨽冷 [ 1760.539037][T11901] usb 2-1: SerialNumber: syz [ 1760.552629][T15049] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1760.766838][T11901] cdc_ether 2-1:1.0: probe with driver cdc_ether failed with error -71 [ 1760.776987][T11901] usb 2-1: USB disconnect, device number 27 [ 1762.002022][ T31] audit: type=1400 audit(1761.920:426): avc: denied { write } for pid=15110 comm="syz.1.2702" path="socket:[29079]" dev="sockfs" ino=29079 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 1762.907689][T15134] fuse: Unknown parameter 'fd0x0000000000000003' [ 1763.137518][T15138] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 1766.418342][T15156] FAULT_INJECTION: forcing a failure. [ 1766.418342][T15156] name failslab, interval 1, probability 0, space 0, times 0 [ 1766.418838][T15156] CPU: 1 UID: 0 PID: 15156 Comm: syz.0.2712 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1766.418929][T15156] Hardware name: ARM-Versatile Express [ 1766.418962][T15156] Call trace: [ 1766.419044][T15156] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1766.419193][T15156] r7:85150c00 r6:00000000 r5:60000113 r4:8225e950 [ 1766.419221][T15156] [<80201ae4>] (show_stack) from [<8021fdc4>] (dump_stack_lvl+0x70/0x7c) [ 1766.419307][T15156] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1766.419402][T15156] r5:85150c00 r4:82919cc0 [ 1766.419423][T15156] [<8021fdd0>] (dump_stack) from [<80966f5c>] (should_fail_ex+0x1c4/0x228) [ 1766.421540][T15156] [<80966d98>] (should_fail_ex) from [<80523644>] (should_failslab+0x6c/0x94) [ 1766.421785][T15156] r8:00000000 r7:85150c00 r6:00000cc0 r5:00000001 r4:830029c0 [ 1766.421904][T15156] [<805235d8>] (should_failslab) from [<80508050>] (kmem_cache_alloc_noprof+0x4c/0x334) [ 1766.422115][T15156] [<80508004>] (kmem_cache_alloc_noprof) from [<81a3a620>] (mas_alloc_nodes+0x74/0x214) [ 1766.422281][T15156] r10:20000000 r9:82c30640 r8:00000cc0 r7:ed359f3c r6:00000cc0 r5:00000001 [ 1766.422317][T15156] r4:ed359f3c [ 1766.422432][T15156] [<81a3a5ac>] (mas_alloc_nodes) from [<81a3a800>] (mas_node_count_gfp+0x40/0x5c) [ 1766.422608][T15156] r10:20000000 r9:20ffffff r8:20000000 r7:ed359f3c r6:00000cc0 r5:879e8500 [ 1766.422643][T15156] r4:ed359f3c [ 1766.422830][T15156] [<81a3a7c0>] (mas_node_count_gfp) from [<81a460fc>] (mas_preallocate+0x198/0x234) [ 1766.423028][T15156] [<81a45f64>] (mas_preallocate) from [<804eb390>] (commit_merge+0xd8/0x2c0) [ 1766.423155][T15156] r6:879e8500 r5:82c30644 r4:ed359e88 [ 1766.423184][T15156] [<804eb2b8>] (commit_merge) from [<804ec6cc>] (vma_modify+0x524/0x8e8) [ 1766.423401][T15156] r9:00000000 r8:879e8500 r7:20000000 r6:00000000 r5:878dc580 r4:ed359e88 [ 1766.423470][T15156] [<804ec1a8>] (vma_modify) from [<804edaa8>] (vma_modify_flags+0xb4/0xd8) [ 1766.423685][T15156] r10:842ef400 r9:00102077 r8:00100077 r7:ed359f3c r6:878dc100 r5:00000000 [ 1766.423724][T15156] r4:878dc580 [ 1766.423744][T15156] [<804ed9f4>] (vma_modify_flags) from [<804d00d0>] (mlock_fixup+0x90/0x260) [ 1766.423900][T15156] r7:20000000 r6:00000000 r5:ed359f38 r4:878dc580 [ 1766.424132][T15156] [<804d0040>] (mlock_fixup) from [<804d0790>] (apply_mlockall_flags+0xdc/0x134) [ 1766.424212][T15156] r10:00000099 r9:85150c00 r8:8020029c r7:00000099 r6:85150c00 r5:00000000 [ 1766.424314][T15156] r4:878dc580 [ 1766.424454][T15156] [<804d06b4>] (apply_mlockall_flags) from [<804d2ab0>] (sys_munlockall+0x70/0x104) [ 1766.424532][T15156] r6:85150c00 r5:00000000 r4:842ef400 [ 1766.424682][T15156] [<804d2a40>] (sys_munlockall) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1766.425043][T15156] Exception stack(0xed359fa8 to 0xed359ff0) [ 1766.425192][T15156] 9fa0: 00000000 00000000 00000000 00000000 00000000 00000000 [ 1766.425352][T15156] 9fc0: 00000000 00000000 0012fed0 00000099 002d0000 00000000 00006364 76b120bc [ 1766.425550][T15156] 9fe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1766.425694][T15156] r7:00000099 r6:0012fed0 r5:00000000 r4:00000000 [ 1766.448123][T15156] vmg ed359e88 dumped because: VM_WARN_ON_VMG(prev && start <= prev->vm_start) [ 1766.448473][T15156] vmg ed359e88 state: mm 842ef400 pgoff 20000 [ 1766.448473][T15156] vmi ed359f3c [20000000,20800000) [ 1766.448473][T15156] prev 878dc580 middle 878dc580 next 00000000 target 00000000 [ 1766.448473][T15156] start 20000000 end 20800000 flags 100077 [ 1766.448473][T15156] file 00000000 anon_vma 84517a10 policy 00000000 [ 1766.448473][T15156] uffd_ctx 00000000 [ 1766.448473][T15156] anon_name 00000000 [ 1766.448473][T15156] state 0 [ 1766.448473][T15156] just_expand 0 [ 1766.448473][T15156] __adjust_middle_start 0 __adjust_next_start 0 [ 1766.448473][T15156] __remove_middle 0 __remove_next 0 [ 1766.448586][T15156] vmg ed359e88 mm: [ 1766.448745][T15156] mm 842ef400 task_size 2130706432 [ 1766.448745][T15156] mmap_base 1995517952 mmap_legacy_base 0 [ 1766.448745][T15156] pgd 854b0f40 mm_users 4 mm_count 2 pgtables_bytes 57344 map_count 21 [ 1766.448745][T15156] hiwater_rss 0 hiwater_vm 2295 total_vm 22f8 locked_vm 800 [ 1766.448745][T15156] pinned_vm 0 data_vm 1be4 exec_vm 1df stack_vm 21 [ 1766.448745][T15156] start_code 10000 end_code 1ec374 start_data 1edd08 end_data 2bfc04 [ 1766.448745][T15156] start_brk 1787000 brk 17a9000 start_stack 7eb52e90 [ 1766.448745][T15156] arg_start 7eb52f73 arg_end 7eb52f86 env_start 7eb52f86 env_end 7eb52fee [ 1766.448745][T15156] binfmt 8292203c flags 800007fd [ 1766.448745][T15156] ioctx_table 00000000 [ 1766.448745][T15156] owner 8324bc00 exe_file 855e76c0 [ 1766.448745][T15156] notifier_subscriptions 00000000 [ 1766.448745][T15156] tlb_flush_pending 0 [ 1766.448745][T15156] def_flags: 0x0() [ 1766.449192][T15156] vmg ed359e88 prev: [ 1766.449270][T15156] vma 878dc580 start 20000000 end 20800000 mm 842ef400 [ 1766.449270][T15156] prot 75f anon_vma 84517a10 vm_ops 00000000 [ 1766.449270][T15156] pgoff 20000 file 00000000 private_data 00000000 [ 1766.449270][T15156] refcnt 1 [ 1766.449270][T15156] flags: 0x102077(read|write|exec|mayread|maywrite|mayexec|locked|account) [ 1766.449412][T15156] vmg ed359e88 middle: [ 1766.449447][T15156] vma 878dc580 start 20000000 end 20800000 mm 842ef400 [ 1766.449447][T15156] prot 75f anon_vma 84517a10 vm_ops 00000000 [ 1766.449447][T15156] pgoff 20000 file 