last executing test programs: 1m50.977471198s ago: executing program 1 (id=409): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x40000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) munmap(&(0x7f0000ffd000/0x2000)=nil, 0x2000) munmap(&(0x7f0000ff5000/0x1000)=nil, 0x1000) syz_kvm_setup_cpu$arm64(r1, 0xffffffffffffffff, &(0x7f00009c0000/0x400000)=nil, &(0x7f00000001c0)=[{0x0, 0x0, 0xfffffffffffffff9}], 0x1, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000340)={0x5, 0x2}) ioctl$KVM_RUN(r2, 0xae80, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0xc, 0x5c1fd1b65647af1, 0xffffffffffffffff, 0x20000000) 1m31.912311043s ago: executing program 1 (id=411): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x400454d4, 0x0) 1m29.901952088s ago: executing program 0 (id=412): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000000000/0x1000)=nil, 0x930, 0x0, 0x40032, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x1) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_TRANSLATE(r3, 0xc018ae85, &(0x7f0000000080)={0x0, 0xf000, 0x3, 0x0, 0x8}) 1m15.904780077s ago: executing program 0 (id=413): r0 = openat$kvm(0x0, &(0x7f00000000c0), 0x100000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r2, 0x20, 0x0, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000000)=[@hvc={0x4, 0x40, {0x86000000, [0x100000000, 0xfffffffffffffffb, 0xe, 0x4, 0x6]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r3, 0xae80, 0x0) 1m6.982851526s ago: executing program 1 (id=414): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x18}], 0x1, 0x0, 0x0, 0x0) r3 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x3a0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, 0x0) ioctl$KVM_CHECK_EXTENSION(r3, 0x541b, 0x100000001) 57.010421784s ago: executing program 0 (id=415): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x400454ce, 0x0) 46.092281679s ago: executing program 1 (id=416): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x18}], 0x1, 0x0, 0x0, 0x0) r3 = syz_kvm_vgic_v3_setup(r1, 0x5, 0x140) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f00000000c0)=@attr_arm64={0x0, 0x6, 0x0, 0x0}) 30.886000779s ago: executing program 0 (id=417): openat$kvm(0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000ffd000/0x2000)=nil, 0x930, 0x8, 0x8032, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000ffb000/0x2000)=nil, 0x930, 0x400000f, 0x80031, 0xffffffffffffffff, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = syz_kvm_vgic_v3_setup(r1, 0x5, 0x40) ioctl$KVM_HAS_DEVICE_ATTR(r2, 0x4018aee3, &(0x7f0000000080)=@attr_other={0x0, 0x5, 0xffffffffffffffff, 0x0}) 24.722903733s ago: executing program 1 (id=418): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x40040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000006c0), 0x140, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f00009a8000/0x18000)=nil, &(0x7f00000001c0)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000d80)=[@featur2={0x1, 0x9}], 0x1) syz_kvm_vgic_v3_setup(r1, 0x3, 0x20) mmap$KVM_VCPU(&(0x7f0000000000/0x2000)=nil, 0x930, 0x1000009, 0x16831, 0xffffffffffffffff, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vcpu(r3, 0x4018aee1, &(0x7f00000000c0)=@attr_pmu_filter={0x0, 0x0, 0x2, 0x0}) 14.44772471s ago: executing program 0 (id=419): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000100)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67301ce16f8f1f449a7a835673312b54ebb2aa8cc869d22627e7000000000000000000001f000e00", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x121218, 0x0) 5.700754221s ago: executing program 1 (id=420): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) munmap(&(0x7f0000f71000/0x6000)=nil, 0x6000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000bee000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=[@hvc={0x4, 0x40, {0x84000053, [0x100000000, 0x8000000000000001, 0xcd, 0x4000000000008, 0x10000]}}], 0x40}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) 0s ago: executing program 0 (id=421): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) kernel console output (not intermixed with test programs): [ 490.023966][ T3138] 8021q: adding VLAN 0 to HW filter on device bond0 [ 557.887816][ T3138] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:57350' (ED25519) to the list of known hosts. [ 813.477743][ T24] audit: type=1400 audit(812.470:73): avc: denied { name_bind } for pid=3290 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 814.842399][ T24] audit: type=1400 audit(813.830:74): avc: denied { execute } for pid=3292 comm="sh" name="syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 814.884273][ T24] audit: type=1400 