last executing test programs: 3.678331614s ago: executing program 0 (id=9128): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000540)={0x74, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_MAC={0xa, 0x6, @from_mac}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x8000}, @NL80211_ATTR_WIPHY_CHANNEL_TYPE={0x8, 0x27, 0x1}, @NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x1711}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x2}, @NL80211_ATTR_CENTER_FREQ1={0x8, 0xa0, 0x6}, @NL80211_ATTR_CENTER_FREQ2={0x8, 0xa1, 0x8}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x28}]]}, 0x74}}, 0x0) 2.946957912s ago: executing program 0 (id=9129): r0 = memfd_create(&(0x7f0000001dc0)='\xfd\x0fm3#/\x00n\xaa\xaa\xe4\x01U\x8b\xc2\f\x03\x19\x9c\x8e\xcb\x90\x00\x00\xaegQ\x0e\x94\\y\x0fU2@\'\x8a\x80\x00$\x12\xfc\xe4.)\x9b\xf2@\xf0\xe0\xdb\x1f\xe6\xb4gc\x13\xda\xf9\xcd7el\xb7\xe6\b\x00\x00\x00\x00\xef\xff\x00vob/~\xc2\x00\b\x00\x00\x00\x00\x00\x00 \xff\xf1\xdem\x9c;%\xb5\"\xe4\xf1x2\x8a\x19p\x04\\\xaa-\x93\xd1\xc4 )\xbfK\xf7E\xf3\x05\xa0\xd0\xe6%\x97\x15\xf0\xab\x86\x90k\x10\xcer\x14\xe0a\xaf\xab\xfe\xd9V\x19\xa5d\x16\x8e]:3\xff\t\xe6\xf7\xb3\xbf\xa3\b[?\xb5\x14t\xd3\x8e\xc0\xe8\xefd\x88\xddz\xa25)\x17\xef\xfb4\xff\xdb\t\x8e\xeb\x1d\\\xf9\x14\xc7\v\xa8\x89\xdb A\xbaBAj\xfe\x18\xc3-+\xd6\xb0K\xee\x1b+\xc7lA\x84\xa6\xfe\x8bU<&\x1a\xe7m\x86\xb7\xa1A\xf9\x02S;C\x99\a.$K\x833\x82\x7f\x1b\'nj\x06\b\xb7\xe8] \x87A[y\xdc\x14\f\xcet\x00\x1f\x0f\xef\xca\xcfz\x7f\an0\xebB\xb8}&\xdd\xc9\xa7\x1dp\t\x9a\xceb \x81\xaaq{H\x88\xdf\xf8\x80\\\x1c8\xfe\xc4\xe3\xb0\x90\xcb\x8b1r\x94\x9f\x00\xce\xc8\xc3\x84\xa0\xc9\b\x00\x81Ks\xba\xbbC6\xd6\x13\xb5\xe086EzD\x18\xd5\x16\x88E\xc6\xf0A9\xf1u\xb3\x85\x02\x12\\Sp\xf4\x9a\xe8\x96^\xe6\xa8K\x12\b}\xff\xcb{\xc6\xf6\xb4\x8b\xb6\xa8Y\xf2\x91\xeeR\v#\xb5)\xb0\x99\x9b-p\xe3\x17\x04\xb0\xdc\x0fk\x11\xe1\x9a\a\x16\xb7\x9b\x88\xfa\x1e`\x84$\xfc\xd7\xf5^X\xd8[}\x032\xd0\x84\xdby\x94Vp\xa5\xcd(\xab\xb6\x95sR\xab\xfc\x8c\'\x9c\x16Q\xad\xbc\xb04%\xb7\xe5\x14\xb1`\x87#\xbd\n/\xb2\'\x16X\\W`;\'_4\xc5\xc9\x921<\xd9\xad\x9f\x12@!\xfaI\x88\xab\xef\x86\xe9\a>\x007\xb7\x8e\x9c0-o\xc9\xec_|\x02\xc8Ru\x95\xa8#U\xd6J\x87\xf6X\xb6{\x11$\x00\xc8\x14\xcb\xd1nK\xd8\xb9\x0e\x9bA\xed\xbcs\x1fS\r\x12O\x83\x15\xcb(\xdb\xb1S\x1f%\x04\x9a\xa0l\xa3}\xe7r\x02\x00\x00\x00\x8aeh;F[\xe2\x1c0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000300)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 2.097334673s ago: executing program 0 (id=9131): write$FUSE_IOCTL(0xffffffffffffffff, 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) r0 = io_uring_setup(0x177f, &(0x7f0000000340)) r1 = socket(0x1d, 0x2, 0x6) r2 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f00000000c0)={'vxcan0\x00', 0x0}) bind$can_j1939(r1, &(0x7f0000000100)={0x1d, r3, 0x102}, 0x18) syz_genetlink_get_family_id$ethtool(&(0x7f0000000180), r1) close_range(r0, 0xffffffffffffffff, 0x0) syz_usb_connect$cdc_ecm(0x0, 0x0, 0x0, 0x0) 787.683451ms ago: executing program 1 (id=9140): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)={0x40, 0x2, 0x6, 0xd01, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}]}, 0x40}}, 0x0) 678.145231ms ago: executing program 0 (id=9141): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bridge0\x00', 0x0}) r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad413ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00', r3}, 0x10) sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)=ANY=[@ANYBLOB="2400000070000100000000000000000007000000", @ANYRES32=r2, @ANYBLOB="0c000280060001"], 0x24}}, 0x0) 565.777372ms ago: executing program 1 (id=9142): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000007c0)=ANY=[@ANYBLOB="340000003a000b0000000000000000000400000008000080040008"], 0x34}}, 0x0) 475.04919ms ago: executing program 1 (id=9143): r0 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000002c0)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0) ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x639) 378.008528ms ago: executing program 1 (id=9144): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) close(r0) r1 = socket$inet6_mptcp(0xa, 0x1, 0x106) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @local, 0xb}, 0x1c) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0) listen(r1, 0x0) syz_emit_ethernet(0x4a, &(0x7f00000002c0)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x5, 0xc2}}}}}}}, 0x0) 186.855564ms ago: executing program 1 (id=9145): bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x0, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000084000000b700000000000000950000000000000096ac8bc521294b74a1b3634f1a07f4e5319878843bc21133fe80d4dcf2afbe3907a9aa4def44dd4f29c940ff467a588a8ec9ac870def738ab8cbb6eb55c194ecdcfdd1af8ea3afb6ae5bdf7598b3ce989286e1cfaf668445e928df864606ff9241eb32cacb489f295c72e03e9e8b15fe5f791a7c28a04a268eacb3d4e3893b68d791e4cadcdcf488be"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x5, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000004c0), &(0x7f00000001c0), 0x5, r0}, 0x38) 3.681789ms ago: executing program 1 (id=9146): r0 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) pipe2$watch_queue(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0x0) keyctl$KEYCTL_WATCH_KEY(0x20, r0, r1, 0xffffffffffffffff) add_key$user(&(0x7f0000000040), &(0x7f00000000c0)={'syz', 0x3}, &(0x7f00000002c0)='\bpK', 0x3, r0) 0s ago: executing program 0 (id=9147): bpf$MAP_LOOKUP_ELEM(0x1, 0x0, 0x0) bpf$MAP_CREATE(0x2000000000000000, &(0x7f0000000140)=@base={0xa, 0x4, 0x8000, 0x5c, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xfffffffe, 0x0, 0x0, @void, @value, @void, @value}, 0x48) kernel console output (not intermixed with test programs): 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6513.552869][T31425] coredump: 6839(syz.0.8039): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6515.587481][T31445] fuse: Bad value for 'user_id' [ 6515.587999][T31445] fuse: Bad value for 'user_id' [ 6516.253850][T31441] coredump: 1609(syz.1.8044): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6520.651543][T31455] coredump: 1621(syz.1.8050): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6522.302824][T31452] coredump: 1618(syz.1.8049): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6525.748684][T31468] coredump: 6855(syz.0.8053): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6526.427262][T31462] coredump: 1625(syz.1.8051): written to core: VMAs: 18, size 38371328; core: 38245240 bytes, pos 38379520 [ 6530.221740][T31496] coredump: 6872(syz.0.8060): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6532.750572][T31517] coredump: 1634(syz.1.8066): written to core: VMAs: 17, size 38170624; core: 9245543 bytes, pos 38178816 [ 6532.977503][T31524] coredump: 6886(syz.0.8069): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6533.745106][T31526] coredump: 1640(syz.1.8068): written to core: VMAs: 18, size 40468480; core: 11355001 bytes, pos 40476672 [ 6533.841231][T31513] coredump: 1631(syz.1.8065): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6534.732500][T31530] FAULT_INJECTION: forcing a failure. [ 6534.732500][T31530] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6534.733648][T31530] CPU: 1 UID: 0 PID: 31530 Comm: syz.0.8071 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6534.734655][T31530] Tainted: [B]=BAD_PAGE [ 6534.735248][T31530] Hardware name: linux,dummy-virt (DT) [ 6534.736215][T31530] Call trace: [ 6534.736688][T31530] dump_backtrace+0x94/0xec [ 6534.737327][T31530] show_stack+0x18/0x24 [ 6534.737897][T31530] dump_stack_lvl+0x78/0x90 [ 6534.738510][T31530] dump_stack+0x18/0x24 [ 6534.739090][T31530] should_fail_ex+0x18c/0x1e0 [ 6534.739922][T31530] should_fail+0x14/0x20 [ 6534.740541][T31530] should_fail_usercopy+0x1c/0x28 [ 6534.741165][T31530] simple_read_from_buffer+0x68/0x118 [ 6534.741800][T31530] proc_fail_nth_read+0xac/0x12c [ 6534.742446][T31530] vfs_read+0xc0/0x318 [ 6534.743050][T31530] ksys_read+0x70/0x104 [ 6534.743634][T31530] __arm64_sys_read+0x1c/0x28 [ 6534.744279][T31530] invoke_syscall+0x48/0x110 [ 6534.744870][T31530] el0_svc_common.constprop.0+0x40/0xe0 [ 6534.745537][T31530] do_el0_svc+0x1c/0x28 [ 6534.746116][T31530] el0_svc+0x34/0xec [ 6534.746677][T31530] el0t_64_sync_handler+0x100/0x12c [ 6534.747358][T31530] el0t_64_sync+0x19c/0x1a0 [ 6536.858434][T31541] coredump: 6898(syz.0.8074): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6537.762721][T31544] coredump: 1643(syz.1.8075): written to core: VMAs: 16, size 40337408; core: 11342601 bytes, pos 40345600 [ 6538.142470][T31548] netlink: 932 bytes leftover after parsing attributes in process `syz.0.8076'. [ 6538.220261][T31549] coredump: 6901(syz.0.8076): coredump has not been created, error -13 [ 6539.035777][T31552] coredump: 6904(syz.0.8077): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6539.092096][ T30] audit: type=1326 audit(6538.820:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31542 comm="syz.1.8075" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6541.058722][T31564] coredump: 6912(syz.0.8080): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6542.124377][T31571] coredump: 1649(syz.1.8082): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6543.277366][T31586] coredump: 1656(syz.1.8087): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6544.347180][T31584] coredump: 6920(syz.0.8086): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6546.609250][T31609] coredump: 6934(syz.0.8092): written to core: VMAs: 18, size 38240256; core: 9278421 bytes, pos 38248448 [ 6546.733327][T31594] coredump: 6924(syz.0.8089): written to core: VMAs: 16, size 40337408; core: 11363081 bytes, pos 40345600 [ 6547.944357][T31614] coredump: 6938(syz.0.8093): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6549.714784][T31632] coredump: 6946(syz.0.8098): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6550.466690][T31635] coredump: 1671(syz.1.8099): written to core: VMAs: 16, size 21463040; core: 9245497 bytes, pos 21471232 [ 6550.686557][T31640] coredump: 1676(syz.1.8101): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6552.470444][T31624] coredump: 6941(syz.0.8094): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6553.000871][ C1] vkms_vblank_simulate: vblank timer overrun [ 6553.752546][T31655] coredump: 1683(syz.1.8104): written to core: VMAs: 18, size 38371328; core: 9266041 bytes, pos 38379520 [ 6555.014559][T31668] coredump: 1692(syz.1.8108): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6555.021433][T31670] coredump: 6952(syz.0.8106): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6555.346068][T31672] 8021q: VLANs not supported on lo [ 6556.212610][T31679] coredump: 6955(syz.0.8109): written to core: VMAs: 16, size 38240256; core: 9147145 bytes, pos 38248448 [ 6557.439170][T31689] coredump: 1706(syz.1.8113): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6558.085292][T31693] FAULT_INJECTION: forcing a failure. [ 6558.085292][T31693] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6558.087584][T31693] CPU: 0 UID: 0 PID: 31693 Comm: syz.1.8115 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6558.089321][T31693] Tainted: [B]=BAD_PAGE [ 6558.090147][T31693] Hardware name: linux,dummy-virt (DT) [ 6558.091247][T31693] Call trace: [ 6558.091880][T31693] dump_backtrace+0x94/0xec [ 6558.093681][T31693] show_stack+0x18/0x24 [ 6558.094432][T31693] dump_stack_lvl+0x78/0x90 [ 6558.095226][T31693] dump_stack+0x18/0x24 [ 6558.095904][T31693] should_fail_ex+0x18c/0x1e0 [ 6558.096592][T31693] should_fail+0x14/0x20 [ 6558.097261][T31693] should_fail_usercopy+0x1c/0x28 [ 6558.098012][T31693] simple_read_from_buffer+0x68/0x118 [ 6558.098812][T31693] proc_fail_nth_read+0xac/0x12c [ 6558.099682][T31693] vfs_read+0xc0/0x318 [ 6558.100459][T31693] ksys_read+0x70/0x104 [ 6558.101206][T31693] __arm64_sys_read+0x1c/0x28 [ 6558.102012][T31693] invoke_syscall+0x48/0x110 [ 6558.102766][T31693] el0_svc_common.constprop.0+0x40/0xe0 [ 6558.103601][T31693] do_el0_svc+0x1c/0x28 [ 6558.104363][T31693] el0_svc+0x34/0xec [ 6558.105096][T31693] el0t_64_sync_handler+0x100/0x12c [ 6558.105804][T31693] el0t_64_sync+0x19c/0x1a0 [ 6558.263807][T31682] coredump: 1700(syz.1.8111): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6559.060691][T31696] coredump: 1713(syz.1.8116): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6559.608368][T31686] coredump: 1703(syz.1.8112): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6560.027071][T31697] coredump: 6957(syz.0.8109): written to core: VMAs: 18, size 38371328; core: 9278329 bytes, pos 38379520 [ 6560.734242][T31703] coredump: 6960(syz.0.8118): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6562.178862][T31706] coredump: 1718(syz.1.8117): written to core: VMAs: 21, size 38502400; core: 9266208 bytes, pos 38510592 [ 6562.262768][T31714] coredump: 6967(syz.0.8121): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6563.053292][T31717] coredump: 6970(syz.0.8122): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6563.890456][T31720] coredump: 1721(syz.1.8123): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6564.592083][T22620] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 6564.926555][T31728] coredump: 1726(syz.1.8126): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6564.931091][T22620] usb 1-1: device descriptor read/64, error -71 [ 6565.191150][T22620] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 6565.342377][T22620] usb 1-1: device descriptor read/64, error -71 [ 6565.455111][T22620] usb usb1-port1: attempt power cycle [ 6565.820538][T22620] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 6565.848207][T22620] usb 1-1: device descriptor read/8, error -71 [ 6566.101267][T22620] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 6566.132461][T22620] usb 1-1: device descriptor read/8, error -71 [ 6566.173554][T31734] coredump: 1732(syz.1.8128): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6566.244346][T22620] usb usb1-port1: unable to enumerate USB device [ 6567.484246][T31739] coredump: 1737(syz.1.8130): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6571.296358][T31745] coredump: 1743(syz.1.8132): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6572.983906][T31750] coredump: 1747(syz.1.8133): written to core: VMAs: 18, size 38371328; core: 9286521 bytes, pos 38379520 [ 6575.516070][T31758] coredump: 6976(syz.0.8135): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6576.218673][T31764] coredump: 1754(syz.1.8137): written to core: VMAs: 16, size 34308096; core: 5313289 bytes, pos 34316288 [ 6576.284669][T31763] FAULT_INJECTION: forcing a failure. [ 6576.284669][T31763] name failslab, interval 1, probability 0, space 0, times 0 [ 6576.286060][T31763] CPU: 1 UID: 0 PID: 31763 Comm: syz.1.8137 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6576.287300][T31763] Tainted: [B]=BAD_PAGE [ 6576.287889][T31763] Hardware name: linux,dummy-virt (DT) [ 6576.288568][T31763] Call trace: [ 6576.289080][T31763] dump_backtrace+0x94/0xec [ 6576.289974][T31763] show_stack+0x18/0x24 [ 6576.290644][T31763] dump_stack_lvl+0x78/0x90 [ 6576.291308][T31763] dump_stack+0x18/0x24 [ 6576.291945][T31763] should_fail_ex+0x18c/0x1e0 [ 6576.292807][T31763] should_failslab+0x54/0x80 [ 6576.293479][T31763] __kmalloc_node_track_caller_noprof+0xac/0x37c [ 6576.294344][T31763] kstrdup+0x48/0x90 [ 6576.294982][T31763] smack_inode_init_security+0x180/0x1d8 [ 