00000000 private_data 00000000 [ 1766.449447][T15156] refcnt 1 [ 1766.449447][T15156] flags: 0x102077(read|write|exec|mayread|maywrite|mayexec|locked|account) [ 1766.449522][T15156] vmg ed359e88 next: (NULL) [ 1766.449559][T15156] vmg ed359e88 vmi: [ 1766.449635][T15156] MAS: tree=842ef440 enode=8473f70c [ 1766.449671][T15156] (ma_active) [ 1766.449705][T15156] Store Type: [ 1766.449743][T15156] node_store [ 1766.449858][T15156] [9/28] index=20000000 last=207fffff [ 1766.449955][T15156] min=0 max=ffffffff alloc=00000000, depth=0, flags=0 [ 1766.450171][T15156] maple_tree(842ef440) flags 307, height 1 root 8473f70e [ 1766.450584][T15156] 0-ffffffff: node 8473f700 depth 0 type 1 parent 842ef441 contents: 00000000 FFFF 878dc900 1ECFFF 878dc800 2B7FFF 878dc380 2BFFFF 878dcb00 E19FFF 00000000 1786FFF 878dc280 17A8FFF 00000000 1FFFEFFF 878dc100 1FFFFFFF 878dc580 207FFFFF 879e8500 20FFFFFF 878dcf00 21000FFF 00000000 31C1FFFF 878dc300 31C5FFFF 00000000 76AAFFFF 879e8080 76AB0FFF 879e8380 76AD0FFF 879e8580 76AD1FFF 879e8000 76AF1FFF 879e8f80 76AF2FFF 879e8e80 76B12FFF 878dc180 76F12FFF 00000000 7EB31FFF 878dc700 7EB52FFF 00000000 7EEECFFF 878dcf80 7EEEDFFF 878dc480 7EEF1FFF 878dc200 7EEF2FFF 00000000 FFFFFFFF 00000000 0 00000000 0 0000001c [ 1766.463335][T15156] 0-ffff: 00000000 [ 1766.463502][T15156] 10000-1ecfff: 878dc900 [ 1766.463604][T15156] 1ed000-2b7fff: 878dc800 [ 1766.463973][T15156] 2b8000-2bffff: 878dc380 [ 1766.464212][T15156] 2c0000-e19fff: 8 ** replaying previous printk message ** [ 1766.464212][T15156] 2c0000-e19fff: 878dcb00 [ 1766.464258][T15156] e1a000-1786fff: 00000000 [ 1766.464317][T15156] 1787000-17a8fff: 878dc280 [ 1766.464377][T15156] 17a9000-1fffefff: 00000000 [ 1766.464435][T15156] 1ffff000-1fffffff: 878dc100 [ 1766.464477][T15156] 20000000-207fffff: 878dc580 [ 1766.464564][T15156] 20800000-20ffffff: 879e8500 [ 1766.465032][T15156] 21000000-21000fff: 878dcf00 [ 1766.465095][T15156] 21001000-31c1ffff: 00000000 [ 1766.465152][T15156] 31c20000-31c5ffff: 878dc300 [ 1766.465195][T15156] 31c60000-76aaffff: 00000000 [ 1766.465342][T15156] 76ab0000-76ab0fff: 879e8080 [ 1766.465403][T15156] 76ab1000-76ad0fff: 879e8380 [ 1766.465512][T15156] 76ad1000-76ad1fff: 879e8580 [ 1766.465551][T15156] 76ad2000-76af1fff: 879e8000 [ 1766.465590][T15156] 76af2000-76af2fff: 879e8f80 [ 1766.465720][T15156] 76af3000-76b12fff: 879e8e80 [ 1766.465761][T15156] 76b13000-76f12fff: 878dc180 [ 1766.465853][T15156] 76f13000-7eb31fff: 00000000 [ 1766.465916][T15156] 7eb32000-7eb52fff: 878dc700 [ 1766.466014][T15156] 7eb53000-7eeecfff: 00000000 [ 1766.477330][T15156] 7eeed000-7eeedfff: 878dcf80 [ 1766.477443][T15156] 7eeee000-7eef1fff: 878dc480 [ 1766.477530][T15156] 7eef2000-7eef2fff: 878dc200 [ 1766.477612][T15156] 7eef3000-ffffffff: 00000000 [ 1766.477931][T15156] ------------[ cut here ]------------ [ 1766.478332][T15156] WARNING: CPU: 1 PID: 15156 at mm/vma.c:821 vma_modify+0x1d4/0x8e8 [ 1766.485065][T15156] Modules linked in: [ 1766.486227][T15156] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1766.486906][T15156] CPU: 1 UID: 0 PID: 15156 Comm: syz.0.2712 Not tainted 