Extracting prog: 1m16.000143224s
Minimizing prog: 24m11.532171178s
Simplifying prog options: 4m29.988100389s
Extracting C: 1m51.791880847s
Simplifying C: 0s


extracting reproducer from 1 programs
testing a last program of every proc
single: executing 1 programs separately with timeout 30s
testing program (duration=30s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-keyctl$chown-ioctl$TIOCGSID-syz_mount_image$ext4-syz_clone-syz_clone3
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
r2 = getgid()
keyctl$chown(0x4, r1, 0xffffffffffffffff, r2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
syz_clone3(0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
single: successfully extracted reproducer
found reproducer with 15 syscalls
minimizing guilty program
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-keyctl$chown-ioctl$TIOCGSID-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
r2 = getgid()
keyctl$chown(0x4, r1, 0xffffffffffffffff, r2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-keyctl$chown-ioctl$TIOCGSID-syz_mount_image$ext4
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
r2 = getgid()
keyctl$chown(0x4, r1, 0xffffffffffffffff, r2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")

program did not crash
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-keyctl$chown-ioctl$TIOCGSID-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
r2 = getgid()
keyctl$chown(0x4, r1, 0xffffffffffffffff, r2)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-keyctl$chown-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
r2 = getgid()
keyctl$chown(0x4, r1, 0xffffffffffffffff, r2)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-getgid-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
getgid()
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-keyctl$update-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r1 = add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$update(0x2, r1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-add_key-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-shutdown-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-setsockopt$bt_l2cap_L2CAP_OPTIONS-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-add_key-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
add_key(0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-ioctl$UFFDIO_WRITEPROTECT-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
ioctl$UFFDIO_WRITEPROTECT(0xffffffffffffffff, 0xc018aa06, 0x0)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
listen(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
testing program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, 0x0, 0x0)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
extracting C reproducer
testing compiled C program (duration=1m8.214448138s, {Threaded:true Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
program did not crash
simplifying guilty program options
testing program (duration=1m8.214448138s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program crashed: BUG: unable to handle kernel paging request in lock_sock_nested
extracting C reproducer
testing compiled C program (duration=1m8.214448138s, {Threaded:false Repeat:true RepeatTimes:0 Procs:5 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
program did not crash
testing program (duration=1m8.214448138s, {Threaded:false Repeat:true RepeatTimes:0 Procs:1 Slowdown:1 Sandbox:none SandboxArg:0 Leak:false NetInjection:true NetDevices:true NetReset:true Cgroups:true BinfmtMisc:true CloseFDs:true KCSAN:false DevlinkPCI:false NicVF:false USB:true VhciInjection:true Wifi:true IEEE802154:true Sysctl:true Swap:true UseTmpDir:true HandleSegv:true Trace:false LegacyOptions:{Collide:false Fault:false FaultCall:0 FaultNth:0}}): syz_init_net_socket$bt_l2cap-bind$bt_l2cap-listen-syz_mount_image$ext4-syz_clone
detailed listing:
executing program 0:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x8001}, 0xe)
listen(r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000004fc0)={[{@grpjquota}, {@noblock_validity}, {@nouid32}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x1000}}, {@nogrpid}, {@nombcache}, {@resuid={'resuid', 0x3d, 0xee00}}, {@data_err_abort}, {@grpid}, {@noauto_da_alloc}]}, 0x0, 0x4f0, &(0x7f0000000640)="$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")
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

program did not crash
reproducing took 31m21.579983838s
repro crashed as (corrupted=false):
Unable to handle kernel paging request at virtual address dfff800000000024
Mem abort info:
  ESR = 0x0000000096000006
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x06: level 2 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000006
  CM = 0, WnR = 0
[dfff800000000024] address between user and kernel address ranges
Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 PID: 4134 Comm: kworker/0:12 Not tainted 5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: events l2cap_info_timeout
pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __lock_acquire+0x104/0x7638 kernel/locking/lockdep.c:4882
lr : lock_acquire+0x240/0x77c kernel/locking/lockdep.c:5623
sp : ffff8000205a7480
x29: ffff8000205a7720 x28: 1ffff0000296e06b x27: 0000000000000001
x26: ffff800010eef324 x25: ffff7000040b4eb4 x24: 0000000000000000
x23: 0000000000000000 x22: ffff0000c66051c0 x21: 0000000000000000
x20: 0000000000000000 x19: 0000000000000120 x18: ffff8000205a7300
x17: 0000000000000000 x16: ffff800011b4e58c x15: 000000000001e779
x14: ffff800017202500 x13: ffff8000205a75a0 x12: dfff800000000000
x11: ffff8000082eff60 x10: ffff800014b7035c x9 : 00000000000000f3
x8 : 0000000000000024 x7 : ffff800010eef324 x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000
x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000120
Call trace:
 __lock_acquire+0x104/0x7638 kernel/locking/lockdep.c:4882
 lock_acquire+0x240/0x77c kernel/locking/lockdep.c:5623
 lock_sock_nested+0xec/0x1ec net/core/sock.c:3253
 lock_sock include/net/sock.h:1684 [inline]
 l2cap_sock_ready_cb+0x4c/0x130 net/bluetooth/l2cap_sock.c:1649
 l2cap_chan_ready net/bluetooth/l2cap_core.c:1385 [inline]
 l2cap_conn_start+0x668/0xd28 net/bluetooth/l2cap_core.c:1643
 l2cap_info_timeout+0x68/0xb8 net/bluetooth/l2cap_core.c:1810
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 worker_thread+0x910/0x1034 kernel/workqueue.c:2457
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
Code: b0064908 b94d8108 34000208 d343fe68 (386c6908) 
---[ end trace f5aa89955b51d120 ]---
----------------
Code disassembly (best guess):
   0:	b0064908 	adrp	x8, 0xc921000
   4:	b94d8108 	ldr	w8, [x8, #3456]
   8:	34000208 	cbz	w8, 0x48
   c:	d343fe68 	lsr	x8, x19, #3
* 10:	386c6908 	ldrb	w8, [x8, x12] <-- trapping instruction

