[....] Starting periodic command scheduler: cron[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.
[....] Starting OpenBSD Secure Shell server: sshd[   25.200268] random: sshd: uninitialized urandom read (32 bytes read)
[?25l[?1c7[1G[[32m ok [39;49m8[?25h[?0c.

Debian GNU/Linux 7 syzkaller ttyS0

syzkaller login: [   30.205449] random: sshd: uninitialized urandom read (32 bytes read)
[   30.789145] random: sshd: uninitialized urandom read (32 bytes read)
[   31.324015] random: sshd: uninitialized urandom read (32 bytes read)
[   31.501275] random: sshd: uninitialized urandom read (32 bytes read)
Warning: Permanently added '10.128.10.34' (ECDSA) to the list of known hosts.
[   37.033030] random: sshd: uninitialized urandom read (32 bytes read)
executing program
[   37.130818] input: syz1 as /devices/virtual/input/input5
[   37.147090] FAULT_INJECTION: forcing a failure.
[   37.147090] name failslab, interval 1, probability 0, space 0, times 1
[   37.158740] CPU: 1 PID: 4685 Comm: syz-executor215 Not tainted 4.19.0-rc1+ #215
[   37.166177] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   37.175512] Call Trace:
[   37.178094]  dump_stack+0x1c9/0x2b4
[   37.181715]  ? dump_stack_print_info.cold.2+0x52/0x52
[   37.186894]  ? lock_release+0x9f0/0x9f0
[   37.190860]  should_fail.cold.4+0xa/0x11
[   37.194909]  ? fault_create_debugfs_attr+0x1f0/0x1f0
[   37.199996]  ? graph_lock+0x170/0x170
[   37.203782]  ? kasan_check_write+0x14/0x20
[   37.208004]  ? __mutex_lock+0x6d0/0x1700
[   37.212049]  ? graph_lock+0x170/0x170
[   37.215864]  ? print_usage_bug+0xc0/0xc0
[   37.219912]  ? graph_lock+0x170/0x170
[   37.223699]  ? find_held_lock+0x36/0x1c0
[   37.227747]  ? find_held_lock+0x36/0x1c0
[   37.231794]  ? __lock_is_held+0xb5/0x140
[   37.235846]  ? check_same_owner+0x340/0x340
[   37.240157]  ? kasan_check_read+0x11/0x20
[   37.244290]  ? device_pm_check_callbacks+0x116/0x3f0
[   37.249386]  ? rcu_note_context_switch+0x680/0x680
[   37.254306]  __should_failslab+0x124/0x180
[   37.258543]  should_failslab+0x9/0x14
[   37.262355]  kmem_cache_alloc_trace+0x2b5/0x730
[   37.267015]  ? device_pm_check_callbacks+0x116/0x3f0
[   37.272107]  ? device_create_file+0x1e0/0x1e0
[   37.276636]  kobject_uevent_env+0x20f/0x1110
[   37.281033]  ? sysfs_remove_group+0xf6/0x1b0
[   37.285430]  kobject_uevent+0x1f/0x30
[   37.289230]  device_del+0x6c9/0xb70
[   37.292848]  ? __device_links_no_driver+0x330/0x330
[   37.297855]  __input_unregister_device+0x49b/0x630
[   37.302770]  ? input_dev_suspend+0xa0/0xa0
[   37.307005]  ? lock_downgrade+0x8f0/0x8f0
[   37.311148]  ? kasan_check_read+0x11/0x20
[   37.315285]  ? do_raw_spin_unlock+0xa7/0x2f0
[   37.319678]  ? do_raw_spin_trylock+0x1c0/0x1c0
[   37.324248]  ? kasan_check_write+0x14/0x20
[   37.328471]  input_unregister_device+0xc5/0x110
[   37.333146]  uinput_destroy_device+0x1ef/0x250
[   37.337721]  uinput_ioctl_handler.isra.10+0x1439/0x2540
[   37.343072]  ? uinput_request_submit.part.9+0x2d0/0x2d0
[   37.348417]  ? graph_lock+0x170/0x170
[   37.352207]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   37.357731]  ? proc_fail_nth_write+0x9e/0x210
[   37.362212]  ? proc_cwd_link+0x1d0/0x1d0
[   37.366261]  ? trace_hardirqs_off+0xb8/0x2b0
[   37.370662]  ? find_held_lock+0x36/0x1c0
[   37.374713]  uinput_ioctl+0x4c/0x60
[   37.378334]  ? uinput_compat_ioctl+0x90/0x90
[   37.382737]  do_vfs_ioctl+0x1de/0x1720
[   37.386609]  ? __lock_is_held+0xb5/0x140
[   37.390674]  ? ioctl_preallocate+0x300/0x300
