Extracting prog: 1m31.84943887s
Minimizing prog: 9m2.233645319s
Simplifying prog options: 0s
Extracting C: 20.241151729s
Simplifying C: 3m39.71528871s


1 programs, 3 VMs, timeouts [15s 6m0s]
extracting reproducer from 1 programs
single: executing 1 programs separately with timeout 15s
testing program (duration=15s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-syz_init_net_socket$bt_l2cap-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_TSC_KHZ-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_TSC_KHZ(r6, 0xaea2, 0xffffffff7fffffff)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
single: successfully extracted reproducer
found reproducer with 16 syscalls
minimizing guilty program
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-syz_init_net_socket$bt_l2cap-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_SET_TSC_KHZ
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_TSC_KHZ(r6, 0xaea2, 0xffffffff7fffffff)

program did not crash
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-syz_init_net_socket$bt_l2cap-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-syz_init_net_socket$bt_l2cap-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)

program did not crash
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-syz_init_net_socket$bt_l2cap-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

program did not crash
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-getpriority-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
r5 = gettid()
getpriority(0x0, r5)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r6 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r6, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-gettid-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$eJzs3U1vW1kZAOD3Ol9OmplkhlkAAqYMAwVVdRJ3JhrNAgYJCSE0EmKWIHVC4kZR7DiKndKELtL/gEQlVrDkB7Duij0bBDs2ZYHERwVqKrEwutc3GTeNGzdfTuPnka7uOffYfs+pdc9x3jQ+AQysqxGxExGjEfFpREzl15P8iI/aR/q4J4/vLe4+vreYRKv1yb+SrD29Fh3PSV3JX7MYET/+fsTPkufjNra2Vxeq1cpGuzo+06ytzzS2tm+s1BaWK8uVtXJ5fm5+9oOb75dPbaxv10bz0pcf/XHnW79IuzWZX+kcx2lqD31kP05qOCJ+eBbB+mAoH89ovzvCsRQi4s2IeCe7/6diKHs3AYDLrNWaitZUZx0AuOwKWQ4sKZTyXMBkFAqlUjuH91ZMFKr1RvP67frm2lI7VzYdI4XbK9XKbJ4rnI6RJK3PZeXP6uUD9ZsR8UZE/HJsPKuXFuvVpX5+8AGAAXblwPr/37H2+g8AXHLFfncAADh31n8AGDzWfwAYPNZ/ABg8L7P++6wAAJeDNR0ABo/1HwAGyo8+/jg9Wrv5918v3dnaXK3fubFUaayWapuLpcX6xnppuV5fzr6zp3bU61Xr9fW592Lz7vS31xvNmcbW9q1afXOteSv7Xu9blZFzGRUA8CJvvP3wL0lE7Hw4nh3RsZeDtRout0K/OwD0zdCxn2nmAIBX1Ql+xpcegEvikC16n1GMiPGDF1utVuvsugScsWtfkP+HQdWRxfO/gGHAHD//D7zqhvvdAaBvWq2k1z3/o9cHAgAXmxw/0OX3/2/m59/lvxz46dLBRzw4y14BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxba3/28p3wt8MgqFUinitYiYjpHk9kq1MhsRr0fEn8dGxtL6XJ/7DACcVOHvSb7/17WpdycPto4mT8eyc0T8/Nef/OruQrO58af0+r/3rzcf5NfL/eg/AHCUvXU6O3f8IP/k8b3FveM8+/OP70ZEsR3/