Warning: Permanently added '[localhost]:31452' (ECDSA) to the list of known hosts. syzkaller login: [ 131.117578][ T40] kauditd_printk_skb: 7 callbacks suppressed [ 131.117931][ T40] audit: type=1400 audit(1594981682.908:42): avc: denied { map } for pid=8967 comm="syz-fuzzer" path="/syz-fuzzer" dev="sda1" ino=16525 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 2020/07/17 10:28:02 fuzzer started 2020/07/17 10:28:03 dialing manager at 10.0.2.10:35917 2020/07/17 10:28:03 syscalls: 3205 2020/07/17 10:28:03 code coverage: enabled 2020/07/17 10:28:03 comparison tracing: enabled 2020/07/17 10:28:03 extra coverage: enabled 2020/07/17 10:28:03 setuid sandbox: enabled 2020/07/17 10:28:03 namespace sandbox: enabled 2020/07/17 10:28:03 Android sandbox: /sys/fs/selinux/policy does not exist 2020/07/17 10:28:03 fault injection: enabled 2020/07/17 10:28:03 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2020/07/17 10:28:03 net packet injection: enabled 2020/07/17 10:28:03 net device setup: enabled 2020/07/17 10:28:03 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2020/07/17 10:28:03 devlink PCI setup: PCI device 0000:00:10.0 is not available 2020/07/17 10:28:03 USB emulation: enabled [ 131.830726][ T40] audit: type=1400 audit(1594981683.618:43): avc: denied { integrity } for pid=8985 comm="syz-executor" lockdown_reason="debugfs access" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=lockdown permissive=1 10:28:38 executing program 0: [ 166.940620][ T40] audit: type=1400 audit(1594981718.728:44): avc: denied { map } for pid=8989 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=42 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 10:28:39 executing program 1: [ 167.401994][ T8990] IPVS: ftp: loaded support on port[0] = 21 [ 167.596636][ T8990] chnl_net:caif_netlink_parms(): no params data found 10:28:39 executing program 2: [ 167.671450][ T8992] IPVS: ftp: loaded support on port[0] = 21 [ 167.692941][ T8990] bridge0: port 1(bridge_slave_0) entered blocking state [ 167.710164][ T8990] bridge0: port 1(bridge_slave_0) entered disabled state [ 167.730642][ T8990] device bridge_slave_0 entered promiscuous mode [ 167.753966][ T8990] bridge0: port 2(bridge_slave_1) entered blocking state [ 167.766162][ T8990] bridge0: port 2(bridge_slave_1) entered disabled state [ 167.777493][ T8990] device bridge_slave_1 entered promiscuous mode [ 167.811383][ T8990] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 167.829299][ T8990] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link 10:28:39 executing program 3: [ 167.867887][ T8990] team0: Port device team_slave_0 added [ 167.880557][ T8990] team0: Port device team_slave_1 added [ 167.914383][ T8990] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 167.928255][ T8990] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 167.973648][ T8990] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 167.993155][ T8990] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 167.997308][ T8998] IPVS: ftp: loaded support on port[0] = 21 [ 168.004107][ T8990] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 168.050402][ T8990] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 168.159746][ T8990] device hsr_slave_0 entered promiscuous mode [ 168.226494][ T8990] device hsr_slave_1 entered promiscuous mode [ 168.337654][ T9001] IPVS: ftp: loaded support on port[0] = 21 [ 168.348859][ T8992] chnl_net:caif_netlink_parms(): no params data found [ 168.540884][ T8998] chnl_net:caif_netlink_parms(): no params data found [ 168.551868][ T8992] bridge0: port 1(bridge_slave_0) entered blocking state [ 168.560735][ T8992] bridge0: port 1(bridge_slave_0) entered disabled state [ 168.570142][ T8992] device bridge_slave_0 entered promiscuous mode [ 168.586906][ T8992] bridge0: port 2(bridge_slave_1) entered blocking state [ 168.598562][ T40] audit: type=1400 audit(1594981720.388:45): avc: denied { create } for pid=8990 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 168.600994][ T8992] bridge0: port 2(bridge_slave_1) entered disabled state [ 168.634760][ T40] audit: type=1400 audit(1594981720.388:46): avc: denied { write } for pid=8990 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 168.644150][ T8992] device bridge_slave_1 entered promiscuous mode [ 168.672100][ T40] audit: type=1400 audit(1594981720.388:47): avc: denied { read } for pid=8990 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 168.741044][ T8990] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 168.812241][ T8990] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 168.880676][ T8990] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 168.994649][ T8992] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.010566][ T8992] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 169.029071][ T8990] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 169.199201][ T8992] team0: Port device team_slave_0 added [ 169.214394][ T8992] team0: Port device team_slave_1 added [ 169.230949][ T8998] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.239941][ T8998] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.249466][ T8998] device bridge_slave_0 entered promiscuous mode [ 169.258908][ T9001] chnl_net:caif_netlink_parms(): no params data found [ 169.274813][ T8998] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.283518][ T8998] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.292998][ T8998] device bridge_slave_1 entered promiscuous mode [ 169.331594][ T8992] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 169.339840][ T8992] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 169.371430][ T8992] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 169.397540][ T8992] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 169.406180][ T8992] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 169.437536][ T8992] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 169.469804][ T8998] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 169.503784][ T8998] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 169.607967][ T8992] device hsr_slave_0 entered promiscuous mode [ 169.665824][ T8992] device hsr_slave_1 entered promiscuous mode [ 169.745768][ T8992] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 169.762049][ T8992] Cannot create hsr debugfs directory [ 169.780863][ T9001] bridge0: port 1(bridge_slave_0) entered blocking state [ 169.801648][ T9001] bridge0: port 1(bridge_slave_0) entered disabled state [ 169.822990][ T9001] device bridge_slave_0 entered promiscuous mode [ 169.859326][ T9001] bridge0: port 2(bridge_slave_1) entered blocking state [ 169.872881][ T9001] bridge0: port 2(bridge_slave_1) entered disabled state [ 169.890877][ T9001] device bridge_slave_1 entered promiscuous mode [ 169.919816][ T8998] team0: Port device team_slave_0 added [ 169.936425][ T8998] team0: Port device team_slave_1 added [ 169.969811][ T8998] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 169.980501][ T8998] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 170.023849][ T8998] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.054283][ T8998] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.068039][ T8998] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 170.115963][ T8998] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.144492][ T9001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 170.180252][ T9001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 170.277774][ T9001] team0: Port device team_slave_0 added [ 170.388141][ T8998] device hsr_slave_0 entered promiscuous mode [ 170.466158][ T8998] device hsr_slave_1 entered promiscuous mode [ 170.515740][ T8998] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 170.530699][ T8998] Cannot create hsr debugfs directory [ 170.545828][ T9001] team0: Port device team_slave_1 added [ 170.584342][ T9001] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 170.595609][ T9001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 170.658539][ T9001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 170.684090][ T9001] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 170.699073][ T9001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 170.786558][ T9001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 170.961271][ T9001] device hsr_slave_0 entered promiscuous mode [ 171.026100][ T9001] device hsr_slave_1 entered promiscuous mode [ 171.095746][ T9001] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 171.108900][ T9001] Cannot create hsr debugfs directory [ 171.227033][ T8992] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 171.308228][ T8992] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 171.415872][ T8992] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 171.490784][ T8992] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 171.590912][ T8990] 8021q: adding VLAN 0 to HW filter on device bond0 [ 171.629096][ T8998] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 171.698622][ T8998] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 171.769475][ T8998] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 171.860713][ T8998] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 171.943979][ T8990] 8021q: adding VLAN 0 to HW filter on device team0 [ 171.955914][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 171.978673][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 172.010541][ T9001] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 172.090476][ T9001] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 172.188317][ T9001] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 172.292958][ T9001] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 172.389693][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 172.406811][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 172.461781][ T3228] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.483138][ T3228] bridge0: port 1(bridge_slave_0) entered forwarding state [ 172.502448][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 172.558378][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 172.573445][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 172.593439][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.607059][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 172.634685][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 172.666163][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 172.692671][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 172.707455][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 172.730046][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 172.742320][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 172.753909][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 172.783993][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 172.803147][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 172.824035][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 172.835138][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 172.854455][ T8990] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 172.886039][ T8998] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.909033][ T8992] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.944834][ T9001] 8021q: adding VLAN 0 to HW filter on device bond0 [ 172.982304][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 173.016490][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 173.068396][ T8990] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 173.121687][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 173.188179][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.259645][ T8998] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.342275][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.394796][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.418363][ T9009] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.428600][ T9009] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.438439][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 173.448545][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.460027][ T9009] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 173.478128][ T8992] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.494005][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 173.524206][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 173.550242][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 173.570409][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.606694][ T2853] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.631664][ T2853] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.651404][ T9001] 8021q: adding VLAN 0 to HW filter on device team0 [ 173.662910][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 173.677969][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 173.692073][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 173.712356][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.727159][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.742569][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.755643][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.768526][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 173.796575][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 173.823697][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 173.842969][ T9007] bridge0: port 2(bridge_slave_1) entered