last executing test programs: 1.417392569s ago: executing program 1 (id=1674): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000000)='kfree\x00', r1}, 0x18) r2 = socket(0x80000000000000a, 0x2, 0x0) setsockopt$inet6_group_source_req(r2, 0x29, 0x2e, &(0x7f00000004c0)={0x20000, {{0xa, 0x4, 0x0, @mcast1={0xff, 0x7}, 0x8}}, {{0xa, 0x4e20, 0x59b, @remote, 0xc}}}, 0x108) 1.256911809s ago: executing program 1 (id=1675): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r2}, 0x10) chdir(&(0x7f0000000100)='./file1\x00') 1.177918839s ago: executing program 1 (id=1677): r0 = socket$inet6(0x10, 0x3, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x6, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000fdffffde18000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x11, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000380)='neigh_update\x00', r1}, 0x10) sendto$inet6(r0, &(0x7f00000000c0)="900000001c001f4d154a817393278bff0a80a578020000000104740014000100ac1414bb0542d6401051a2d708f37ac8da1a297e0099c5ac0000c5b068d0bf46d323456536016466fcb78dcaaf6c3efed495a46215be0000760700c0c80cefd28581d158ba86c9d2896c6d3bca2d0000000b0015009e49a6560641263da4de1df32c1739d7fbee9aa241731ae9e0b390", 0x90, 0x0, 0x0, 0x0) 1.075519243s ago: executing program 1 (id=1679): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000000001811", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000"], 0x0, 0x80000, 0x0, 0x0, 0x41100}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) umount2(&(0x7f00000002c0)='./file0/../file0\x00', 0x0) socket$igmp(0x2, 0x3, 0x2) 927.774342ms ago: executing program 0 (id=1680): bpf$PROG_LOAD(0x5, 0x0, 0x0) ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0) socket$nl_route(0x10, 0x3, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000280)='net/tcp\x00') read$rfkill(r0, 0x0, 0x0) preadv(r0, &(0x7f0000000400)=[{&(0x7f00000014c0)=""/208, 0xd0}], 0x1, 0x4, 0xfffff25a) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x1a, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb8500000043"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0xdb, '\x00', 0x0, @tracing=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0xce56fe61a68fc369, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) 927.518422ms ago: executing program 1 (id=1681): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r0, 0xffffffffffffffff}, 0x4) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00', r2}, 0x10) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000e, 0x20c44fb6edc09a38, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) 759.047013ms ago: executing program 0 (id=1682): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0) mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080)='sysfs\x00', 0x1214040, 0x0) r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000540)='\x00', 0x89901) r3 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r3, 0x0, r2, 0x0, 0x46) close(r2) 518.910844ms ago: executing program 0 (id=1683): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback=0x12, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000001080)='kfree\x00', r0}, 0x18) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000580)={r1, &(0x7f0000000000), 0x0}, 0x20) 309.630921ms ago: executing program 0 (id=1684): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000140), r0) sendmsg$NFC_CMD_DEV_DOWN(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x4040) 308.825981ms ago: executing program 1 (id=1685): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x21, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000f00)='kfree\x00', r1, 0x0, 0x34}, 0x18) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000cc0)=ANY=[@ANYBLOB="a0010000100001000000000000000000fc010000000000000000000000000000000000000000000000000000000000000000ecdf00"/64, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="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"], 0x1a0}}, 0x0) 156.87044ms ago: executing program 0 (id=1686): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="05000000050000000300000007"], 0x50) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0, 0xffffffffffffffff}, 0x4) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x75, r1}, 0x38) 0s ago: executing program 0 (id=1687): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0xf, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000003000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f00000003c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x68, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r1, 0x0, 0x8000000008}, 0x18) mmap(&(0x7f0000ffc000/0x2000)=nil, 0x2000, 0x3000003, 0x13, r0, 0x0) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:4122' (ED25519) to the list of known hosts. syzkaller login: [ 91.406741][ T3315] cgroup: Unknown subsys name 'net' [ 91.767799][ T3315] cgroup: Unknown subsys name 'cpuset' [ 91.797960][ T3315] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 92.353371][ T3315] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 104.128724][ T3320] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.138934][ T3320] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 104.455407][ T3321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 104.497031][ T3321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.045989][ T3320] hsr_slave_0: entered promiscuous mode [ 105.054269][ T3320] hsr_slave_1: entered promiscuous mode [ 105.738397][ T3321] hsr_slave_0: entered promiscuous mode [ 105.743319][ T3321] hsr_slave_1: entered promiscuous mode [ 105.746087][ T3321] debugfs: 'hsr0' already exists in 'hsr' [ 105.748425][ T3321] Cannot create hsr debugfs directory [ 106.296602][ T3320] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.346702][ T3320] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.450601][ T3320] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.504945][ T3320] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.884835][ T3321] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 106.918558][ T3321] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 106.943504][ T3321] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 106.969204][ T3321] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 107.640741][ T3320] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.976327][ T3321] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.270480][ T3320] veth0_vlan: entered promiscuous mode [ 111.338299][ T3320] veth1_vlan: entered promiscuous mode [ 111.620434][ T3320] veth0_macvtap: entered promiscuous mode [ 111.676530][ T3320] veth1_macvtap: entered promiscuous mode [ 111.779157][ T3321] veth0_vlan: entered promiscuous mode [ 111.850313][ T3321] veth1_vlan: entered promiscuous mode [ 112.027743][ T1513] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.030246][ T1513] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.044096][ T1513] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.076956][ T1513] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.237706][ T3321] veth0_macvtap: entered promiscuous mode [ 112.330709][ T3321] veth1_macvtap: entered promiscuous mode [ 112.543615][ T39] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.545469][ T39] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.554207][ T39] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.556380][ T39] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.575375][ T3320] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 113.789990][ T3473] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 117.699172][ T3490] loop5: detected capacity change from 0 to 2047 [ 120.286668][ T3500] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 122.736082][ T3516] netlink: 'syz.0.16': attribute type 13 has an invalid length. [ 122.736773][ T3516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16'. [ 122.828649][ T12] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 122.830669][ T12] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 122.831780][ T12] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 122.831964][ T12] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 122.836387][ T3516] netlink: 'syz.0.16': attribute type 13 has an invalid length. [ 122.857048][ T3516] netlink: 4 bytes leftover after parsing attributes in process `syz.0.16'. [ 122.868239][ T3516] Zero length message leads to an empty skb [ 131.241487][ T3541] FAULT_INJECTION: forcing a failure. [ 131.241487][ T3541] name fail_usercopy, interval 1, probability 0, space 0, times 1 [ 131.245946][ T3541] CPU: 0 UID: 0 PID: 3541 Comm: syz.0.23 Not tainted syzkaller #0 PREEMPT [ 131.246420][ T3541] Hardware name: linux,dummy-virt (DT) [ 131.246779][ T3541] Call trace: [ 131.247144][ T3541] show_stack+0x18/0x24 (C) [ 131.248100][ T3541] dump_stack_lvl+0x78/0x90 [ 131.248233][ T3541] dump_stack+0x18/0x24 [ 131.248302][ T3541] should_fail_ex+0x1dc/0x234 [ 131.248371][ T3541] should_fail+0x14/0x24 [ 131.248433][ T3541] should_fail_usercopy+0x1c/0x28 [ 131.248503][ T3541] simple_read_from_buffer+0x5c/0x138 [ 131.248577][ T3541] proc_fail_nth_read+0xac/0x134 [ 131.248643][ T3541] vfs_read+0xc0/0x318 [ 131.248714][ T3541] ksys_read+0x6c/0x100 [ 131.248781][ T3541] __arm64_sys_read+0x1c/0x28 [ 131.248850][ T3541] invoke_syscall+0x48/0x110 [ 131.248921][ T3541] el0_svc_common.constprop.0+0x40/0xe0 [ 131.248994][ T3541] do_el0_svc+0x1c/0x28 [ 131.249064][ T3541] el0_svc+0x34/0x128 [ 131.249131][ T3541] el0t_64_sync_handler+0xa0/0xe4 [ 131.249200][ T3541] el0t_64_sync+0x1a4/0x1a8 [ 136.537573][ T3616] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 144.826809][ T3710] fuse: Bad value for 'fd' [ 149.483347][ T3777] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 149.489053][ T3777] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 151.810757][ T3811] fuse: Bad value for 'fd' [ 151.999365][ T3814] FAULT_INJECTION: forcing a failure. [ 151.999365][ T3814] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 152.003351][ T3814] CPU: 1 UID: 0 PID: 3814 Comm: syz.0.108 Not tainted syzkaller #0 PREEMPT [ 152.003502][ T3814] Hardware name: linux,dummy-virt (DT) [ 152.003601][ T3814] Call trace: [ 152.003644][ T3814] show_stack+0x18/0x24 (C) [ 152.003769][ T3814] dump_stack_lvl+0x78/0x90 [ 152.003853][ T3814] dump_stack+0x18/0x24 [ 152.003926][ T3814] should_fail_ex+0x1dc/0x234 [ 152.004004][ T3814] should_fail+0x14/0x24 [ 152.004073][ T3814] should_fail_usercopy+0x1c/0x28 [ 152.004179][ T3814] _inline_copy_from_user+0x24/0xb0 [ 152.004265][ T3814] copy_msghdr_from_user+0x54/0xcc [ 152.004346][ T3814] ___sys_sendmsg+0x8c/0x100 [ 152.004421][ T3814] __sys_sendmsg+0x98/0xf8 [ 152.004492][ T3814] __arm64_sys_sendmsg+0x24/0x30 [ 152.004630][ T3814] invoke_syscall+0x48/0x110 [ 152.004752][ T3814] el0_svc_common.constprop.0+0x40/0xe0 [ 152.004831][ T3814] do_el0_svc+0x1c/0x28 [ 152.004908][ T3814] el0_svc+0x34/0x128 [ 152.004986][ T3814] el0t_64_sync_handler+0xa0/0xe4 [ 152.005068][ T3814] el0t_64_sync+0x1a4/0x1a8 [ 152.659013][ T3821] binder: 3819:3821 ERROR: BC_REGISTER_LOOPER called without request [ 152.661988][ T3820] binder: 3819:3820 ERROR: BC_REGISTER_LOOPER called without request [ 152.663991][ T3821] binder: 3819:3821 got reply transaction with no transaction stack [ 152.664737][ T3821] binder: 3819:3821 transaction reply to 0:0 failed 1/29201/-71, code 0 size 88-24 line 3135 [ 152.668180][ T3820] binder: 3819:3820 got reply transaction with no transaction stack [ 152.670462][ T3820] binder: 3819:3820 transaction reply to 0:0 failed 2/29201/-71, code 0 size 88-24 line 3135 [ 153.386437][ T3835] FAULT_INJECTION: forcing a failure. [ 153.386437][ T3835] name failslab, interval 1, probability 0, space 0, times 1 [ 153.386803][ T3835] CPU: 0 UID: 0 PID: 3835 Comm: syz.0.116 Not tainted syzkaller #0 PREEMPT [ 153.386905][ T3835] Hardware name: linux,dummy-virt (DT) [ 153.386946][ T3835] Call trace: [ 153.386979][ T3835] show_stack+0x18/0x24 (C) [ 153.387089][ T3835] dump_stack_lvl+0x78/0x90 [ 153.387290][ T3835] dump_stack+0x18/0x24 [ 153.387776][ T3835] should_fail_ex+0x1dc/0x234 [ 153.387910][ T3835] should_failslab+0x54/0x80 [ 153.387998][ T3835] kmem_cache_alloc_node_noprof+0x5c/0x520 [ 153.388100][ T3835] __alloc_skb+0x84/0x1ec [ 153.388226][ T3835] netlink_alloc_large_skb+0x98/0xbc [ 153.388327][ T3835] netlink_sendmsg+0x10c/0x3fc [ 153.388525][ T3835] __sock_sendmsg+0x54/0x60 [ 153.388613][ T3835] ____sys_sendmsg+0x234/0x29c [ 153.388715][ T3835] ___sys_sendmsg+0xac/0x100 [ 153.388885][ T3835] __sys_sendmsg+0x98/0xf8 [ 153.389058][ T3835] __arm64_sys_sendmsg+0x24/0x30 [ 153.389303][ T3835] invoke_syscall+0x48/0x110 [ 153.389774][ T3835] el0_svc_common.constprop.0+0x40/0xe0 [ 153.390142][ T3835] do_el0_svc+0x1c/0x28 [ 153.390405][ T3835] el0_svc+0x34/0x128 [ 153.390522][ T3835] el0t_64_sync_handler+0xa0/0xe4 [ 153.390664][ T3835] el0t_64_sync+0x1a4/0x1a8 [ 154.279776][ T3851] FAULT_INJECTION: forcing a failure. [ 154.279776][ T3851] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 154.280228][ T3851] CPU: 0 UID: 0 PID: 3851 Comm: syz.1.123 Not tainted syzkaller #0 PREEMPT [ 154.280329][ T3851] Hardware name: linux,dummy-virt (DT) [ 154.280367][ T3851] Call trace: [ 154.280397][ T3851] show_stack+0x18/0x24 (C) [ 154.280490][ T3851] dump_stack_lvl+0x78/0x90 [ 154.280561][ T3851] dump_stack+0x18/0x24 [ 154.280624][ T3851] should_fail_ex+0x1dc/0x234 [ 154.280690][ T3851] should_fail+0x14/0x24 [ 154.280750][ T3851] should_fail_usercopy+0x1c/0x28 [ 154.280820][ T3851] _copy_from_iter+0x5c/0x65c [ 154.280883][ T3851] netlink_sendmsg+0x15c/0x3fc [ 154.280977][ T3851] __sock_sendmsg+0x54/0x60 [ 154.281057][ T3851] ____sys_sendmsg+0x234/0x29c [ 154.281134][ T3851] ___sys_sendmsg+0xac/0x100 [ 154.281203][ T3851] __sys_sendmsg+0x98/0xf8 [ 154.281276][ T3851] __arm64_sys_sendmsg+0x24/0x30 [ 154.281359][ T3851] invoke_syscall+0x48/0x110 [ 154.281433][ T3851] el0_svc_common.constprop.0+0x40/0xe0 [ 154.281520][ T3851] do_el0_svc+0x1c/0x28 [ 