e1dGY3c//nAMZ+dijETExH+SvN6WdOQuTmLnfkR8/rDxJzGZ5UDaO58ejJ/Gfu1c4xeeiV/I2trn9N/ic6fQFxg0D9P556PD7r9CXM3Oh9//xWyGOrl8/ktfajGd+3Y74u/Nf0Nd5r+rvcZ47w8/aJfGn2+7H/HF4Yi92Lsd889e/KRL/Hd7jP/XL33lnW5trd9EXIvD43fGmmnW1mcaW9s3VmoLy5Xlylq5PD83P/vBzffLM1mOeqb7avDPD6+/3q0tHf9El/jFI8b/9R7H/9v/ffqTr74g/je/dlj8Qrz1gvjpmviNHuMvTPy+2K0tjb/UZfxHvf/Xe4z/6G/bz20bDgD0T2Nre3WhWq1snGdh74PEuQZV6K0wlr85F6U/zxQubMdWF6rfOa9Yo/FSz2q1jhWr24xxGlk34CLYv+kj4mm/OwMAAAAAAAAAAAAAABzqTP9QKWkX+j1GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALq//BwAA///cbMlk")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
gettid()
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-memfd_create-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
memfd_create(0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$eJzs3U1vW1kZAOD3Ol9OmplkhlkAAqYMAwVVdRJ3JhrNAgYJCSE0EmKWIHVC4kZR7DiKndKELtL/gEQlVrDkB7Duij0bBDs2ZYHERwVqKrEwutc3GTeNGzdfTuPnka7uOffYfs+pdc9x3jQ+AQysqxGxExGjEfFpREzl15P8iI/aR/q4J4/vLe4+vreYRKv1yb+SrD29Fh3PSV3JX7MYET/+fsTPkufjNra2Vxeq1cpGuzo+06ytzzS2tm+s1BaWK8uVtXJ5fm5+9oOb75dPbaxv10bz0pcf/XHnW79IuzWZX+kcx2lqD31kP05qOCJ+eBbB+mAoH89ovzvCsRQi4s2IeCe7/6diKHs3AYDLrNWaitZUZx0AuOwKWQ4sKZTyXMBkFAqlUjuH91ZMFKr1RvP67frm2lI7VzYdI4XbK9XKbJ4rnI6RJK3PZeXP6uUD9ZsR8UZE/HJsPKuXFuvVpX5+8AGAAXblwPr/37H2+g8AXHLFfncAADh31n8AGDzWfwAYPNZ/ABg8L7P++6wAAJeDNR0ABo/1HwAGyo8+/jg9Wrv5918v3dnaXK3fubFUaayWapuLpcX6xnppuV5fzr6zp3bU61Xr9fW592Lz7vS31xvNmcbW9q1afXOteSv7Xu9blZFzGRUA8CJvvP3wL0lE7Hw4nh3RsZeDtRout0K/OwD0zdCxn2nmAIBX1Ql+xpcegEvikC16n1GMiPGDF1utVuvsugScsWtfkP+HQdWRxfO/gGHAHD//D7zqhvvdAaBvWq2k1z3/o9cHAgAXmxw/0OX3/2/m59/lvxz46dLBRzw4y14BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxba3/28p3wt8MgqFUinitYiYjpHk9kq1MhsRr0fEn8dGxtL6XJ/7DACcVOHvSb7/17WpdycPto4mT8eyc0T8/Nef/OruQrO58af0+r/3rzcf5NfL/eg/AHCUvXU6O3f8IP/k8b3FveM8+/OP70ZEsR3/e1dGY3c//nAMZ+dijETExH+SvN6WdOQuTmLnfkR8/rDxJzGZ5UDaO58ejJ/Gfu1c4xeeiV/I2trn9N/ic6fQFxg0D9P556PD7r9CXM3Oh9//xWyGOrl8/ktfajGd+3Y74u/Nf0Nd5r+rvcZ47w8/aJfGn2+7H/HF4Yi92Lsd889e/KRL/Hd7jP/XL33lnW5trd9EXIvD43fGmmnW1mcaW9s3VmoLy5Xlylq5PD83P/vBzffLM1mOeqb7avDPD6+/3q0tHf9El/jFI8b/9R7H/9v/ffqTr74g/je/dlj8Qrz1gvjpmviNHuMvTPy+2K0tjb/UZfxHvf/Xe4z/6G/bz20bDgD0T2Nre3WhWq1snGdh74PEuQZV6K0wlr85F6U/zxQubMdWF6rfOa9Yo/FSz2q1jhWr24xxGlk34CLYv+kj4mm/OwMAAAAAAAAAAAAAABzqTP9QKWkX+j1GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALq//BwAA///cbMlk")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-openat$kvm-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

program did not crash
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-epoll_ctl$EPOLL_CTL_MOD-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r2 = dup(r1)
recvmsg(r2, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, r0, &(0x7f0000000040)={0x1})
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