[   37.395089]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.400612]  ? __fget_light+0x2f7/0x440
[   37.404584]  ? fget_raw+0x20/0x20
[   37.408025]  ? __sb_end_write+0xac/0xe0
[   37.411990]  ? do_syscall_64+0x9a/0x820
[   37.415950]  ? do_syscall_64+0x9a/0x820
[   37.419910]  ? lockdep_hardirqs_on+0x421/0x5c0
[   37.424482]  ? security_file_ioctl+0x94/0xc0
[   37.428879]  ksys_ioctl+0xa9/0xd0
[   37.432348]  __x64_sys_ioctl+0x73/0xb0
[   37.436228]  do_syscall_64+0x1b9/0x820
[   37.440104]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   37.445457]  ? syscall_return_slowpath+0x5e0/0x5e0
[   37.450374]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.455202]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   37.460204]  ? prepare_exit_to_usermode+0x291/0x3b0
[   37.465210]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   37.470062]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   37.475236] RIP: 0033:0x444da9
[   37.478418] Code: 18 89 d0 c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 7b d8 fb ff c3 66 2e 0f 1f 84 00 00 00 00
[   37.497306] RSP: 002b:00007fff70261288 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   37.505016] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000444da9
[   37.512269] RDX: 0000000000000001 RSI: 0000000000005502 RDI: 0000000000000004
[   37.519524] RBP: 00000000006cf018 R08: 0000000000000001 R09: 0000000000000038
[   37.526785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000006
[   37.534040] R13: ffffffffffffffff R14: 0000000000000000 R15: 0000000000000000
[   37.547466] ==================================================================
[   37.554894] BUG: KASAN: use-after-free in string+0x2c6/0x2d0
[   37.560699] Read of size 1 at addr ffff8801d79c5080 by task syz-executor215/4685
[   37.568228] 
[   37.569860] CPU: 1 PID: 4685 Comm: syz-executor215 Not tainted 4.19.0-rc1+ #215
[   37.577288] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   37.586621] Call Trace:
[   37.589200]  dump_stack+0x1c9/0x2b4
[   37.592815]  ? dump_stack_print_info.cold.2+0x52/0x52
[   37.597990]  ? printk+0xa7/0xcf
[   37.601256]  ? kmsg_dump_rewind_nolock+0xe4/0xe4
[   37.605999]  ? string+0x2c6/0x2d0
[   37.609441]  print_address_description+0x6c/0x20b
[   37.614269]  ? string+0x2c6/0x2d0
[   37.617710]  kasan_report.cold.7+0x242/0x30d
[   37.622106]  __asan_report_load1_noabort+0x14/0x20
[   37.627025]  string+0x2c6/0x2d0
[   37.630292]  ? widen_string+0x2e0/0x2e0
[   37.634253]  ? kasan_check_write+0x14/0x20
[   37.638475]  ? do_raw_spin_lock+0xc1/0x200
[   37.642697]  vsnprintf+0x48f/0x1b60
[   37.646313]  ? pointer+0x990/0x990
[   37.649854]  ? widen_string+0xe0/0x2e0
[   37.653726]  ? kobject_get_path+0xc2/0x1a0
[   37.657970]  ? format_decode+0xaf0/0xaf0
[   37.662019]  ? evdev_free+0x4f/0x70
[   37.665636]  add_uevent_var+0x140/0x2f0
[   37.669601]  ? cleanup_uevent_env+0x50/0x50
[   37.673905]  ? string+0x225/0x2d0
[   37.677343]  ? widen_string+0x2e0/0x2e0
[   37.681306]  ? input_dev_uevent+0x111/0x860
[   37.685618]  input_dev_uevent+0x15d/0x860
[   37.689753]  ? vsnprintf+0x20d/0x1b60
[   37.693540]  ? input_add_uevent_bm_var+0x150/0x150
[   37.698456]  dev_uevent+0x340/0x7e0
[   37.702071]  ? device_get_devnode+0x2e0/0x2e0
[   37.706569]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   37.711587]  ? add_uevent_var+0x229/0x2f0
[   37.715767]  ? cleanup_uevent_env+0x50/0x50
[   37.720080]  ? kobject_uevent_env+0x2f8/0x1110
[   37.724649]  ? device_get_devnode+0x2e0/0x2e0
[   37.729223]  kobject_uevent_env+0x45b/0x1110