6576.295733][T31763] security_inode_init_security+0xd0/0x1c0 [ 6576.296545][T31763] shmem_symlink+0x98/0x2dc [ 6576.297207][T31763] vfs_symlink+0x154/0x1fc [ 6576.297837][T31763] do_symlinkat+0x11c/0x14c [ 6576.298483][T31763] __arm64_sys_symlinkat+0x48/0x60 [ 6576.299176][T31763] invoke_syscall+0x48/0x110 [ 6576.300065][T31763] el0_svc_common.constprop.0+0x40/0xe0 [ 6576.300814][T31763] do_el0_svc+0x1c/0x28 [ 6576.301463][T31763] el0_svc+0x34/0xec [ 6576.302124][T31763] el0t_64_sync_handler+0x100/0x12c [ 6576.302832][T31763] el0t_64_sync+0x19c/0x1a0 [ 6577.544168][T31779] coredump: 1762(syz.1.8142): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6578.377966][T31772] coredump: 1757(syz.1.8139): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6579.905009][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.906236][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.907193][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.908135][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.909095][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.921124][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.922211][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.923140][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.924063][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.925054][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.926017][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.927002][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.927927][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.928879][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.960400][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.961456][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.962432][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.963413][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.964398][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.965348][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.966308][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.967241][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.968197][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.969186][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.991242][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.997256][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.998231][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6579.999187][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.008359][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.009364][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.014783][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.015729][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.016711][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.017691][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.033803][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.034892][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.035811][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.036797][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.037728][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.038678][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.055934][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.057014][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.057895][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.058823][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.074717][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.075783][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.076710][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.077600][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.078511][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.079474][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.094005][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.094953][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.095904][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.096915][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.097875][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.098845][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.120467][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.121547][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.122500][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.123433][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.124374][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.125291][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.126223][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.150947][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.152000][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.152969][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.153931][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.154894][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.155846][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.156861][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.157775][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.158744][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.167877][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.168963][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.191176][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.192255][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.193212][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.195115][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.196151][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.197105][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.198026][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.198970][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.201671][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.202700][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.203652][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.204649][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.213059][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.214078][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.215025][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.216003][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.227126][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.228524][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.234921][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.235971][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.236989][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.238006][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.239024][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.248189][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.249213][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.256813][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.257812][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.258770][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.260628][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.261607][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.262596][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.263604][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.270336][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.271390][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.272422][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.273404][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.274407][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.285734][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.286805][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.287777][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.288796][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.298995][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.304628][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.305665][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.306645][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.307642][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.308648][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.311668][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.312718][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.313669][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.314649][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.315641][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.316655][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.317675][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.318661][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.337295][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.338374][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.339355][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.352438][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.353502][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.354358][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.355321][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.356328][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.357296][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.358385][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.359413][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.371492][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.372660][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.373600][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.374766][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.375770][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.376875][T29184] hid-generic 0007:0000:FFFFFFFB.000F: unknown main item tag 0x0 [ 6580.421867][T29184] hid-generic 0007:0000:FFFFFFFB.000F: hidraw0: HID vd.4e Device [syz1] on syz0 [ 6580.839152][T31800] coredump: 1779(syz.1.8149): written to core: VMAs: 16, size 40337408; core: 11346697 bytes, pos 40345600 [ 6581.837478][T31808] coredump: 6987(syz.0.8150): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6582.392943][T31817] FAULT_INJECTION: forcing a failure. [ 6582.392943][T31817] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6582.394826][T31817] CPU: 0 UID: 0 PID: 31817 Comm: syz.0.8154 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6582.395901][T31817] Tainted: [B]=BAD_PAGE [ 6582.396524][T31817] Hardware name: linux,dummy-virt (DT) [ 6582.397162][T31817] Call trace: [ 6582.397682][T31817] dump_backtrace+0x94/0xec [ 6582.398375][T31817] show_stack+0x18/0x24 [ 6582.398994][T31817] dump_stack_lvl+0x78/0x90 [ 6582.399696][T31817] dump_stack+0x18/0x24 [ 6582.400325][T31817] should_fail_ex+0x18c/0x1e0 [ 6582.400974][T31817] should_fail+0x14/0x20 [ 6582.401604][T31817] should_fail_usercopy+0x1c/0x28 [ 6582.402301][T31817] copy_siginfo_to_user+0x20/0xec [ 6582.402966][T31817] do_signal+0x10d4/0x13c0 [ 6582.403547][T31817] do_notify_resume+0xd8/0x164 [ 6582.404219][T31817] el0_svc+0xcc/0xec [ 6582.404855][T31817] el0t_64_sync_handler+0x100/0x12c [ 6582.405462][T31817] el0t_64_sync+0x19c/0x1a0 [ 6582.518231][T31783] coredump: 1765(syz.1.8143): written to core: VMAs: 16, size 38240256; core: 9257737 bytes, pos 38248448 [ 6582.772219][T31786] coredump: 1768(syz.1.8144): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6584.033314][T31826] coredump: 7000(syz.0.8156): written to core: VMAs: 18, size 40468480; core: 11371385 bytes, pos 40476672 [ 6584.804286][T31829] coredump: 1788(syz.1.8157): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6584.964929][T31796] coredump: 1776(syz.1.8147): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6586.164792][T31839] coredump: 7003(syz.0.8159): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6586.209271][T31838] FAULT_INJECTION: forcing a failure. [ 6586.209271][T31838] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6586.211778][T31838] CPU: 1 UID: 0 PID: 31838 Comm: syz.0.8159 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6586.213321][T31838] Tainted: [B]=BAD_PAGE [ 6586.213983][T31838] Hardware name: linux,dummy-virt (DT) [ 6586.214764][T31838] Call trace: [ 6586.215406][T31838] dump_backtrace+0x94/0xec [ 6586.216245][T31838] show_stack+0x18/0x24 [ 6586.217029][T31838] dump_stack_lvl+0x78/0x90 [ 6586.217905][T31838] dump_stack+0x18/0x24 [ 6586.218648][T31838] should_fail_ex+0x18c/0x1e0 [ 6586.219970][T31838] should_fail+0x14/0x20 [ 6586.221149][T31838] should_fail_usercopy+0x1c/0x28 [ 6586.222000][T31838] simple_read_from_buffer+0x68/0x118 [ 6586.222844][T31838] proc_fail_nth_read+0xac/0x12c [ 6586.223653][T31838] vfs_read+0xc0/0x318 [ 6586.224449][T31838] ksys_read+0x70/0x104 [ 6586.225225][T31838] __arm64_sys_read+0x1c/0x28 [ 6586.225922][T31838] invoke_syscall+0x48/0x110 [ 6586.226534][T31838] el0_svc_common.constprop.0+0x40/0xe0 [ 6586.227927][T31838] do_el0_svc+0x1c/0x28 [ 6586.228957][T31838] el0_svc+0x34/0xec [ 6586.229832][T31838] el0t_64_sync_handler+0x100/0x12c [ 6586.231307][T31838] el0t_64_sync+0x19c/0x1a0 [ 6587.173045][T31847] coredump: 7006(syz.0.8162): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6587.970170][T31852] coredump: 7010(syz.0.8163): written to core: VMAs: 18, size 38371328; core: 9282425 bytes, pos 38379520 [ 6589.432235][T31855] coredump: 1801(syz.1.8164): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6590.973631][T31867] coredump: 7019(syz.0.8167): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6591.892399][T31877] coredump: 1813(syz.1.8171): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6592.508873][T31887] coredump: 7028(syz.0.8175): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6593.183155][T31892] coredump: 1817(syz.1.8176): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6595.669375][T31905] coredump: 7030(syz.0.8175): written to core: VMAs: 18, size 38371328; core: 9307001 bytes, pos 38379520 [ 6597.390749][T31917] coredump: 1833(syz.1.8182): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6598.081439][T28454] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 6598.169402][ T30] audit: type=1326 audit(6597.900:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=31915 comm="syz.1.8182" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6598.251439][T28454] usb 1-1: Using ep0 maxpacket: 32 [ 6598.328834][T28454] usb 1-1: config 1 interface 0 altsetting 1 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 6598.331542][T28454] usb 1-1: config 1 interface 0 has no altsetting 0 [ 6598.390856][T28454] usb 1-1: New USB device found, idVendor=1b96, idProduct=0012, bcdDevice= 0.40 [ 6598.392029][T28454] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 6598.393011][T28454] usb 1-1: Product: syz [ 6598.393716][T28454] usb 1-1: Manufacturer: 筋큨哱痾㢠ⴼ컕堀鞾⧾璴爝ŕ굂둓飻陿녾尊៎楙樜慭﹚祋⛑㴁ῑᄓ裚㊳㛾쮊쎻꣐므水抔΍ኣ뇸⟢∢ṃඅ涏蹒쾴뇠὘껦砑ລឍ崼᯴뻉齳롊隣렔褠⮵뀽윒箝멸쟑᤹䵙žӥ禮헗౿쩩極ㆲ盕麓햴㳋ꭠ㚛䥸꧕䏠汌섧ਫ䀨⬃威❄䒧孓㴪⽾봵ᢇ㵺誊瀭 [ 6598.398812][T28454] usb 1-1: SerialNumber: syz [ 6598.425540][T28454] usb 1-1: rejected 1 configuration due to insufficient available bus power [ 6598.426712][T28454] usb 1-1: no configuration chosen from 1 choice [ 6598.603362][T31923] coredump: 7035(syz.0.8181): written to core: VMAs: 18, size 38371328; core: 9274233 bytes, pos 38379520 [ 6601.317203][T31935] coredump: 1839(syz.1.8185): written to core: VMAs: 17, size 38240256; core: 9245555 bytes, pos 38248448 [ 6601.502619][T31937] coredump: 1841(syz.1.8185): coredump