program did not crash
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-recvmsg-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
recvmsg(r1, &(0x7f0000001980)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-dup-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
dup(r0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-syz_init_net_socket$bt_l2cap-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$eJzs3U1vW1kZAOD3Ol9OmplkhlkAAqYMAwVVdRJ3JhrNAgYJCSE0EmKWIHVC4kZR7DiKndKELtL/gEQlVrDkB7Duij0bBDs2ZYHERwVqKrEwutc3GTeNGzdfTuPnka7uOffYfs+pdc9x3jQ+AQysqxGxExGjEfFpREzl15P8iI/aR/q4J4/vLe4+vreYRKv1yb+SrD29Fh3PSV3JX7MYET/+fsTPkufjNra2Vxeq1cpGuzo+06ytzzS2tm+s1BaWK8uVtXJ5fm5+9oOb75dPbaxv10bz0pcf/XHnW79IuzWZX+kcx2lqD31kP05qOCJ+eBbB+mAoH89ovzvCsRQi4s2IeCe7/6diKHs3AYDLrNWaitZUZx0AuOwKWQ4sKZTyXMBkFAqlUjuH91ZMFKr1RvP67frm2lI7VzYdI4XbK9XKbJ4rnI6RJK3PZeXP6uUD9ZsR8UZE/HJsPKuXFuvVpX5+8AGAAXblwPr/37H2+g8AXHLFfncAADh31n8AGDzWfwAYPNZ/ABg8L7P++6wAAJeDNR0ABo/1HwAGyo8+/jg9Wrv5918v3dnaXK3fubFUaayWapuLpcX6xnppuV5fzr6zp3bU61Xr9fW592Lz7vS31xvNmcbW9q1afXOteSv7Xu9blZFzGRUA8CJvvP3wL0lE7Hw4nh3RsZeDtRout0K/OwD0zdCxn2nmAIBX1Ql+xpcegEvikC16n1GMiPGDF1utVuvsugScsWtfkP+HQdWRxfO/gGHAHD//D7zqhvvdAaBvWq2k1z3/o9cHAgAXmxw/0OX3/2/m59/lvxz46dLBRzw4y14BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxba3/28p3wt8MgqFUinitYiYjpHk9kq1MhsRr0fEn8dGxtL6XJ/7DACcVOHvSb7/17WpdycPto4mT8eyc0T8/Nef/OruQrO58af0+r/3rzcf5NfL/eg/AHCUvXU6O3f8IP/k8b3FveM8+/OP70ZEsR3/e1dGY3c//nAMZ+dijETExH+SvN6WdOQuTmLnfkR8/rDxJzGZ5UDaO58ejJ/Gfu1c4xeeiV/I2trn9N/ic6fQFxg0D9P556PD7r9CXM3Oh9//xWyGOrl8/ktfajGd+3Y74u/Nf0Nd5r+rvcZ47w8/aJfGn2+7H/HF4Yi92Lsd889e/KRL/Hd7jP/XL33lnW5trd9EXIvD43fGmmnW1mcaW9s3VmoLy5Xlylq5PD83P/vBzffLM1mOeqb7avDPD6+/3q0tHf9El/jFI8b/9R7H/9v/ffqTr74g/je/dlj8Qrz1gvjpmviNHuMvTPy+2K0tjb/UZfxHvf/Xe4z/6G/bz20bDgD0T2Nre3WhWq1snGdh74PEuQZV6K0wlr85F6U/zxQubMdWF6rfOa9Yo/FSz2q1jhWr24xxGlk34CLYv+kj4mm/OwMAAAAAAAAAAAAAABzqTP9QKWkX+j1GAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALq//BwAA///cbMlk")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-fsopen-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
fsopen(&(0x7f0000000080)='configfs\x00', 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_mount_image$ext4-openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0xa0c81e, &(0x7f0000000000)={[], [{@smackfsroot={'smackfsroot', 0x3d, '*'}}, {@fsname={'fsname', 0x3d, '%'}}, {@permit_directio}]}, 0x1, 0x501, &(0x7f0000000940)="$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")
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
detailed listing:
executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=22.5s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
simplifying C reproducer
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing compiled C program (duration=22.5s, {Threaded:false Repeat:false RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:false Cgroups:false BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program did not crash
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:true Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
reproducing took 14m34.039538238s
repro crashed as (corrupted=true):
BUG: kernel NULL pointer dereference, address: 0000000000000086
#PF: supervisor instruction fetch in kernel mode
#PF: error_code(0x0010) - not-present page
PGD 1eb5a4067 P4D 1eb5a4067 PUD 1ebf57067 PMD 0 
Oops: 0010 [#1] PREEMPT SMP KASAN
CPU: 1 PID: 742 Comm: syz-executor291 Not tainted 5.4.274-syzkaller-00002-g6f97bd951d82 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
RIP: 0010:0x86
Code: Bad RIP value.
RSP: 0018:ffff8881e90f7308 EFLAGS: 00010086
RAX: ffff8881e90f7338 RBX: dffffc0000000000 RCX: ffff8881e9eb0fc0
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000ec0 R08: ffffffff82316ca1 R09: ffffffff811c90d5
R10: ffff8881e9eb0fc0 R11: 0000000000000002 R12: ffffffff84601550
R13: fffffe0000000ec8 R14: ffff8881e8da8000 R15: fffffe0000000ecb
FS:  000055555742b380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000000005c CR3: 00000001ea118000 CR4: 00000000003426a0
Call Trace:
Modules linked in:
CR2: 0000000000000086
---[ end trace b51900039f49c4c2 ]---
RIP: 0010:0x86
Code: Bad RIP value.
RSP: 0018:ffff8881e90f7308 EFLAGS: 00010086
RAX: ffff8881e90f7338 RBX: dffffc0000000000 RCX: ffff8881e9eb0fc0
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000ec0 R08: ffffffff82316ca1 R09: ffffffff811c90d5
R10: ffff8881e9eb0fc0 R11: 0000000000000002 R12: ffffffff84601550
R13: fffffe0000000ec8 R14: ffff8881e8da8000 R15: fffffe0000000ecb
FS:  000055555742b380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000000005c CR3: 00000001ea118000 CR4: 00000000003426a0