[   37.733621]  ? lock_release+0x9f0/0x9f0
[   37.737591]  kobject_uevent+0x1f/0x30
[   37.741379]  kobject_put+0x1fb/0x280
[   37.745082]  ? __evdev_queue_syn_dropped+0x340/0x340
[   37.750169]  put_device+0x20/0x30
[   37.753607]  evdev_free+0x4f/0x70
[   37.757050]  device_release+0x7e/0x210
[   37.760940]  ? dev_attr_show+0xa0/0xa0
[   37.764814]  kobject_put+0x194/0x280
[   37.768535]  cdev_default_release+0x3e/0x50
[   37.772841]  ? cdev_dynamic_release+0x60/0x60
[   37.777320]  kobject_put+0x194/0x280
[   37.781020]  cdev_put.part.0+0x36/0x50
[   37.784892]  cdev_put+0x1f/0x30
[   37.788159]  __fput+0x8ae/0xa40
[   37.791435]  ? __alloc_file+0x400/0x400
[   37.795413]  ? check_same_owner+0x340/0x340
[   37.799747]  ? kasan_check_write+0x14/0x20
[   37.803995]  ? do_raw_spin_lock+0xc1/0x200
[   37.808218]  ____fput+0x15/0x20
[   37.811484]  task_work_run+0x1e8/0x2a0
[   37.815368]  ? task_work_cancel+0x240/0x240
[   37.819691]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   37.825235]  ? switch_task_namespaces+0xa2/0xd0
[   37.829902]  do_exit+0x1ae4/0x26e0
[   37.833431]  ? lock_downgrade+0x8f0/0x8f0
[   37.837566]  ? do_syscall_64+0x1b9/0x820
[   37.841623]  ? mm_update_next_owner+0x9a0/0x9a0
[   37.846283]  ? trace_hardirqs_on+0x2c0/0x2c0
[   37.850681]  ? kasan_check_write+0x14/0x20
[   37.854900]  ? graph_lock+0x170/0x170
[   37.858689]  ? kasan_check_write+0x14/0x20
[   37.862912]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   37.867843]  ? kfree+0x111/0x210
[   37.871211]  ? wait_for_completion+0x8d0/0x8d0
[   37.875779]  ? __lock_is_held+0xb5/0x140
[   37.879849]  ? uinput_destroy_device+0x101/0x250
[   37.884597]  ? rcu_read_lock_sched_held+0x108/0x120
[   37.889603]  ? kfree+0x1d7/0x210
[   37.892962]  ? uinput_destroy_device+0x128/0x250
[   37.897719]  ? mutex_unlock+0xd/0x10
[   37.901449]  ? uinput_ioctl_handler.isra.10+0xe85/0x2540
[   37.906886]  ? uinput_request_submit.part.9+0x2d0/0x2d0
[   37.912232]  ? graph_lock+0x170/0x170
[   37.916041]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   37.921567]  ? proc_fail_nth_write+0x9e/0x210
[   37.926057]  ? trace_hardirqs_off+0xb8/0x2b0
[   37.930451]  ? find_held_lock+0x36/0x1c0
[   37.934508]  ? uinput_ioctl+0x4c/0x60
[   37.938300]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.943825]  ? do_vfs_ioctl+0x201/0x1720
[   37.947870]  ? __lock_is_held+0xb5/0x140
[   37.951919]  ? ioctl_preallocate+0x300/0x300
[   37.956314]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.961843]  ? __fget_light+0x2f7/0x440
[   37.965806]  ? fget_raw+0x20/0x20
[   37.969247]  ? __sb_end_write+0xac/0xe0
[   37.973215]  do_group_exit+0x177/0x440
[   37.977105]  ? trace_hardirqs_on+0xbd/0x2c0
[   37.981419]  ? __ia32_sys_exit+0x50/0x50
[   37.985468]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   37.990558]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   37.996087]  ? ksys_ioctl+0x81/0xd0
[   37.999703]  __x64_sys_exit_group+0x3e/0x50
[   38.004014]  do_syscall_64+0x1b9/0x820
[   38.008140]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   38.013493]  ? syscall_return_slowpath+0x5e0/0x5e0
[   38.018409]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   38.023239]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   38.028243]  ? prepare_exit_to_usermode+0x291/0x3b0
[   38.033248]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   38.038081]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   38.043255] RIP: 0033:0x443a68
[   38.046438] Code: Bad RIP value.