6.16.0-rc1-syzkaller #0 PREEMPT [ 1766.487724][T15156] Hardware name: ARM-Versatile Express [ 1766.488085][T15156] Call trace: [ 1766.488913][T15156] [<80201a00>] (dump_backtrace) from [<80201afc>] (show_stack+0x18/0x1c) [ 1766.489986][T15156] r7:00000000 r6:828208bc r5:00000000 r4:8225e950 [ 1766.490210][T15156] [<80201ae4>] (show_stack) from [<8021fda8>] (dump_stack_lvl+0x54/0x7c) [ 1766.491098][T15156] [<8021fd54>] (dump_stack_lvl) from [<8021fde8>] (dump_stack+0x18/0x1c) [ 1766.491742][T15156] r5:00000000 r4:82a6fd18 [ 1766.491999][T15156] [<8021fdd0>] (dump_stack) from [<80202614>] (panic+0x120/0x374) [ 1766.492385][T15156] [<802024f4>] (panic) from [<802585b8>] (get_taint+0x0/0x1c) [ 1766.492834][T15156] r3:8280c684 r2:00000001 r1:82245488 r0:8224ce38 [ 1766.493151][T15156] r7:804ec37c [ 1766.493336][T15156] [<80258544>] (check_panic_on_warn) from [<8025871c>] (__warn+0x80/0x188) [ 1766.493726][T15156] [<8025869c>] (__warn) from [<8025899c>] (warn_slowpath_fmt+0x178/0x1f4) [ 1766.494137][T15156] r8:00000009 r7:8227a028 r6:ed359e04 r5:85150c00 r4:00000000 [ 1766.494468][T15156] [<80258828>] (warn_slowpath_fmt) from [<804ec37c>] (vma_modify+0x1d4/0x8e8) [ 1766.494948][T15156] r10:00000001 r9:00102077 r8:00100077 r7:20000000 r6:878dc580 r5:878dc580 [ 1766.495297][T15156] r4:ed359e88 [ 1766.495477][T15156] [<804ec1a8>] (vma_modify) from [<804edaa8>] (vma_modify_flags+0xb4/0xd8) [ 1766.496004][T15156] r10:842ef400 r9:00102077 r8:00100077 r7:ed359f3c r6:878dc580 r5:00000000 [ 1766.496530][T15156] r4:878dc580 [ 1766.496830][T15156] [<804ed9f4>] (vma_modify_flags) from [<804d00d0>] (mlock_fixup+0x90/0x260) [ 1766.497302][T15156] r7:20000000 r6:00000000 r5:ed359f38 r4:878dc580 [ 1766.497584][T15156] [<804d0040>] (mlock_fixup) from [<804d0790>] (apply_mlockall_flags+0xdc/0x134) [ 1766.497999][T15156] r10:00000099 r9:85150c00 r8:8020029c r7:00000099 r6:85150c00 r5:00000000 [ 1766.498364][T15156] r4:878dc580 [ 1766.498552][T15156] [<804d06b4>] (apply_mlockall_flags) from [<804d2ab0>] (sys_munlockall+0x70/0x104) [ 1766.499023][T15156] r6:85150c00 r5:00000000 r4:842ef400 [ 1766.499280][T15156] [<804d2a40>] (sys_munlockall) from [<80200060>] (ret_fast_syscall+0x0/0x1c) [ 1766.499659][T15156] Exception stack(0xed359fa8 to 0xed359ff0) [ 1766.499978][T15156] 9fa0: 00000000 00000000 00000000 00000000 00000000 00000000 [ 1766.500370][T15156] 9fc0: 00000000 00000000 0012fed0 00000099 002d0000 00000000 00006364 76b120bc [ 1766.500816][T15156] 9fe0: 76b11ec0 76b11eb0 00019384 00131f20 [ 1766.501077][T15156] r7:00000099 r6:0012fed0 r5:00000000 r4:00000000 [ 1766.504178][T15156] Rebooting in 86400 seconds.. VM DIAGNOSIS: 11:00:28 Registers: info registers vcpu 0 CPU#0 R00=00000000 R01=00000000 R02=00000004 R03=81a5e140 R04=00000006 R05=828f8e48 R06=00000000 R07=828f8e40 R08=8281b580 R09=00000028 R10=828f8e48 R11=82801d14 R12=82801d18 R13=82801d08 R14=803408fc R15=81a5e150 PSR=60000193 -ZC- A S svc32 s00=20000000 s01=00000000 d00=0000000020000000 s02=c4000000 s03=fff3787a d01=fff3787ac4000000 s04=fc000000 s05=ffffffff d02=fffffffffc000000 s06=fc000000 s07=ffffffff d03=fffffffffc000000 