has not been created, error -2 [ 6604.968633][T31943] coredump: 1847(syz.1.8187): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6607.920045][T22620] usb 1-1: USB disconnect, device number 30 [ 6609.218832][T31960] coredump: 1857(syz.1.8189): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6610.164476][T31969] coredump: 1860(syz.1.8192): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6611.326206][T31973] coredump: 1863(syz.1.8193): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6613.578745][T31985] coredump: 1872(syz.1.8196): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6613.840548][T31977] coredump: 7051(syz.0.8191): written to core: VMAs: 26, size 40992768; core: 11412793 bytes, pos 41000960 [ 6614.138410][T31990] serio: Serial port pts0 [ 6614.678307][T31988] coredump: 1875(syz.1.8197): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6616.013204][T31997] vcan0 speed is unknown, defaulting to 1000 [ 6617.464781][T32000] coredump: 1885(syz.1.8199): written to core: VMAs: 16, size 40337408; core: 11236105 bytes, pos 40345600 [ 6618.942066][T32005] coredump: 1890(syz.1.8201): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6620.913778][T32008] coredump: 1893(syz.1.8202): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6622.919019][T32016] coredump: 1901(syz.1.8204): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6623.257537][T32028] coredump: 1913(syz.1.8209): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6623.873468][T32033] coredump: 1918(syz.1.8211): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6624.496332][T32013] coredump: 1898(syz.1.8203): written to core: VMAs: 22, size 28016640; core: 11363416 bytes, pos 28024832 [ 6624.809181][T32023] coredump: 1908(syz.1.8207): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6625.036446][ T30] audit: type=1326 audit(6624.770:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32031 comm="syz.1.8211" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6627.268899][T32047] coredump: 7060(syz.0.8214): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6628.500859][T32058] coredump: 1927(syz.1.8218): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6629.530477][T32063] coredump: 1930(syz.1.8219): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6630.976202][T32060] coredump: 7066(syz.0.8216): written to core: VMAs: 18, size 40468480; core: 40465272 bytes, pos 40476672 [ 6632.466279][T32055] coredump: 1924(syz.1.8217): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6632.640926][ T30] audit: type=1326 audit(6632.370:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32066 comm="syz.1.8221" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6632.850654][T32071] coredump: 1936(syz.1.8221): written to core: VMAs: 18, size 38371328; core: 9253753 bytes, pos 38379520 [ 6633.039294][T32039] coredump: 7055(syz.0.8212): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6633.342015][T32069] coredump: 7068(syz.0.8216): written to core: VMAs: 20, size 40599552; core: 40596456 bytes, pos 40607744 [ 6635.430704][T32081] coredump: 7074(syz.0.8223): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6635.477402][T32077] coredump: 7071(syz.0.8222): coredump has not been created, error -2 [ 6636.314234][T32089] coredump: 7079(syz.0.8226): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6636.777144][T32092] coredump: 7082(syz.0.8227): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6637.992457][T32100] coredump: 7088(syz.0.8229): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6639.310881][T32113] coredump: 7093(syz.0.8232): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6640.270692][T32116] coredump: 1951(syz.1.8233): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6641.442182][T32131] coredump: 7096(syz.0.8234): written to core: VMAs: 16, size 40337408; core: 11363081 bytes, pos 40345600 [ 6641.727880][T32097] coredump: 7085(syz.0.8228): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6642.072409][T32134] serio: Serial port pts0 [ 6644.798531][T32141] coredump: 1964(syz.1.8240): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6647.013122][T32158] coredump: 1978(syz.1.8245): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6648.141040][T32166] coredump: 1986(syz.1.8248): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6649.006015][ T30] audit: type=1326 audit(6648.740:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32164 comm="syz.1.8248" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6652.666020][T32176] coredump: 1994(syz.1.8250): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6653.941161][T32182] coredump: 2000(syz.1.8252): written to core: VMAs: 19, size 40468480; core: 11359263 bytes, pos 40476672 [ 6654.071096][T32185] coredump: 2003(syz.1.8253): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6655.042209][ T30] audit: type=1326 audit(6654.780:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32183 comm="syz.1.8253" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6658.078736][T32196] coredump: 7108(syz.0.8257): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6659.075162][T32199] coredump: 2010(syz.1.8255): written to core: VMAs: 18, size 38371328; core: 9253753 bytes, pos 38379520 [ 6660.542500][T32214] coredump: 2023(syz.1.8262): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6660.854917][T32204] coredump: 2013(syz.1.8258): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6661.279032][T32233] coredump: 2034(syz.1.8267): coredump has not been created, error -2 [ 6661.398547][T32236] serio: Serial port pts0 [ 6661.935404][T32243] trusted_key: syz.0.8271 sent an empty control message without MSG_MORE. [ 6662.999112][T32249] coredump: 7126(syz.0.8273): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6663.343131][T32241] coredump: 7119(syz.0.8270): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6663.596200][T32238] coredump: 7116(syz.0.8268): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6664.574173][T32253] coredump: 7129(syz.0.8274): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6665.367629][T32260] coredump: 7135(syz.0.8276): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6665.751801][T32264] coredump: 7138(syz.0.8277): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6666.433390][T32270] coredump: 7144(syz.0.8279): coredump has not been created, error -2 [ 6668.062917][T32277] coredump: 2042(syz.1.8281): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6668.161263][T32267] coredump: 7141(syz.0.8278): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6669.503466][T32286] coredump: 7150(syz.0.8285): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6670.499211][T32289] coredump: 2051(syz.1.8284): written to core: VMAs: 18, size 38371328; core: 9253753 bytes, pos 38379520 [ 6670.555576][T32292] coredump: 2054(syz.1.8287): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6671.536455][ T30] audit: type=1326 audit(6671.270:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32290 comm="syz.1.8287" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6671.610286][T32300] coredump: 7155(syz.0.8288): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6673.333364][T32312] coredump: 2064(syz.1.8291): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6673.714615][T32315] coredump: 2067(syz.1.8292): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6675.192362][T32319] coredump: 2071(syz.1.8293): written to core: VMAs: 18, size 38371328; core: 9282425 bytes, pos 38379520 [ 6676.242217][T32324] coredump: 2074(syz.1.8294): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6677.055414][ T30] audit: type=1326 audit(6676.790:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32322 comm="syz.1.8294" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6679.500738][T29184] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 6680.170230][T32335] coredump: 2080(syz.1.8295): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6680.413365][T29184] usb 1-1: config 1 interface 0 has no altsetting 0 [ 6680.632610][T32339] coredump: 2083(syz.1.8296): coredump has not been created, error -2 [ 6680.655304][T29184] usb 1-1: New USB device found, idVendor=0079, idProduct=1843, bcdDevice= 0.40 [ 6680.656513][T29184] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 6680.657417][T29184] usb 1-1: Product: syz [ 6680.658208][T29184] usb 1-1: Manufacturer: syz [ 6680.658960][T29184] usb 1-1: SerialNumber: syz [ 6680.852336][T32342] coredump: 2086(syz.1.8297): coredump has not been created, error -2 [ 6682.088513][T32348] coredump: 2092(syz.1.8299): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6682.976385][T32345] coredump: 2089(syz.1.8298): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6683.418188][ T30] audit: type=1326 audit(6683.150:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32346 comm="syz.1.8299" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6686.221571][T29184] usbhid 1-1:1.0: can't add hid device: -32 [ 6686.223004][T29184] usbhid 1-1:1.0: probe with driver usbhid failed with error -32 [ 6686.552483][T32354] coredump: 2098(syz.1.8300): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6687.785758][T32364] coredump: 2106(syz.1.8303): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6687.974419][T32367] coredump: 2109(syz.1.8304): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6688.337133][ T30] audit: type=1326 audit(6688.060:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32365 comm="syz.1.8304" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6688.650629][T32361] coredump: 2103(syz.1.8302): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6691.154203][T22620] usb 1-1: USB disconnect, device number 31 [ 6691.727456][T32381] coredump: 2123(syz.1.8308): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6692.905947][T32385] coredump: 2127(syz.1.8309): written to core: VMAs: 18, size 38371328; core: 9253753 bytes, pos 38379520 [ 6693.950211][T32398] coredump: 2136(syz.1.8313): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6694.483528][T32401] coredump: 2139(syz.1.8314): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6695.252943][T32404] coredump: 2142(syz.1.8315): coredump has not been created, error -2 [ 6696.210426][T32409] coredump: 2145(syz.1.8317): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6696.494010][T32412] coredump: 2148(syz.1.8318): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6696.584885][T32397] coredump: 7168(syz.0.8310): coredump has not been created, error -2 [ 6697.770387][T32415] coredump: 2151(syz.1.8319): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6697.958866][T32372] coredump: 2114(syz.1.8305): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6698.378908][T32419] coredump: 2154(syz.1.8320): coredump has not been created, error -2 [ 6699.033239][T32423] coredump: 2157(syz.1.8321): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6699.251232][T32375] coredump: 2117(syz.1.8306): written to core: VMAs: 16, size 38240256; core: 9261833 bytes, pos 38248448 [ 6700.463613][T32430] coredump: 2164(syz.1.8323): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6700.862474][T32378] coredump: 2120(syz.1.8307): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6701.481166][T32389] coredump: 2130(syz.1.8311): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6701.733124][T32421] coredump: 7172(syz.0.8316): coredump has not been created, error -2 [ 6701.962578][T32393] coredump: 2133(syz.1.8312): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6703.038880][T32448] coredump: 2177(syz.1.8328): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6703.666320][T32456] coredump: 7178(syz.0.8330): coredump has not been created, error -13 [ 6704.225931][T32454] coredump: 2181(syz.1.8329): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6704.906274][T32461] coredump: 7183(syz.0.8332): written to core: VMAs: 16, size 38240256; core: 9278217 bytes, pos 38248448 [ 6706.127491][T32466] coredump: 2186(syz.1.8334): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6706.977253][T32473] coredump: 7186(syz.0.8335): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6707.068484][T32472] FAULT_INJECTION: forcing a failure. [ 6707.068484][T32472] name failslab, interval 1, probability 0, space 0, times 0 [ 6707.070623][T32472] CPU: 1 UID: 0 PID: 32472 Comm: syz.0.8335 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6707.071951][T32472] Tainted: [B]=BAD_PAGE [ 6707.072645][T32472] Hardware name: linux,dummy-virt (DT) [ 6707.073394][T32472] Call trace: [ 6707.073950][T32472] dump_backtrace+0x94/0xec [ 6707.074724][T32472] show_stack+0x18/0x24 [ 6707.075483][T32472] dump_stack_lvl+0x78/0x90 [ 6707.076268][T32472] dump_stack+0x18/0x24 [ 6707.076882][T32472] should_fail_ex+0x18c/0x1e0 [ 6707.077537][T32472] should_failslab+0x54/0x80 [ 6707.078645][T32472] __kmalloc_noprof+0xa8/0x360 [ 6707.080142][T32472] shmem_initxattrs+0x70/0x1c8 [ 6707.080595][T32472] security_inode_init_security+0x108/0x1c0 [ 6707.081141][T32472] shmem_symlink+0x98/0x2dc [ 6707.081736][T32472] vfs_symlink+0x154/0x1fc [ 6707.082383][T32472] do_symlinkat+0x11c/0x14c [ 6707.083004][T32472] __arm64_sys_symlinkat+0x48/0x60 [ 6707.083663][T32472] invoke_syscall+0x48/0x110 [ 6707.084230][T32472] el0_svc_common.constprop.0+0x40/0xe0 [ 6707.084795][T32472] do_el0_svc+0x1c/0x28 [ 6707.085270][T32472] el0_svc+0x34/0xec [ 6707.085861][T32472] el0t_64_sync_handler+0x100/0x12c [ 6707.086575][T32472] el0t_64_sync+0x19c/0x1a0 [ 6708.003246][T32450] coredump: 7175(syz.0.8325): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6710.526155][T32480] coredump: 2193(syz.1.8339): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6712.020678][T32491] coredump: 2202(syz.1.8342): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6713.038035][T32498] coredump: 2206(syz.1.8344): written to core: VMAs: 16, size 34308096; core: 5313289 bytes, pos 34316288 [ 6713.059118][T32497] FAULT_INJECTION: forcing a failure. [ 6713.059118][T32497] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6713.060549][T32497] CPU: 1 UID: 0 PID: 32497 Comm: syz.1.8344 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6713.061172][T32497] Tainted: [B]=BAD_PAGE [ 6713.061680][T32497] Hardware name: linux,dummy-virt (DT) [ 6713.062091][T32497] Call trace: [ 6713.062379][T32497] dump_backtrace+0x94/0xec [ 6713.062760][T32497] show_stack+0x18/0x24 [ 6713.063110][T32497] dump_stack_lvl+0x78/0x90 [ 6713.063475][T32497] dump_stack+0x18/0x24 [ 6713.063822][T32497] should_fail_ex+0x18c/0x1e0 [ 6713.064317][T32497] should_fail+0x14/0x20 [ 6713.064760][T32497] should_fail_usercopy+0x1c/0x28 [ 6713.065154][T32497] __arm64_sys_sched_getaffinity+0xb0/0x120 [ 6713.065625][T32497] invoke_syscall+0x48/0x110 [ 6713.066044][T32497] el0_svc_common.constprop.0+0x40/0xe0 [ 6713.066460][T32497] do_el0_svc+0x1c/0x28 [ 6713.066815][T32497] el0_svc+0x34/0xec [ 6713.067169][T32497] el0t_64_sync_handler+0x100/0x12c [ 6713.067549][T32497] el0t_64_sync+0x19c/0x1a0 [ 6713.800900][T32501] input: syz0 as /devices/virtual/input/input97 [ 6715.688288][T32519] coredump: 7206(syz.0.8349): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6716.140934][T32529] coredump: 2220(syz.1.8352): coredump has not been created, error -17 [ 6716.733303][T32531] coredump: 2221(syz.1.8354): written to core: VMAs: 20, size 34570240; core: 5224011 bytes, pos 34586624 [ 