blocking state [ 173.858600][ T9007] bridge0: port 2(bridge_slave_1) entered forwarding state [ 173.872052][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 173.888883][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 173.909729][ T9007] bridge0: port 1(bridge_slave_0) entered blocking state [ 173.924494][ T9007] bridge0: port 1(bridge_slave_0) entered forwarding state [ 173.940180][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 173.962730][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 173.977806][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 173.993359][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.012155][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.043695][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.059688][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 174.080469][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 174.096135][ T9007] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.112197][ T9007] bridge0: port 2(bridge_slave_1) entered forwarding state [ 174.126903][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 174.142152][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 174.156458][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 174.170419][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 174.194238][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 174.215764][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 174.231251][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 174.259252][ T8990] device veth0_vlan entered promiscuous mode [ 174.273680][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.287711][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.300215][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.314425][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.327289][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.341225][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.356453][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.368774][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.383578][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.394873][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.416273][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.426402][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 174.439517][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 174.450396][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 174.463468][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 174.474925][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 174.499252][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.521260][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.535799][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 174.549231][ T13] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 174.573337][ T8990] device veth1_vlan entered promiscuous mode [ 174.594881][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.617218][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.636417][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 174.649227][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 174.667461][ T9001] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 174.684711][ T8992] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 174.735169][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 174.748727][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 174.765106][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 174.777678][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 174.799950][ T9001] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.818634][ T8998] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.844219][ T8990] device veth0_macvtap entered promiscuous mode [ 174.859715][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 174.878085][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 174.888248][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 174.901835][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 174.913518][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 174.932133][ T8990] device veth1_macvtap entered promiscuous mode [ 174.949652][ T8992] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 174.966532][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 174.975227][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 174.985314][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 175.013715][ T8998] device veth0_vlan entered promiscuous mode [ 175.026546][ T8990] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 175.039278][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 175.052036][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 175.068181][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 175.081849][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 175.100358][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 175.123436][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 175.138469][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 175.151945][ T2853] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 175.173238][ T8990] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 175.197324][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 175.211161][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 175.222156][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 175.232917][ T3833] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 175.260517][ T8998] device veth1_vlan entered promiscuous mode [ 175.274112][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 175.284501][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 175.294555][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 175.309430][ T9001] device veth0_vlan entered promiscuous mode [ 175.326311][ T9001] device veth1_vlan entered promiscuous mode [ 175.339216][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 175.351226][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 175.362879][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 175.377602][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 175.405542][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 175.416332][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 175.428909][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 175.441821][ T8992] device veth0_vlan entered promiscuous mode [ 175.673957][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 175.676548][ T40] audit: type=1400 audit(1594981727.468:48): avc: denied { associate } for pid=8990 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 175.688855][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 175.762890][ T8992] device