154.281592][ T3851] el0_svc+0x34/0x128 [ 154.281661][ T3851] el0t_64_sync_handler+0xa0/0xe4 [ 154.281726][ T3851] el0t_64_sync+0x1a4/0x1a8 [ 155.507275][ T3870] FAULT_INJECTION: forcing a failure. [ 155.507275][ T3870] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 155.522047][ T3870] CPU: 1 UID: 0 PID: 3870 Comm: syz.0.130 Not tainted syzkaller #0 PREEMPT [ 155.522215][ T3870] Hardware name: linux,dummy-virt (DT) [ 155.522262][ T3870] Call trace: [ 155.522298][ T3870] show_stack+0x18/0x24 (C) [ 155.522770][ T3870] dump_stack_lvl+0x78/0x90 [ 155.522847][ T3870] dump_stack+0x18/0x24 [ 155.522917][ T3870] should_fail_ex+0x1dc/0x234 [ 155.522985][ T3870] should_fail+0x14/0x24 [ 155.523043][ T3870] should_fail_usercopy+0x1c/0x28 [ 155.523109][ T3870] _copy_from_iter+0x5c/0x65c [ 155.523181][ T3870] netlink_sendmsg+0x15c/0x3fc [ 155.523259][ T3870] __sock_sendmsg+0x54/0x60 [ 155.523351][ T3870] ____sys_sendmsg+0x234/0x29c [ 155.523426][ T3870] ___sys_sendmsg+0xac/0x100 [ 155.523502][ T3870] __sys_sendmsg+0x98/0xf8 [ 155.523570][ T3870] __arm64_sys_sendmsg+0x24/0x30 [ 155.523643][ T3870] invoke_syscall+0x48/0x110 [ 155.523717][ T3870] el0_svc_common.constprop.0+0x40/0xe0 [ 155.523793][ T3870] do_el0_svc+0x1c/0x28 [ 155.523866][ T3870] el0_svc+0x34/0x128 [ 155.523938][ T3870] el0t_64_sync_handler+0xa0/0xe4 [ 155.524010][ T3870] el0t_64_sync+0x1a4/0x1a8 [ 157.704292][ T3882] FAULT_INJECTION: forcing a failure. [ 157.704292][ T3882] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 157.708039][ T3882] CPU: 1 UID: 0 PID: 3882 Comm: syz.1.135 Not tainted syzkaller #0 PREEMPT [ 157.708196][ T3882] Hardware name: linux,dummy-virt (DT) [ 157.708242][ T3882] Call trace: [ 157.708274][ T3882] show_stack+0x18/0x24 (C) [ 157.708370][ T3882] dump_stack_lvl+0x78/0x90 [ 157.708441][ T3882] dump_stack+0x18/0x24 [ 157.708504][ T3882] should_fail_ex+0x1dc/0x234 [ 157.708575][ T3882] should_fail+0x14/0x24 [ 157.708635][ T3882] should_fail_usercopy+0x1c/0x28 [ 157.708696][ T3882] simple_read_from_buffer+0x5c/0x138 [ 157.708768][ T3882] proc_fail_nth_read+0xac/0x134 [ 157.708839][ T3882] vfs_read+0xc0/0x318 [ 157.708908][ T3882] ksys_read+0x6c/0x100 [ 157.708974][ T3882] __arm64_sys_read+0x1c/0x28 [ 157.709040][ T3882] invoke_syscall+0x48/0x110 [ 157.709109][ T3882] el0_svc_common.constprop.0+0x40/0xe0 [ 157.709180][ T3882] do_el0_svc+0x1c/0x28 [ 157.709248][ T3882] el0_svc+0x34/0x128 [ 157.709372][ T3882] el0t_64_sync_handler+0xa0/0xe4 [ 157.709477][ T3882] el0t_64_sync+0x1a4/0x1a8 [ 159.859656][ T3899] 8021q: VLANs not supported on lo [ 159.904107][ T3899] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 164.107228][ T3947] ucma_write: process 190 (syz.1.160) changed security contexts after opening file descriptor, this is not allowed. [ 171.438133][ T4034] input: syz0 as /devices/virtual/input/input1 [ 171.984285][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.991886][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.992265][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.992579][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.992895][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.993221][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.995141][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.995667][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.996009][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.996382][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.996991][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.997532][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.997821][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.998226][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.998508][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.998799][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.999105][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.999352][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.999745][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 171.999997][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.000388][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.000762][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.001894][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.002205][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.002530][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.002856][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.003114][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.003493][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.003831][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.004113][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.006045][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.006417][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.006911][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.007193][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.007527][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.007782][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.008021][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.008392][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.008651][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.008890][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.009139][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.009399][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.009664][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.009918][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.010211][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.010482][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.010761][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.011971][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.012410][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.012744][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.013063][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.013401][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.013997][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.014516][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.014930][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.015399][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.016913][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.017357][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.017619][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.017877][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.018131][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.018373][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.018646][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.018900][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 172.019192][ T4039] nvme_fabrics: unknown parameter or missing value '' in ctrl creation request [ 180.771541][ C1] hrtimer: interrupt took 814340 ns [ 182.880105][ T4148] mmap: syz.0.210 (4148) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 186.412116][ T30] audit: type=1800 audit(186.270:2): pid=4196 uid=0 auid=4294967295 ses=4294967295 subj=_ op=set_data cause=unavailable-hash-algorithm comm="syz.0.224" name="/nbd0" dev="devtmpfs" ino=654 res=0 errno=0 [ 187.148195][ T4213] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.149129][ T4213] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.377185][ T4220] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.397472][ T4218] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.400800][ T4220] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.406446][ T4221] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.410496][ T4218] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.448483][ T4218] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 187.450244][ T4218] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.459438][ T4221] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 187.858330][ T4228] input: syz0 as /devices/virtual/input/input3 [ 194.742654][ T4269] fuse: Bad value for 'fd' [ 194.930503][ T4274] FAULT_INJECTION: forcing a failure. [ 194.930503][ T4274] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 194.933304][ T4274] CPU: 1 UID: 0 PID: 4274 Comm: syz.1.244 Not tainted syzkaller #0 PREEMPT [ 194.933443][ T4274] Hardware name: linux,dummy-virt (DT) [ 194.933529][ T4274] Call trace: [ 194.933564][ T4274] show_stack+0x18/0x24 (C) [ 194.933737][ T4274] dump_stack_lvl+0x78/0x90 [ 194.933840][ T4274] dump_stack+0x18/0x24 [ 194.933910][ T4274] should_fail_ex+0x1dc/0x234 [ 194.933976][ T4274] should_fail+0x14/0x24 [ 194.934070][ T4274] should_fail_usercopy+0x1c/0x28 [ 194.934174][ T4274] _inline_copy_from_user+0x24/0xb0 [ 194.934280][ T4274] copy_msghdr_from_user+0x54/0xcc [ 194.934362][ T4274] ___sys_sendmsg+0x8c/0x100 [ 194.934428][ T4274] __sys_sendmsg+0x98/0xf8 [ 194.934529][ T4274] __arm64_sys_sendmsg+0x24/0x30 [ 194.934620][ T4274] invoke_syscall+0x48/0x110 [ 194.934707][ T4274] el0_svc_common.constprop.0+0x40/0xe0 [ 194.934782][ T4274] do_el0_svc+0x1c/0x28 [ 194.934883][ T4274] el0_svc+0x34/0x128 [ 194.934990][ T4274] el0t_64_sync_handler+0xa0/0xe4 [ 194.935127][ T4274] el0t_64_sync+0x1a4/0x1a8 [ 196.656047][ T4291] FAULT_INJECTION: forcing a failure. [ 196.656047][ T4291] name failslab, interval 1, probability 0, space 0, times 0 [ 196.656456][ T4291] CPU: 1 UID: 0 PID: 4291 Comm: syz.0.249 Not tainted syzkaller #0 PREEMPT [ 196.656554][ T4291] Hardware name: linux,dummy-virt (DT) [ 196.656607][ T4291] Call trace: [ 196.656638][ T4291] show_stack+0x18/0x24 (C) [ 196.656808][ T4291] dump_stack_lvl+0x78/0x90 [ 196.656898][ T4291] dump_stack+0x18/0x24 [ 196.657006][ T4291] should_fail_ex+0x1dc/0x234 [ 196.657128][ T4291] should_failslab+0x54/0x80 [ 196.657238][ T4291] kmem_cache_alloc_node_noprof+0x5c/0x520 [ 196.657355][ T4291] __alloc_skb+0x84/0x1ec [ 196.657456][ T4291] netlink_alloc_large_skb+0x98/0xbc [ 196.657581][ T4291] netlink_sendmsg+0x10c/0x3fc [ 196.657663][ T4291] __sock_sendmsg+0x54/0x60 [ 196.657763][ T4291] ____sys_sendmsg+0x234/0x29c [ 196.657837][ T4291] ___sys_sendmsg+0xac/0x100 [ 196.657908][ T4291] __sys_sendmsg+0x98/0xf8 [ 196.657977][ T4291] __arm64_sys_sendmsg+0x24/0x30 [ 196.658095][ T4291] invoke_syscall+0x48/0x110 [ 196.658230][ T4291] el0_svc_common.constprop.0+0x40/0xe0 [ 196.658364][ T4291] do_el0_svc+0x1c/0x28 [ 196.658447][ T4291] el0_svc+0x34/0x128 [ 196.658546][ T4291] el0t_64_sync_handler+0xa0/0xe4 [ 196.658651][ T4291] el0t_64_sync+0x1a4/0x1a8 [ 198.528237][ T4311] FAULT_INJECTION: forcing a failure. [ 198.528237][ T4311] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 198.530305][ T4311] CPU: 0 UID: 0 PID: 4311 Comm: syz.0.254 Not tainted syzkaller #0 PREEMPT [ 198.530690][ T4311] Hardware name: linux,dummy-virt (DT) [ 198.530749][ T4311] Call trace: [ 198.530902][ T4311] show_stack+0x18/0x24 (C) [ 198.531651][ T4311] dump_stack_lvl+0x78/0x90 [ 198.531843][ T4311] dump_stack+0x18/0x24 [ 198.531979][ T4311] should_fail_ex+0x1dc/0x234 [ 198.532205][ T4311] should_fail+0x14/0x24 [ 198.532301][ T4311] should_fail_usercopy+0x1c/0x28 [ 198.532389][ T4311] _copy_from_iter+0x5c/0x65c [ 198.532539][ T4311] netlink_sendmsg+0x15c/0x3fc [ 198.532646][ T4311] __sock_sendmsg+0x54/0x60 [ 198.532740][ T4311] ____sys_sendmsg+0x234/0x29c [ 198.532797][ T4311] ___sys_sendmsg+0xac/0x100 [ 198.532867][ T4311] __sys_sendmsg+0x98/0xf8 [ 198.532929][ T4311] __arm64_sys_sendmsg+0x24/0x30 [ 198.532994][ T4311] invoke_syscall+0x48/0x110 [ 198.533063][ T4311] el0_svc_common.constprop.0+0x40/0xe0 [ 198.533129][ T4311] do_el0_svc+0x1c/0x28 [ 198.533195][ T4311] el0_svc+0x34/0x128 [ 198.533261][ T4311] el0t_64_sync_handler+0xa0/0xe4 [ 198.533328][ T4311] el0t_64_sync+0x1a4/0x1a8 [ 200.753876][ T4341] FAULT_INJECTION: forcing a failure. [ 200.753876][ T4341] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 200.754250][ T4341] CPU: 1 UID: 0 PID: 4341 Comm: syz.1.261 Not tainted syzkaller #0 PREEMPT [ 200.754341][ T4341] Hardware name: linux,dummy-virt (DT) [ 200.754381][ T4341] Call trace: [ 200.754414][ T4341] show_stack+0x18/0x24 (C) [ 200.754512][ T4341] dump_stack_lvl+0x78/0x90 [ 200.754627][ T4341] dump_stack+0x18/0x24 [ 200.754726][ T4341] should_fail_ex+0x1dc/0x234 [ 200.754806][ T4341] should_fail+0x14/0x24 [ 200.754899][ T4341] should_fail_usercopy+0x1c/0x28 [ 200.754973][ T4341] _copy_from_iter+0x5c/0x65c [ 200.755107][ T4341] netlink_sendmsg+0x15c/0x3fc [ 200.755267][ T4341] __sock_sendmsg+0x54/0x60 [ 200.755392][ T4341] ____sys_sendmsg+0x234/0x29c [ 200.755495][ T4341] ___sys_sendmsg+0xac/0x100 [ 200.755710][ T4341] __sys_sendmsg+0x98/0xf8 [ 200.755792][ T4341] __arm64_sys_sendmsg+0x24/0x30 [ 200.755930][ T4341] invoke_syscall+0x48/0x110 [ 200.756031][ T4341] el0_svc_common.constprop.0+0x40/0xe0 [ 200.756165][ T4341] do_el0_svc+0x1c/0x28 [ 200.756272][ T4341] el0_svc+0x34/0x128 [ 200.756372][ T4341] el0t_64_sync_handler+0xa0/0xe4 [ 200.756450][ T4341] el0t_64_sync+0x1a4/0x1a8 [ 201.515253][ T4357] FAULT_INJECTION: forcing a failure. [ 201.515253][ T4357] name failslab, interval 1, probability 0, space 0, times 0 [ 201.515666][ T4357] CPU: 1 UID: 0 PID: 4357 Comm: syz.0.269 Not tainted syzkaller #0 PREEMPT [ 201.515778][ T4357] Hardware name: linux,dummy-virt (DT) [ 201.515824][ T4357] Call trace: [ 201.515860][ T4357] show_stack+0x18/0x24 (C) [ 201.515977][ T4357] dump_stack_lvl+0x78/0x90 [ 201.516055][ T4357] dump_stack+0x18/0x24 [ 201.516223][ T4357] should_fail_ex+0x1dc/0x234 [ 201.516354][ T4357] should_failslab+0x54/0x80 [ 201.516768][ T4357] kmem_cache_alloc_noprof+0x54/0x51c [ 201.516886][ T4357] skb_clone+0x60/0xc4 [ 201.516982][ T4357] __netlink_deliver_tap+0xf8/0x28c [ 201.517095][ T4357] netlink_unicast+0x380/0x3ac [ 201.517223][ T4357] netlink_sendmsg+0x194/0x3fc [ 201.517356][ T4357] __sock_sendmsg+0x54/0x60 [ 201.517530][ T4357] ____sys_sendmsg+0x234/0x29c [ 201.517636][ T4357] ___sys_sendmsg+0xac/0x100 [ 201.517765][ T4357] __sys_sendmsg+0x98/0xf8 [ 201.517844][ T4357] __arm64_sys_sendmsg+0x24/0x30 [ 201.517969][ T4357] invoke_syscall+0x48/0x110 [ 201.518123][ T4357] el0_svc_common.constprop.0+0x40/0xe0 [ 201.518355][ T4357] do_el0_svc+0x1c/0x28 [ 201.518590][ T4357] el0_svc+0x34/0x128 [ 201.518887][ T4357] el0t_64_sync_handler+0xa0/0xe4 [ 201.519024][ T4357] el0t_64_sync+0x1a4/0x1a8 [ 202.196249][ T4369] input input5: cannot allocate more than FF_MAX_EFFECTS effects [ 202.310662][ T4372] input input6: cannot allocate more than FF_MAX_EFFECTS effects [ 202.563039][ T4379] FAULT_INJECTION: forcing a failure. [ 202.563039][ T4379] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 202.565304][ T4379] CPU: 0 UID: 0 PID: 4379 Comm: syz.0.275 Not tainted syzkaller #0 PREEMPT [ 202.565396][ T4379] Hardware name: linux,dummy-virt (DT) [ 202.565419][ T4379] Call trace: [ 202.565438][ T4379] show_stack+0x18/0x24 (C) [ 202.565496][ T4379] dump_stack_lvl+0x78/0x90 [ 202.565536][ T4379] dump_stack+0x18/0x24 [ 202.565579][ T4379] should_fail_ex+0x1dc/0x234 [ 202.565617][ T4379] should_fail+0x14/0x24 [ 202.565650][ T4379] should_fail_usercopy+0x1c/0x28 [ 202.565683][ T4379] _inline_copy_from_user+0x24/0xb0 [ 202.565722][ T4379] kstrtouint_from_user+0x64/0xc8 [ 202.565759][ T4379] proc_fail_nth_write+0x40/0x114 [ 202.565796][ T4379] vfs_write+0xd0/0x368 [ 202.565835][ T4379] ksys_write+0x6c/0x100 [ 202.565871][ T4379] __arm64_sys_write+0x1c/0x28 [ 202.565907][ T4379] invoke_syscall+0x48/0x110 [ 202.565946][ T4379] el0_svc_common.constprop.0+0x40/0xe0 [ 202.565984][ T4379] do_el0_svc+0x1c/0x28 [ 202.566022][ T4379] el0_svc+0x34/0x128 [ 202.566059][ T4379] el0t_64_sync_handler+0xa0/0xe4 [ 202.566096][ T4379] el0t_64_sync+0x1a4/0x1a8 [ 205.624333][ T4407] fuse: Unknown parameter '0x000000000000000300000000000000000000' [ 206.416431][ T4420] input: syz0 as /devices/virtual/input/input9 [ 210.513049][ T10] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 210.672062][ T10] usb 1-1: device descriptor read/64, error -71 [ 210.912464][ T10] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 211.062330][ T10] usb 1-1: device descriptor read/64, error -71 [ 211.186180][ T10] usb usb1-port1: attempt power cycle [ 211.542240][ T10] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 211.589796][ T10] usb 1-1: device descriptor read/8, error -71 [ 211.841816][ T10] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 211.872720][ T10] usb 1-1: device descriptor read/8, error -71 [ 211.985795][ T10] usb usb1-port1: unable to enumerate USB device [ 213.617086][ T4450] input: syz0 as /devices/virtual/input/input10 [ 213.948282][ T4452] input: syz0 as /devices/virtual/input/input12 [ 225.113182][ T3411] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 225.293182][ T3411] usb 1-1: Using ep0 maxpacket: 16 [ 225.376706][ T3411] usb 1-1: config 139 has an invalid interface number: 194 but max is 2 [ 225.377331][ T3411] usb 1-1: config 139 has an invalid descriptor of length 1, skipping remainder of the config [ 225.377515][ T3411] usb 1-1: config 139 has 1 interface, different from the descriptor's value: 3 [ 225.377682][ T3411] usb 1-1: config 139 has no interface number 0 [ 225.378845][ T3411] usb 1-1: config 139 interface 194 altsetting 6 endpoint 0xF has invalid maxpacket 1023, setting to 64 [ 225.379146][ T3411] usb 1-1: config 139 interface 194 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 225.379369][ T3411] usb 1-1: config 139 interface 194 has no altsetting 0 [ 225.475295][ T3411] usb 1-1: New USB device found, idVendor=0df6, idProduct=0051, bcdDevice=59.fd [ 225.475743][ T3411] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 225.478957][ T3411] usb 1-1: Product: ࠐ [ 225.480709][ T3411] usb 1-1: Manufacturer: 䠊 [ 225.488086][ T3411] usb 1-1: SerialNumber: ѕ [ 226.667519][ T3772] usb 1-1: USB disconnect, device number 6 [ 230.730068][ T4718] input: syz0 as /devices/virtual/input/input14 [ 237.195276][ T4730] dvmrp0: entered allmulticast mode [ 246.618171][ T4847] FAULT_INJECTION: forcing a failure. [ 246.618171][ T4847] name failslab, interval 1, probability 0, space 0, times 0 [ 246.620053][ T4847] CPU: 0 UID: 0 PID: 4847 Comm: syz.0.381 Not tainted syzkaller #0 PREEMPT [ 246.620185][ T4847] Hardware name: linux,dummy-virt (DT) [ 246.620221][ T4847] Call trace: [ 246.620240][ T4847] show_stack+0x18/0x24 (C) [ 246.620312][ T4847] dump_stack_lvl+0x78/0x90 [ 246.620354][ T4847] dump_stack+0x18/0x24 [ 246.620389][ T4847] should_fail_ex+0x1dc/0x234 [ 246.620428][ T4847] should_failslab+0x54/0x80 [ 246.620467][ T4847] __kmalloc_noprof+0xa8/0x5f4 [ 246.620506][ T4847] tomoyo_realpath_from_path+0x44/0x1b4 [ 246.620557][ T4847] tomoyo_path_number_perm+0xd8/0x20c [ 246.620594][ T4847] tomoyo_file_ioctl+0x1c/0x28 [ 246.620633][ T4847] security_file_ioctl+0x8c/0x19c [ 246.620670][ T4847] __arm64_sys_ioctl+0x48/0x104 [ 246.620707][ T4847] invoke_syscall+0x48/0x110 [ 246.620746][ T4847] el0_svc_common.constprop.0+0x40/0xe0 [ 246.620785][ T4847] do_el0_svc+0x1c/0x28 [ 246.620823][ T4847] el0_svc+0x34/0x128 [ 246.620937][ T4847] el0t_64_sync_handler+0xa0/0xe4 [ 246.620978][ T4847] el0t_64_sync+0x1a4/0x1a8 [ 246.631039][ T4847] ERROR: Out of memory at tomoyo_realpath_from_path. [ 247.608849][ T4865] FAULT_INJECTION: forcing a failure. [ 247.608849][ T4865] name failslab, interval 1, probability 0, space 0, times 0 [ 247.609360][ T4865] CPU: 1 UID: 0 PID: 4865 Comm: syz.0.386 Not tainted syzkaller #0 PREEMPT [ 247.609465][ T4865] Hardware name: linux,dummy-virt (DT) [ 247.609520][ T4865] Call trace: [ 247.609555][ T4865] show_stack+0x18/0x24 (C) [ 247.609660][ T4865] dump_stack_lvl+0x78/0x90 [ 247.609734][ T4865] dump_stack+0x18/0x24 [ 247.610075][ T4865] should_fail_ex+0x1dc/0x234 [ 247.610193][ T4865] should_failslab+0x54/0x80 [ 247.610342][ T4865] __kmalloc_noprof+0xa8/0x5f4 [ 247.610417][ T4865] tomoyo_encode2+0x7c/0x140 [ 247.610500][ T4865] tomoyo_encode+0x28/0x40 [ 247.610730][ T4865] tomoyo_realpath_from_path+0x80/0x1b4 [ 247.611039][ T4865] tomoyo_path_number_perm+0xd8/0x20c [ 247.611273][ T4865] tomoyo_file_ioctl+0x1c/0x28 [ 247.611425][ T4865] security_file_ioctl+0x8c/0x19c [ 247.611562][ T4865] __arm64_sys_ioctl+0x48/0x104 [ 247.611755][ T4865] invoke_syscall+0x48/0x110 [ 247.612016][ T4865] el0_svc_common.constprop.0+0x40/0xe0 [ 247.612116][ T4865] do_el0_svc+0x1c/0x28 [ 247.612235][ T4865] el0_svc+0x34/0x128 [ 247.612480][ T4865] el0t_64_sync_handler+0xa0/0xe4 [ 247.612632][ T4865] el0t_64_sync+0x1a4/0x1a8 [ 247.635695][ T4865] ERROR: Out of memory at tomoyo_realpath_from_path. [ 247.697094][ T4869] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 247.744113][ T4869] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.012535][ T3411] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 251.215488][ T4879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 251.222229][ T4879] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.253888][ T4879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 251.264960][ T4879] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.287459][ T4879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 251.292173][ T4879] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.635277][ T4879] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 251.645307][ T4879] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 251.713408][ T3411] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 251.713906][ T3411] usb 1-1: can't read configurations, error -71 [ 251.883501][ T4884] FAULT_INJECTION: forcing a failure. [ 251.883501][ T4884] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 251.883928][ T4884] CPU: 1 UID: 0 PID: 4884 Comm: syz.0.392 Not tainted syzkaller #0 PREEMPT [ 251.884032][ T4884] Hardware name: linux,dummy-virt (DT) [ 251.884080][ T4884] Call trace: [ 251.884117][ T4884] show_stack+0x18/0x24 (C) [ 251.884269][ T4884] dump_stack_lvl+0x78/0x90 [ 251.884396][ T4884] dump_stack+0x18/0x24 [ 251.884481][ T4884] should_fail_ex+0x1dc/0x234 [ 251.884587][ T4884] should_fail+0x14/0x24 [ 251.884713][ T4884] should_fail_usercopy+0x1c/0x28 [ 251.884793][ T4884] simple_read_from_buffer+0x5c/0x138 [ 251.884898][ T4884] proc_fail_nth_read+0xac/0x134 [ 251.884998][ T4884] vfs_read+0xc0/0x318 [ 251.885420][ T4884] ksys_read+0x6c/0x100 [ 251.885634][ T4884] __arm64_sys_read+0x1c/0x28 [ 251.885720][ T4884] invoke_syscall+0x48/0x110 [ 251.885825][ T4884] el0_svc_common.constprop.0+0x40/0xe0 [ 251.886029][ T4884] do_el0_svc+0x1c/0x28 [ 251.886297][ T4884] el0_svc+0x34/0x128 [ 251.886394][ T4884] el0t_64_sync_handler+0xa0/0xe4 [ 251.886483][ T4884] el0t_64_sync+0x1a4/0x1a8 [ 264.216800][ T5017] fuse: Bad value for 'fd' [ 265.318892][ T5026] FAULT_INJECTION: forcing a failure. [ 265.318892][ T5026] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 265.319378][ T5026] CPU: 1 UID: 0 PID: 5026 Comm: syz.1.434 Not tainted syzkaller #0 PREEMPT [ 265.319475][ T5026] Hardware name: linux,dummy-virt (DT) [ 265.319527][ T5026] Call trace: [ 265.319561][ T5026] show_stack+0x18/0x24 (C) [ 265.319824][ T5026] dump_stack_lvl+0x78/0x90 [ 265.319945][ T5026] dump_stack+0x18/0x24 [ 265.320038][ T5026] should_fail_ex+0x1dc/0x234 [ 265.320246][ T5026] should_fail+0x14/0x24 [ 265.320329][ T5026] should_fail_usercopy+0x1c/0x28 [ 265.320451][ T5026] strncpy_from_user+0x24/0x1a0 [ 265.320539][ T5026] setxattr_copy+0x30/0x94 [ 265.320681][ T5026] path_setxattrat+0x84/0x18c [ 265.320857][ T5026] __arm64_sys_fsetxattr+0x2c/0x3c [ 265.321092][ T5026] invoke_syscall+0x48/0x110 [ 265.321231][ T5026] el0_svc_common.constprop.0+0x40/0xe0 [ 265.321370][ T5026] do_el0_svc+0x1c/0x28 [ 265.321448][ T5026] el0_svc+0x34/0x128 [ 265.321525][ T5026] el0t_64_sync_handler+0xa0/0xe4 [ 265.321595][ T5026] el0t_64_sync+0x1a4/0x1a8 [ 266.055005][ T5041] FAULT_INJECTION: forcing a failure. [ 266.055005][ T5041] name failslab, interval 1, probability 0, space 0, times 0 [ 266.055388][ T5041] CPU: 1 UID: 0 PID: 5041 Comm: syz.0.440 Not tainted syzkaller #0 PREEMPT [ 266.055481][ T5041] Hardware name: linux,dummy-virt (DT) [ 266.055520][ T5041] Call trace: [ 266.055553][ T5041] show_stack+0x18/0x24 (C) [ 266.056411][ T5041] dump_stack_lvl+0x78/0x90 [ 266.057702][ T5041] dump_stack+0x18/0x24 [ 266.057967][ T5041] should_fail_ex+0x1dc/0x234 [ 266.058503][ T5041] should_failslab+0x54/0x80 [ 266.058618][ T5041] __kvmalloc_node_noprof+0x114/0x71c [ 266.058734][ T5041] vmemdup_user+0x34/0xbc [ 266.058836][ T5041] setxattr_copy+0x54/0x94 [ 266.058939][ T5041] path_setxattrat+0x84/0x18c [ 266.059067][ T5041] __arm64_sys_fsetxattr+0x2c/0x3c [ 266.059254][ T5041] invoke_syscall+0x48/0x110 [ 266.059377][ T5041] el0_svc_common.constprop.0+0x40/0xe0 [ 266.059474][ T5041] do_el0_svc+0x1c/0x28 [ 266.059555][ T5041] el0_svc+0x34/0x128 [ 266.059636][ T5041] el0t_64_sync_handler+0xa0/0xe4 [ 266.059725][ T5041] el0t_64_sync+0x1a4/0x1a8 [ 272.923579][ T5121] CUSE: unknown device info "" [ 272.923969][ T5121] CUSE: unknown device info "P]FO" [ 272.924826][ T5121] CUSE: zero length info key specified [ 281.378564][ T5239] FAULT_INJECTION: forcing a failure. [ 281.378564][ T5239] name failslab, interval 1, probability 0, space 0, times 0 [ 281.384426][ T5239] CPU: 0 UID: 0 PID: 5239 Comm: syz.1.532 Not tainted syzkaller #0 PREEMPT [ 281.384571][ T5239] Hardware name: linux,dummy-virt (DT) [ 281.384621][ T5239] Call trace: [ 281.384656][ T5239] show_stack+0x18/0x24 (C) [ 281.384774][ T5239] dump_stack_lvl+0x78/0x90 [ 281.384855][ T5239] dump_stack+0x18/0x24 [ 281.384926][ T5239] should_fail_ex+0x1dc/0x234 [ 281.385000][ T5239] should_failslab+0x54/0x80 [ 281.385077][ T5239] __kmalloc_noprof+0xa8/0x5f4 [ 281.385200][ T5239] tomoyo_realpath_from_path+0x44/0x1b4 [ 281.385284][ T5239] tomoyo_path_number_perm+0xd8/0x20c [ 281.385374][ T5239] tomoyo_file_ioctl+0x1c/0x28 [ 281.385458][ T5239] security_file_ioctl+0x8c/0x19c [ 281.385533][ T5239] __arm64_sys_ioctl+0x48/0x104 [ 281.385610][ T5239] invoke_syscall+0x48/0x110 [ 281.385688][ T5239] el0_svc_common.constprop.0+0x40/0xe0 [ 281.385768][ T5239] do_el0_svc+0x1c/0x28 [ 281.385843][ T5239] el0_svc+0x34/0x128 [ 281.385917][ T5239] el0t_64_sync_handler+0xa0/0xe4 [ 281.385991][ T5239] el0t_64_sync+0x1a4/0x1a8 [ 281.407024][ T5239] ERROR: Out of memory at tomoyo_realpath_from_path. [ 281.987350][ T5243] x_tables: duplicate underflow at hook 1 [ 282.937035][ T5255] FAULT_INJECTION: forcing a failure. [ 282.937035][ T5255] name failslab, interval 1, probability 0, space 0, times 0 [ 282.939209][ T5255] CPU: 0 UID: 0 PID: 5255 Comm: syz.0.537 Not tainted syzkaller #0 PREEMPT [ 282.939386][ T5255] Hardware name: linux,dummy-virt (DT) [ 282.939438][ T5255] Call trace: [ 282.939474][ T5255] show_stack+0x18/0x24 (C) [ 282.939808][ T5255] dump_stack_lvl+0x78/0x90 [ 282.939925][ T5255] dump_stack+0x18/0x24 [ 282.939985][ T5255] should_fail_ex+0x1dc/0x234 [ 282.940050][ T5255] should_failslab+0x54/0x80 [ 282.940114][ T5255] __kmalloc_noprof+0xa8/0x5f4 [ 282.940233][ T5255] tomoyo_encode2+0x7c/0x140 [ 282.940305][ T5255] tomoyo_encode+0x28/0x40 [ 282.940392][ T5255] tomoyo_realpath_from_path+0x80/0x1b4 [ 282.940462][ T5255] tomoyo_path_number_perm+0xd8/0x20c [ 282.940531][ T5255] tomoyo_file_ioctl+0x1c/0x28 [ 282.940604][ T5255] security_file_ioctl+0x8c/0x19c [ 282.940676][ T5255] __arm64_sys_ioctl+0x48/0x104 [ 282.940749][ T5255] invoke_syscall+0x48/0x110 [ 282.940818][ T5255] el0_svc_common.constprop.0+0x40/0xe0 [ 282.940941][ T5255] do_el0_svc+0x1c/0x28 [ 282.941068][ T5255] el0_svc+0x34/0x128 [ 282.941143][ T5255] el0t_64_sync_handler+0xa0/0xe4 [ 282.941215][ T5255] el0t_64_sync+0x1a4/0x1a8 [ 282.973042][ T5255] ERROR: Out of memory at tomoyo_realpath_from_path. [ 284.124313][ T5275] FAULT_INJECTION: forcing a failure. [ 284.124313][ T5275] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 284.126945][ T5275] CPU: 0 UID: 0 PID: 5275 Comm: syz.1.543 Not tainted syzkaller #0 PREEMPT [ 284.127054][ T5275] Hardware name: linux,dummy-virt (DT) [ 284.127086][ T5275] Call trace: [ 284.127105][ T5275] show_stack+0x18/0x24 (C) [ 284.127212][ T5275] dump_stack_lvl+0x78/0x90 [ 284.127256][ T5275] dump_stack+0x18/0x24 [ 284.127289][ T5275] should_fail_ex+0x1dc/0x234 [ 284.127334][ T5275] should_fail+0x14/0x24 [ 284.127366][ T5275] should_fail_usercopy+0x1c/0x28 [ 284.127399][ T5275] simple_read_from_buffer+0x5c/0x138 [ 284.127438][ T5275] proc_fail_nth_read+0xac/0x134 [ 284.127473][ T5275] vfs_read+0xc0/0x318 [ 284.127512][ T5275] ksys_read+0x6c/0x100 [ 284.127547][ T5275] __arm64_sys_read+0x1c/0x28 [ 284.127586][ T5275] invoke_syscall+0x48/0x110 [ 284.127624][ T5275] el0_svc_common.constprop.0+0x40/0xe0 [ 284.127662][ T5275] do_el0_svc+0x1c/0x28 [ 284.127716][ T5275] el0_svc+0x34/0x128 [ 284.127773][ T5275] el0t_64_sync_handler+0xa0/0xe4 [ 284.127809][ T5275] el0t_64_sync+0x1a4/0x1a8 [ 285.152087][ T5302] input: syz0 as /devices/virtual/input/input19 [ 291.979654][ T5332] binder: 5331:5332 ioctl 400c620e 20000ac0 returned -22 [ 292.295452][ T5342] syz.1.565 uses obsolete (PF_INET,SOCK_PACKET) [ 292.754920][ T5352] input: syz1 as /devices/virtual/input/input20 [ 294.553197][ T5373] input: syz0 as /devices/virtual/input/input21 [ 300.644915][ T5395] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 300.646508][ T5395] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 301.757365][ T5407] input: syz0 as /devices/virtual/input/input22 [ 313.206467][ T5506] capability: warning: `syz.0.618' uses 32-bit capabilities (legacy support in use) [ 314.949931][ T5518] x_tables: duplicate underflow at hook 2 [ 316.613524][ T5551] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 316.617807][ T5551] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 318.040777][ T5560] fuse: root generation should be zero [ 324.928575][ T5663] netlink: 9 bytes leftover after parsing attributes in process `syz.0.659'. [ 324.953231][ T5663] gretap0: entered promiscuous mode [ 325.723429][ T3772] usb 1-1: new full-speed USB device number 9 using dummy_hcd [ 325.918726][ T3772] usb 1-1: not running at top speed; connect to a high speed hub [ 325.939093][ T3772] usb 1-1: config 1 interface 0 altsetting 2 endpoint 0x81 has invalid maxpacket 1024, setting to 64 [ 325.939653][ T3772] usb 1-1: config 1 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 325.939986][ T3772] usb 1-1: config 1 interface 0 has no altsetting 0 [ 325.968348][ T3772] usb 1-1: New USB device found, idVendor=056a, idProduct=0047, bcdDevice= 0.40 [ 325.968767][ T3772] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 325.969226][ T3772] usb 1-1: Product: ŝ쀿੥⯕ᦵ펱೾댆䈽秗윈䄤跕庿競贑毲醼ᶫ輥﯑䂪풟ඊ𜴆옥畸达廼テq믶ꂏᾉ﫴攬荛阒ࠨ躳硭攼釙᠟«㞱⎗⩎㒌ⲏ퀠澸੫衎쒝ౘ塚큼줸謸敦㚦⯮쐻ᨭ [ 325.969383][ T3772] usb 1-1: Manufacturer: 떴䙟崮쳤ﲓ㨠逈澻︇♝ꊧ꣫呂殍㧦c淳屒谹䍊蓋뺆쫁譮㐻鮙༄ﶃꙁ㸭筞﹞푰灙 [ 326.005744][ T5668] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 326.259687][ T3772] usbhid 1-1:1.0: can't add hid device: -71 [ 326.260739][ T3772] usbhid 1-1:1.0: probe with driver usbhid failed with error -71 [ 326.286069][ T3772] usb 1-1: USB disconnect, device number 9 [ 327.458773][ T5695] input: syz0 as /devices/virtual/input/input24 [ 337.314301][ T5805] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 337.317726][ T5805] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 340.756855][ T5824] 8021q: VLANs not supported on ip6tnl0 [ 340.776670][ T5824] capability: warning: `syz.0.693' uses deprecated v2 capabilities in a way that may be insecure [ 344.106988][ T5841] input: syz0 as /devices/virtual/input/input27 [ 352.722398][ T3488] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 352.938015][ T3488] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 352.938495][ T3488] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 352.942806][ T3488] usb 1-1: Product: syz [ 352.942901][ T3488] usb 1-1: Manufacturer: syz [ 352.942960][ T3488] usb 1-1: SerialNumber: syz [ 353.632402][ T3488] rtl8150 1-1:1.0: couldn't reset the device [ 353.633766][ T3488] rtl8150 1-1:1.0: probe with driver rtl8150 failed with error -5 [ 353.683189][ T3488] usb 1-1: USB disconnect, device number 10 [ 354.615259][ T3488] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 354.792682][ T3488] usb 1-1: device descriptor read/64, error -71 [ 355.042268][ T3488] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 355.191803][ T3488] usb 1-1: device descriptor read/64, error -71 [ 355.306518][ T3488] usb usb1-port1: attempt power cycle [ 355.662119][ T3488] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 355.685788][ T3488] usb 1-1: device descriptor read/8, error -71 [ 355.932932][ T3488] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 355.970714][ T3488] usb 1-1: device descriptor read/8, error -71 [ 356.083739][ T3488] usb usb1-port1: unable to enumerate USB device [ 362.309858][ T5987] nft_compat: unsupported protocol 5 [ 365.292087][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.295895][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.318973][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.325533][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.347858][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.349400][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.381877][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.383479][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.400072][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.410667][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.456609][ T6023] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.474294][ T6023] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 365.690156][ T6027] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 365.693577][ T6027] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 541.263377][ T40] usb 1-1: new full-speed USB device number 15 using dummy_hcd [ 542.439325][ T6084] FAULT_INJECTION: forcing a failure. [ 542.439325][ T6084] name failslab, interval 1, probability 0, space 0, times 0 [ 542.443391][ T6084] CPU: 0 UID: 0 PID: 6084 Comm: syz.0.763 Not tainted syzkaller #0 PREEMPT [ 542.443549][ T6084] Hardware name: linux,dummy-virt (DT) [ 542.443807][ T6084] Call trace: [ 542.443859][ T6084] show_stack+0x18/0x24 (C) [ 542.443995][ T6084] dump_stack_lvl+0x78/0x90 [ 542.444062][ T6084] dump_stack+0x18/0x24 [ 542.444129][ T6084] should_fail_ex+0x1dc/0x234 [ 542.444251][ T6084] should_failslab+0x54/0x80 [ 542.444499][ T6084] __kmalloc_noprof+0xa8/0x5f4 [ 542.444586][ T6084] tomoyo_realpath_from_path+0x44/0x1b4 [ 542.444668][ T6084] tomoyo_path_number_perm+0xd8/0x20c [ 542.444741][ T6084] tomoyo_file_ioctl+0x1c/0x28 [ 542.444816][ T6084] security_file_ioctl+0x8c/0x19c [ 542.444886][ T6084] __arm64_sys_ioctl+0x48/0x104 [ 542.444952][ T6084] invoke_syscall+0x48/0x110 [ 542.445025][ T6084] el0_svc_common.constprop.0+0x40/0xe0 [ 542.445136][ T6084] do_el0_svc+0x1c/0x28 [ 542.445213][ T6084] el0_svc+0x34/0x128 [ 542.445285][ T6084] el0t_64_sync_handler+0xa0/0xe4 [ 542.445370][ T6084] el0t_64_sync+0x1a4/0x1a8 [ 542.473316][ T6084] ERROR: Out of memory at tomoyo_realpath_from_path. [ 543.026394][ T40] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 543.026866][ T40] usb 1-1: can't read configurations, error -71 [ 543.452744][ T6097] FAULT_INJECTION: forcing a failure. [ 543.452744][ T6097] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 543.454915][ T6097] CPU: 0 UID: 0 PID: 6097 Comm: syz.0.768 Not tainted syzkaller #0 PREEMPT [ 543.455022][ T6097] Hardware name: linux,dummy-virt (DT) [ 543.455071][ T6097] Call trace: [ 543.455104][ T6097] show_stack+0x18/0x24 (C) [ 543.455174][ T6097] dump_stack_lvl+0x78/0x90 [ 543.455258][ T6097] dump_stack+0x18/0x24 [ 543.455301][ T6097] should_fail_ex+0x1dc/0x234 [ 543.455348][ T6097] should_fail+0x14/0x24 [ 543.455397][ T6097] should_fail_usercopy+0x1c/0x28 [ 543.455467][ T6097] simple_read_from_buffer+0x5c/0x138 [ 543.455539][ T6097] proc_fail_nth_read+0xac/0x134 [ 543.455613][ T6097] vfs_read+0xc0/0x318 [ 543.455666][ T6097] ksys_read+0x6c/0x100 [ 543.455703][ T6097] __arm64_sys_read+0x1c/0x28 [ 543.455782][ T6097] invoke_syscall+0x48/0x110 [ 543.455857][ T6097] el0_svc_common.constprop.0+0x40/0xe0 [ 543.455899][ T6097] do_el0_svc+0x1c/0x28 [ 543.455936][ T6097] el0_svc+0x34/0x128 [ 543.455999][ T6097] el0t_64_sync_handler+0xa0/0xe4 [ 543.456071][ T6097] el0t_64_sync+0x1a4/0x1a8 [ 543.674006][ T6099] FAULT_INJECTION: forcing a failure. [ 543.674006][ T6099] name failslab, interval 1, probability 0, space 0, times 0 [ 543.676006][ T6099] CPU: 1 UID: 0 PID: 6099 Comm: syz.0.769 Not tainted syzkaller #0 PREEMPT [ 543.676210][ T6099] Hardware name: linux,dummy-virt (DT) [ 543.676304][ T6099] Call trace: [ 543.676362][ T6099] show_stack+0x18/0x24 (C) [ 543.676477][ T6099] dump_stack_lvl+0x78/0x90 [ 543.676554][ T6099] dump_stack+0x18/0x24 [ 543.676623][ T6099] should_fail_ex+0x1dc/0x234 [ 543.676765][ T6099] should_failslab+0x54/0x80 [ 543.676854][ T6099] __kmalloc_noprof+0xa8/0x5f4 [ 543.676932][ T6099] tomoyo_encode2+0x7c/0x140 [ 543.677006][ T6099] tomoyo_encode+0x28/0x40 [ 543.677071][ T6099] tomoyo_realpath_from_path+0x80/0x1b4 [ 543.677140][ T6099] tomoyo_path_number_perm+0xd8/0x20c [ 543.677209][ T6099] tomoyo_file_ioctl+0x1c/0x28 [ 543.677279][ T6099] security_file_ioctl+0x8c/0x19c [ 543.677360][ T6099] __arm64_sys_ioctl+0x48/0x104 [ 543.677427][ T6099] invoke_syscall+0x48/0x110 [ 543.677584][ T6099] el0_svc_common.constprop.0+0x40/0xe0 [ 543.677662][ T6099] do_el0_svc+0x1c/0x28 [ 543.677725][ T6099] el0_svc+0x34/0x128 [ 543.677796][ T6099] el0t_64_sync_handler+0xa0/0xe4 [ 543.677860][ T6099] el0t_64_sync+0x1a4/0x1a8 [ 543.678081][ T6099] ERROR: Out of memory at tomoyo_realpath_from_path. [ 544.675892][ T6113] FAULT_INJECTION: forcing a failure. [ 544.675892][ T6113] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 544.676291][ T6113] CPU: 1 UID: 0 PID: 6113 Comm: syz.0.774 Not tainted syzkaller #0 PREEMPT [ 544.676419][ T6113] Hardware name: linux,dummy-virt (DT) [ 544.676472][ T6113] Call trace: [ 544.676510][ T6113] show_stack+0x18/0x24 (C) [ 544.676709][ T6113] dump_stack_lvl+0x78/0x90 [ 544.676794][ T6113] dump_stack+0x18/0x24 [ 544.676930][ T6113] should_fail_ex+0x1dc/0x234 [ 544.677009][ T6113] should_fail+0x14/0x24 [ 544.677111][ T6113] should_fail_usercopy+0x1c/0x28 [ 544.677186][ T6113] simple_read_from_buffer+0x5c/0x138 [ 544.677382][ T6113] proc_fail_nth_read+0xac/0x134 [ 544.677462][ T6113] vfs_read+0xc0/0x318 [ 544.677717][ T6113] ksys_read+0x6c/0x100 [ 544.677834][ T6113] __arm64_sys_read+0x1c/0x28 [ 544.677954][ T6113] invoke_syscall+0x48/0x110 [ 544.678094][ T6113] el0_svc_common.constprop.0+0x40/0xe0 [ 544.678183][ T6113] do_el0_svc+0x1c/0x28 [ 544.678328][ T6113] el0_svc+0x34/0x128 [ 544.678434][ T6113] el0t_64_sync_handler+0xa0/0xe4 [ 544.678505][ T6113] el0t_64_sync+0x1a4/0x1a8 [ 550.650009][ T6219] FAULT_INJECTION: forcing a failure. [ 550.650009][ T6219] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 550.650436][ T6219] CPU: 1 UID: 0 PID: 6219 Comm: syz.0.816 Not tainted syzkaller #0 PREEMPT [ 550.650547][ T6219] Hardware name: linux,dummy-virt (DT) [ 550.650601][ T6219] Call trace: [ 550.650637][ T6219] show_stack+0x18/0x24 (C) [ 550.650756][ T6219] dump_stack_lvl+0x78/0x90 [ 550.650900][ T6219] dump_stack+0x18/0x24 [ 550.650993][ T6219] should_fail_ex+0x1dc/0x234 [ 550.651117][ T6219] should_fail+0x14/0x24 [ 550.651460][ T6219] should_fail_usercopy+0x1c/0x28 [ 550.651663][ T6219] simple_read_from_buffer+0x5c/0x138 [ 550.651760][ T6219] proc_fail_nth_read+0xac/0x134 [ 550.651864][ T6219] vfs_read+0xc0/0x318 [ 550.651945][ T6219] ksys_read+0x6c/0x100 [ 550.652061][ T6219] __arm64_sys_read+0x1c/0x28 [ 550.652219][ T6219] invoke_syscall+0x48/0x110 [ 550.652379][ T6219] el0_svc_common.constprop.0+0x40/0xe0 [ 550.652457][ T6219] do_el0_svc+0x1c/0x28 [ 550.652546][ T6219] el0_svc+0x34/0x128 [ 550.652675][ T6219] el0t_64_sync_handler+0xa0/0xe4 [ 550.652742][ T6219] el0t_64_sync+0x1a4/0x1a8 [ 551.357722][ T6230] FAULT_INJECTION: forcing a failure. [ 551.357722][ T6230] name failslab, interval 1, probability 0, space 0, times 0 [ 551.358200][ T6230] CPU: 1 UID: 0 PID: 6230 Comm: syz.1.820 Not tainted syzkaller #0 PREEMPT [ 551.358318][ T6230] Hardware name: linux,dummy-virt (DT) [ 551.358365][ T6230] Call trace: [ 551.358400][ T6230] show_stack+0x18/0x24 (C) [ 551.358508][ T6230] dump_stack_lvl+0x78/0x90 [ 551.358591][ T6230] dump_stack+0x18/0x24 [ 551.358664][ T6230] should_fail_ex+0x1dc/0x234 [ 551.358866][ T6230] should_failslab+0x54/0x80 [ 551.359051][ T6230] kmem_cache_alloc_node_noprof+0x5c/0x520 [ 551.359148][ T6230] __alloc_skb+0x84/0x1ec [ 551.359293][ T6230] netlink_alloc_large_skb+0x98/0xbc [ 551.359466][ T6230] netlink_sendmsg+0x10c/0x3fc [ 551.359624][ T6230] __sock_sendmsg+0x54/0x60 [ 551.359760][ T6230] ____sys_sendmsg+0x234/0x29c [ 551.359924][ T6230] ___sys_sendmsg+0xac/0x100 [ 551.360057][ T6230] __sys_sendmsg+0x98/0xf8 [ 551.360168][ T6230] __arm64_sys_sendmsg+0x24/0x30 [ 551.360261][ T6230] invoke_syscall+0x48/0x110 [ 551.360338][ T6230] el0_svc_common.constprop.0+0x40/0xe0 [ 551.360416][ T6230] do_el0_svc+0x1c/0x28 [ 551.360578][ T6230] el0_svc+0x34/0x128 [ 551.360683][ T6230] el0t_64_sync_handler+0xa0/0xe4 [ 551.360761][ T6230] el0t_64_sync+0x1a4/0x1a8 [ 554.797627][ T6253] FAULT_INJECTION: forcing a failure. [ 554.797627][ T6253] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 554.800549][ T6253] CPU: 0 UID: 0 PID: 6253 Comm: syz.0.826 Not tainted syzkaller #0 PREEMPT [ 554.800702][ T6253] Hardware name: linux,dummy-virt (DT) [ 554.800747][ T6253] Call trace: [ 554.800780][ T6253] show_stack+0x18/0x24 (C) [ 554.800953][ T6253] dump_stack_lvl+0x78/0x90 [ 554.801025][ T6253] dump_stack+0x18/0x24 [ 554.801083][ T6253] should_fail_ex+0x1dc/0x234 [ 554.801256][ T6253] should_fail+0x14/0x24 [ 554.801476][ T6253] should_fail_usercopy+0x1c/0x28 [ 554.801691][ T6253] _copy_from_iter+0x5c/0x65c [ 554.801775][ T6253] netlink_sendmsg+0x15c/0x3fc [ 554.801865][ T6253] __sock_sendmsg+0x54/0x60 [ 554.801953][ T6253] ____sys_sendmsg+0x234/0x29c [ 554.802043][ T6253] ___sys_sendmsg+0xac/0x100 [ 554.802113][ T6253] __sys_sendmsg+0x98/0xf8 [ 554.802182][ T6253] __arm64_sys_sendmsg+0x24/0x30 [ 554.802277][ T6253] invoke_syscall+0x48/0x110 [ 554.802363][ T6253] el0_svc_common.constprop.0+0x40/0xe0 [ 554.802438][ T6253] do_el0_svc+0x1c/0x28 [ 554.802517][ T6253] el0_svc+0x34/0x128 [ 554.802613][ T6253] el0t_64_sync_handler+0xa0/0xe4 [ 554.802715][ T6253] el0t_64_sync+0x1a4/0x1a8 [ 555.656443][ T6266] FAULT_INJECTION: forcing a failure. [ 555.656443][ T6266] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 555.657191][ T6266] CPU: 1 UID: 0 PID: 6266 Comm: syz.1.831 Not tainted syzkaller #0 PREEMPT [ 555.657273][ T6266] Hardware name: linux,dummy-virt (DT) [ 555.657298][ T6266] Call trace: [ 555.657317][ T6266] show_stack+0x18/0x24 (C) [ 555.657377][ T6266] dump_stack_lvl+0x78/0x90 [ 555.657418][ T6266] dump_stack+0x18/0x24 [ 555.657451][ T6266] should_fail_ex+0x1dc/0x234 [ 555.657551][ T6266] should_fail+0x14/0x24 [ 555.657589][ T6266] should_fail_usercopy+0x1c/0x28 [ 555.657625][ T6266] _copy_from_iter+0x5c/0x65c [ 555.657661][ T6266] netlink_sendmsg+0x15c/0x3fc [ 555.657703][ T6266] __sock_sendmsg+0x54/0x60 [ 555.657741][ T6266] ____sys_sendmsg+0x234/0x29c [ 555.657820][ T6266] ___sys_sendmsg+0xac/0x100 [ 555.657918][ T6266] __sys_sendmsg+0x98/0xf8 [ 555.657956][ T6266] __arm64_sys_sendmsg+0x24/0x30 [ 555.658047][ T6266] invoke_syscall+0x48/0x110 [ 555.658097][ T6266] el0_svc_common.constprop.0+0x40/0xe0 [ 555.658137][ T6266] do_el0_svc+0x1c/0x28 [ 555.658175][ T6266] el0_svc+0x34/0x128 [ 555.658214][ T6266] el0t_64_sync_handler+0xa0/0xe4 [ 555.658279][ T6266] el0t_64_sync+0x1a4/0x1a8 [ 556.575091][ T6283] FAULT_INJECTION: forcing a failure. [ 556.575091][ T6283] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 556.576414][ T6283] CPU: 1 UID: 0 PID: 6283 Comm: syz.1.836 Not tainted syzkaller #0 PREEMPT [ 556.576531][ T6283] Hardware name: linux,dummy-virt (DT) [ 556.576582][ T6283] Call trace: [ 556.576615][ T6283] show_stack+0x18/0x24 (C) [ 556.576833][ T6283] dump_stack_lvl+0x78/0x90 [ 556.576964][ T6283] dump_stack+0x18/0x24 [ 556.577055][ T6283] should_fail_ex+0x1dc/0x234 [ 556.577146][ T6283] should_fail+0x14/0x24 [ 556.577260][ T6283] should_fail_usercopy+0x1c/0x28 [ 556.577346][ T6283] simple_read_from_buffer+0x5c/0x138 [ 556.577454][ T6283] proc_fail_nth_read+0xac/0x134 [ 556.577523][ T6283] vfs_read+0xc0/0x318 [ 556.577746][ T6283] ksys_read+0x6c/0x100 [ 556.577848][ T6283] __arm64_sys_read+0x1c/0x28 [ 556.577955][ T6283] invoke_syscall+0x48/0x110 [ 556.578063][ T6283] el0_svc_common.constprop.0+0x40/0xe0 [ 556.578139][ T6283] do_el0_svc+0x1c/0x28 [ 556.578208][ T6283] el0_svc+0x34/0x128 [ 556.578280][ T6283] el0t_64_sync_handler+0xa0/0xe4 [ 556.578349][ T6283] el0t_64_sync+0x1a4/0x1a8 [ 563.459297][ T6345] binder: Unknown parameter 'rootcontext' [ 568.078856][ T6406] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 568.088629][ T6406] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 568.670648][ T6416] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 568.676291][ T6416] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 573.583156][ T6424] kernel profiling enabled (shift: 0) [ 574.792388][ T6435] FAULT_INJECTION: forcing a failure. [ 574.792388][ T6435] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 574.794503][ T6435] CPU: 0 UID: 0 PID: 6435 Comm: syz.0.881 Not tainted syzkaller #0 PREEMPT [ 574.794645][ T6435] Hardware name: linux,dummy-virt (DT) [ 574.794695][ T6435] Call trace: [ 574.794730][ T6435] show_stack+0x18/0x24 (C) [ 574.794911][ T6435] dump_stack_lvl+0x78/0x90 [ 574.794993][ T6435] dump_stack+0x18/0x24 [ 574.795126][ T6435] should_fail_ex+0x1dc/0x234 [ 574.795203][ T6435] should_fail+0x14/0x24 [ 574.795310][ T6435] should_fail_usercopy+0x1c/0x28 [ 574.795381][ T6435] simple_read_from_buffer+0x5c/0x138 [ 574.795453][ T6435] proc_fail_nth_read+0xac/0x134 [ 574.795525][ T6435] vfs_read+0xc0/0x318 [ 574.795610][ T6435] ksys_read+0x6c/0x100 [ 574.795683][ T6435] __arm64_sys_read+0x1c/0x28 [ 574.795781][ T6435] invoke_syscall+0x48/0x110 [ 574.795883][ T6435] el0_svc_common.constprop.0+0x40/0xe0 [ 574.795958][ T6435] do_el0_svc+0x1c/0x28 [ 574.796038][ T6435] el0_svc+0x34/0x128 [ 574.796109][ T6435] el0t_64_sync_handler+0xa0/0xe4 [ 574.796223][ T6435] el0t_64_sync+0x1a4/0x1a8 [ 575.552380][ T3411] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 575.767970][ T3411] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 575.768478][ T3411] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 575.772255][ T3411] usb 1-1: Product: syz [ 575.772367][ T3411] usb 1-1: Manufacturer: syz [ 575.772425][ T3411] usb 1-1: SerialNumber: syz [ 576.237297][ T6439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 576.254940][ T6439] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 576.299415][ T6439] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 576.313853][ T6439] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 576.369664][ T3411] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO [ 576.370559][ T3411] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPROTO [ 576.386292][ T3411] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPROTO [ 576.386841][ T3411] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED.... [ 576.389269][ T3411] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 576.438343][ T3411] lan78xx 1-1:1.0: probe with driver lan78xx failed with error -71 [ 576.527940][ T3411] usb 1-1: USB disconnect, device number 17 [ 580.933313][ T6491] FAULT_INJECTION: forcing a failure. [ 580.933313][ T6491] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 580.935581][ T6491] CPU: 0 UID: 0 PID: 6491 Comm: syz.1.899 Not tainted syzkaller #0 PREEMPT [ 580.935712][ T6491] Hardware name: linux,dummy-virt (DT) [ 580.935762][ T6491] Call trace: [ 580.935799][ T6491] show_stack+0x18/0x24 (C) [ 580.935915][ T6491] dump_stack_lvl+0x78/0x90 [ 580.935994][ T6491] dump_stack+0x18/0x24 [ 580.936064][ T6491] should_fail_ex+0x1dc/0x234 [ 580.936176][ T6491] should_fail+0x14/0x24 [ 580.936250][ T6491] should_fail_usercopy+0x1c/0x28 [ 580.936321][ T6491] simple_read_from_buffer+0x5c/0x138 [ 580.936419][ T6491] proc_fail_nth_read+0xac/0x134 [ 580.936493][ T6491] vfs_read+0xc0/0x318 [ 580.936571][ T6491] ksys_read+0x6c/0x100 [ 580.936647][ T6491] __arm64_sys_read+0x1c/0x28 [ 580.936721][ T6491] invoke_syscall+0x48/0x110 [ 580.936799][ T6491] el0_svc_common.constprop.0+0x40/0xe0 [ 580.936875][ T6491] do_el0_svc+0x1c/0x28 [ 580.936952][ T6491] el0_svc+0x34/0x128 [ 580.937026][ T6491] el0t_64_sync_handler+0xa0/0xe4 [ 580.937100][ T6491] el0t_64_sync+0x1a4/0x1a8 [ 581.441947][ T40] usb 1-1: new full-speed USB device number 18 using dummy_hcd [ 581.644107][ T40] usb 1-1: config 250 has an invalid interface number: 115 but max is 3 [ 581.644806][ T40] usb 1-1: config 250 contains an unexpected descriptor of type 0x2, skipping [ 581.645189][ T40] usb 1-1: config 250 contains an unexpected descriptor of type 0x2, skipping [ 581.645629][ T40] usb 1-1: config 250 has an invalid interface number: 215 but max is 3 [ 581.645826][ T40] usb 1-1: config 250 has an invalid interface number: 11 but max is 3 [ 581.645940][ T40] usb 1-1: config 250 has an invalid descriptor of length 0, skipping remainder of the config [ 581.646038][ T40] usb 1-1: config 250 has no interface number 0 [ 581.646165][ T40] usb 1-1: config 250 has no interface number 1 [ 581.646220][ T40] usb 1-1: config 250 has no interface number 3 [ 581.646545][ T40] usb 1-1: config 250 interface 115 altsetting 208 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 581.646779][ T40] usb 1-1: config 250 interface 215 altsetting 7 endpoint 0x3 has invalid maxpacket 1112, setting to 64 [ 581.646872][ T40] usb 1-1: config 250 interface 215 altsetting 7 has an invalid descriptor for endpoint zero, skipping [ 581.647182][ T40] usb 1-1: config 250 interface 215 altsetting 7 endpoint 0x8 has invalid maxpacket 1527, setting to 64 [ 581.647335][ T40] usb 1-1: config 250 interface 215 altsetting 7 endpoint 0xB has an invalid bInterval 120, changing to 4 [ 581.647529][ T40] usb 1-1: config 250 interface 11 altsetting 68 has an invalid descriptor for endpoint zero, skipping [ 581.647746][ T40] usb 1-1: config 250 interface 2 altsetting 12 has 0 endpoint descriptors, different from the interface descriptor's value: 10 [ 581.647830][ T40] usb 1-1: config 250 interface 115 has no altsetting 0 [ 581.647919][ T40] usb 1-1: config 250 interface 215 has no altsetting 0 [ 581.647979][ T40] usb 1-1: config 250 interface 11 has no altsetting 0 [ 581.648035][ T40] usb 1-1: config 250 interface 2 has no altsetting 0 [ 581.732822][ T40] usb 1-1: New USB device found, idVendor=413c, idProduct=81b1, bcdDevice=1a.34 [ 581.733186][ T40] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 581.733337][ T40] usb 1-1: Product: ᰓ [ 581.733398][ T40] usb 1-1: Manufacturer: 簳䇈䯅㯁푫㼬蓱샳♰Ⴏ⃽⯬뺟ᄌ毄鳝鞁၈ꆼ哉毎胙醧糐끊软⡊式檷鰿谺똛餄垾 [ 581.733477][ T40] usb 1-1: SerialNumber: 㝔㪦၍żꬬ嫞京飫땑갽盈廬ﷱ雖ꔤ똫繅쳳⠥䝅쪵뇚⨆塆₱궽࿽༘ [ 582.152060][ T40] usb 1-1: USB disconnect, device number 18 [ 582.542934][ T40] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 582.692058][ T40] usb 1-1: device descriptor read/64, error -71 [ 582.931799][ T40] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 583.082269][ T40] usb 1-1: device descriptor read/64, error -71 [ 583.194849][ T40] usb usb1-port1: attempt power cycle [ 583.563370][ T40] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 583.592050][ T40] usb 1-1: device descriptor read/8, error -71 [ 583.842061][ T40] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 583.886378][ T40] usb 1-1: device descriptor read/8, error -71 [ 583.994879][ T40] usb usb1-port1: unable to enumerate USB device [ 593.934370][ T6635] FAULT_INJECTION: forcing a failure. [ 593.934370][ T6635] name failslab, interval 1, probability 0, space 0, times 0 [ 593.934757][ T6635] CPU: 0 UID: 0 PID: 6635 Comm: syz.0.928 Not tainted syzkaller #0 PREEMPT [ 593.934868][ T6635] Hardware name: linux,dummy-virt (DT) [ 593.934914][ T6635] Call trace: [ 593.934951][ T6635] show_stack+0x18/0x24 (C) [ 593.935061][ T6635] dump_stack_lvl+0x78/0x90 [ 593.935139][ T6635] dump_stack+0x18/0x24 [ 593.935209][ T6635] should_fail_ex+0x1dc/0x234 [ 593.935282][ T6635] should_failslab+0x54/0x80 [ 593.935373][ T6635] __kmalloc_noprof+0xa8/0x5f4 [ 593.935452][ T6635] tomoyo_realpath_from_path+0x44/0x1b4 [ 593.935533][ T6635] tomoyo_path_number_perm+0xd8/0x20c [ 593.935608][ T6635] tomoyo_file_ioctl+0x1c/0x28 [ 593.935689][ T6635] security_file_ioctl+0x8c/0x19c [ 593.935765][ T6635] __arm64_sys_ioctl+0x48/0x104 [ 593.935840][ T6635] invoke_syscall+0x48/0x110 [ 593.935920][ T6635] el0_svc_common.constprop.0+0x40/0xe0 [ 593.935999][ T6635] do_el0_svc+0x1c/0x28 [ 593.936076][ T6635] el0_svc+0x34/0x128 [ 593.936192][ T6635] el0t_64_sync_handler+0xa0/0xe4 [ 593.936269][ T6635] el0t_64_sync+0x1a4/0x1a8 [ 593.936671][ T6635] ERROR: Out of memory at tomoyo_realpath_from_path. [ 594.582175][ T3411] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 594.731950][ T3411] usb 1-1: device descriptor read/64, error -71 [ 594.972248][ T3411] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 595.111842][ T3411] usb 1-1: device descriptor read/64, error -71 [ 595.234346][ T3411] usb usb1-port1: attempt power cycle [ 595.598373][ T3411] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 595.619615][ T3411] usb 1-1: device descriptor read/8, error -71 [ 595.861875][ T3411] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 595.901641][ T3411] usb 1-1: device descriptor read/8, error -71 [ 596.013849][ T3411] usb usb1-port1: unable to enumerate USB device [ 602.631776][ T6660] FAULT_INJECTION: forcing a failure. [ 602.631776][ T6660] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 602.632332][ T6660] CPU: 1 UID: 0 PID: 6660 Comm: syz.1.936 Not tainted syzkaller #0 PREEMPT [ 602.632522][ T6660] Hardware name: linux,dummy-virt (DT) [ 602.632613][ T6660] Call trace: [ 602.632695][ T6660] show_stack+0x18/0x24 (C) [ 602.632811][ T6660] dump_stack_lvl+0x78/0x90 [ 602.632896][ T6660] dump_stack+0x18/0x24 [ 602.632966][ T6660] should_fail_ex+0x1dc/0x234 [ 602.633037][ T6660] should_fail+0x14/0x24 [ 602.633127][ T6660] should_fail_usercopy+0x1c/0x28 [ 602.633249][ T6660] setup_rt_frame+0x340/0x11bc [ 602.633346][ T6660] arch_do_signal_or_restart+0x26c/0x3d4 [ 602.633418][ T6660] exit_to_user_mode_loop+0x110/0x18c [ 602.633495][ T6660] el0_svc+0x124/0x128 [ 602.633560][ T6660] el0t_64_sync_handler+0xa0/0xe4 [ 602.633686][ T6660] el0t_64_sync+0x1a4/0x1a8 [ 604.583318][ T6676] FAULT_INJECTION: forcing a failure. [ 604.583318][ T6676] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 604.583700][ T6676] CPU: 1 UID: 0 PID: 6676 Comm: syz.1.942 Not tainted syzkaller #0 PREEMPT [ 604.583834][ T6676] Hardware name: linux,dummy-virt (DT) [ 604.583880][ T6676] Call trace: [ 604.583912][ T6676] show_stack+0x18/0x24 (C) [ 604.584010][ T6676] dump_stack_lvl+0x78/0x90 [ 604.584088][ T6676] dump_stack+0x18/0x24 [ 604.584185][ T6676] should_fail_ex+0x1dc/0x234 [ 604.584256][ T6676] should_fail+0x14/0x24 [ 604.584320][ T6676] should_fail_usercopy+0x1c/0x28 [ 604.584406][ T6676] preserve_fpsimd_context+0x24/0x1cc [ 604.584480][ T6676] setup_rt_frame+0x378/0x11bc [ 604.584543][ T6676] arch_do_signal_or_restart+0x26c/0x3d4 [ 604.584613][ T6676] exit_to_user_mode_loop+0x110/0x18c [ 604.584716][ T6676] el0_svc+0x124/0x128 [ 604.585076][ T6676] el0t_64_sync_handler+0xa0/0xe4 [ 604.585258][ T6676] el0t_64_sync+0x1a4/0x1a8 [ 606.469827][ T6702] input: syz0 as /devices/virtual/input/input30 [ 612.087810][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.089406][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 612.138399][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.139813][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 