6716.919246][T32526] coredump: 2217(syz.1.8351): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6717.012358][T32535] FAULT_INJECTION: forcing a failure. [ 6717.012358][T32535] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6717.013551][T32535] CPU: 0 UID: 0 PID: 32535 Comm: syz.1.8355 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6717.014590][T32535] Tainted: [B]=BAD_PAGE [ 6717.015156][T32535] Hardware name: linux,dummy-virt (DT) [ 6717.015816][T32535] Call trace: [ 6717.016196][T32535] dump_backtrace+0x94/0xec [ 6717.016828][T32535] show_stack+0x18/0x24 [ 6717.017437][T32535] dump_stack_lvl+0x78/0x90 [ 6717.018258][T32535] dump_stack+0x18/0x24 [ 6717.018870][T32535] should_fail_ex+0x18c/0x1e0 [ 6717.019242][T32535] should_fail+0x14/0x20 [ 6717.019914][T32535] should_fail_usercopy+0x1c/0x28 [ 6717.020839][T32535] restore_sve_fpsimd_context+0x1a0/0x3fc [ 6717.021601][T32535] restore_sigframe+0x5a8/0xaf8 [ 6717.022015][T32535] __arm64_sys_rt_sigreturn+0x80/0xb8 [ 6717.022423][T32535] invoke_syscall+0x48/0x110 [ 6717.023028][T32535] el0_svc_common.constprop.0+0x40/0xe0 [ 6717.023672][T32535] do_el0_svc+0x1c/0x28 [ 6717.024279][T32535] el0_svc+0x34/0xec [ 6717.024859][T32535] el0t_64_sync_handler+0x100/0x12c [ 6717.026339][T32535] el0t_64_sync+0x19c/0x1a0 [ 6718.258301][T32546] coredump: 2233(syz.1.8358): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6719.285611][T32554] coredump: 2239(syz.1.8360): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6719.603736][T32499] coredump: 7195(syz.0.8343): written to core: VMAs: 16, size 38240256; core: 9282313 bytes, pos 38248448 [ 6720.156306][T32558] coredump: 2243(syz.1.8361): written to core: VMAs: 16, size 34308096; core: 5313289 bytes, pos 34316288 [ 6720.191520][T32557] FAULT_INJECTION: forcing a failure. [ 6720.191520][T32557] name failslab, interval 1, probability 0, space 0, times 0 [ 6720.192849][T32557] CPU: 1 UID: 0 PID: 32557 Comm: syz.1.8361 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6720.193958][T32557] Tainted: [B]=BAD_PAGE [ 6720.194545][T32557] Hardware name: linux,dummy-virt (DT) [ 6720.195602][T32557] Call trace: [ 6720.196328][T32557] dump_backtrace+0x94/0xec [ 6720.197178][T32557] show_stack+0x18/0x24 [ 6720.197930][T32557] dump_stack_lvl+0x78/0x90 [ 6720.198760][T32557] dump_stack+0x18/0x24 [ 6720.199618][T32557] should_fail_ex+0x18c/0x1e0 [ 6720.200535][T32557] should_failslab+0x54/0x80 [ 6720.201263][T32557] kmem_cache_alloc_lru_noprof+0x5c/0x2d0 [ 6720.202089][T32557] __d_alloc+0x34/0x1b8 [ 6720.202805][T32557] d_alloc_pseudo+0x18/0x6c [ 6720.203442][T32557] alloc_file_pseudo+0x68/0x100 [ 6720.204096][T32557] sock_alloc_file+0x40/0xc8 [ 6720.204834][T32557] __sys_socket+0xd8/0x12c [ 6720.205537][T32557] __arm64_sys_socket+0x20/0x30 [ 6720.206301][T32557] invoke_syscall+0x48/0x110 [ 6720.207294][T32557] el0_svc_common.constprop.0+0x40/0xe0 [ 6720.208180][T32557] do_el0_svc+0x1c/0x28 [ 6720.208851][T32557] el0_svc+0x34/0xec [ 6720.209755][T32557] el0t_64_sync_handler+0x100/0x12c [ 6720.210620][T32557] el0t_64_sync+0x19c/0x1a0 [ 6721.156140][T32561] coredump: 7216(syz.0.8362): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6721.748171][T32565] coredump: 2247(syz.1.8363): written to core: VMAs: 18, size 38371328; core: 9253753 bytes, pos 38379520 [ 6730.720684][T32580] x_tables: duplicate underflow at hook 1 [ 6731.590383][T32585] coredump: 2258(syz.1.8368): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6732.931640][T32595] coredump: 2263(syz.1.8372): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6734.664844][T32602] bond0: (slave bond_slave_1): Error: Device is in use and cannot be enslaved [ 6736.692377][T32589] coredump: 7226(syz.0.8369): written to core: VMAs: 18, size 40468480; core: 11371385 bytes, pos 40476672 [ 6737.721289][T32613] coredump: 2276(syz.1.8377): written to core: VMAs: 18, size 40468480; core: 11359097 bytes, pos 40476672 [ 6739.780559][T32624] coredump: 2287(syz.1.8380): written to core: VMAs: 18, size 38371328; core: 9257849 bytes, pos 38379520 [ 6740.467765][T32620] coredump: 2283(syz.1.8379): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6741.077287][T32574] coredump: 2253(syz.1.8364): written to core: VMAs: 23, size 122499072; core: 122496144 bytes, pos 122507264 [ 6742.392794][T32629] coredump: 2290(syz.1.8381): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6745.303485][T32634] coredump: 2295(syz.1.8382): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6746.414733][T32640] coredump: 2301(syz.1.8384): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6747.513027][T32645] coredump: 2305(syz.1.8385): written to core: VMAs: 18, size 38371328; core: 9143161 bytes, pos 38379520 [ 6747.760087][T32648] coredump: 2308(syz.1.8386): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6748.968598][T32653] coredump: 2313(syz.1.8387): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6749.282751][T32656] coredump: 7233(syz.0.8388): coredump has not been created, error -17 [ 6750.212700][T32664] coredump: 7238(syz.0.8391): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6755.363672][T32673] coredump: 7243(syz.0.8393): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6758.117391][T32682] coredump: 7250(syz.0.8395): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6758.185232][T32678] coredump: 7246(syz.0.8394): coredump has not been created, error -2 [ 6760.497431][T32690] coredump: 2324(syz.1.8397): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6761.128776][ T30] audit: type=1326 audit(6760.860:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=32688 comm="syz.1.8397" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffab949728 code=0x0 [ 6763.734201][T32685] kvm [32685]: Failed to find VMA for hva 0x20ff1000 [ 6766.179386][T32706] coredump: 2332(syz.1.8400): written to core: VMAs: 16, size 34308096; core: 5313289 bytes, pos 34316288 [ 6766.198708][T32705] FAULT_INJECTION: forcing a failure. [ 6766.198708][T32705] name failslab, interval 1, probability 0, space 0, times 0 [ 6766.199371][T32705] CPU: 1 UID: 0 PID: 32705 Comm: syz.1.8400 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6766.200238][T32705] Tainted: [B]=BAD_PAGE [ 6766.200551][T32705] Hardware name: linux,dummy-virt (DT) [ 6766.200889][T32705] Call trace: [ 6766.201150][T32705] dump_backtrace+0x94/0xec [ 6766.201520][T32705] show_stack+0x18/0x24 [ 6766.201848][T32705] dump_stack_lvl+0x78/0x90 [ 6766.202216][T32705] dump_stack+0x18/0x24 [ 6766.202553][T32705] should_fail_ex+0x18c/0x1e0 [ 6766.202897][T32705] should_failslab+0x54/0x80 [ 6766.203240][T32705] kmem_cache_alloc_noprof+0x54/0x2c4 [ 6766.203760][T32705] alloc_empty_file+0x68/0x140 [ 6766.204266][T32705] path_openat+0x44/0x1050 [ 6766.204618][T32705] do_filp_open+0x9c/0x150 [ 6766.205129][T32705] do_sys_openat2+0xc0/0xf4 [ 6766.205670][T32705] __arm64_sys_openat+0x64/0xa4 [ 6766.206169][T32705] invoke_syscall+0x48/0x110 [ 6766.206666][T32705] el0_svc_common.constprop.0+0x40/0xe0 [ 6766.207216][T32705] do_el0_svc+0x1c/0x28 [ 6766.207682][T32705] el0_svc+0x34/0xec [ 6766.208249][T32705] el0t_64_sync_handler+0x100/0x12c [ 6766.208715][T32705] el0t_64_sync+0x19c/0x1a0 [ 6767.981979][T32703] coredump: 7262(syz.0.8399): written to core: VMAs: 18, size 38371328; core: 9274233 bytes, pos 38379520 [ 6768.083718][T32675] coredump: 2321(syz.1.8392): written to core: VMAs: 23, size 122499072; core: 122496144 bytes, pos 122507264 [ 6776.194714][T32718] coredump: 7269(syz.0.8402): coredump has not been created, error -13 [ 6781.507200][T32737] coredump: 2347(syz.1.8407): written to core: VMAs: 16, size 40337408; core: 11342601 bytes, pos 40345600 [ 6782.154501][T32740] coredump: 7278(syz.0.8406): written to core: VMAs: 18, size 38371328; core: 9274233 bytes, pos 38379520 [ 6787.811066][T32725] coredump: 2338(syz.1.8401): written to core: VMAs: 23, size 122499072; core: 122496144 bytes, pos 122507264 [ 6790.287921][T32756] coredump: 2360(syz.1.8412): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6791.393732][T32759] coredump: 2363(syz.1.8413): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6796.993615][ T300] coredump: 2370(syz.1.8415): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6799.303610][ T314] coredump: 2382(syz.1.8419): coredump has not been created, error -2 [ 6800.480544][ T308] coredump: 2376(syz.1.8417): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6800.676955][ T311] coredump: 2379(syz.1.8418): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6802.454386][ T305] coredump: 7284(syz.0.8409): interrupted: fatal signal pending [ 6802.455485][ T305] coredump: 7284(syz.0.8409): written to core: VMAs: 23, size 122499072; core: 21800080 bytes, pos 21811200 [ 6804.748422][ T330] coredump: 2394(syz.1.8424): written to core: VMAs: 16, size 34308096; core: 5313289 bytes, pos 34316288 [ 6804.781916][ T329] FAULT_INJECTION: forcing a failure. [ 6804.781916][ T329] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6804.782610][ T329] CPU: 1 UID: 0 PID: 329 Comm: syz.1.8424 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6804.783436][ T329] Tainted: [B]=BAD_PAGE [ 6804.783981][ T329] Hardware name: linux,dummy-virt (DT) [ 6804.784658][ T329] Call trace: [ 6804.785141][ T329] dump_backtrace+0x94/0xec [ 6804.785792][ T329] show_stack+0x18/0x24 [ 6804.786662][ T329] dump_stack_lvl+0x78/0x90 [ 6804.787618][ T329] dump_stack+0x18/0x24 [ 6804.788484][ T329] should_fail_ex+0x18c/0x1e0 [ 6804.789142][ T329] should_fail+0x14/0x20 [ 6804.790047][ T329] should_fail_usercopy+0x1c/0x28 [ 6804.790943][ T329] strncpy_from_user+0x24/0x198 [ 6804.791927][ T329] getname_flags.part.0+0x48/0x1bc [ 6804.792699][ T329] getname+0x34/0x5c [ 6804.793318][ T329] do_sys_openat2+0x80/0xf4 [ 6804.793967][ T329] __arm64_sys_openat+0x64/0xa4 [ 6804.794670][ T329] invoke_syscall+0x48/0x110 [ 6804.795422][ T329] el0_svc_common.constprop.0+0x40/0xe0 [ 6804.796068][ T329] do_el0_svc+0x1c/0x28 [ 6804.796735][ T329] el0_svc+0x34/0xec [ 6804.797418][ T329] el0t_64_sync_handler+0x100/0x12c [ 6804.798136][ T329] el0t_64_sync+0x19c/0x1a0 [ 6805.485621][ T327] coredump: 2391(syz.1.8423): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6808.838206][ T346] coredump: 2405(syz.1.8429): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6809.987802][ T349] coredump: 2408(syz.1.8430): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6810.426457][ T342] coredump: 2402(syz.1.8428): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6814.498930][ T372] coredump: 2430(syz.1.8437): written to core: VMAs: 16, size 40337408; core: 11342601 bytes, pos 40345600 [ 6814.598862][ T359] coredump: 2417(syz.1.8433): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6818.361741][ T389] coredump: 2440(syz.1.8443): written to core: VMAs: 16, size 38240256; core: 9245449 bytes, pos 38248448 [ 6818.558321][ T392] coredump: 2443(syz.1.8444): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6819.781643][ T405] coredump: 7308(syz.0.8449): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6819.821768][ T404] FAULT_INJECTION: forcing a failure. [ 6819.821768][ T404] name failslab, interval 1, probability 0, space 0, times 0 [ 6819.823032][ T404] CPU: 1 UID: 0 PID: 404 Comm: syz.0.8449 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6819.824088][ T404] Tainted: [B]=BAD_PAGE [ 6819.824639][ T404] Hardware name: linux,dummy-virt (DT) [ 6819.825264][ T404] Call trace: [ 6819.825773][ T404] dump_backtrace+0x94/0xec [ 6819.826459][ T404] show_stack+0x18/0x24 [ 6819.827087][ T404] dump_stack_lvl+0x78/0x90 [ 6819.827745][ T404] dump_stack+0x18/0x24 [ 6819.828425][ T404] should_fail_ex+0x18c/0x1e0 [ 6819.829078][ T404] should_failslab+0x54/0x80 [ 6819.829918][ T404] __kmalloc_cache_noprof+0x54/0x2e4 [ 6819.830703][ T404] landlock_create_ruleset+0x58/0xf0 [ 6819.831522][ T404] __arm64_sys_landlock_create_ruleset+0x138/0x224 [ 6819.832594][ T404] invoke_syscall+0x48/0x110 [ 6819.833381][ T404] el0_svc_common.constprop.0+0x40/0xe0 [ 6819.834162][ T404] do_el0_svc+0x1c/0x28 [ 6819.834775][ T404] el0_svc+0x34/0xec [ 6819.835366][ T404] el0t_64_sync_handler+0x100/0x12c [ 6819.836046][ T404] el0t_64_sync+0x19c/0x1a0 [ 6820.726290][ T409] coredump: 7311(syz.0.8450): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6821.167713][ T402] coredump: 7305(syz.0.8448): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6822.837995][ T415] coredump: 7313(syz.0.8450): written to core: VMAs: 18, size 38371328; core: 9307001 bytes, pos 38379520 [ 6823.615377][ T425] FAULT_INJECTION: forcing a failure. [ 6823.615377][ T425] name failslab, interval 1, probability 0, space 0, times 0 [ 6823.616052][ T425] CPU: 1 UID: 0 PID: 425 Comm: syz.0.8454 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6823.616635][ T425] Tainted: [B]=BAD_PAGE [ 6823.616916][ T425] Hardware name: linux,dummy-virt (DT) [ 6823.617238][ T425] Call trace: [ 6823.617491][ T425] dump_backtrace+0x94/0xec [ 6823.617829][ T425] show_stack+0x18/0x24 [ 6823.618151][ T425] dump_stack_lvl+0x78/0x90 [ 6823.618479][ T425] dump_stack+0x18/0x24 [ 6823.618869][ T425] should_fail_ex+0x18c/0x1e0 [ 6823.619302][ T425] should_failslab+0x54/0x80 [ 6823.619643][ T425] __kmalloc_noprof+0xa8/0x360 [ 6823.619980][ T425] tomoyo_encode2+0x7c/0x140 [ 6823.620351][ T425] tomoyo_realpath_from_path+0x9c/0x1d0 [ 6823.620720][ T425] tomoyo_path_number_perm+0xd8/0x224 [ 6823.621085][ T425] tomoyo_file_ioctl+0x1c/0x28 [ 6823.621428][ T425] security_file_ioctl+0x8c/0x19c [ 6823.621778][ T425] __arm64_sys_ioctl+0x4c/0xf0 [ 6823.622153][ T425] invoke_syscall+0x48/0x110 [ 6823.622495][ T425] el0_svc_common.constprop.0+0x40/0xe0 [ 6823.622860][ T425] do_el0_svc+0x1c/0x28 [ 6823.623186][ T425] el0_svc+0x34/0xec [ 6823.623508][ T425] el0t_64_sync_handler+0x100/0x12c [ 6823.623856][ T425] el0t_64_sync+0x19c/0x1a0 [ 6823.650033][ T425] ERROR: Out of memory at tomoyo_realpath_from_path. [ 6824.584625][ T429] coredump: 7324(syz.0.8455): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6825.812404][ T422] coredump: 7318(syz.0.8453): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6826.857181][ T446] coredump: 2458(syz.1.8459): written to core: VMAs: 16, size 34308096; core: 5317385 bytes, pos 34316288 [ 6826.894026][ T445] FAULT_INJECTION: forcing a failure. [ 6826.894026][ T445] name failslab, interval 1, probability 0, space 0, times 0 [ 6826.895159][ T445] CPU: 1 UID: 0 PID: 445 Comm: syz.1.8459 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6826.896243][ T445] Tainted: [B]=BAD_PAGE [ 6826.896782][ T445] Hardware name: linux,dummy-virt (DT) [ 6826.897387][ T445] Call trace: [ 6826.897871][ T445] dump_backtrace+0x94/0xec [ 6826.898582][ T445] show_stack+0x18/0x24 [ 6826.899224][ T445] dump_stack_lvl+0x78/0x90 [ 6826.900070][ T445] dump_stack+0x18/0x24 [ 6826.900716][ T445] should_fail_ex+0x18c/0x1e0 [ 6826.901371][ T445] should_failslab+0x54/0x80 [ 6826.902084][ T445] kmem_cache_alloc_noprof+0x54/0x2c4 [ 6826.903142][ T445] security_file_alloc+0x28/0x1a0 [ 6826.903855][ T445] init_file+0x3c/0x104 [ 6826.904517][ T445] alloc_empty_file+0x7c/0x140 [ 6826.905141][ T445] path_openat+0x44/0x1050 [ 6826.905787][ T445] do_filp_open+0x9c/0x150 [ 6826.906440][ T445] do_sys_openat2+0xc0/0xf4 [ 6826.907149][ T445] __arm64_sys_openat+0x64/0xa4 [ 6826.907908][ T445] invoke_syscall+0x48/0x110 [ 6826.908695][ T445] el0_svc_common.constprop.0+0x40/0xe0 [ 6826.909595][ T445] do_el0_svc+0x1c/0x28 [ 