veth1_vlan entered promiscuous mode [ 175.778251][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 175.790864][ T3228] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 175.815713][ T8998] device veth0_macvtap entered promiscuous mode [ 175.832726][ T8998] device veth1_macvtap entered promiscuous mode [ 175.858521][ T8990] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 175.868955][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 175.922817][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 175.953569][ T8998] batman_adv: batadv0: Interface activated: batadv_slave_0 10:28:47 executing program 0: r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) ioctl$PERF_EVENT_IOC_PAUSE_OUTPUT(r0, 0x40086602, 0x400007) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) write$cgroup_type(r1, &(0x7f0000000000)='threaded\x00', 0x248800) [ 175.987709][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 176.005310][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 176.023967][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 176.040055][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 176.060135][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 176.080883][ T28] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 176.106598][ T9001] device veth0_macvtap entered promiscuous mode [ 176.123387][ T9001] device veth1_macvtap entered promiscuous mode [ 176.138159][ T8998] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 176.154130][ T8998] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.168189][ T8998] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 176.200549][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 176.229467][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 176.249783][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 176.264889][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 176.281098][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 176.306249][ T34] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 176.337683][ T8992] device veth0_macvtap entered promiscuous mode [ 176.357802][ T8992] device veth1_macvtap entered promiscuous mode 10:28:48 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) fcntl$setflags(r2, 0x8, 0x0) [ 176.404210][ T8992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 176.430542][ T8992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.453497][ T8992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 176.486135][ T8992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.513586][ T8992] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 176.530078][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 176.548319][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.562823][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 176.578131][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.598831][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 176.614050][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.627907][ T9001] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 176.688971][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 176.702613][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 176.714138][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 176.727241][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 176.739922][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 176.752472][ T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 176.769092][ T8992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 176.792898][ T8992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.810225][ T8992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 176.847230][ T8992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.868488][ T8992] batman_adv: batadv0: Interface activated: batadv_slave_1 10:28:48 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r3, r2, 0x0, 0x7ffff000) [ 176.966158][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 176.984315][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 177.003912][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 177.019546][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 177.033051][ T9001] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 177.059502][ T9001] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 177.084491][ T9001] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 177.105335][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 177.127405][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 177.148211][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 177.174468][ T9007] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r3, r2, 0x0, 0x7ffff000) 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r3, r2, 0x0, 0x7ffff000) 10:28:49 executing program 1: syz_mount_image$gfs2(&(0x7f0000000000)='gfs2\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={[{@locktable={'locktable', 0x2c, 'pids.events\x00'}}]}) 10:28:49 executing program 2: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) keyctl$instantiate(0xc, 0x0, &(0x7f0000000180)=@encrypted_update={'update ', 'ecryptfs', 0x20, 'trusted:', 'sha3-224-generic\x00'}, 0x2a, 0x0) [ 177.643345][ T9053] gfs2: Bad value for 'locktable' [ 177.727557][ T9053] gfs2: Bad value for 'locktable' 10:28:49 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) prctl$PR_SET_MM_AUXV(0x23, 0xc, &(0x7f0000000340)='0', 0x1) 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r3 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r3, r2, 0x0, 0x7ffff000) 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:49 executing program 1: r0 = socket$inet6(0xa, 0x401000000001, 0x0) close(r0) socket$inet6_sctp(0xa, 0x10000000005, 0x84) r1 = socket$inet_udplite(0x2, 0x2, 0x88) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x3, &(0x7f0000000000), 0xc) 10:28:49 executing program 3: mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x0, 0x31, 0xffffffffffffffff, 0x0) remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x0, 0x0) mbind(&(0x7f00004e8000/0x6000)=nil, 0x6000, 0x1, 0x0, 0x0, 0x0) mbind(&(0x7f0000012000/0xc00000)=nil, 0xc01806, 0x0, 0x0, 0x0, 0x0) [ 177.779434][ T40] audit: type=1400 audit(1594981729.568:49): avc: denied { ioctl } for pid=9064 comm="syz-executor.2" path="socket:[40815]" dev="sockfs" ino=40815 ioctlcmd=0x8912 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') sendfile(0xffffffffffffffff, r2, 0x0, 0x7ffff000) 10:28:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) fallocate(r1, 0x0, 0x0, 0x0) 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) [ 177.889859][ T9074] mmap: syz-executor.3 (9074) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst. 10:28:49 