[   38.049790] RSP: 002b:00007fff70261298 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   38.057483] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000443a68
[   38.064736] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   38.071989] RBP: 00000000004c39c8 R08: 00000000000000e7 R09: ffffffffffffffd0
[   38.079241] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.086496] R13: 00000000006d5180 R14: 0000000000000000 R15: 0000000000000000
[   38.093767] 
[   38.095390] Allocated by task 4685:
[   38.099046]  save_stack+0x43/0xd0
[   38.102486]  kasan_kmalloc+0xc4/0xe0
[   38.106183]  __kmalloc_track_caller+0x14a/0x720
[   38.110837]  kstrndup+0x5f/0xe0
[   38.114105]  uinput_write+0x2fb/0x1120
[   38.117983]  __vfs_write+0x117/0x9d0
[   38.121679]  vfs_write+0x1fc/0x560
[   38.125205]  ksys_write+0x101/0x260
[   38.128819]  __x64_sys_write+0x73/0xb0
[   38.132695]  do_syscall_64+0x1b9/0x820
[   38.136576]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   38.141747] 
[   38.143362] Freed by task 4685:
[   38.146643]  save_stack+0x43/0xd0
[   38.150102]  __kasan_slab_free+0x11a/0x170
[   38.154323]  kasan_slab_free+0xe/0x10
[   38.158109]  kfree+0xd9/0x210
[   38.161206]  uinput_destroy_device+0xf8/0x250
[   38.165719]  uinput_ioctl_handler.isra.10+0x1439/0x2540
[   38.171069]  uinput_ioctl+0x4c/0x60
[   38.174684]  do_vfs_ioctl+0x1de/0x1720
[   38.178556]  ksys_ioctl+0xa9/0xd0
[   38.182004]  __x64_sys_ioctl+0x73/0xb0
[   38.185898]  do_syscall_64+0x1b9/0x820
[   38.189773]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   38.194941] 
[   38.196552] The buggy address belongs to the object at ffff8801d79c5080
[   38.196552]  which belongs to the cache kmalloc-32 of size 32
[   38.209028] The buggy address is located 0 bytes inside of
[   38.209028]  32-byte region [ffff8801d79c5080, ffff8801d79c50a0)
[   38.220642] The buggy address belongs to the page:
[   38.225562] page:ffffea00075e7140 count:1 mapcount:0 mapping:ffff8801dac001c0 index:0xffff8801d79c5fc1
[   38.234999] flags: 0x2fffc0000000100(slab)
[   38.239222] raw: 02fffc0000000100 ffffea00075e0908 ffffea00075e7408 ffff8801dac001c0
[   38.247088] raw: ffff8801d79c5fc1 ffff8801d79c5000 000000010000003f 0000000000000000
[   38.254949] page dumped because: kasan: bad access detected
[   38.260812] 
[   38.262418] Memory state around the buggy address:
[   38.267341]  ffff8801d79c4f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   38.274691]  ffff8801d79c5000: 00 00 fc fc fc fc fc fc 00 00 00 fc fc fc fc fc
[   38.282033] >ffff8801d79c5080: fb fb fb fb fc fc fc fc 07 fc fc fc fc fc fc fc
[   38.289377]                    ^
[   38.292726]  ffff8801d79c5100: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   38.300067]  ffff8801d79c5180: fb fb fb fb fc fc fc fc fb fb fb fb fc fc fc fc
[   38.307405] ==================================================================
[   38.314759] Disabling lock debugging due to kernel taint
[   38.320617] Kernel panic - not syncing: panic_on_warn set ...