6826.910202][ T445] el0_svc+0x34/0xec [ 6826.910859][ T445] el0t_64_sync_handler+0x100/0x12c [ 6826.911639][ T445] el0t_64_sync+0x19c/0x1a0 [ 6827.777352][ T452] coredump: 7335(syz.0.8460): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6828.775887][ T460] coredump: 7338(syz.0.8462): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6829.693657][ T466] coredump: 7341(syz.0.8464): coredump has not been created, error -2 [ 6829.761530][ T443] coredump: 7332(syz.0.8458): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6830.396738][ T469] coredump: 7344(syz.0.8465): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6830.492179][ T468] FAULT_INJECTION: forcing a failure. [ 6830.492179][ T468] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6830.492856][ T468] CPU: 1 UID: 0 PID: 468 Comm: syz.0.8465 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6830.493833][ T468] Tainted: [B]=BAD_PAGE [ 6830.494355][ T468] Hardware name: linux,dummy-virt (DT) [ 6830.494901][ T468] Call trace: [ 6830.495264][ T468] dump_backtrace+0x94/0xec [ 6830.495672][ T468] show_stack+0x18/0x24 [ 6830.496281][ T468] dump_stack_lvl+0x78/0x90 [ 6830.496630][ T468] dump_stack+0x18/0x24 [ 6830.496955][ T468] should_fail_ex+0x18c/0x1e0 [ 6830.497324][ T468] should_fail+0x14/0x20 [ 6830.497654][ T468] should_fail_usercopy+0x1c/0x28 [ 6830.498001][ T468] simple_read_from_buffer+0x68/0x118 [ 6830.498365][ T468] proc_fail_nth_read+0xac/0x12c [ 6830.498712][ T468] vfs_read+0xc0/0x318 [ 6830.499040][ T468] ksys_read+0x70/0x104 [ 6830.499367][ T468] __arm64_sys_read+0x1c/0x28 [ 6830.499970][ T468] invoke_syscall+0x48/0x110 [ 6830.500627][ T468] el0_svc_common.constprop.0+0x40/0xe0 [ 6830.501349][ T468] do_el0_svc+0x1c/0x28 [ 6830.501854][ T468] el0_svc+0x34/0xec [ 6830.502211][ T468] el0t_64_sync_handler+0x100/0x12c [ 6830.502564][ T468] el0t_64_sync+0x19c/0x1a0 [ 6833.099344][ T491] FAULT_INJECTION: forcing a failure. [ 6833.099344][ T491] name failslab, interval 1, probability 0, space 0, times 0 [ 6833.108681][ T491] CPU: 1 UID: 0 PID: 491 Comm: syz.0.8471 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6833.110158][ T491] Tainted: [B]=BAD_PAGE [ 6833.110741][ T491] Hardware name: linux,dummy-virt (DT) [ 6833.111469][ T491] Call trace: [ 6833.112023][ T491] dump_backtrace+0x94/0xec [ 6833.112607][ T491] show_stack+0x18/0x24 [ 6833.112947][ T491] dump_stack_lvl+0x78/0x90 [ 6833.113297][ T491] dump_stack+0x18/0x24 [ 6833.113667][ T491] should_fail_ex+0x18c/0x1e0 [ 6833.114026][ T491] should_failslab+0x54/0x80 [ 6833.114367][ T491] __kmalloc_noprof+0xa8/0x360 [ 6833.114706][ T491] tomoyo_encode2+0x7c/0x140 [ 6833.115033][ T491] tomoyo_realpath_from_path+0x9c/0x1d0 [ 6833.115391][ T491] tomoyo_path_number_perm+0xd8/0x224 [ 6833.115739][ T491] tomoyo_file_ioctl+0x1c/0x28 [ 6833.116176][ T491] security_file_ioctl+0x8c/0x19c [ 6833.116750][ T491] __arm64_sys_ioctl+0x4c/0xf0 [ 6833.117277][ T491] invoke_syscall+0x48/0x110 [ 6833.117794][ T491] el0_svc_common.constprop.0+0x40/0xe0 [ 6833.118432][ T491] do_el0_svc+0x1c/0x28 [ 6833.118877][ T491] el0_svc+0x34/0xec [ 6833.119326][ T491] el0t_64_sync_handler+0x100/0x12c [ 6833.119978][ T491] el0t_64_sync+0x19c/0x1a0 [ 6833.170139][ T491] ERROR: Out of memory at tomoyo_realpath_from_path. [ 6833.623850][ T498] coredump: 7362(syz.0.8474): coredump has not been created, error -2 [ 6834.174855][ T487] coredump: 7353(syz.0.8469): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6836.302450][ C1] vkms_vblank_simulate: vblank timer overrun [ 6836.837641][ C1] vkms_vblank_simulate: vblank timer overrun [ 6838.565446][ T512] coredump: 2475(syz.1.8478): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6839.057135][ T520] serio: Serial port pts0 [ 6843.529247][ T529] coredump: 7378(syz.0.8481): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6844.834450][ T549] coredump: 7387(syz.0.8487): coredump has not been created, error -3 [ 6846.106802][ T555] coredump: 7392(syz.0.8489): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6847.056918][ T542] coredump: 7382(syz.0.8483): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6848.935704][ T562] coredump: 7394(syz.0.8489): written to core: VMAs: 18, size 38371328; core: 9307001 bytes, pos 38379520 [ 6849.780770][ T566] FAULT_INJECTION: forcing a failure. [ 6849.780770][ T566] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6849.782576][ T566] CPU: 0 UID: 0 PID: 566 Comm: syz.1.8491 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6849.783776][ T566] Tainted: [B]=BAD_PAGE [ 6849.784348][ T566] Hardware name: linux,dummy-virt (DT) [ 6849.785065][ T566] Call trace: [ 6849.785749][ T566] dump_backtrace+0x94/0xec [ 6849.786741][ T566] show_stack+0x18/0x24 [ 6849.787405][ T566] dump_stack_lvl+0x78/0x90 [ 6849.788353][ T566] dump_stack+0x18/0x24 [ 6849.789245][ T566] should_fail_ex+0x18c/0x1e0 [ 6849.790429][ T566] should_fail+0x14/0x20 [ 6849.791503][ T566] should_fail_usercopy+0x1c/0x28 [ 6849.793357][ T566] simple_read_from_buffer+0x68/0x118 [ 6849.794106][ T566] proc_fail_nth_read+0xac/0x12c [ 6849.794780][ T566] vfs_read+0xc0/0x318 [ 6849.795430][ T566] ksys_read+0x70/0x104 [ 6849.796132][ T566] __arm64_sys_read+0x1c/0x28 [ 6849.796878][ T566] invoke_syscall+0x48/0x110 [ 6849.797630][ T566] el0_svc_common.constprop.0+0x40/0xe0 [ 6849.798423][ T566] do_el0_svc+0x1c/0x28 [ 6849.799151][ T566] el0_svc+0x34/0xec [ 6849.799948][ T566] el0t_64_sync_handler+0x100/0x12c [ 6849.800846][ T566] el0t_64_sync+0x19c/0x1a0 [ 6850.171474][ T567] coredump: 2502(syz.1.8491): written to core: VMAs: 16, size 34308096; core: 5317385 bytes, pos 34316288 [ 6851.744928][ T580] coredump: 2510(syz.1.8494): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6853.992020][ T584] coredump: 7400(syz.0.8495): written to core: VMAs: 16, size 38240256; core: 9274121 bytes, pos 38248448 [ 6854.223866][ T596] coredump: 2512(syz.1.8494): written to core: VMAs: 18, size 38371328; core: 9286521 bytes, pos 38379520 [ 6854.288325][ T600] FAULT_INJECTION: forcing a failure. [ 6854.288325][ T600] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 6854.299065][ T600] CPU: 0 UID: 0 PID: 600 Comm: syz.0.8499 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6854.301071][ T600] Tainted: [B]=BAD_PAGE [ 6854.301720][ T600] Hardware name: linux,dummy-virt (DT) [ 6854.302476][ T600] Call trace: [ 6854.303056][ T600] dump_backtrace+0x94/0xec [ 6854.303818][ T600] show_stack+0x18/0x24 [ 6854.304545][ T600] dump_stack_lvl+0x78/0x90 [ 6854.305297][ T600] dump_stack+0x18/0x24 [ 6854.306031][ T600] should_fail_ex+0x18c/0x1e0 [ 6854.306804][ T600] should_fail+0x14/0x20 [ 6854.307528][ T600] should_fail_usercopy+0x1c/0x28 [ 6854.308295][ T600] simple_read_from_buffer+0x68/0x118 [ 6854.309107][ T600] proc_fail_nth_read+0xac/0x12c [ 6854.310321][ T600] vfs_read+0xc0/0x318 [ 6854.311119][ T600] ksys_read+0x70/0x104 [ 6854.311818][ T600] __arm64_sys_read+0x1c/0x28 [ 6854.312589][ T600] invoke_syscall+0x48/0x110 [ 6854.313382][ T600] el0_svc_common.constprop.0+0x40/0xe0 [ 6854.314246][ T600] do_el0_svc+0x1c/0x28 [ 6854.314994][ T600] el0_svc+0x34/0xec [ 6854.315751][ T600] el0t_64_sync_handler+0x100/0x12c [ 6854.316615][ T600] el0t_64_sync+0x19c/0x1a0 [ 6854.655258][ T587] coredump: 7403(syz.0.8496): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6855.434702][ T601] coredump: 7412(syz.0.8499): written to core: VMAs: 18, size 34439168; core: 5346169 bytes, pos 34447360 [ 6856.099064][ T610] coredump: 2519(syz.1.8502): written to core: VMAs: 16, size 38240256; core: 9257737 bytes, pos 38248448 [ 6858.881690][ T606] coredump: 2515(syz.1.8500): written to core: VMAs: 16, size 38240256; core: 9257737 bytes, pos 38248448 [ 6861.098388][ T635] coredump: 2532(syz.1.8507): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6861.217036][ T632] coredump: 2529(syz.1.8506): written to core: VMAs: 16, size 38240256; core: 9257737 bytes, pos 38248448 [ 6863.645615][ T641] coredump: 2538(syz.1.8509): written to core: VMAs: 16, size 38240256; core: 9257737 bytes, pos 38248448 [ 6870.613785][ T642] coredump: 7422(syz.0.8504): written to core: VMAs: 19, size 122236928; core: 122110896 bytes, pos 122245120 [ 6873.952452][ T655] coredump: 2548(syz.1.8512): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6874.495614][ T658] coredump: 2551(syz.1.8514): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6875.671949][ T662] coredump: 2555(syz.1.8515): written to core: VMAs: 16, size 40337408; core: 11346697 bytes, pos 40345600 [ 6878.886121][ T675] coredump: 2562(syz.1.8518): coredump has not been created, error -2 [ 6879.796267][ T678] coredump: 2565(syz.1.8519): written to core: VMAs: 17, size 38240256; core: 9249651 bytes, pos 38248448 [ 6880.875755][ T681] coredump: 2568(syz.1.8520): written to core: VMAs: 16, size 38240256; core: 9249545 bytes, pos 38248448 [ 6886.607323][ T728] coredump: 2590(syz.1.8526): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6887.238591][ T727] coredump: 2589(syz.1.8526): interrupted: fatal signal pending [ 6887.272211][ T727] coredump: 2589(syz.1.8526): Core dump to core has been interrupted [ 6887.273421][ T727] coredump: 2589(syz.1.8526): coredump has not been created, error -11 [ 6887.381588][ T720] coredump: 2584(syz.1.8524): interrupted: fatal signal pending [ 6887.382869][ T720] coredump: 2584(syz.1.8524): written to core: VMAs: 16, size 38240256; core: 4616968 bytes, pos 4935680 [ 6887.405554][ T717] coredump: 2581(syz.1.8523): interrupted: fatal signal pending [ 6887.406768][ T717] coredump: 2581(syz.1.8523): written to core: VMAs: 16, size 38240256; core: 5993224 bytes, pos 6311936 [ 6889.182205][ T737] coredump: 7433(syz.0.8528): written to core: VMAs: 18, size 40468480; core: 11375481 bytes, pos 40476672 [ 6891.744064][ T740] coredump: 7436(syz.0.8529): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6892.641412][ T765] coredump: 7458(syz.0.8537): coredump has not been created, error -2 [ 6892.741118][ T767] sctp: [Deprecated]: syz.0.8538 (pid 767) Use of struct sctp_assoc_value in delayed_ack socket option. [ 6892.741118][ T767] Use struct sctp_sack_info instead [ 6894.269043][ T776] coredump: 7468(syz.0.8541): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6894.407947][ T756] coredump: 7451(syz.0.8534): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6895.223080][ T783] coredump: 7475(syz.0.8544): coredump has not been created, error -2 [ 6895.397151][ T771] coredump: 7463(syz.0.8539): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6896.200817][ T788] coredump: 7480(syz.0.8546): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6901.341330][T22620] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 6901.471062][T22620] usb 1-1: device descriptor read/64, error -71 [ 6901.711083][T22620] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 6901.794336][ T797] coredump: 7489(syz.0.8549): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6901.911200][T22620] usb 1-1: device descriptor read/64, error -71 [ 6902.022943][T22620] usb usb1-port1: attempt power cycle [ 6902.361103][T22620] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 6902.398227][T22620] usb 1-1: device descriptor read/8, error -71 [ 6902.630727][T22620] usb 1-1: new high-speed USB device number 35 using dummy_hcd [ 6902.655099][T22620] usb 1-1: device descriptor read/8, error -71 [ 6902.761410][T22620] usb usb1-port1: unable to enumerate USB device [ 6912.318826][ T808] coredump: 7496(syz.0.8552): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6913.398897][ T824] coredump: 7508(syz.0.8557): written to core: VMAs: 16, size 38240256; core: 9270025 bytes, pos 38248448 [ 6914.367295][ T815] coredump: 7501(syz.0.8554): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6915.304967][ T832] coredump: 7515(syz.0.8559): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6915.910680][ T844] FAULT_INJECTION: forcing a failure. [ 6915.910680][ T844] name failslab, interval 1, probability 0, space 0, times 0 [ 6915.912350][ T844] CPU: 1 UID: 0 PID: 844 Comm: syz.0.8563 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6915.913726][ T844] Tainted: [B]=BAD_PAGE [ 6915.914319][ T844] Hardware name: linux,dummy-virt (DT) [ 6915.914928][ T844] Call trace: [ 6915.915453][ T844] dump_backtrace+0x94/0xec [ 6915.916256][ T844] show_stack+0x18/0x24 [ 6915.917106][ T844] dump_stack_lvl+0x78/0x90 [ 6915.917819][ T844] dump_stack+0x18/0x24 [ 6915.918484][ T844] should_fail_ex+0x18c/0x1e0 [ 6915.919921][ T844] should_failslab+0x54/0x80 [ 6915.920730][ T844] kmem_cache_alloc_node_noprof+0x5c/0x2e4 [ 6915.921607][ T844] alloc_vmap_area+0x340/0xc88 [ 6915.922575][ T844] __get_vm_area_node+0xd0/0x1a0 [ 6915.923500][ T844] __vmalloc_node_range_noprof+0xe4/0x83c [ 6915.924408][ T844] vzalloc_noprof+0x94/0xa4 [ 6915.925055][ T844] n_tty_open+0x1c/0xd8 [ 6915.925741][ T844] tty_ldisc_open+0x3c/0xc8 [ 6915.926430][ T844] tty_ldisc_setup+0x3c/0x6c [ 6915.927119][ T844] tty_init_dev.part.0+0xcc/0x25c [ 6915.927850][ T844] tty_init_dev+0x48/0x58 [ 6915.928589][ T844] ptmx_open+0xbc/0x1f0 [ 6915.929330][ T844] chrdev_open+0xb4/0x238 [ 6915.930317][ T844] do_dentry_open+0x13c/0x50c [ 6915.931079][ T844] vfs_open+0x2c/0xe4 [ 6915.931784][ T844] path_openat+0x7a8/0x1050 [ 6915.933720][ T844] do_filp_open+0x9c/0x150 [ 6915.934422][ T844] do_sys_openat2+0xc0/0xf4 [ 6915.935092][ T844] __arm64_sys_openat+0x64/0xa4 [ 6915.935801][ T844] invoke_syscall+0x48/0x110 [ 6915.936583][ T844] el0_svc_common.constprop.0+0x40/0xe0 [ 6915.937328][ T844] do_el0_svc+0x1c/0x28 [ 6915.938003][ T844] el0_svc+0x34/0xec [ 6915.938686][ T844] el0t_64_sync_handler+0x100/0x12c [ 6915.939528][ T844] el0t_64_sync+0x19c/0x1a0 [ 6915.991280][ T844] syz.0.8563: vmalloc error: size 8904, vm_struct allocation failed, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0 [ 6915.995124][ T844] CPU: 1 UID: 0 PID: 844 Comm: syz.0.8563 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 6915.996496][ T844] Tainted: [B]=BAD_PAGE [ 6915.997132][ T844] Hardware name: linux,dummy-virt (DT) [ 6915.997807][ T844] Call trace: [ 6915.998376][ T844] dump_backtrace+0x94/0xec [ 6915.999114][ T844] show_stack+0x18/0x24 [ 6916.000051][ T844] dump_stack_lvl+0x78/0x90 [ 6916.000925][ T844] dump_stack+0x18/0x24 [ 6916.001644][ T844] warn_alloc+0x124/0x1a8 [ 6916.002415][ T844] __vmalloc_node_range_noprof+0x550/0x83c [ 6916.003260][ T844] vzalloc_noprof+0x94/0xa4 [ 6916.004220][ T844] n_tty_open+0x1c/0xd8 [ 6916.004947][ T844] tty_ldisc_open+0x3c/0xc8 [ 6916.005737][ T844] tty_ldisc_setup+0x3c/0x6c [ 6916.006460][ T844] tty_init_dev.part.0+0xcc/0x25c [ 6916.007196][ T844] tty_init_dev+0x48/0x58 [ 6916.007894][ T844] ptmx_open+0xbc/0x1f0 [ 6916.008626][ T844] chrdev_open+0xb4/0x238 [ 6916.009362][ T844] do_dentry_open+0x13c/0x50c [ 6916.010465][ T844] vfs_open+0x2c/0xe4 [ 6916.011159][ T844] path_openat+0x7a8/0x1050 [ 6916.012863][ T844] do_filp_open+0x9c/0x150 [ 6916.013783][ T844] do_sys_openat2+0xc0/0xf4 [ 6916.014656][ T844] __arm64_sys_openat+0x64/0xa4 [ 6916.015657][ T844] invoke_syscall+0x48/0x110 [ 6916.016796][ T844] el0_svc_common.constprop.0+0x40/0xe0 [ 6916.017616][ T844] do_el0_svc+0x1c/0x28 [ 6916.018294][ T844] el0_svc+0x34/0xec [ 6916.019023][ T844] el0t_64_sync_handler+0x100/0x12c [ 6916.019990][ T844] el0t_64_sync+0x19c/0x1a0 [ 6916.081035][ T844] Mem-Info: [ 6916.083515][ T844] active_anon:134 inactive_anon:4363 isolated_anon:0 [ 6916.083515][ T844] active_file:4209 