report is corrupted, running repro again
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
report is corrupted, running repro again
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
report is corrupted, running repro again
testing compiled C program (duration=22.5s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox: SandboxArg:0 Leak:false NetInjection:false NetDevices:false NetReset:false Cgroups:false BinfmtMisc:false CloseFDs:false KCSAN:false DevlinkPCI:false NicVF:false USB:false VhciInjection:false Wifi:false IEEE802154:false Sysctl:false Swap:false UseTmpDir:false HandleSegv:false Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): openat$kvm-ioctl$KVM_CREATE_VM-ioctl$KVM_CREATE_IRQCHIP-ioctl$KVM_CREATE_VCPU-ioctl$KVM_RUN
program crashed: BUG: unable to handle kernel NULL pointer dereference in corrupted
final repro crashed as (corrupted=true):
BUG: kernel NULL pointer dereference, address: 0000000000000086
#PF: supervisor instruction fetch in kernel mode
#PF: error_code(0x0010) - not-present page
PGD 1dd792067 P4D 1dd792067 PUD 1dd776067 PMD 0 
Oops: 0010 [#1] PREEMPT SMP KASAN
CPU: 0 PID: 349 Comm: syz-executor801 Not tainted 5.4.274-syzkaller-00002-g6f97bd951d82 #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
RIP: 0010:0x86
Code: Bad RIP value.
RSP: 0018:ffff8881dd27f308 EFLAGS: 00010086
RAX: ffff8881dd27f338 RBX: dffffc0000000000 RCX: ffff8881dd62de80
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000ec0 R08: ffffffff82316ca1 R09: ffffffff811c90d5
R10: ffff8881dd62de80 R11: 0000000000000002 R12: ffffffff84601550
R13: fffffe0000000ec8 R14: ffff8881dd2e0000 R15: fffffe0000000ecb
FS:  00005555568e5380(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000000005c CR3: 00000001dd158000 CR4: 00000000003426b0
Call Trace:
Modules linked in:
CR2: 0000000000000086
---[ end trace 1fdb3d834f927402 ]---
RIP: 0010:0x86
Code: Bad RIP value.
RSP: 0018:ffff8881dd27f308 EFLAGS: 00010086
RAX: ffff8881dd27f338 RBX: dffffc0000000000 RCX: ffff8881dd62de80
RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
RBP: 0000000000000ec0 R08: ffffffff82316ca1 R09: ffffffff811c90d5
R10: ffff8881dd62de80 R11: 0000000000000002 R12: ffffffff84601550
R13: fffffe0000000ec8 R14: ffff8881dd2e0000 R15: fffffe0000000ecb
FS:  00005555568e5380(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
CR2: 000000000000005c CR3: 00000001dd158000 CR4: 00000000003426b0