612.157193][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.158693][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 612.178222][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.180861][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 612.200736][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.213761][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 612.228047][ T6729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 612.229449][ T6729] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 613.986613][ T6752] input: syz0 as /devices/virtual/input/input31 [ 622.247386][ T6814] input: syz0 as /devices/virtual/input/input32 [ 631.045216][ T6887] input: syz0 as /devices/virtual/input/input33 [ 632.673400][ T6904] fuse: Bad value for 'fd' [ 636.232520][ T6933] FAULT_INJECTION: forcing a failure. [ 636.232520][ T6933] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 636.235309][ T6933] CPU: 0 UID: 0 PID: 6933 Comm: syz.1.1022 Not tainted syzkaller #0 PREEMPT [ 636.235471][ T6933] Hardware name: linux,dummy-virt (DT) [ 636.235533][ T6933] Call trace: [ 636.235571][ T6933] show_stack+0x18/0x24 (C) [ 636.235689][ T6933] dump_stack_lvl+0x78/0x90 [ 636.235769][ T6933] dump_stack+0x18/0x24 [ 636.235841][ T6933] should_fail_ex+0x1dc/0x234 [ 636.235918][ T6933] should_fail+0x14/0x24 [ 636.235986][ T6933] should_fail_usercopy+0x1c/0x28 [ 636.236057][ T6933] _copy_from_iter+0x5c/0x65c [ 636.236128][ T6933] netlink_sendmsg+0x15c/0x3fc [ 636.236256][ T6933] __sock_sendmsg+0x54/0x60 [ 636.236334][ T6933] ____sys_sendmsg+0x234/0x29c [ 636.236407][ T6933] ___sys_sendmsg+0xac/0x100 [ 636.236491][ T6933] __sys_sendmsg+0x98/0xf8 [ 636.236567][ T6933] __arm64_sys_sendmsg+0x24/0x30 [ 636.236644][ T6933] invoke_syscall+0x48/0x110 [ 636.236723][ T6933] el0_svc_common.constprop.0+0x40/0xe0 [ 636.236803][ T6933] do_el0_svc+0x1c/0x28 [ 636.236881][ T6933] el0_svc+0x34/0x128 [ 636.236958][ T6933] el0t_64_sync_handler+0xa0/0xe4 [ 636.237034][ T6933] el0t_64_sync+0x1a4/0x1a8 [ 637.878245][ T6949] FAULT_INJECTION: forcing a failure. [ 637.878245][ T6949] name failslab, interval 1, probability 0, space 0, times 0 [ 637.878626][ T6949] CPU: 1 UID: 0 PID: 6949 Comm: syz.0.1027 Not tainted syzkaller #0 PREEMPT [ 637.878725][ T6949] Hardware name: linux,dummy-virt (DT) [ 637.878766][ T6949] Call trace: [ 637.878802][ T6949] show_stack+0x18/0x24 (C) [ 637.878907][ T6949] dump_stack_lvl+0x78/0x90 [ 637.878993][ T6949] dump_stack+0x18/0x24 [ 637.879064][ T6949] should_fail_ex+0x1dc/0x234 [ 637.879181][ T6949] should_failslab+0x54/0x80 [ 637.879583][ T6949] kmem_cache_alloc_noprof+0x54/0x51c [ 637.879706][ T6949] skb_clone+0x60/0xc4 [ 637.879811][ T6949] __netlink_deliver_tap+0xf8/0x28c [ 637.879953][ T6949] netlink_unicast+0x380/0x3ac [ 637.880074][ T6949] netlink_sendmsg+0x194/0x3fc [ 637.880190][ T6949] __sock_sendmsg+0x54/0x60 [ 637.880407][ T6949] ____sys_sendmsg+0x234/0x29c [ 637.880486][ T6949] ___sys_sendmsg+0xac/0x100 [ 637.880588][ T6949] __sys_sendmsg+0x98/0xf8 [ 637.880667][ T6949] __arm64_sys_sendmsg+0x24/0x30 [ 637.880928][ T6949] invoke_syscall+0x48/0x110 [ 637.881296][ T6949] el0_svc_common.constprop.0+0x40/0xe0 [ 637.882074][ T6949] do_el0_svc+0x1c/0x28 [ 637.882238][ T6949] el0_svc+0x34/0x128 [ 637.882523][ T6949] el0t_64_sync_handler+0xa0/0xe4 [ 637.882638][ T6949] el0t_64_sync+0x1a4/0x1a8 [ 638.651970][ T3411] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 638.821983][ T3411] usb 1-1: Using ep0 maxpacket: 16 [ 638.869240][ T3411] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 638.869566][ T3411] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 638.872180][ T3411] usb 1-1: Product: ̽묂捤쯅⊘Ꮣ႘䀮㵿Ꙏ拞姹ᚺ⼖廵려橉㺁匏鍢틏恠쿉㓛⺃흝쌣⮖절┚ꉈ奣聫嬨챝蕯횎ᱲ뻾駄뇴읜떠赇흼羚鎩ᅀ晠뀓㔦㓍ퟝﵧᇠ筠㢵빔‟憑ૻ鉶줺摦夆똫峵୤쇘⏵१È⵿걠鷠雷峪︐⶗狞본쟄獫︈띡䍢쿠烋礎㟰䢅娳姿 [ 638.872349][ T3411] usb 1-1: Manufacturer: 運툸꣮䟽搑譨苩䭝G魈ᡫ릛急嬲Ἡ糼篠﮺狲欵떾繒毕ᬄ뗘Ÿ礒잖㦛鏭י爔刐᎞鿟䴫→䌼몤粽 [ 638.872429][ T3411] usb 1-1: SerialNumber: ﴉ盃껟ꌄ裛夘㴈ℒ쨻룘ꓷﲡ뛉潺ﶝ锇ꔻリ൲블崯膼䝱簫矹羺랽㲎팵㽋䀜㼭릱섬䙱霯趻벊磝밽栳朚찲穅Ḏᖶ↣格존毉⛘ඌ䶼垿ﰄ럷髀追壁损뇍觪埑ꕼ恏ย袡廊郔忕Ӽ伜电忲䶤☭ᘮ紆䴊㫪贈떰ࣿໄ鰾ᪧ穹ᩀ婠嶤㓊毒䞸 [ 639.254543][ T6957] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 639.267964][ T6957] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 639.474956][ T6962] input: syz0 as /devices/virtual/input/input35 [ 639.898610][ T3411] cdc_ncm 1-1:1.0: bind() failure [ 639.938664][ T3411] cdc_ncm 1-1:1.1: CDC Union missing and no IAD found [ 639.939217][ T3411] cdc_ncm 1-1:1.1: bind() failure [ 640.014925][ T3411] usb 1-1: USB disconnect, device number 27 [ 640.366814][ T6970] FAULT_INJECTION: forcing a failure. [ 640.366814][ T6970] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 640.367199][ T6970] CPU: 1 UID: 0 PID: 6970 Comm: syz.0.1033 Not tainted syzkaller #0 PREEMPT [ 640.367292][ T6970] Hardware name: linux,dummy-virt (DT) [ 640.367336][ T6970] Call trace: [ 640.367374][ T6970] show_stack+0x18/0x24 (C) [ 640.367483][ T6970] dump_stack_lvl+0x78/0x90 [ 640.367557][ T6970] dump_stack+0x18/0x24 [ 640.367659][ T6970] should_fail_ex+0x1dc/0x234 [ 640.367854][ T6970] should_fail+0x14/0x24 [ 640.368031][ T6970] should_fail_usercopy+0x1c/0x28 [ 640.368228][ T6970] simple_read_from_buffer+0x5c/0x138 [ 640.368371][ T6970] proc_fail_nth_read+0xac/0x134 [ 640.368494][ T6970] vfs_read+0xc0/0x318 [ 640.368628][ T6970] ksys_read+0x6c/0x100 [ 640.369043][ T6970] __arm64_sys_read+0x1c/0x28 [ 640.369179][ T6970] invoke_syscall+0x48/0x110 [ 640.369262][ T6970] el0_svc_common.constprop.0+0x40/0xe0 [ 640.369367][ T6970] do_el0_svc+0x1c/0x28 [ 640.369454][ T6970] el0_svc+0x34/0x128 [ 640.369532][ T6970] el0t_64_sync_handler+0xa0/0xe4 [ 640.369617][ T6970] el0t_64_sync+0x1a4/0x1a8 [ 647.770172][ T7015] input: syz0 as /devices/virtual/input/input36 [ 650.549832][ T7044] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 650.555901][ T7044] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 656.058850][ T7078] input: syz0 as /devices/virtual/input/input37 [ 662.478402][ T7111] FAULT_INJECTION: forcing a failure. [ 662.478402][ T7111] name failslab, interval 1, probability 0, space 0, times 0 [ 662.482172][ T7111] CPU: 0 UID: 0 PID: 7111 Comm: syz.0.1068 Not tainted syzkaller #0 PREEMPT [ 662.482340][ T7111] Hardware name: linux,dummy-virt (DT) [ 662.482392][ T7111] Call trace: [ 662.482429][ T7111] show_stack+0x18/0x24 (C) [ 662.482550][ T7111] dump_stack_lvl+0x78/0x90 [ 662.482637][ T7111] dump_stack+0x18/0x24 [ 662.482711][ T7111] should_fail_ex+0x1dc/0x234 [ 662.482790][ T7111] should_failslab+0x54/0x80 [ 662.482872][ T7111] __kmalloc_noprof+0xa8/0x5f4 [ 662.482954][ T7111] tomoyo_realpath_from_path+0x44/0x1b4 [ 662.483086][ T7111] tomoyo_path_number_perm+0xd8/0x20c [ 662.483167][ T7111] tomoyo_file_ioctl+0x1c/0x28 [ 662.483251][ T7111] security_file_ioctl+0x8c/0x19c [ 662.483349][ T7111] __arm64_sys_ioctl+0x48/0x104 [ 662.483432][ T7111] invoke_syscall+0x48/0x110 [ 662.483513][ T7111] el0_svc_common.constprop.0+0x40/0xe0 [ 662.483598][ T7111] do_el0_svc+0x1c/0x28 [ 662.483679][ T7111] el0_svc+0x34/0x128 [ 662.483758][ T7111] el0t_64_sync_handler+0xa0/0xe4 [ 662.483835][ T7111] el0t_64_sync+0x1a4/0x1a8 [ 662.504309][ T7111] ERROR: Out of memory at tomoyo_realpath_from_path. [ 663.402183][ T7124] FAULT_INJECTION: forcing a failure. [ 663.402183][ T7124] name failslab, interval 1, probability 0, space 0, times 0 [ 663.402623][ T7124] CPU: 1 UID: 0 PID: 7124 Comm: syz.0.1073 Not tainted syzkaller #0 PREEMPT [ 663.402727][ T7124] Hardware name: linux,dummy-virt (DT) [ 663.402772][ T7124] Call trace: [ 663.402809][ T7124] show_stack+0x18/0x24 (C) [ 663.402920][ T7124] dump_stack_lvl+0x78/0x90 [ 663.403064][ T7124] dump_stack+0x18/0x24 [ 663.403283][ T7124] should_fail_ex+0x1dc/0x234 [ 663.403780][ T7124] should_failslab+0x54/0x80 [ 663.403879][ T7124] __kmalloc_noprof+0xa8/0x5f4 [ 663.404428][ T7124] tomoyo_encode2+0x7c/0x140 [ 663.404526][ T7124] tomoyo_encode+0x28/0x40 [ 663.404868][ T7124] tomoyo_realpath_from_path+0x80/0x1b4 [ 663.404984][ T7124] tomoyo_path_number_perm+0xd8/0x20c [ 663.405057][ T7124] tomoyo_file_ioctl+0x1c/0x28 [ 663.405162][ T7124] security_file_ioctl+0x8c/0x19c [ 663.405261][ T7124] __arm64_sys_ioctl+0x48/0x104 [ 663.405344][ T7124] invoke_syscall+0x48/0x110 [ 663.405424][ T7124] el0_svc_common.constprop.0+0x40/0xe0 [ 663.405505][ T7124] do_el0_svc+0x1c/0x28 [ 663.405590][ T7124] el0_svc+0x34/0x128 [ 663.405664][ T7124] el0t_64_sync_handler+0xa0/0xe4 [ 663.405736][ T7124] el0t_64_sync+0x1a4/0x1a8 [ 663.410654][ T7124] ERROR: Out of memory at tomoyo_realpath_from_path. [ 665.186002][ T7153] input: syz0 as /devices/virtual/input/input38 [ 671.587439][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.589679][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.595589][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.599624][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.606165][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.613051][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.626998][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.633994][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.644706][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 671.658798][ T7192] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1093'. [ 675.512652][ T7101] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 675.733695][ T7101] usb 1-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00 [ 675.734042][ T7101] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 675.735570][ T7101] usb 1-1: Product: syz [ 675.735844][ T7101] usb 1-1: Manufacturer: syz [ 675.735971][ T7101] usb 1-1: SerialNumber: syz [ 675.974340][ T7233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 675.980049][ T7233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 676.040397][ T7233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 676.045870][ T7233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 676.064430][ T7233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 676.068647][ T7233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 676.097125][ T7233] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 676.120087][ T7233] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 676.158981][ T7101] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPROTO [ 676.159419][ T7101] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): lan78xx_setup_irq_domain() failed : -71 [ 676.164678][ T7101] lan78xx 1-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED [ 676.195965][ T7101] lan78xx 1-1:1.0: probe with driver lan78xx failed with error -71 [ 676.225892][ T7101] usb 1-1: USB disconnect, device number 28 [ 683.074306][ T7310] x_tables: duplicate underflow at hook 3 [ 688.748470][ T7374] x_tables: duplicate underflow at hook 2 [ 689.223585][ T7387] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 689.236469][ T7387] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 691.714877][ T7427] input: syz0 as /devices/virtual/input/input39 [ 697.082979][ T7480] FAULT_INJECTION: forcing a failure. [ 697.082979][ T7480] name failslab, interval 1, probability 0, space 0, times 0 [ 697.087675][ T7480] CPU: 1 UID: 0 PID: 7480 Comm: syz.1.1169 Not tainted syzkaller #0 PREEMPT [ 697.087835][ T7480] Hardware name: linux,dummy-virt (DT) [ 697.087900][ T7480] Call trace: [ 697.087950][ T7480] show_stack+0x18/0x24 (C) [ 697.088031][ T7480] dump_stack_lvl+0x78/0x90 [ 697.088077][ T7480] dump_stack+0x18/0x24 [ 697.088117][ T7480] should_fail_ex+0x1dc/0x234 [ 697.088209][ T7480] should_failslab+0x54/0x80 [ 697.088255][ T7480] __kmalloc_noprof+0xa8/0x5f4 [ 697.088299][ T7480] tomoyo_encode2+0x7c/0x140 [ 697.088354][ T7480] tomoyo_encode+0x28/0x40 [ 697.088397][ T7480] tomoyo_realpath_from_path+0x80/0x1b4 [ 697.088442][ T7480] tomoyo_path_number_perm+0xd8/0x20c [ 697.088484][ T7480] tomoyo_file_ioctl+0x1c/0x28 [ 697.088530][ T7480] security_file_ioctl+0x8c/0x19c [ 697.088572][ T7480] __arm64_sys_ioctl+0x48/0x104 [ 697.088615][ T7480] invoke_syscall+0x48/0x110 [ 697.088660][ T7480] el0_svc_common.constprop.0+0x40/0xe0 [ 697.088705][ T7480] do_el0_svc+0x1c/0x28 [ 697.088750][ T7480] el0_svc+0x34/0x128 [ 697.088792][ T7480] el0t_64_sync_handler+0xa0/0xe4 [ 697.088833][ T7480] el0t_64_sync+0x1a4/0x1a8 [ 697.103384][ T7480] ERROR: Out of memory at tomoyo_realpath_from_path. [ 698.354987][ T7496] FAULT_INJECTION: forcing a failure. [ 698.354987][ T7496] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 698.355923][ T7496] CPU: 0 UID: 0 PID: 7496 Comm: syz.1.1175 Not tainted syzkaller #0 PREEMPT [ 698.356029][ T7496] Hardware name: linux,dummy-virt (DT) [ 698.356077][ T7496] Call trace: [ 698.356114][ T7496] show_stack+0x18/0x24 (C) [ 698.356263][ T7496] dump_stack_lvl+0x78/0x90 [ 698.356351][ T7496] dump_stack+0x18/0x24 [ 698.356424][ T7496] should_fail_ex+0x1dc/0x234 [ 698.356612][ T7496] should_fail+0x14/0x24 [ 698.356688][ T7496] should_fail_usercopy+0x1c/0x28 [ 698.356755][ T7496] simple_read_from_buffer+0x5c/0x138 [ 698.356824][ T7496] proc_fail_nth_read+0xac/0x134 [ 698.356862][ T7496] vfs_read+0xc0/0x318 [ 698.356978][ T7496] ksys_read+0x6c/0x100 [ 698.357055][ T7496] __arm64_sys_read+0x1c/0x28 [ 698.357120][ T7496] invoke_syscall+0x48/0x110 [ 698.357211][ T7496] el0_svc_common.constprop.0+0x40/0xe0 [ 698.357365][ T7496] do_el0_svc+0x1c/0x28 [ 698.357455][ T7496] el0_svc+0x34/0x128 [ 698.357748][ T7496] el0t_64_sync_handler+0xa0/0xe4 [ 698.357899][ T7496] el0t_64_sync+0x1a4/0x1a8 [ 704.443287][ T7518] nci: __nci_request: wait_for_completion_interruptible_timeout failed 0 [ 707.698859][ T7537] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 707.718843][ T7537] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 708.760019][ T7537] hsr_slave_0: entered promiscuous mode [ 708.766955][ T7537] hsr_slave_1: entered promiscuous mode [ 708.769851][ T7537] debugfs: 'hsr0' already exists in 'hsr' [ 708.774988][ T7537] Cannot create hsr debugfs directory [ 709.766501][ T7537] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 709.857917][ T7537] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.007500][ T7537] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.138999][ T7537] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 710.567028][ T7537] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 710.583523][ T7537] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 710.626211][ T7537] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 710.670280][ T7537] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 711.940801][ T7537] 8021q: adding VLAN 0 to HW filter on device bond0 [ 716.008597][ T7537] veth0_vlan: entered promiscuous mode [ 716.097515][ T7537] veth1_vlan: entered promiscuous mode [ 716.272568][ T7537] veth0_macvtap: entered promiscuous mode [ 716.327041][ T7537] veth1_macvtap: entered promiscuous mode [ 716.477868][ T1542] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 716.483913][ T1542] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 716.485778][ T1542] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 716.487899][ T1542] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 717.377302][ T1542] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 717.377685][ T1542] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.477073][ T1542] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 717.479284][ T1542] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.566407][ T1542] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 717.567584][ T1542] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 717.654839][ T1542] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 717.657824][ T1542] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 718.826626][ T1542] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 718.873605][ T1542] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 718.918665][ T1542] bond0 (unregistering): Released all slaves [ 719.074998][ T1542] hsr_slave_0: left promiscuous mode [ 719.080453][ T1542] hsr_slave_1: left promiscuous mode [ 719.107623][ T1542] veth1_macvtap: left promiscuous mode [ 719.109014][ T1542] veth0_macvtap: left promiscuous mode [ 719.110352][ T1542] veth1_vlan: left promiscuous mode [ 719.114087][ T1542] veth0_vlan: left promiscuous mode [ 722.969158][ T7708] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 722.987735][ T7708] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 725.072532][ T7708] hsr_slave_0: entered promiscuous mode [ 725.083904][ T7708] hsr_slave_1: entered promiscuous mode [ 726.886069][ T7708] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 726.922601][ T7708] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 726.964052][ T7708] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 727.000275][ T7708] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 727.074970][ T7838] faux_driver vkms: [drm] Unknown color mode 9; guessing buffer size. [ 728.523580][ T7708] 8021q: adding VLAN 0 to HW filter on device bond0 [ 733.633734][ T7708] veth0_vlan: entered promiscuous mode [ 733.696250][ T7708] veth1_vlan: entered promiscuous mode [ 734.035000][ T7708] veth0_macvtap: entered promiscuous mode [ 734.094745][ T7708] veth1_macvtap: entered promiscuous mode [ 734.317789][ T7942] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 734.319936][ T7942] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 734.323691][ T7942] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 734.325537][ T7942] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 747.522202][ T6509] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 747.795518][ T6509] usb 1-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.00 [ 747.795888][ T6509] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 747.797446][ T6509] usb 1-1: Product: syz [ 747.797541][ T6509] usb 1-1: Manufacturer: syz [ 747.797596][ T6509] usb 1-1: SerialNumber: syz [ 747.799484][ T8146] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 747.808022][ T8146] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 748.515815][ T6509] rtl8150 1-1:1.0: couldn't reset the device [ 748.517031][ T6509] rtl8150 1-1:1.0: probe with driver rtl8150 failed with error -5 [ 748.554747][ T6509] usb 1-1: USB disconnect, device number 29 [ 749.022026][ T7885] usb 1-1: new low-speed USB device number 30 using dummy_hcd [ 749.205748][ T7885] usb 1-1: config 1 interface 0 altsetting 129 endpoint 0x81 has invalid maxpacket 64, setting to 8 [ 749.208642][ T7885] usb 1-1: config 1 interface 0 has no altsetting 0 [ 754.301624][ T7885] usb 1-1: New USB device found, idVendor=0079, idProduct=1803, bcdDevice= 0.40 [ 754.304615][ T7885] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 754.305645][ T7885] usb 1-1: Product: й [ 754.306137][ T7885] usb 1-1: Manufacturer: 귃룔矅郔轊䙂౥ₐ俍㚍燱槩葠アꬥ瘄좮ꃫ駩㿕ᤢ륿沀뚵෮⦧齛 [ 754.307614][ T7885] usb 1-1: SerialNumber: syz [ 754.355030][ T8159] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 754.738732][ T8159] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 754.757915][ T8159] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 754.824834][ T7885] usbhid 1-1:1.0: can't add hid device: -71 [ 754.826809][ T7885] usbhid 1-1:1.0: probe with driver usbhid failed with error -71 [ 754.849683][ T7885] usb 1-1: USB disconnect, device number 30 [ 759.900536][ T8258] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 759.912713][ T8258] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 766.784377][ T3407] hid-generic 0F71:10001:60000.0001: unexpected long global item [ 766.786366][ T3407] hid-generic 0F71:10001:60000.0001: probe with driver hid-generic failed with error -22 [ 773.148456][ T8411] dvmrp1: entered allmulticast mode [ 785.197871][ T8532] input: syz0 as /devices/virtual/input/input41 [ 787.030617][ T8543] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 787.034048][ T8543] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 790.628965][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.632793][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.632868][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.632910][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.632976][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.633056][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.633146][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.633190][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.633229][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.633376][ T7697] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0 [ 790.656230][ T7697] hid-generic 0000:0000:0000.0002: hidraw0: HID v0.00 Device [syz0] on syz1 [ 790.821755][ T7697] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 790.946414][ T8569] fido_id[8569]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 791.006865][ T7697] usb 1-1: Using ep0 maxpacket: 8 [ 791.064797][ T7697] usb 1-1: config 1 interface 0 altsetting 3 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 791.065130][ T7697] usb 1-1: config 1 interface 0 has no altsetting 0 [ 791.096935][ T7697] usb 1-1: New USB device found, idVendor=05ac, idProduct=027d, bcdDevice= 0.40 [ 791.097412][ T7697] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 791.098022][ T7697] usb 1-1: Product: 鸓㐪Ѳ뉞堾疚巠䃼ꪖĕꀕ웲쥱笼矌޻珡㆏ᖵะ묬机倫澻ᯛ溿≷泄꺮텵끒鴂혛锟ᵯ顽佁蟗╹͐큫䢜ﯠ氯㐐敮ୈ掅喷힬Ʒ鷇৏㘾嬢歟緭懷ᄏ蟬靶䎸ᖬ郞퍿ൕﺼ睶眓䣟넝እ懾檓ꇼ益윹懆쓱ାꈭ첥ꔨ歙㦆 [ 791.098350][ T7697] usb 1-1: Manufacturer: 䫰᯺闈૝菱ᨢ⫵䦯맛웽銳ຫ唶퓗껻赦⎔泱ഉ쥐궷坽ゾ꾟麹铂ઢᗌ宼ꥀ፣阁凸悥㥗ഺ⮎Ãಹ逸뻀壆측❂씐냗ﵕ掳ꊈꫤ [ 791.098527][ T7697] usb 1-1: SerialNumber: Я [ 796.235626][ T7697] usbhid 1-1:1.0: can't add hid device: -32 [ 796.236663][ T7697] usbhid 1-1:1.0: probe with driver usbhid failed with error -32 [ 798.756276][ T8606] input: syz0 as /devices/virtual/input/input42 [ 801.929127][ T3407] usb 1-1: USB disconnect, device number 31 [ 802.468933][ T8460] hid (null): invalid report_count -404265474 [ 802.469501][ T8460] hid (null): unknown global tag 0xd [ 802.470380][ T8460] hid (null): unknown global tag 0xe [ 802.470628][ T8460] hid (null): global environment stack underflow [ 802.487642][ T8460] hid-generic 0001:0005:000D.0003: invalid report_count -404265474 [ 802.488020][ T8460] hid-generic 0001:0005:000D.0003: item 0 4 1 9 parsing failed [ 802.497412][ T8460] hid-generic 0001:0005:000D.0003: probe with driver hid-generic failed with error -22 [ 804.339679][ T8618] fuse: Bad value for 'fd' [ 805.387765][ T8637] input: syz0 as /devices/virtual/input/input43 [ 812.457783][ T8693] dlm: non-version read from control device 8224 [ 812.470427][ T8693] dlm: non-version read from control device 8224 [ 812.479072][ T8693] dlm: non-version read from control device 8224 [ 812.487721][ T8693] dlm: non-version read from control device 8192 [ 813.703480][ T8723] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 813.715195][ T8723] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 816.769927][ T8775] input: syz0 as /devices/virtual/input/input45 [ 826.326796][ T8867] fuse: Bad value for 'user_id' [ 826.327174][ T8867] fuse: Bad value for 'user_id' [ 826.328007][ T8867] fuse: Bad value for 'user_id' [ 826.341841][ T8867] fuse: Bad value for 'user_id' [ 826.344618][ T8867] fuse: Bad value for 'user_id' [ 826.345994][ T8867] fuse: Bad value for 'user_id' [ 826.347854][ T8867] fuse: Bad value for 'user_id' [ 826.348072][ T8867] fuse: Bad value for 'user_id' [ 826.348917][ T8867] fuse: Bad value for 'user_id' [ 826.349038][ T8867] fuse: Bad value for 'user_id' [ 826.349728][ T8867] fuse: Bad value for 'user_id' [ 826.349883][ T8867] fuse: Bad value for 'user_id' [ 826.350568][ T8867] fuse: Bad value for 'user_id' [ 826.350599][ T8867] fuse: Bad value for 'user_id' [ 826.374039][ T8867] fuse: Bad value for 'user_id' [ 826.374471][ T8867] fuse: Bad value for 'user_id' [ 826.384801][ T8867] fuse: Bad value for 'user_id' [ 826.394863][ T8867] fuse: Bad value for 'user_id' [ 826.397803][ T8867] fuse: Bad value for 'user_id' [ 826.413817][ T8867] fuse: Bad value for 'user_id' [ 826.418642][ T8867] fuse: Bad value for 'user_id' [ 826.418926][ T8867] fuse: Bad value for 'user_id' [ 826.419710][ T8867] fuse: Bad value for 'user_id' [ 826.419917][ T8867] fuse: Bad value for 'user_id' [ 826.420731][ T8867] fuse: Bad value for 'user_id' [ 826.432672][ T8867] fuse: Bad value for 'user_id' [ 826.435931][ T8867] fuse: Bad value for 'user_id' [ 826.448896][ T8867] fuse: Bad value for 'user_id' [ 826.452793][ T8867] fuse: Bad value for 'user_id' [ 826.453359][ T8867] fuse: Bad value for 'user_id' [ 826.454727][ T8867] fuse: Bad value for 'user_id' [ 826.457921][ T8867] fuse: Bad value for 'user_id' [ 826.459394][ T8867] fuse: Bad value for 'user_id' [ 826.459429][ T8867] fuse: Bad value for 'user_id' [ 826.460283][ T8867] fuse: Bad value for 'user_id' [ 826.460319][ T8867] fuse: Bad value for 'user_id' [ 826.467292][ T8867] fuse: Bad value for 'user_id' [ 826.467664][ T8867] fuse: Bad value for 'user_id' [ 826.475185][ T8867] fuse: Bad value for 'user_id' [ 826.475744][ T8867] fuse: Bad value for 'user_id' [ 826.483237][ T8867] fuse: Bad value for 'user_id' [ 826.483468][ T8867] fuse: Bad value for 'user_id' [ 826.486637][ T8867] fuse: Bad value for 'user_id' [ 826.487863][ T8867] fuse: Bad value for 'user_id' [ 826.489026][ T8867] fuse: Bad value for 'user_id' [ 826.489184][ T8867] fuse: Bad value for 'user_id' [ 826.498087][ T8867] fuse: Bad value for 'user_id' [ 826.498421][ T8867] fuse: Bad value for 'user_id' [ 826.513311][ T8867] fuse: Bad value for 'user_id' [ 826.513713][ T8867] fuse: Bad value for 'user_id' [ 826.516620][ T8867] fuse: Bad value for 'user_id' [ 826.517060][ T8867] fuse: Bad value for 'user_id' [ 826.518165][ T8867] fuse: Bad value for 'user_id' [ 826.518359][ T8867] fuse: Bad value for 'user_id' [ 826.519201][ T8867] fuse: Bad value for 'user_id' [ 826.519235][ T8867] fuse: Bad value for 'user_id' [ 826.519993][ T8867] fuse: Bad value for 'user_id' [ 826.520027][ T8867] fuse: Bad value for 'user_id' [ 826.520747][ T8867] fuse: Bad value for 'user_id' [ 826.520779][ T8867] fuse: Bad value for 'user_id' [ 826.540082][ T8867] fuse: Bad value for 'user_id' [ 826.540358][ T8867] fuse: Bad value for 'user_id' [ 826.549779][ T8867] fuse: Bad value for 'user_id' [ 826.553679][ T8867] fuse: Bad value for 'user_id' [ 826.556512][ T8867] fuse: Bad value for 'user_id' [ 826.559831][ T8867] fuse: Bad value for 'user_id' [ 826.565220][ T8867] fuse: Bad value for 'user_id' [ 826.567747][ T8867] fuse: Bad value for 'user_id' [ 826.570567][ T8867] fuse: Bad value for 'user_id' [ 826.572730][ T8867] fuse: Bad value for 'user_id' [ 826.574592][ T8867] fuse: Bad value for 'user_id' [ 826.574814][ T8867] fuse: Bad value for 'user_id' [ 826.575553][ T8867] fuse: Bad value for 'user_id' [ 826.575760][ T8867] fuse: Bad value for 'user_id' [ 826.582413][ T8867] fuse: Bad value for 'user_id' [ 826.582912][ T8867] fuse: Bad value for 'user_id' [ 826.586533][ T8867] fuse: Bad value for 'user_id' [ 826.586761][ T8867] fuse: Bad value for 'user_id' [ 826.587588][ T8867] fuse: Bad value for 'user_id' [ 826.587627][ T8867] fuse: Bad value for 'user_id' [ 826.588496][ T8867] fuse: Bad value for 'user_id' [ 826.588654][ T8867] fuse: Bad value for 'user_id' [ 826.589354][ T8867] fuse: Bad value for 'user_id' [ 826.589495][ T8867] fuse: Bad value for 'user_id' [ 826.590302][ T8867] fuse: Bad value for 'user_id' [ 826.595930][ T8867] fuse: Bad value for 'user_id' [ 826.598511][ T8867] fuse: Bad value for 'user_id' [ 826.599798][ T8867] fuse: Bad value for 'user_id' [ 826.604654][ T8867] fuse: Bad value for 'user_id' [ 826.604912][ T8867] fuse: Bad value for 'user_id' [ 826.605640][ T8867] fuse: Bad value for 'user_id' [ 826.605672][ T8867] fuse: Bad value for 'user_id' [ 833.947036][ T8997] 8021q: VLANs not supported on tunl0 [ 837.535870][ T3407] hid_parser_main: 162 callbacks suppressed [ 