inactive_file:7411 isolated_file:0 [ 6916.083515][ T844] unevictable:768 dirty:28 writeback:0 [ 6916.083515][ T844] slab_reclaimable:3488 slab_unreclaimable:9231 [ 6916.083515][ T844] mapped:1909 shmem:3114 pagetables:330 [ 6916.083515][ T844] sec_pagetables:0 bounce:0 [ 6916.083515][ T844] kernel_misc_reclaimable:0 [ 6916.083515][ T844] free:459255 free_pcp:3523 free_cma:8000 [ 6916.087215][ T844] Node 0 active_anon:536kB inactive_anon:17452kB active_file:16836kB inactive_file:29644kB unevictable:3072kB isolated(anon):0kB isolated(file):0kB mapped:7636kB dirty:112kB writeback:0kB shmem:12456kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:2712kB pagetables:1320kB sec_pagetables:0kB all_unreclaimable? no [ 6916.100861][ T844] Node 0 DMA free:1837020kB boost:0kB min:22528kB low:28160kB high:33792kB reserved_highatomic:0KB active_anon:536kB inactive_anon:17452kB active_file:16836kB inactive_file:29644kB unevictable:3072kB writepending:112kB present:2097152kB managed:1991076kB mlocked:0kB bounce:0kB free_pcp:14060kB local_pcp:7488kB free_cma:32000kB [ 6916.103736][ T844] lowmem_reserve[]: 0 0 0 0 0 [ 6916.105425][ T844] Node 0 DMA: 663*4kB (UM) 1482*8kB (UME) 965*16kB (UME) 815*32kB (UME) 520*64kB (UME) 456*128kB (UM) 363*256kB (UMEC) 242*512kB (UME) 166*1024kB (UMEC) 94*2048kB (UMEC) 271*4096kB (UMC) = 1837020kB [ 6916.130708][ T844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 6916.131849][ T844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=32768kB [ 6916.132836][ T844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 6916.133789][ T844] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=64kB [ 6916.134786][ T844] 14781 total pagecache pages [ 6916.135547][ T844] 0 pages in swap cache [ 6916.136341][ T844] Free swap = 124184kB [ 6916.136971][ T844] Total swap = 124996kB [ 6916.137693][ T844] 524288 pages RAM [ 6916.138281][ T844] 0 pages HighMem/MovableOnly [ 6916.138894][ T844] 26519 pages reserved [ 6916.160059][ T844] 8192 pages cma reserved [ 6916.160735][ T844] 0 pages hwpoisoned [ 6916.161716][ T844] ptm ptm0: ldisc open failed (-12), clearing slot 0 [ 6917.145639][ T845] coredump: 7525(syz.0.8563): written to core: VMAs: 16, size 34308096; core: 5333769 bytes, pos 34316288 [ 6918.058721][ T848] coredump: 7528(syz.0.8564): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6918.561246][T22465] usb 1-1: new high-speed USB device number 36 using dummy_hcd [ 6918.710835][T22465] usb 1-1: device descriptor read/64, error -71 [ 6918.722471][ T854] vcan0 speed is unknown, defaulting to 1000 [ 6918.960711][T22465] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 6919.100670][T22465] usb 1-1: device descriptor read/64, error -71 [ 6919.212853][T22465] usb usb1-port1: attempt power cycle [ 6919.550864][T22465] usb 1-1: new high-speed USB device number 38 using dummy_hcd [ 6919.574050][T22465] usb 1-1: device descriptor read/8, error -71 [ 6919.811050][T22465] usb 1-1: new high-speed USB device number 39 using dummy_hcd [ 6919.854493][T22465] usb 1-1: device descriptor read/8, error -71 [ 6919.970487][T22465] usb usb1-port1: unable to enumerate USB device [ 6921.789391][ T854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6921.813371][ T854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6923.629066][ T854] hsr_slave_0: entered promiscuous mode [ 6923.675928][ T854] hsr_slave_1: entered promiscuous mode [ 6923.721044][ T854] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 6923.721714][ T854] Cannot create hsr debugfs directory [ 6924.216717][ T854] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6924.282692][ T854] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6924.347836][ T854] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6924.448840][ T854] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6924.887487][ T854] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 6924.922280][ T854] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 6924.948970][ T854] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 6924.974772][ T854] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 6926.497570][ T854] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6932.562701][ T854] veth0_vlan: entered promiscuous mode [ 6932.648401][ T854] veth1_vlan: entered promiscuous mode [ 6932.908618][ T854] veth0_macvtap: entered promiscuous mode [ 6932.942156][ T854] veth1_macvtap: entered promiscuous mode [ 6933.122405][ T854] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6933.123420][ T854] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6933.124536][ T854] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6933.125421][ T854] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6933.411373][ T928] coredump: 7540(syz.0.8569): written to core: VMAs: 16, size 38240256; core: 9265929 bytes, pos 38248448 [ 6934.210567][ T986] vcan0 speed is unknown, defaulting to 1000 [ 6934.746790][ T984] coredump: 4(syz.1.8568): written to core: VMAs: 15, size 38166528; core: 9229009 bytes, pos 38174720 [ 6935.621673][ T990] serio: Serial port pts0 [ 6936.010911][ T987] coredump: 7550(syz.0.8572): written to core: VMAs: 16, size 40337408; core: 11363081 bytes, pos 40345600 [ 6936.966003][ T996] coredump: 8(syz.1.8573): written to core: VMAs: 17, size 38297600; core: 9253697 bytes, pos 38305792 [ 6938.108746][T31955] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6938.198964][T31955] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6938.280698][T31955] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6938.463035][T31955] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 6939.265656][ T1008] coredump: 13(syz.1.8576): written to core: VMAs: 15, size 38166528; core: 9241297 bytes, pos 38174720 [ 6940.485813][T31955] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 6940.552497][T31955] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 6940.615994][T31955] bond0 (unregistering): Released all slaves [ 6941.083112][ T1023] coredump: 17(syz.1.8577): written to core: VMAs: 16, size 38240256; core: 9253641 bytes, pos 38248448 [ 6941.681458][T31955] hsr_slave_0: left promiscuous mode [ 6941.734118][T31955] hsr_slave_1: left promiscuous mode [ 6941.858143][T31955] veth1_macvtap: left promiscuous mode [ 6941.859383][T31955] veth0_macvtap: left promiscuous mode [ 6941.866601][T31955] veth1_vlan: left promiscuous mode [ 6941.867695][T31955] veth0_vlan: left promiscuous mode [ 6942.222846][T31955] infiniband syz1: set down [ 6942.374477][T31955] pim6reg (unregistering): left allmulticast mode [ 6943.028521][ T1038] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6943.114146][ T1038] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6943.232773][T31953] smc: removing ib device syz1 [ 6943.266014][T29184] vcan0 speed is unknown, defaulting to 1000 [ 6943.733425][ T1043] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6943.803975][ T1043] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6948.310876][ T1078] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6948.414344][ T1078] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6948.594916][ T1083] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6948.631287][ T1083] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6948.835783][ T1086] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6948.887537][ T1086] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6949.082663][ T998] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 6949.105924][ T1089] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6949.111318][ T998] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 6949.213442][ T1089] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6951.753804][ T998] hsr_slave_0: entered promiscuous mode [ 6951.792780][ T998] hsr_slave_1: entered promiscuous mode [ 6951.830453][ T998] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 6951.831331][ T998] Cannot create hsr debugfs directory [ 6953.596017][ T998] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 6953.645366][ T998] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 6953.666362][ T998] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 6953.727775][ T998] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 6955.427785][ T998] 8021q: adding VLAN 0 to HW filter on device bond0 [ 6963.871318][ T998] veth0_vlan: entered promiscuous mode [ 6963.961923][ T998] veth1_vlan: entered promiscuous mode [ 6964.204224][ T998] veth0_macvtap: entered promiscuous mode [ 6964.237841][ T998] veth1_macvtap: entered promiscuous mode [ 6964.497100][ T998] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 6964.498339][ T998] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 6964.499363][ T998] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 6964.504640][ T998] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 6970.041102][T23929] usb 1-1: new high-speed USB device number 40 using dummy_hcd [ 6970.201500][T23929] usb 1-1: Using ep0 maxpacket: 8 [ 6970.256237][T23929] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7 [ 6970.396430][T23929] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b [ 6970.397680][T23929] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3 [ 6970.398754][T23929] usb 1-1: Product: syz [ 6970.399501][T23929] usb 1-1: Manufacturer: syz [ 6970.401052][T23929] usb 1-1: SerialNumber: syz [ 6970.768487][T23929] usb 1-1: Invalid connection information received from device [ 6971.025274][T22465] usb 1-1: USB disconnect, device number 40 [ 6971.230967][ T30] audit: type=1326 audit(6970.940:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 6971.234295][ T30] audit: type=1326 audit(6970.950:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 6971.237954][ T30] audit: type=1326 audit(6970.950:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 6971.241903][ T30] audit: type=1326 audit(6970.950:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffffa854128c code=0x7ffc0000 [ 6971.244395][ T30] audit: type=1326 audit(6970.960:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffa939e804 code=0x7ffc0000 [ 6971.246626][ T30] audit: type=1326 audit(6970.960:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 6971.248698][ T30] audit: type=1326 audit(6970.960:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffffa854128c code=0x7ffc0000 [ 6971.252325][ T30] audit: type=1326 audit(6970.960:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffa939e804 code=0x7ffc0000 [ 6971.255852][ T30] audit: type=1326 audit(6970.960:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=172 compat=0 ip=0xffffa854128c code=0x7ffc0000 [ 6971.259385][ T30] audit: type=1326 audit(6970.960:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1248 comm="syz.1.8618" exe="/syz-executor" sig=0 arch=c00000b7 syscall=139 compat=0 ip=0xffffa939e804 code=0x7ffc0000 [ 6976.674288][ T1277] mmap: syz.0.8630 (1277) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 6976.902106][T30039] bond0: (slave bond_slave_0): interface is now down [ 6976.903428][T30039] bond0: (slave bond_slave_1): interface is now down [ 6976.914792][T30039] bond0: now running without any active interface! [ 6977.007132][ C0] TCP: request_sock_subflow_v4: Possible SYN flooding on port [::]:20002. Sending cookies. [ 6977.360786][T22620] usb 1-1: new high-speed USB device number 41 using dummy_hcd [ 6977.600849][T22620] usb 1-1: Using ep0 maxpacket: 16 [ 6977.621536][T22620] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 6977.622736][T22620] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 6977.655914][T22620] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 6977.657545][T22620] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 6977.659338][T22620] usb 1-1: Product: syz [ 6977.662825][T22620] usb 1-1: Manufacturer: syz [ 6977.663882][T22620] usb 1-1: SerialNumber: syz [ 6978.005262][T22620] usb 1-1: 0:2 : does not exist [ 6978.071097][T22620] usb 1-1: USB disconnect, device number 41 [ 6978.383735][ T1285] udevd[1285]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 6981.518989][ T1336] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6981.568781][ T1336] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6983.811411][ T1371] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6983.862973][ T1371] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6984.211454][ T1378] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6984.252774][ T1378] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6984.596893][ T1380] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6984.652586][ T1380] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6984.766988][ T1382] netlink: 72 bytes leftover after parsing attributes in process `syz.1.8668'. [ 6985.166498][ T1390] netlink: 104 bytes leftover after parsing attributes in process `syz.0.8671'. [ 6985.964078][ T1399] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8675'. [ 6986.025362][ T1400] UHID_CREATE from different security context by process 87 (syz.0.8674), this is not allowed. [ 6986.051536][ T1400] netlink: 256 bytes leftover after parsing attributes in process `syz.0.8674'. [ 6990.710698][ T30] kauditd_printk_skb: 131 callbacks suppressed [ 6990.710956][ T30] audit: type=1326 audit(6990.430:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.713244][ T30] audit: type=1326 audit(6990.430:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.715944][ T30] audit: type=1326 audit(6990.430:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.718545][ T30] audit: type=1326 audit(6990.440:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=56 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.721966][ T30] audit: type=1326 audit(6990.440:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.724413][ T30] audit: type=1326 audit(6990.440:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=40 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6990.750295][ T30] audit: type=1326 audit(6990.480:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1450 comm="syz.0.8691" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 6991.458738][ T1464] loop0: detected capacity change from 0 to 7 [ 6992.047004][ T1475] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 6992.099009][ T1475] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 6992.117934][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.118707][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.123528][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.124230][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.124767][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.125646][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.126404][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.127128][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.127836][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.128656][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.129335][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.131402][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.132206][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.133058][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.133839][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.134705][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.135488][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.136543][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.137300][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.138075][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.138833][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.151756][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.153162][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.153884][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.154613][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.155270][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.156224][T22465] hid-generic