[   38.320617] 
[   38.328004] CPU: 1 PID: 4685 Comm: syz-executor215 Tainted: G    B             4.19.0-rc1+ #215
[   38.336832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   38.346165] Call Trace:
[   38.348744]  dump_stack+0x1c9/0x2b4
[   38.352361]  ? dump_stack_print_info.cold.2+0x52/0x52
[   38.357558]  ? trace_hardirqs_on_thunk+0x1a/0x1c
[   38.362307]  panic+0x238/0x4e7
[   38.365494]  ? add_taint.cold.5+0x16/0x16
[   38.369659]  ? trace_hardirqs_on+0xb4/0x2c0
[   38.373961]  ? trace_hardirqs_on+0x9a/0x2c0
[   38.378286]  ? string+0x2c6/0x2d0
[   38.381730]  kasan_end_report+0x47/0x4f
[   38.385705]  kasan_report.cold.7+0x76/0x30d
[   38.390028]  __asan_report_load1_noabort+0x14/0x20
[   38.394947]  string+0x2c6/0x2d0
[   38.398215]  ? widen_string+0x2e0/0x2e0
[   38.402179]  ? kasan_check_write+0x14/0x20
[   38.406419]  ? do_raw_spin_lock+0xc1/0x200
[   38.410641]  vsnprintf+0x48f/0x1b60
[   38.414250]  ? pointer+0x990/0x990
[   38.417773]  ? widen_string+0xe0/0x2e0
[   38.421644]  ? kobject_get_path+0xc2/0x1a0
[   38.425862]  ? format_decode+0xaf0/0xaf0
[   38.429906]  ? evdev_free+0x4f/0x70
[   38.433518]  add_uevent_var+0x140/0x2f0
[   38.437490]  ? cleanup_uevent_env+0x50/0x50
[   38.441796]  ? string+0x225/0x2d0
[   38.445234]  ? widen_string+0x2e0/0x2e0
[   38.449194]  ? input_dev_uevent+0x111/0x860
[   38.453519]  input_dev_uevent+0x15d/0x860
[   38.457663]  ? vsnprintf+0x20d/0x1b60
[   38.461449]  ? input_add_uevent_bm_var+0x150/0x150
[   38.466367]  dev_uevent+0x340/0x7e0
[   38.469979]  ? device_get_devnode+0x2e0/0x2e0
[   38.474477]  ? __sanitizer_cov_trace_cmp8+0x18/0x20
[   38.479480]  ? add_uevent_var+0x229/0x2f0
[   38.483612]  ? cleanup_uevent_env+0x50/0x50
[   38.487921]  ? kobject_uevent_env+0x2f8/0x1110
[   38.492489]  ? device_get_devnode+0x2e0/0x2e0
[   38.496965]  kobject_uevent_env+0x45b/0x1110
[   38.501362]  ? lock_release+0x9f0/0x9f0
[   38.505330]  kobject_uevent+0x1f/0x30
[   38.509143]  kobject_put+0x1fb/0x280
[   38.512844]  ? __evdev_queue_syn_dropped+0x340/0x340
[   38.517946]  put_device+0x20/0x30
[   38.521383]  evdev_free+0x4f/0x70
[   38.524826]  device_release+0x7e/0x210
[   38.528695]  ? dev_attr_show+0xa0/0xa0
[   38.532563]  kobject_put+0x194/0x280
[   38.536270]  cdev_default_release+0x3e/0x50
[   38.540581]  ? cdev_dynamic_release+0x60/0x60
[   38.545059]  kobject_put+0x194/0x280
[   38.548757]  cdev_put.part.0+0x36/0x50
[   38.552649]  cdev_put+0x1f/0x30
[   38.555917]  __fput+0x8ae/0xa40
[   38.559182]  ? __alloc_file+0x400/0x400
[   38.563188]  ? check_same_owner+0x340/0x340
[   38.567494]  ? kasan_check_write+0x14/0x20
[   38.571714]  ? do_raw_spin_lock+0xc1/0x200
[   38.575931]  ____fput+0x15/0x20
[   38.579195]  task_work_run+0x1e8/0x2a0
[   38.583065]  ? task_work_cancel+0x240/0x240
[   38.587372]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   38.592894]  ? switch_task_namespaces+0xa2/0xd0
[   38.597548]  do_exit+0x1ae4/0x26e0
[   38.601073]  ? lock_downgrade+0x8f0/0x8f0