audit(813.870:75): avc: denied { execute_no_trans } for pid=3292 comm="sh" path="/syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 850.883399][ T24] audit: type=1400 audit(849.870:76): avc: denied { mounton } for pid=3292 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1737 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 850.951449][ T24] audit: type=1400 audit(849.930:77): avc: denied { mount } for pid=3292 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 851.064575][ T3292] cgroup: Unknown subsys name 'net' [ 851.144414][ T24] audit: type=1400 audit(850.140:78): avc: denied { unmount } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 851.686925][ T3292] cgroup: Unknown subsys name 'cpuset' [ 851.807567][ T3292] cgroup: Unknown subsys name 'rlimit' [ 853.254044][ T24] audit: type=1400 audit(852.250:79): avc: denied { setattr } for pid=3292 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 853.296569][ T24] audit: type=1400 audit(852.280:80): avc: denied { create } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 853.317162][ T24] audit: type=1400 audit(852.310:81): avc: denied { write } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 853.352957][ T24] audit: type=1400 audit(852.340:82): avc: denied { module_request } for pid=3292 comm="syz-executor" kmod="net-pf-16-proto-16-family-nl802154" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 854.007522][ T24] audit: type=1400 audit(853.000:83): avc: denied { read } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 854.087951][ T24] audit: type=1400 audit(853.080:84): avc: denied { mounton } for pid=3292 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 854.126603][ T24] audit: type=1400 audit(853.090:85): avc: denied { mount } for pid=3292 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 855.679028][ T3296] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 856.004788][ T24] kauditd_printk_skb: 2 callbacks suppressed [ 856.005077][ T24] audit: type=1400 audit(855.000:88): avc: denied { read } for pid=3292 comm="syz-executor" name="swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 856.036973][ T24] audit: type=1400 audit(855.020:89): avc: denied { open } for pid=3292 comm="syz-executor" path="/swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 856.104704][ T3292] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 919.915991][ T24] audit: type=1400 audit(918.910:90): avc: denied { execmem } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 920.713604][ T24] audit: type=1400 audit(919.710:91): avc: denied { read } for pid=3299 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 920.755738][ T24] audit: type=1400 audit(919.750:92): avc: denied { open } for pid=3299 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 920.854360][ T24] audit: type=1400 audit(919.850:93): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 925.007057][ T24] audit: type=1400 audit(924.000:94): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 925.082373][ T24] audit: type=1400 audit(924.070:95): avc: denied { mount } for pid=3299 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 932.414954][ T24] audit: type=1400 audit(931.400:96): avc: denied { mount } for pid=3304 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 932.534503][ T24] audit: type=1400 audit(931.530:97): avc: denied { mounton } for pid=3304 comm="syz-executor" path="/syzkaller.hpzz4j/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 932.666992][ T24] audit: type=1400 audit(931.640:98): avc: denied { mount } for pid=3304 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 932.864912][ T24] audit: type=1400 audit(931.860:99): avc: denied { mounton } for pid=3304 comm="syz-executor" path="/syzkaller.hpzz4j/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 932.951452][ T24] audit: type=1400 audit(931.940:100): avc: denied { mounton } for pid=3304 comm="syz-executor" path="/syzkaller.hpzz4j/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=2879 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 933.270884][ T24] audit: type=1400 audit(932.250:101): avc: denied { unmount } for pid=3304 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 933.435181][ T24] audit: type=1400 audit(932.430:102): avc: denied { mounton } for pid=3304 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1516 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 933.538003][ T24] audit: type=1400 audit(932.500:103): avc: denied { mount } for pid=3304 comm="syz-executor" name="/" dev="gadgetfs" ino=2891 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 936.013962][ T3304] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 