FFFE:2000:0000.0010: unknown main item tag 0x0 [ 6992.171448][T22465] hid-generic FFFE:2000:0000.0010: hidraw0: HID v0.00 Device [syz0] on syz0 [ 6993.417770][ T1479] netlink: 16 bytes leftover after parsing attributes in process `syz.1.8704'. [ 6993.473338][ T1486] netlink: 'syz.0.8706': attribute type 4 has an invalid length. [ 6993.474491][ T1486] netlink: 17 bytes leftover after parsing attributes in process `syz.0.8706'. [ 6993.861176][ T1490] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8708'. [ 7004.027672][ T1544] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8725'. [ 7011.324539][ T1566] netlink: 'syz.0.8732': attribute type 10 has an invalid length. [ 7013.377859][ T1570] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8733'. [ 7017.273628][ T1588] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7017.323235][ T1588] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7040.687878][ T1664] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8766'. [ 7044.071468][ T1673] loop0: detected capacity change from 0 to 7 [ 7046.686772][ T1692] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7046.722028][ T1692] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7050.444783][ T1701] binder: 1698:1701 ioctl c0306201 0 returned -14 [ 7065.518333][ T30] audit: type=1326 audit(7066.242:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1729 comm="syz.1.8787" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x0 [ 7079.204950][ T1774] infiniband syz1: set down [ 7079.205936][ T1774] infiniband syz1: added ipvlan1 [ 7079.538470][ T1774] RDS/IB: syz1: added [ 7079.557499][ T1774] smc: adding ib device syz1 with port count 1 [ 7079.558553][ T1774] smc: ib device syz1 port 1 has pnetid [ 7079.950656][ T1793] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 7080.377775][ T1799] binder: 1798:1799 tried to acquire reference to desc 0, got 1 instead [ 7080.386968][ T1799] binder: 1798:1799 got new transaction with bad transaction stack, transaction 12 has target 1798:0 [ 7080.388549][ T1799] binder: 1798:1799 transaction call to 1798:0 failed 13/29201/-71, size 0-0 line 3204 [ 7080.405172][ T1599] binder: release 1798:1799 transaction 12 out, still active [ 7080.406327][ T1599] binder: undelivered TRANSACTION_COMPLETE [ 7080.407236][ T1599] binder: undelivered TRANSACTION_ERROR: 29201 [ 7080.452818][ T1599] binder: send failed reply for transaction 12, target dead [ 7085.700902][ T1712] usb 1-1: new high-speed USB device number 42 using dummy_hcd [ 7085.922544][ T1831] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7085.940591][ T1712] usb 1-1: Using ep0 maxpacket: 16 [ 7085.957762][ T1712] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 7085.958806][ T1712] usb 1-1: config 0 has no interfaces? [ 7085.962262][ T1831] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7086.049247][ T1712] usb 1-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=ff.76 [ 7086.050921][ T1712] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 7086.051763][ T1712] usb 1-1: Product: syz [ 7086.052930][ T1712] usb 1-1: Manufacturer: syz [ 7086.053682][ T1712] usb 1-1: SerialNumber: syz [ 7086.077645][ T1712] usb 1-1: config 0 descriptor?? [ 7086.848320][ T1599] usb 1-1: USB disconnect, device number 42 [ 7099.370914][ T30] audit: type=1326 audit(7100.072:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1890 comm="syz.1.8833" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 7099.373309][ T30] audit: type=1326 audit(7100.072:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1890 comm="syz.1.8833" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 7099.374902][ T30] audit: type=1326 audit(7100.072:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1890 comm="syz.1.8833" exe="/syz-executor" sig=0 arch=c00000b7 syscall=141 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 7099.376706][ T30] audit: type=1326 audit(7100.072:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1890 comm="syz.1.8833" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 7099.379181][ T30] audit: type=1326 audit(7100.082:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1890 comm="syz.1.8833" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x7ffc0000 [ 7107.803110][ T30] audit: type=1326 audit(7108.512:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=1925 comm="syz.1.8847" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffffa8549728 code=0x0 [ 7111.742613][ T1938] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7111.785470][ T1938] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7121.468502][ T1969] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8860'. [ 7123.490580][T23929] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 7123.640614][T23929] usb 1-1: Using ep0 maxpacket: 8 [ 7123.719057][T23929] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 7123.721345][T23929] usb 1-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config [ 7123.722386][T23929] usb 1-1: config 179 has no interface number 0 [ 7123.723226][T23929] usb 1-1: config 179 interface 65 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 23 [ 7123.725190][T23929] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 7123.726069][T23929] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 7124.207148][T23929] usb 1-1: USB disconnect, device number 43 [ 7131.814450][ T1993] netlink: 56 bytes leftover after parsing attributes in process `syz.1.8869'. [ 7139.178073][ T2008] binder: 2007:2008 tried to acquire reference to desc 0, got 1 instead [ 7139.192465][ T2008] binder: 2007:2008 got reply transaction with bad transaction stack, transaction 18 has target 2007:0 [ 7141.222932][ T2008] binder: 2007:2008 transaction reply to 0:0 failed 19/29201/-71, size 0-0 line 3060 [ 7141.236896][ T2008] binder: 2007:2008 ioctl c0306201 200002c0 returned -14 [ 7141.249092][T22620] binder: release 2007:2008 transaction 18 out, still active [ 7141.253447][T22620] binder: undelivered TRANSACTION_ERROR: 29201 [ 7141.468790][T23929] binder: send failed reply for transaction 18, target dead [ 7151.402764][ T2048] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow [ 7153.574331][ T2067] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7153.615960][ T2067] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7162.710713][ T373] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 7162.870882][ T373] usb 1-1: Using ep0 maxpacket: 16 [ 7162.896749][ T373] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 7162.898275][ T373] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 7162.900509][ T373] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 7162.901885][ T373] usb 1-1: New USB device found, idVendor=05ac, idProduct=0247, bcdDevice= 0.00 [ 7162.902872][ T373] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 7162.928280][ T373] usb 1-1: config 0 descriptor?? [ 7163.524434][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.525619][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.526593][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.527538][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.528566][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.530622][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.531622][ T373] hid-generic 0003:05AC:0247.0011: unknown main item tag 0x0 [ 7163.562505][ T373] hid-generic 0003:05AC:0247.0011: hidraw0: USB HID v0.09 Device [HID 05ac:0247] on usb-dummy_hcd.0-1/input0 [ 7163.834589][ T373] usb 1-1: USB disconnect, device number 44 [ 7170.650776][T31255] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 7170.881365][T31255] usb 1-1: Using ep0 maxpacket: 32 [ 7171.023397][T31255] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 7171.175436][T31255] usb 1-1: New USB device found, idVendor=06cd, idProduct=0101, bcdDevice=95.2e [ 7171.176718][T31255] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 7171.177673][T31255] usb 1-1: Product: syz [ 7171.178405][T31255] usb 1-1: Manufacturer: syz [ 7171.179026][T31255] usb 1-1: SerialNumber: syz [ 7171.196868][T31255] usb 1-1: config 0 descriptor?? [ 7171.372663][T31255] keyspan 1-1:0.0: Keyspan - (without firmware) converter detected [ 7171.391096][T31255] usb 1-1: Direct firmware load for keyspan/usa28.fw failed with error -2 [ 7171.392503][T31255] usb 1-1: Falling back to sysfs fallback for: keyspan/usa28.fw [ 7191.191844][ T2196] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7191.252658][ T2196] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7195.368758][ T2207] binder: 2204:2207 ERROR: Thread waiting for process work before calling BC_REGISTER_LOOPER or BC_ENTER_LOOPER (state 10) [ 7195.394252][ T2207] binder: 2207 RLIMIT_NICE not set [ 7201.277469][T28028] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7201.577997][T28028] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7201.724167][T28028] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7201.853479][T28028] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7203.285182][T28028] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7203.366111][T28028] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7203.417089][T28028] bond0 (unregistering): Released all slaves [ 7205.543778][T28028] hsr_slave_0: left promiscuous mode [ 7205.573934][T28028] hsr_slave_1: left promiscuous mode [ 7205.689230][T28028] veth1_macvtap: left promiscuous mode [ 7205.692175][T28028] veth0_macvtap: left promiscuous mode [ 7205.693508][T28028] veth1_vlan: left promiscuous mode [ 7205.694552][T28028] veth0_vlan: left promiscuous mode [ 7209.827580][ T2262] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7209.867351][ T2262] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7212.129460][ T2262] hsr_slave_0: entered promiscuous mode [ 7212.184263][ T2262] hsr_slave_1: entered promiscuous mode [ 7212.253631][ T2262] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 7212.254599][ T2262] Cannot create hsr debugfs directory [ 7214.097655][ T2262] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 7214.139241][ T2262] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 7214.173145][ T2262] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 7214.215716][ T2262] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 7215.752523][ T2262] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7221.159274][ T2262] veth0_vlan: entered promiscuous mode [ 7221.185276][ T2262] veth1_vlan: entered promiscuous mode [ 7221.343804][ T2262] veth0_macvtap: entered promiscuous mode [ 7221.371108][ T2262] veth1_macvtap: entered promiscuous mode [ 7221.564158][ T2262] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7221.566054][ T2262] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7221.572183][ T2262] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7221.573558][ T2262] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7229.097704][ T2456] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies. [ 7229.949201][ T30] audit: type=1326 audit(7230.672:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2467 comm="syz.1.9000" exe="/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x0 [ 7231.392400][ T30] audit: type=1326 audit(7232.122:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2474 comm="syz.0.9003" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7231.394375][ T30] audit: type=1326 audit(7232.122:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2474 comm="syz.0.9003" exe="/syz-executor" sig=0 arch=c00000b7 syscall=214 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7231.395880][ T30] audit: type=1326 audit(7232.122:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2474 comm="syz.0.9003" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7231.398366][ T30] audit: type=1326 audit(7232.122:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2474 comm="syz.0.9003" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7231.896258][ T2483] syz.0.9006 (2483): drop_caches: 0 [ 7232.226672][ T2487] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7232.325651][ T2487] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7232.434259][ T2487] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7232.557308][ T2487] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7232.754739][T31255] usb 1-1: ezusb_ihex_firmware_download - request "keyspan/usa28.fw" failed [ 7232.756140][T31255] usb 1-1: failed to load firmware "keyspan/usa28.fw" [ 7232.757885][T31255] keyspan 1-1:0.0: probe with driver keyspan failed with error -2 [ 7232.779387][T31255] usb 1-1: USB disconnect, device number 45 [ 7233.158177][ T2487] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7233.226434][ T2487] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7233.291938][ T2487] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7233.358151][ T2487] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7233.822258][ T2504] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7233.903197][ T2504] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7234.224060][ T2510] vlan2: entered allmulticast mode [ 7234.638739][ T30] audit: type=1326 audit(7235.312:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2519 comm="syz.1.9022" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7234.647186][ T30] audit: type=1326 audit(7235.312:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2519 comm="syz.1.9022" exe="/syz-executor" sig=0 arch=c00000b7 syscall=443 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7234.667198][ T30] audit: type=1326 audit(7235.312:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2519 comm="syz.1.9022" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7234.669191][ T30] audit: type=1326 audit(7235.312:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2519 comm="syz.1.9022" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7237.581885][ T2529] veth0_vlan: left promiscuous mode [ 7251.831575][ T2451] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 7252.244470][ T2451] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 7252.245945][ T2451] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 7252.247078][ T2451] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 7252.255680][ T2451] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 7252.257268][ T2451] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 7252.451446][ T2451] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 7252.452679][ T2451] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 7252.453733][ T2451] usb 1-1: Product: syz [ 7252.454475][ T2451] usb 1-1: Manufacturer: syz [ 7252.502878][ T2451] cdc_wdm 1-1:1.0: skipping garbage [ 7252.503696][ T2451] cdc_wdm 1-1:1.0: skipping garbage [ 7252.521688][ T2451] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 7254.013713][ T2588] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7254.059195][T23929] usb 1-1: USB disconnect, device number 46 [ 7254.072895][ T2585] cdc_wdm 1-1:1.0: Tx URB error: -19 [ 7254.074527][ T2586] cdc_wdm 1-1:1.0: Tx URB error: -19 [ 7254.078713][ T2588] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7254.295435][ T2588] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7254.332033][ T2588] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7255.866062][ T30] audit: type=1326 audit(7256.592:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.868883][ T30] audit: type=1326 audit(7256.592:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.876910][ T30] audit: type=1326 audit(7256.602:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.883731][ T30] audit: type=1326 audit(7256.612:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.890343][ T30] audit: type=1326 audit(7256.612:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=291 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.898036][ T30] audit: type=1326 audit(7256.622:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.907040][ T30] audit: type=1326 audit(7256.642:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=178 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.915325][ T30] audit: type=1326 audit(7256.642:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.925694][ T30] audit: type=1326 audit(7256.652:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=107 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7255.937293][ T30] audit: type=1326 audit(7256.652:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2612 comm="syz.0.9052" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffb0d49728 code=0x7ffc0000 [ 7256.233729][ T2614] syz.1.9051(2614): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 7258.444377][ T2625] netlink: 'syz.1.9057': attribute type 1 has an invalid length. [ 7271.230403][ T2654] batadv_slave_0: entered promiscuous mode [ 7271.965831][ T30] kauditd_printk_skb: 672 callbacks suppressed [ 7271.965995][ T30] audit: type=1326 audit(7272.692:861): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7271.969059][ T30] audit: type=1326 audit(7272.692:862): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=226 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7271.977109][ T30] audit: type=1326 audit(7272.702:863): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7271.983249][ T30] audit: type=1326 audit(7272.712:864): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7271.987060][ T30] audit: type=1326 audit(7272.712:865): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=203 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7271.988974][ T30] audit: type=1326 audit(7272.712:866): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=2661 comm="syz.1.9070" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff9c549728 code=0x7ffc0000 [ 7273.131533][T22465] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 7273.331215][T22465] usb 1-1: Using ep0 maxpacket: 8 [ 7273.476653][T22465] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 7273.478310][T22465] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a [ 7273.480291][T22465] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 7273.524021][T22465] usb 1-1: config 0 descriptor?? [ 7284.095519][T29184] usb 1-1: USB disconnect, device number 47 [ 7288.166548][T22465] usb 1-1: new full-speed USB device number 48 using dummy_hcd [ 7288.522107][T22465] usb 1-1: config 1 interface 0 has no altsetting 0 [ 7288.644252][T22465] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 7288.644895][T22465] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 7288.645405][T22465] usb 1-1: Product: syz [ 7288.646079][T22465] usb 1-1: Manufacturer: syz [ 7288.646710][T22465] usb 1-1: SerialNumber: syz [ 7289.465194][T22465] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 48 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8 [ 7294.508547][ C1] usblp0: nonzero write bulk status received: -71 [ 7294.515655][T30563] usb 1-1: USB disconnect, device number 48 [ 7295.150917][ T2451] usb 1-1: new high-speed USB device number 49 using dummy_hcd [ 7295.310610][ T2451] usb 1-1: Using ep0 maxpacket: 32 [ 7295.401714][ T2451] usb 1-1: config 1 interface 0 altsetting 253 bulk endpoint 0x1 has invalid maxpacket 32 [ 7295.403318][ T2451] usb 1-1: config 1 interface 0 has no altsetting 0 [ 7295.524820][ T2451] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 7295.527408][ T2451] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 7295.528304][ T2451] usb 1-1: Product: syz [ 7295.528980][ T2451] usb 1-1: Manufacturer: syz [ 7295.531637][ T2451] usb 1-1: SerialNumber: syz [ 7295.672634][ T2695] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 7295.814055][ T2451] usblp 1-1:1.0: usblp0: USB Unidirectional printer dev 49 if 0 alt 253 proto 1 vid 0x0525 pid 0xA4A8 [ 7302.976355][ T2694] usblp0: removed [ 7303.051129][T29184] usb 1-1: USB disconnect, device number 49 [ 7303.105269][T29184] usblp0: removed [ 7309.614967][ T2702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 7309.655766][ T2702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 7311.861404][ T2702] hsr_slave_0: entered promiscuous mode [ 7311.909371][ T2702] hsr_slave_1: entered promiscuous mode [ 7311.951006][ T2702] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 7311.952071][ T2702] Cannot create hsr debugfs directory [ 7312.849209][ T2702] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7312.955465][ T2702] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7313.072439][ T2702] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7313.175029][ T2702] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 7313.798756][ T2702] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 7313.947746][ T2702] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 7313.972654][ T2702] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 7314.015867][ T2702] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 7315.981912][ T2702] 8021q: adding VLAN 0 to HW filter on device bond0 [ 7322.504913][ T2702] veth0_vlan: entered promiscuous mode [ 7322.580279][ T2702] veth1_vlan: entered promiscuous mode [ 7322.809241][ T2702] veth0_macvtap: entered promiscuous mode [ 7322.837538][ T2702] veth1_macvtap: entered promiscuous mode [ 7323.094837][ T2702] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 7323.096346][ T2702] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 7323.097463][ T2702] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 7323.098579][ T2702] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 7323.160471][T22465] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 7323.162023][ C1] raw-gadget.0 gadget.0: ignoring, device is not running [ 7323.312621][T22465] usb 1-1: device descriptor read/64, error -32 [ 7323.550631][T22465] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 7323.838378][T22465] usb 1-1: config 0 has no interfaces? [ 7323.839080][T22465] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 7323.840606][T22465] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 7323.881904][T22465] usb 1-1: config 0 descriptor?? [ 7328.508781][ T2804] netlink: 40 bytes leftover after parsing attributes in process `syz.1.9093'. [ 7335.236924][T30563] usb 1-1: USB disconnect, device number 51 [ 7337.566726][ T2839] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9105'. [ 7337.582331][ T2839] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9105'. [ 7337.694990][ T2839] hsr_slave_0 (unregistering): left promiscuous mode [ 7339.293335][ T2858] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 7339.352378][ T2858] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 7339.467154][T31953] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 7339.544571][T31953] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 7339.603130][T31953] bond0 (unregistering): Released all slaves [ 7340.447595][ T2866] input: syz1 as /devices/virtual/input/input99 [ 7340.576423][T31953] hsr_slave_0: left promiscuous mode [ 7340.658009][T31953] hsr_slave_1: left promiscuous mode [ 7340.794119][T31953] veth1_macvtap: left promiscuous mode [ 7340.795779][T31953] veth0_macvtap: left promiscuous mode [ 7340.797224][T31953] veth1_vlan: left promiscuous mode [ 7340.798304][T31953] veth0_vlan: left promiscuous mode [ 7342.678105][ T2873] syzkaller0: entered promiscuous mode [ 7342.678835][ T2873] syzkaller0: entered allmulticast mode [ 7345.750677][T31255] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 7345.901021][T31255] usb 1-1: Using ep0 maxpacket: 16 [ 7345.917432][T31255] usb 1-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 7345.920584][T31255] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD7, changing to 0x87 [ 7345.922025][T31255] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 7345.923318][T31255] usb 1-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 7345.948396][T31255] usb 1-1: New USB device found, idVendor=05ac, idProduct=9226, bcdDevice=b2.89 [ 7345.950620][T31255] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 7345.951613][T31255] usb 1-1: Product: syz [ 7345.952377][T31255] usb 1-1: Manufacturer: syz [ 7345.953156][T31255] usb 1-1: SerialNumber: syz [ 7345.969351][T31255] usb 1-1: config 0 descriptor?? [ 7345.990526][T31255] appledisplay 1-1:0.0: Could not find int-in endpoint [ 7346.001230][T31255] usbhid 1-1:0.0: couldn't find an input interrupt endpoint [ 7346.194472][T31255] usb 1-1: USB disconnect, device number 52 [ 7349.166483][ T2935] tmpfs: Bad value for 'mpol' [ 7349.753966][ T2947] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies. [ 7350.081316][ T2952] Unable to handle kernel NULL pointer dereference at virtual address 0000000000000000 [ 7350.082076][ T2952] Mem abort info: [ 7350.089159][ T2952] ESR = 0x0000000096000006 [ 7350.100899][ T2952] EC = 0x25: DABT (current EL), IL = 32 bits [ 7350.101852][ T2952] SET = 0, FnV = 0 [ 7350.102518][ T2952] EA = 0, S1PTW = 0 [ 7350.103166][ T2952] FSC = 0x06: level 2 translation fault [ 7350.104193][ T2952] Data abort info: [ 7350.104893][ T2952] ISV = 0, ISS = 0x00000006, ISS2 = 0x00000000 [ 7350.106016][ T2952] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 7350.106787][ T2952] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 7350.107888][ T2952] user pgtable: 4k pages, 52-bit VAs, pgdp=000000004594d300 SYZFAIL: failed to recv rpc fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 7350.108971][ T2952] [0000000000000000] pgd=080000008b745003, p4d=080000005c464003, pud=0800000062647003, pmd=0000000000000000 [ 7350.131595][ T2952] Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP [ 7350.132252][ T2952] Modules linked in: [ 7350.133101][ T2952] CPU: 0 UID: 0 PID: 2952 Comm: syz.1.9146 Tainted: G B 6.11.0-syzkaller-09959-gabf2050f51fd #0 [ 7350.133958][ T2952] Tainted: [B]=BAD_PAGE [ 7350.134362][ T2952] Hardware name: linux,dummy-virt (DT) [ 7350.134985][ T2952] pstate: 61400009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 7350.135630][ T2952] pc : __pi_strlen+0x14/0x150 [ 7350.136610][ T2952] lr : audit_log_untrustedstring+0x20/0x40 [ 7350.137077][ T2952] sp : ffff800083863c00 [ 7350.137487][ T2952] x29: ffff800083863c00 x28: f8f0000004dd5b40 x27: 0000000000000000 [ 7350.138685][ T2952] x26: 0000000000000000 x25: 0000000000000000 x24: faf000004f7d2340 [ 7350.139636][ T2952] x23: 00000000fffffff3 x22: 0000000000000000 x21: ffff80008051bff0 [ 7350.140485][ T2952] x20: f5f0000003042c00 x19: 0000000000000000 x18: ffffffffffffffff [ 7350.141608][ T2952] x17: ffff800080027db0 x16: ffff8000804f38c8 x15: ffff8000838639e0 [ 7350.142519][ T2952] x14: 0000000000000000 x13: f2f0000051a2f01f x12: ffff800080027eb8 [ 7350.143382][ T2952] x11: ffff800080011558 x10: 000000000000005f x9 : 0000000000000363 [ 7350.144391][ T2952] x8 : 0101010101010101 x7 : 00000000000006c0 x6 : 000000000000005b [ 7350.145300][ T2952] x5 : f2f0000051a2f05b x4 : 0000000000000000 x3 : 0000000000000063 [ 7350.146206][ T2952] x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000000 [ 7350.147188][ T2952] Call trace: [ 7350.147616][ T2952] __pi_strlen+0x14/0x150 [ 7350.148290][ T2952] smack_log_callback+0x7c/0xc8 [ 7350.148904][ T2952] common_lsm_audit+0x5c/0x85c [ 7350.149468][ T2952] smack_log+0xec/0x140 [ 7350.150063][ T2952] smk_access+0x104/0x148 [ 7350.150638][ T2952] smack_watch_key+0xe0/0xf8 [ 7350.151568][ T2952] security_watch_key+0x58/0x148 [ 7350.152279][ T2952] keyctl_watch_key+0xb0/0x1cc [ 7350.152746][ T2952] __arm64_sys_keyctl+0x50/0x290 [ 7350.153214][ T2952] invoke_syscall+0x48/0x110 [ 7350.153849][ T2952] el0_svc_common.constprop.0+0x40/0xe0 [ 7350.154352][ T2952] do_el0_svc+0x1c/0x28 [ 7350.154762][ T2952] el0_svc+0x34/0xec [ 7350.155240][ T2952] el0t_64_sync_handler+0x100/0x12c [ 7350.155814][ T2952] el0t_64_sync+0x19c/0x1a0 [ 7350.156555][ T2952] Code: 92400c04 b200c3e8 f100009f 5400088c (a9400c02) [ 7350.157461][ T2952] ---[ end trace 0000000000000000 ]--- [ 7350.158287][ T2952] Kernel panic - not syncing: Oops: Fatal exception [ 7350.158994][ T2952] SMP: stopping secondary CPUs [ 7350.160238][ T2952] Kernel Offset: disabled [ 7350.161211][ T2952] CPU features: 0x00,0000000d,1e2f797c,1767f6bf [ 7350.162788][ T2952] Memory Limit: none [ 7350.163678][ T2952] Rebooting in 86400 seconds.. VM DIAGNOSIS: 20:03:37 Registers: info registers vcpu 0 CPU#0 PC=ffff80008001224c X00=0000000000000024 X01=0000ffffa8810010 X02=0000000000040000 X03=0000000000000000 X04=0000000000000000 X05=0000000000000000 X06=0000000000000000 X07=0000000000000000 X08=000000000000003f X09=0000000000000000 X10=0000000000000000 X11=0000000000000000 X12=0000000000000000 X13=0000000000000000 X14=0000000000000000 X15=0000000000000000 X16=0000aaaab44bb508 X17=0000ffffa8958d6c X18=0000000000000000 X19=0000000000000004 X20=0000ffffa8c6e7e0 X21=0000000000000004 X22=0000fffffa0fde90 X23=0000000000001cb5 X24=0000aaaae8fc9a20 X25=0000fffffa0fdf68 X26=0000aaaab44bb000 X27=0000fffffa0fdfe8 X28=0000000000000001 X29=0000fffffa0fddd0 X30=0000aaaab441abac SP=ffff800089014000 PSTATE=414003c9 -Z-- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff800080365ba4 X00=f4f000000352a180 X01=0000000000210000 X02=0000000000000003 X03=697665642f000000 X04=697665642f737973 X05=0000000000000018 X06=0000000000000000 X07=0000000000000000 X08=ffff800082294320 X09=0000000000000000 X10=0000000000000000 X11=0000000000000000 X12=0000000000000000 X13=0000000000000000 X14=0000000000000000 X15=0000000000000000 X16=0000000000000000 X17=0000000000000000 X18=0000000000000000 X19=0000000000210000 X20=ffff800088e23b68 X21=0000000000000000 X22=ffff800088e23cf8 X23=0000000000000000 X24=ffff800088e23b67 X25=f8f000000425c620 X26=0000000000000010 X27=f0f000000425caa0 X28=0000000000000000 X29=ffff800088e23ab0 X30=299f800080354da0 SP=ffff800088e23a90 PSTATE=61400009 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000301:00736576616c7300 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:f00ff00ff00f0000:f00000000000000f Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:f00ff00ff00ff00f:f00ff00ff00ff00f Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff00f000000f:ffffff00f000000f Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:3003300330033003:3003300330033003 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:bcbcbc00c00000fc:bcbcbc00c00000fc Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0003000000030003:0003000000030003 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000