[   38.605205]  ? do_syscall_64+0x1b9/0x820
[   38.609252]  ? mm_update_next_owner+0x9a0/0x9a0
[   38.613905]  ? trace_hardirqs_on+0x2c0/0x2c0
[   38.618298]  ? kasan_check_write+0x14/0x20
[   38.622524]  ? graph_lock+0x170/0x170
[   38.626311]  ? kasan_check_write+0x14/0x20
[   38.630543]  ? __mutex_unlock_slowpath+0x197/0x8c0
[   38.635454]  ? kfree+0x111/0x210
[   38.638808]  ? wait_for_completion+0x8d0/0x8d0
[   38.643373]  ? __lock_is_held+0xb5/0x140
[   38.647439]  ? uinput_destroy_device+0x101/0x250
[   38.652195]  ? rcu_read_lock_sched_held+0x108/0x120
[   38.657210]  ? kfree+0x1d7/0x210
[   38.660583]  ? uinput_destroy_device+0x128/0x250
[   38.665352]  ? mutex_unlock+0xd/0x10
[   38.669052]  ? uinput_ioctl_handler.isra.10+0xe85/0x2540
[   38.674505]  ? uinput_request_submit.part.9+0x2d0/0x2d0
[   38.679850]  ? graph_lock+0x170/0x170
[   38.683639]  ? __sanitizer_cov_trace_const_cmp1+0x1a/0x20
[   38.689161]  ? proc_fail_nth_write+0x9e/0x210
[   38.693641]  ? trace_hardirqs_off+0xb8/0x2b0
[   38.698032]  ? find_held_lock+0x36/0x1c0
[   38.702080]  ? uinput_ioctl+0x4c/0x60
[   38.705866]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   38.711387]  ? do_vfs_ioctl+0x201/0x1720
[   38.715434]  ? __lock_is_held+0xb5/0x140
[   38.719479]  ? ioctl_preallocate+0x300/0x300
[   38.723872]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   38.729478]  ? __fget_light+0x2f7/0x440
[   38.733436]  ? fget_raw+0x20/0x20
[   38.736872]  ? __sb_end_write+0xac/0xe0
[   38.740832]  do_group_exit+0x177/0x440
[   38.744725]  ? trace_hardirqs_on+0xbd/0x2c0
[   38.749033]  ? __ia32_sys_exit+0x50/0x50
[   38.753093]  ? trace_hardirqs_off_caller+0x2b0/0x2b0
[   38.758201]  ? __sanitizer_cov_trace_const_cmp4+0x16/0x20
[   38.763738]  ? ksys_ioctl+0x81/0xd0
[   38.767355]  __x64_sys_exit_group+0x3e/0x50
[   38.771668]  do_syscall_64+0x1b9/0x820
[   38.775540]  ? entry_SYSCALL_64_after_hwframe+0x3e/0xbe
[   38.780890]  ? syscall_return_slowpath+0x5e0/0x5e0
[   38.785805]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   38.790632]  ? trace_hardirqs_on_caller+0x2b0/0x2b0
[   38.795638]  ? prepare_exit_to_usermode+0x291/0x3b0
[   38.800643]  ? trace_hardirqs_off_thunk+0x1a/0x1c
[   38.805477]  entry_SYSCALL_64_after_hwframe+0x49/0xbe
[   38.810650] RIP: 0033:0x443a68
[   38.813830] Code: Bad RIP value.
[   38.817175] RSP: 002b:00007fff70261298 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   38.824866] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000443a68
[   38.832117] RDX: 0000000000000000 RSI: 000000000000003c RDI: 0000000000000000
[   38.839372] RBP: 00000000004c39c8 R08: 00000000000000e7 R09: ffffffffffffffd0
[   38.846624] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[   38.853876] R13: 00000000006d5180 R14: 0000000000000000 R15: 0000000000000000
[   38.861476] Dumping ftrace buffer:
[   38.865007]    (ftrace buffer empty)
[   38.868722] Kernel Offset: disabled
[   38.872331] Rebooting in 86400 seconds..