final repro crashed as (corrupted=false):
Unable to handle kernel paging request at virtual address dfff800000000024
Mem abort info:
  ESR = 0x0000000096000006
  EC = 0x25: DABT (current EL), IL = 32 bits
  SET = 0, FnV = 0
  EA = 0, S1PTW = 0
  FSC = 0x06: level 2 translation fault
Data abort info:
  ISV = 0, ISS = 0x00000006
  CM = 0, WnR = 0
[dfff800000000024] address between user and kernel address ranges
Internal error: Oops: 0000000096000006 [#1] PREEMPT SMP
Modules linked in:
CPU: 0 PID: 4134 Comm: kworker/0:12 Not tainted 5.15.178-syzkaller #0
Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
Workqueue: events l2cap_info_timeout
pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
pc : __lock_acquire+0x104/0x7638 kernel/locking/lockdep.c:4882
lr : lock_acquire+0x240/0x77c kernel/locking/lockdep.c:5623
sp : ffff8000205a7480
x29: ffff8000205a7720 x28: 1ffff0000296e06b x27: 0000000000000001
x26: ffff800010eef324 x25: ffff7000040b4eb4 x24: 0000000000000000
x23: 0000000000000000 x22: ffff0000c66051c0 x21: 0000000000000000
x20: 0000000000000000 x19: 0000000000000120 x18: ffff8000205a7300
x17: 0000000000000000 x16: ffff800011b4e58c x15: 000000000001e779
x14: ffff800017202500 x13: ffff8000205a75a0 x12: dfff800000000000
x11: ffff8000082eff60 x10: ffff800014b7035c x9 : 00000000000000f3
x8 : 0000000000000024 x7 : ffff800010eef324 x6 : 0000000000000000
x5 : 0000000000000000 x4 : 0000000000000001 x3 : 0000000000000000
x2 : 0000000000000000 x1 : 0000000000000000 x0 : 0000000000000120
Call trace:
 __lock_acquire+0x104/0x7638 kernel/locking/lockdep.c:4882
 lock_acquire+0x240/0x77c kernel/locking/lockdep.c:5623
 lock_sock_nested+0xec/0x1ec net/core/sock.c:3253
 lock_sock include/net/sock.h:1684 [inline]
 l2cap_sock_ready_cb+0x4c/0x130 net/bluetooth/l2cap_sock.c:1649
 l2cap_chan_ready net/bluetooth/l2cap_core.c:1385 [inline]
 l2cap_conn_start+0x668/0xd28 net/bluetooth/l2cap_core.c:1643
 l2cap_info_timeout+0x68/0xb8 net/bluetooth/l2cap_core.c:1810
 process_one_work+0x790/0x11b8 kernel/workqueue.c:2310
 worker_thread+0x910/0x1034 kernel/workqueue.c:2457
 kthread+0x37c/0x45c kernel/kthread.c:334
 ret_from_fork+0x10/0x20 arch/arm64/kernel/entry.S:870
Code: b0064908 b94d8108 34000208 d343fe68 (386c6908) 
---[ end trace f5aa89955b51d120 ]---
----------------
Code disassembly (best guess):
   0:	b0064908 	adrp	x8, 0xc921000
   4:	b94d8108 	ldr	w8, [x8, #3456]
   8:	34000208 	cbz	w8, 0x48
   c:	d343fe68 	lsr	x8, x19, #3
* 10:	386c6908 	ldrb	w8, [x8, x12] <-- trapping instruction