937.060477][ T24] audit: type=1400 audit(936.040:104): avc: denied { read write } for pid=3304 comm="syz-executor" name="loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 937.064230][ T24] audit: type=1400 audit(936.050:105): avc: denied { open } for pid=3304 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 950.267264][ T24] kauditd_printk_skb: 1 callbacks suppressed [ 950.267589][ T24] audit: type=1400 audit(949.260:107): avc: denied { mount } for pid=3316 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 1063.317588][ T24] audit: type=1400 audit(1062.310:108): avc: denied { sys_module } for pid=3322 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 1100.275205][ T3322] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1100.455255][ T3322] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1102.164956][ T3324] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1102.414818][ T3324] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1122.570657][ T3322] hsr_slave_0: entered promiscuous mode [ 1122.617883][ T3322] hsr_slave_1: entered promiscuous mode [ 1124.394777][ T3324] hsr_slave_0: entered promiscuous mode [ 1124.453684][ T3324] hsr_slave_1: entered promiscuous mode [ 1124.493072][ T3324] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1124.517162][ T3324] Cannot create hsr debugfs directory [ 1131.467518][ T3322] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1131.976917][ T3322] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1132.483745][ T3322] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1132.954311][ T3322] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1135.533471][ T3324] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1135.896619][ T3324] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1136.322748][ T3324] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1136.793725][ T3324] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1163.582064][ T3322] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1168.285312][ T3324] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1253.027970][ T3322] veth0_vlan: entered promiscuous mode [ 1253.992817][ T3322] veth1_vlan: entered promiscuous mode [ 1257.194762][ T3322] veth0_macvtap: entered promiscuous mode [ 1258.113086][ T3322] veth1_macvtap: entered promiscuous mode [ 1260.026230][ T3324] veth0_vlan: entered promiscuous mode [ 1262.126014][ T3324] veth1_vlan: entered promiscuous mode [ 1263.758051][ T3322] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1263.791812][ T3322] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1263.793945][ T3322] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1263.795986][ T3322] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1269.085326][ T3324] veth0_macvtap: entered promiscuous mode [ 1270.074086][ T3324] veth1_macvtap: entered promiscuous mode [ 1273.795964][ T3324] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.835958][ T3324] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.871083][ T3324] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.873428][ T3324] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1305.996700][ T24] audit: type=1400 audit(1304.980:109): avc: denied { read } for pid=3478 comm="syz.0.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1306.172073][ T24] audit: type=1400 audit(1305.120:110): avc: denied { open } for pid=3478 comm="syz.0.9" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1306.751681][ T24] audit: type=1400 audit(1305.730:111): avc: denied { ioctl } for pid=3478 comm="syz.0.9" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae03 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1373.863628][ T24] audit: type=1400 audit(1372.830:112): avc: denied { write } for pid=3504 comm="syz.0.21" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1505.881488][ T24] audit: type=1400 audit(1504.860:113): avc: denied { setattr } for pid=3554 comm="syz.0.45" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1613.505603][ T24] audit: type=1400 audit(1612.460:114): avc: denied { execute } for pid=3599 comm="syz.1.62" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4277 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1649.142411][ T24] audit: type=1400 audit(1648.110:115): avc: denied { append } for pid=3613 comm="syz.0.67" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1718.560853][ T24] audit: type=1400 audit(1717.490:116): avc: denied { map } for pid=3646 comm="syz.1.79" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 4363.244292][ T4784] kvm [4784]: Failed to find VMA for hva 0x400001016000 [ 4394.213494][ T4798] kvm [4798]: Failed to find VMA for hva 0x400001016000 [ 4436.865572][ T4815] Unable to handle kernel paging request at virtual address efff800000000001 [ 4436.965165][ T4815] KASAN: null-ptr-deref in range [0x0000000000000010-0x000000000000001f] [ 4436.967407][ T4815] Mem abort info: [ 4437.115080][ T4815] ESR = 0x0000000096000005 [ 4437.116941][ T4815] EC = 0x25: DABT (current EL), IL = 32 bits [ 4437.236622][ T4815] SET = 0, FnV = 0 [ 4437.245297][ T4815] EA = 0, S1PTW = 0 [ 4437.289706][ T4815] FSC = 0x05: level 1 translation fault [ 4437.360637][ T4815] Data abort info: [ 4437.362232][ T4815] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 4437.363877][ T4815] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 4437.365537][ T4815] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 4437.367309][ T4815] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000044c2f000 [ 4437.539856][ T4815] [efff800000000001] pgd=1000000049b9c003, p4d=1000000049b9d003, pud=0000000000000000 [ 4437.545364][ T4815] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP [ 4437.547369][ T4815] Modules linked in: [ 4437.549211][ T4815] CPU: 0 UID: 0 PID: 4815 Comm: syz.0.421 Not tainted 6.14.0-rc2-syzkaller-g29281a76709c #0 [ 4437.551305][ T4815] Hardware name: linux,dummy-virt (DT) [ 4437.552913][ T4815] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 4437.554577][ T4815] pc : __hwasan_check_x0_67043362+0x4/0x30 [ 4437.557169][ T4815] lr : vgic_its_save_tables_v0+0x25c/0x7e0 [ 4437.558544][ T4815] sp : ffff8000a24f7bc0 [ 4437.559618][ T4815] x29: ffff8000a24f7c30 x28: 55f00000192f3a80 x27: 0000000000000000 [ 4437.561893][ T4815] x26: 0000000000000000 x25: 20f000001969ee40 x24: 0000000000000000 [ 4437.563950][ T4815] x23: cdf0000018f3c180 x22: 0000000000000000 x21: 72f000001969ee90 [ 4437.565973][ T4815] x20: 72f000001969ee90 x19: efff800000000000 x18: 0000000000000004 [ 4437.567969][ T4815] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000 [ 4437.570013][ T4815] x14: 00000000000206b5 x13: ffff800083bc0958 x12: 0000000000000028 [ 4437.571986][ T4815] x11: 0000000000000000 x10: 0000000000002000 x9 : efff800000000000 [ 4437.574089][ T4815] x8 : 0000000020000000 x7 : ffff800080117c44 x6 : 0000000000000000 [ 4437.576028][ T4815] x5 : 0000000000000000 x4 : 55f00000192f45c0 x3 : b1ff8000a26f23d0 [ 4437.578045][ T4815] x2 : ffff800080117cc0 x1 : 0000000000000001 x0 : 0000000000000010 [ 4437.580340][ T4815] Call trace: [ 4437.581468][ T4815] __hwasan_check_x0_67043362+0x4/0x30 (P) [ 4437.583248][ T4815] vgic_its_set_attr+0x394/0x554 [ 4437.584752][ T4815] kvm_device_ioctl_attr+0x16c/0x1d8 [ 4437.586207][ T4815] kvm_device_ioctl+0x154/0x1b0 [ 4437.587610][ T4815] __arm64_sys_ioctl+0x108/0x188 [ 4437.588911][ T4815] invoke_syscall+0x78/0x1b8 [ 4437.590193][ T4815] el0_svc_common+0xe8/0x1b0 [ 4437.591356][ T4815] do_el0_svc+0x40/0x50 [ 4437.592589][ T4815] el0_svc+0x54/0x14c [ 4437.593762][ T4815] el0t_64_sync_handler+0x84/0x108 [ 4437.595096][ T4815] el0t_64_sync+0x198/0x19c [ 4437.597022][ T4815] Code: a90efbfd d2800401 143ba985 9344dc10 (38706930) [ 4437.599211][ T4815] ---[ end trace 0000000000000000 ]--- [ 4437.601195][ T4815] Kernel panic - not syncing: Oops: Fatal exception [ 4437.603934][ T4815] Kernel Offset: disabled [ 4437.605058][ T4815] CPU features: 0x000,000000d0,00bef2f8,837ffe1f [ 4437.606570][ T4815] Memory Limit: none [ 4437.608241][ T4815] Rebooting in 86400 seconds.. VM DIAGNOSIS: 14:05:28 Registers: info registers vcpu 0 CPU#0 PC=ffff800080255c6c X00=00000000000000c0 X01=ffff80008460b1ed X02=55f00000192f4508 X03=55f00000192f4508 X04=55f00000192f4610 X05=0000000000000001 X06=0000000000000000 X07=ffff80008057bde0 X08=00000000000000c0 X09=0000000000000000 X10=0000000000ff0100 X11=ffff800084c995c0 X12=00000000f059bce4 X13=0000000000000028 X14=55f00000192f45d8 X15=55f00000192f4510 X16=0000000000000055 X17=0000000000000000 X18=0000000000000001 X19=00000000000000c0 X20=0000000000000000 X21=ffff800084da4228 X22=55f00000192f4600 X23=ffff800084c24500 X24=55f00000192f3a80 X25=0000000000000006 X26=fff00000730068e0 X27=ffff800084c4f200 X28=fff00000730068d8 X29=ffff800080007be0 X30=ffff800083b6e644 SP=ffff800080007be0 PSTATE=604020c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=1600000000000000:1600000000000000 Z01=0000001600000000:0000000000000000 Z02=0000000000000016:0000000000000000 Z03=00d000a800000000:0000000000000000 Z04=0000000000000000:0000000000000002 Z05=0000000000000016:0000000000000002 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffc538c340:0000ffffc538c340 Z17=ffffff80ffffffd0:0000ffffc538c310 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000