s08=fe392183 s09=00ca0d15 d04=00ca0d15fe392183 s10=ffffffff s11=00000000 d05=00000000ffffffff s12=ff7935d3 s13=ff29556c d06=ff29556cff7935d3 s14=ffffffff s15=ffffffff d07=ffffffffffffffff s16=00000000 s17=0cc3de9a d08=0cc3de9a00000000 s18=94000000 s19=00035cf0 d09=00035cf094000000 s20=01f4435d s21=ff29556e d10=ff29556e01f4435d s22=00000000 s23=ffffffff d11=ffffffff00000000 s24=20392183 s25=00000000 d12=0000000020392183 s26=c4000000 s27=fff3787a d13=fff3787ac4000000 s28=02000000 s29=00000000 d14=0000000002000000 s30=02000000 s31=00000000 d15=0000000002000000 s32=feb88803 s33=ff1aa6a4 d16=ff1aa6a4feb88803 s34=ffffffff s35=ffffffff d17=ffffffffffffffff s36=fe6a1478 s37=005bd91e d18=005bd91efe6a1478 s38=ffffffff s39=00000000 d19=00000000ffffffff s40=01000000 s41=00000000 d20=0000000001000000 s42=050b68de s43=00000000 d21=00000000050b68de s44=00000008 s45=00000000 d22=0000000000000008 s46=01ae784a s47=00000000 d23=0000000001ae784a s48=01565143 s49=0cc3de9a d24=0cc3de9a01565143 s50=1ff2ed7e s51=00000000 d25=000000001ff2ed7e s52=01656385 s53=00a86870 d26=00a8687001656385 s54=fe6eb5f0 s55=00c10b44 d27=00c10b44fe6eb5f0 s56=ffe52085 s57=fe03c078 d28=fe03c078ffe52085 s58=ff01e03c s59=fe6eb5f0 d29=fe6eb5f0ff01e03c s60=c5cce681 s61=fff3787a d30=fff3787ac5cce681 s62=7e463405 s63=ffd8f34e d31=ffd8f34e7e463405 FPSCR: 00000000 info registers vcpu 1 CPU#1 R00=3ffff1f2 R01=bffff1f2 R02=3ffff1f2 R03=80000193 R04=ed359bf0 R05=00000046 R06=dddd83d5 R07=00000000 R08=00000000 R09=00000000 R10=828284d0 R11=ed359b98 R12=00000000 R13=ed359b84 R14=0000000c R15=802e9064 PSR=60000193 -ZC- A S svc32 s00=00000000 s01=00000000 d00=0000000000000000 s02=00000000 s03=00000000 d01=0000000000000000 s04=00000000 s05=00000000 d02=0000000000000000 s06=00000000 s07=00000000 d03=0000000000000000 s08=00000000 s09=00000000 d04=0000000000000000 s10=00000000 s11=00000000 d05=0000000000000000 s12=00000000 s13=00000000 d06=0000000000000000 s14=00000000 s15=00000000 d07=0000000000000000 s16=00000000 s17=00000000 d08=0000000000000000 s18=00000000 s19=00000000 d09=0000000000000000 s20=00000000 s21=00000000 d10=0000000000000000 s22=00000000 s23=00000000 d11=0000000000000000 s24=00000000 s25=00000000 d12=0000000000000000 s26=00000000 s27=00000000 d13=0000000000000000 s28=00000000 s29=00000000 d14=0000000000000000 s30=00000000 s31=00000000 d15=0000000000000000 s32=00000000 s33=00000000 d16=0000000000000000 s34=00000000 s35=00000000 d17=0000000000000000 s36=00000000 s37=00000000 d18=0000000000000000 s38=00000000 s39=00000000 d19=0000000000000000 s40=00000000 s41=00000000 d20=0000000000000000 s42=00000000 s43=00000000 d21=0000000000000000 s44=00000000 s45=00000000 d22=0000000000000000 s46=00000000 s47=00000000 d23=0000000000000000 s48=00000000 s49=00000000 d24=0000000000000000 s50=00000000 s51=00000000 d25=0000000000000000 s52=00000000 s53=00000000 d26=0000000000000000 s54=00000000 s55=00000000 d27=0000000000000000 s56=00000000 s57=00000000 d28=0000000000000000 s58=00000000 s59=00000000 d29=0000000000000000 s60=00000000 s61=00000000 d30=0000000000000000 s62=00000000 s63=00000000 d31=0000000000000000 FPSCR: 00000000