837.540590][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.543939][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.549276][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.555447][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.558497][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.563494][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.566404][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.569246][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.570838][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.574405][ T3407] hid-generic 0006:000D:0002.0004: unknown main item tag 0x0 [ 837.585990][ T3407] hid-generic 0006:000D:0002.0004: hidraw0: VIRTUAL HID v0.02 Device [syz1] on syz1 [ 838.236203][ T9049] fido_id[9049]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 838.354247][ T9067] input: syz0 as /devices/virtual/input/input46 [ 845.422199][ T40] usb 1-1: new full-speed USB device number 32 using dummy_hcd [ 845.725541][ T40] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 845.727234][ T40] usb 1-1: can't read configurations, error -71 [ 854.328276][ T9197] fuse: Bad value for 'fd' [ 856.456856][ T9233] fuse: Bad value for 'fd' [ 857.214332][ T9240] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 857.215913][ T9240] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 861.792127][ T3488] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 861.951843][ T3488] usb 1-1: Using ep0 maxpacket: 8 [ 861.978879][ T3488] usb 1-1: config 1 interface 0 altsetting 2 has 2 endpoint descriptors, different from the interface descriptor's value: 1 [ 861.979293][ T3488] usb 1-1: config 1 interface 0 has no altsetting 0 [ 861.998490][ T3488] usb 1-1: New USB device found, idVendor=1b1c, idProduct=1c0a, bcdDevice= 0.40 [ 861.998765][ T3488] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 861.998947][ T3488] usb 1-1: Product: Є [ 861.999062][ T3488] usb 1-1: Manufacturer: Т [ 861.999173][ T3488] usb 1-1: SerialNumber: ࠧ [ 866.015260][ T9273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 866.044405][ T9273] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 866.069673][ T9273] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 866.077189][ T9273] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 867.356694][ T3488] usbhid 1-1:1.0: can't add hid device: -32 [ 867.357408][ T3488] usbhid 1-1:1.0: probe with driver usbhid failed with error -32 [ 876.163814][ T6509] usb 1-1: USB disconnect, device number 34 [ 882.280264][ T9365] process 'syz.1.1606' launched '/dev/fd/3' with NULL argv: empty string added [ 883.199680][ T9383] netlink: 'syz.1.1614': attribute type 16 has an invalid length. [ 883.200704][ T9383] __nla_validate_parse: 55 callbacks suppressed [ 883.202701][ T9383] netlink: 156 bytes leftover after parsing attributes in process `syz.1.1614'. [ 883.673794][ T30] audit: type=1326 audit(883.530:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.674410][ T30] audit: type=1326 audit(883.530:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.675967][ T30] audit: type=1326 audit(883.540:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.676514][ T30] audit: type=1326 audit(883.540:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.703739][ T30] audit: type=1326 audit(883.570:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.704126][ T30] audit: type=1326 audit(883.570:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.706988][ T30] audit: type=1326 audit(883.570:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.708461][ T30] audit: type=1326 audit(883.570:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.714282][ T30] audit: type=1326 audit(883.580:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.718266][ T30] audit: type=1326 audit(883.580:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9390 comm="syz.1.1617" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 883.860113][ T9393] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1618'. [ 887.923180][ T9443] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1640'. [ 888.860855][ T30] kauditd_printk_skb: 242 callbacks suppressed [ 888.866839][ T30] audit: type=1326 audit(888.720:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.869694][ T30] audit: type=1326 audit(888.730:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.876445][ T30] audit: type=1326 audit(888.730:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.882859][ T30] audit: type=1326 audit(888.730:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.887345][ T30] audit: type=1326 audit(888.750:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.894543][ T30] audit: type=1326 audit(888.750:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=208 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.902345][ T30] audit: type=1326 audit(888.750:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.905781][ T30] audit: type=1326 audit(888.750:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=436 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 888.914305][ T30] audit: type=1326 audit(888.750:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9461 comm="syz.1.1648" exe="/syz-executor" sig=0 arch=c00000b7 syscall=94 compat=0 ip=0xffffbd15c3e8 code=0x7ffc0000 [ 889.447401][ T9470] sch_tbf: burst 19872 is lower than device lo mtu (65550) ! [ 890.073604][ T9483] syzkaller1: entered promiscuous mode [ 890.074023][ T9483] syzkaller1: entered allmulticast mode [ 890.747706][ T9498] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1664'. [ 892.222053][ T9531] netlink: 96 bytes leftover after parsing attributes in process `syz.1.1677'. [ 892.693569][ T9541] ======================================================= [ 892.693569][ T9541] WARNING: The mand mount option has been deprecated and [ 892.693569][ T9541] and is ignored by this kernel. Remove the mand [ 892.693569][ T9541] option from the mount to silence this warning. [ 892.693569][ T9541] ======================================================= [ 893.454938][ T7946] ================================================================== [ 893.459881][ T7946] BUG: KASAN: slab-use-after-free in defer_free+0x3c/0xbc [ 893.462791][ T7946] Write at addr f3f000001c1e62a0 by task kworker/u8:14/7946 [ 893.463325][ T7946] Pointer tag: [f3], memory tag: [fe] [ 893.463417][ T7946] [ 893.464299][ T7946] CPU: 0 UID: 0 PID: 7946 Comm: kworker/u8:14 Not tainted syzkaller #0 PREEMPT [ 893.464695][ T7946] Hardware name: linux,dummy-virt (DT) [ 893.465199][ T7946] Workqueue: events_unbound bpf_map_free_deferred [ 893.466441][ T7946] Call trace: [ 893.466758][ T7946] show_stack+0x18/0x24 (C) [ 893.467194][ T7946] dump_stack_lvl+0x78/0x90 [ 893.467448][ T7946] print_report+0x108/0x61c [ 893.467507][ T7946] kasan_report+0x88/0xac [ 893.467552][ T7946] __do_kernel_fault+0x170/0x1c8 [ 893.467603][ T7946] do_bad_area+0x68/0x78 [ 893.467650][ T7946] do_tag_check_fault+0x34/0x44 [ 893.467693][ T7946] do_mem_abort+0x44/0x94 [ 893.467741][ T7946] el1_abort+0x44/0x68 [ 893.467790][ T7946] el1h_64_sync_handler+0x50/0xac [ 893.467837][ T7946] el1h_64_sync+0x6c/0x70 [ 893.467995][ T7946] defer_free+0x3c/0xbc (P) [ 893.468106][ T7946] kfree_nolock+0x1a0/0x1d4 [ 893.468185][ T7946] range_tree_destroy+0x74/0x90 [ 893.468237][ T7946] arena_map_free+0x64/0x90 [ 893.468326][ T7946] bpf_map_free_deferred+0x70/0x180 [ 893.468372][ T7946] process_one_work+0x178/0x2cc [ 893.468420][ T7946] worker_thread+0x24c/0x354 [ 893.468467][ T7946] kthread+0x130/0x1fc [ 893.468512][ T7946] ret_from_fork+0x10/0x20 [ 893.468775][ T7946] [ 893.468839][ T7946] Allocated by task 9555: [ 893.469050][ T7946] kasan_save_stack+0x3c/0x64 [ 893.469285][ T7946] save_stack_info+0x40/0x158 [ 893.469338][ T7946] kasan_save_alloc_info+0x14/0x20 [ 893.469376][ T7946] __kasan_kmalloc+0xb4/0xb8 [ 893.469410][ T7946] kmalloc_nolock_noprof+0x1dc/0x4fc [ 893.469449][ T7946] range_tree_set+0x644/0x778 [ 893.469486][ T7946] arena_map_alloc+0x11c/0x17c [ 893.469521][ T7946] map_create+0x19c/0xa98 [ 893.469557][ T7946] __sys_bpf+0x348/0x1a88 [ 893.469592][ T7946] __arm64_sys_bpf+0x24/0x34 [ 893.469630][ T7946] invoke_syscall+0x48/0x110 [ 893.469668][ T7946] el0_svc_common.constprop.0+0x40/0xe0 [ 893.469704][ T7946] do_el0_svc+0x1c/0x28 [ 893.469741][ T7946] el0_svc+0x34/0x128 [ 893.469778][ T7946] el0t_64_sync_handler+0xa0/0xe4 [ 893.469816][ T7946] el0t_64_sync+0x1a4/0x1a8 [ 893.469890][ T7946] [ 893.469934][ T7946] Freed by task 7946: [ 893.469980][ T7946] kasan_save_stack+0x3c/0x64 [ 893.470017][ T7946] save_stack_info+0x40/0x158 [ 893.470053][ T7946] kasan_save_free_info+0x18/0x24 [ 893.470090][ T7946] __kasan_slab_free+0x7c/0x8c [ 893.470124][ T7946] kfree_nolock+0xcc/0x1d4 [ 893.470160][ T7946] range_tree_destroy+0x74/0x90 [ 893.470196][ T7946] arena_map_free+0x64/0x90 [ 893.470231][ T7946] bpf_map_free_deferred+0x70/0x180 [ 893.470269][ T7946] process_one_work+0x178/0x2cc [ 893.470303][ T7946] worker_thread+0x24c/0x354 [ 893.470350][ T7946] kthread+0x130/0x1fc [ 893.470385][ T7946] ret_from_fork+0x10/0x20 [ 893.470434][ T7946] [ 893.470477][ T7946] The buggy address belongs to the object at fff000001c1e6280 [ 893.470477][ T7946] which belongs to the cache kmalloc-64 of size 64 [ 893.470583][ T7946] The buggy address is located 32 bytes inside of [ 893.470583][ T7946] 64-byte region [fff000001c1e6280, fff000001c1e62c0) [ 893.470632][ T7946] [ 893.470990][ T7946] The buggy address belongs to the physical page: [ 893.471583][ T7946] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0xf4f000001c1e6200 pfn:0x5c1e6 [ 893.472055][ T7946] flags: 0x1ffc00000000000(node=0|zone=0|lastcpupid=0x7ff|kasantag=0x0) [ 893.472615][ T7946] page_type: f5(slab) [ 893.473440][ T7946] raw: 01ffc00000000000 fbf0000003001600 dead000000000122 0000000000000000 [ 893.473507][ T7946] raw: f4f000001c1e6200 000000008040003a 00000000f5000000 0000000000000000 [ 893.473629][ T7946] page dumped because: kasan: bad access detected [ 893.473676][ T7946] [ 893.473709][ T7946] Memory state around the buggy address: [ 893.474058][ T7946] fff000001c1e6000: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 893.474168][ T7946] fff000001c1e6100: f4 f4 f4 f4 fa fa fa fa f3 f3 f3 fe fe fe fe fe [ 893.474228][ T7946] >fff000001c1e6200: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 893.474291][ T7946] ^ [ 893.474432][ T7946] fff000001c1e6300: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 893.474489][ T7946] fff000001c1e6400: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 893.474574][ T7946] ================================================================== [ 893.475852][ T7946] Disabling lock debugging due to kernel taint VM DIAGNOSIS: 16:08:33 Registers: info registers vcpu 0 CPU#0 PC=ffff800081b83bbc X00=ffff800081b83bb8 X01=f7f000000b720000 X02=0000000000000001 X03=fff07ffffcef4000 X04=ffff8000829e2e80 X05=1d06e263ce23ba1b X06=6c2953098145f8e2 X07=dec521e60ef0c277 X08=fff000007f8d5108 X09=00000000000000c0 X10=9796a66fc28119d8 X11=00000000000000c0 X12=ffff800082a01290 X13=0000000000000000 X14=0000000000000005 X15=0000000000000000 X16=ffff800082de8000 X17=fff07ffffcef4000 X18=0000000000000000 X19=0000000000000000 X20=ffff800082b11888 X21=ffff800082b11880 X22=f7f000000b720000 X23=0000000000000004 X24=ffff800082b11888 X25=0000000000000028 X26=ffff800082a29ba8 X27=0000000000000008 X28=f7f000000b720000 X29=ffff800082debe90 X30=ffff800080188b50 SP=ffff800082debe90 PSTATE=404020c9 -Z-- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:000000000000a2bf:00000000fff88a7b Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:b700000008000003:b7fffffff8000002 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:9500000043000000:8500000003000004 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:00000008000003b7:fffffff800000207 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000004300000085:00000003000004b7 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff9a776478:0000ffff9a776470 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffff9a776488:0000ffff9a776480 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000ffffec069b70:0000ffffec069b70 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffff80ffffffd0:0000ffffec069b40 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 info registers vcpu 1 CPU#1 PC=ffff80008092c008 X00=0000000000000002 X01=0000000000000018 X02=ffff800082e15018 X03=ffff800082badea8 X04=fbf0000003b00880 X05=0000000000000065 X06=0000000000000029 X07=0000000000000000 X08=7f7f7f7f7f7f7f7f X09=ffff800082baded8 X10=0000000000000001 X11=ffff8000831ebe20 X12=ffff800082adf208 X13=ffff8000831ebb8d X14=ffff8000831ebb98 X15=ffff8000831eba00 X16=ffff800082df0000 X17=fff07ffffcf0d000 X18=00000000ffffffff X19=f5f0000003044024 X20=ffff80008092c1ac X21=fbf0000003b00880 X22=f5f0000003044024 X23=ffff80008092c1ac X24=000000000000003c X25=f0f000000323c200 X26=0000000000000001 X27=0000000000000000 X28=0000000000000000 X29=ffff8000831ebca0 X30=ffff80008092c1d4 SP=ffff8000831ebca0 PSTATE=804020c9 N--- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000000000000000 P01=0000000000000000 P02=0000000000000000 P03=0000000000000000 P04=0000000000000000 P05=0000000000000000 P06=0000000000000000 P07=0000000000000000 P08=0000000000000000 P09=0000000000000000 P10=0000000000000000 P11=0000000000000000 P12=0000000000000000 P13=0000000000000000 P14=0000000000000000 P15=0000000000000000 FFR=0000000000000000 Z00=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z01=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffffffffffff:0000000000000000 Z02=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:ffffffff00000000 Z03=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z04=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z05=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z06=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z07=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z08=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z16=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z17=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z18=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000:0000000000000000