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r5, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f00000001c0)) 10:28:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') sendfile(0xffffffffffffffff, r2, 0x0, 0x7ffff000) 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) [ 177.974022][ T40] audit: type=1400 audit(1594981729.758:50): avc: denied { block_suspend } for pid=9088 comm="syz-executor.3" capability=36 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') sendfile(0xffffffffffffffff, r2, 0x0, 0x7ffff000) 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r2, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) [ 178.048331][ T40] audit: type=1400 audit(1594981729.828:51): avc: denied { map } for pid=9088 comm="syz-executor.3" path=2F6D656D66643A0B656D31C1F8A68D4EC0A35CE2CBA2BAE5F497AC232AFF202864656C6574656429 dev="tmpfs" ino=41326 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:tmpfs_t:s0 tclass=file permissive=1 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r2, 0xffffffffffffffff, 0x0, 0x7ffff000) 10:28:49 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r5, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f00000001c0)) 10:28:49 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:49 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r2, 0xffffffffffffffff, 0x0, 0x7ffff000) 10:28:49 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r2, 0xffffffffffffffff, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a) dup(r0) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r2, r1, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = socket$nl_generic(0x10, 0x3, 0x10) dup(r0) r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r5, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f00000001c0)) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:50 executing program 0: socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: socket$nl_generic(0x10, 0x3, 0x10) r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:50 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r5, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f00000001c0)) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, 0x0) r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 10:28:50 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = dup3(r5, r1, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r6, &(0x7f00000001c0)) 10:28:50 executing program 2: openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x802, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) bind(r4, &(0x7f0000000080)=@generic={0x11, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x80) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}]}, 0x20}}, 0x0) 10:28:50 executing program 2: openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(0xffffffffffffffff, 0x4601, &(0x7f0000000000)={0x0, 0x360, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) dup3(r5, r1, 0x0) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x0, 0x0) sendfile(r1, r0, 0x0, 0x7ffff000) 10:28:50 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, 0x0) 10:28:50 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) [ 179.317883][ T0] NOHZ: local_softirq_pending 08 10:28:51 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) 10:28:51 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000080)='ethtool\x00') r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = socket(0x11, 0x800000003, 0x0) getsockname$packet(r4, &(0x7f00000003c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000000)=0x14) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x20, r2, 0x427, 0x0, 0x0, {0x6}, [@ETHTOOL_A_LINKMODES_HEADER={0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r5}]}]}, 0x20}}, 0x0) 10:28:51 executing program 3: r0 = epoll_create1(0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000000)={0x60000011}) epoll_pwait(r1, &(0x7f0000000100)=[{}], 0x1, 0x200034, 0x0, 0x0) r2 = socket$inet6(0xa, 0x2, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = memfd_create(&(0x7f0000000100)='\vem1\xc1\xf8\xa6\x8dN\xc0\xa3\\\xe2\xcb\xa2\xba\xe5\xf4\x97\xac#*\xff', 0x0) write(r4, &(0x7f0000000040)="06", 0x1) mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x80000000004, 0x11, r4, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) dup3(r5, r1, 0x0) 10:28:51 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180)='/dev/fb0\x00', 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, {}, {}, {}, {}, 0x2}) 10:28:51 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip_vs_stats\x00') openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(0xffffffffffffffff, r0, 0x0, 0x7ffff000) [ 179.598767][ T9248] ================================================================== [ 179.600117][ T9248] BUG: KASAN: vmalloc-out-of-bounds in bitfill_aligned+0x34a/0x400 [ 179.600192][ T9248] Write of size 8 at addr ffffc900099c1000 by task syz-executor.2/9248 [ 179.600196][ T9248] [ 179.600301][ T9248] CPU: 2 PID: 9248 Comm: syz-executor.2 Not tainted 5.8.0-rc5-syzkaller #0 [ 179.600312][ T9248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 179.600347][ T9248] Call Trace: [ 179.600464][ T9248] dump_stack+0x18f/0x20d [ 179.600484][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.600498][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.600636][ T9248] print_address_description.constprop.0.cold+0x5/0x436 [ 179.602072][ T9248] ? lockdep_hardirqs_off+0x66/0xa0 [ 179.602218][ T9248] ? vprintk_func+0x97/0x1a6 [ 179.602246][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.602258][ T9248] kasan_report.cold+0x1f/0x37 [ 179.602367][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.602385][ T9248] bitfill_aligned+0x34a/0x400 [ 179.602497][ T9248] sys_fillrect+0x408/0x7a0 [ 179.602510][ T9248] ? sys_fillrect+0x7a0/0x7a0 [ 179.602848][ T9248] drm_fb_helper_sys_fillrect+0x1e/0x190 [ 179.602861][ T9248] bit_clear_margins+0x2d5/0x4a0 [ 179.602871][ T9248] ? bit_bmove+0x210/0x210 [ 179.602886][ T9248] fbcon_clear_margins+0x1d5/0x230 [ 179.602896][ T9248] fbcon_switch+0xb6e/0x16c0 [ 179.602908][ T9248] ? fbcon_scroll+0x3600/0x3600 [ 179.602933][ T9248] ? fbcon_cursor+0x52b/0x650 [ 179.602945][ T9248] ? kmalloc_array.constprop.0+0x20/0x20 [ 179.602979][ T9248] ? is_console_locked+0x5/0x10 [ 179.602988][ T9248] ? fbcon_set_origin+0x26/0x50 [ 179.603062][ T9248] redraw_screen+0x2ae/0x770 [ 179.603082][ T9248] ? vc_init+0x440/0x440 [ 179.603115][ T9248] ? fb_get_color_depth+0x11a/0x240 [ 179.603133][ T9248] ? fbcon_set_palette+0x3a8/0x490 [ 179.603151][ T9248] fbcon_modechanged+0x575/0x710 [ 179.603170][ T9248] fbcon_update_vcs+0x3a/0x50 [ 179.603181][ T9248] fb_set_var+0xae8/0xd60 [ 179.603197][ T9248] ? fb_blank+0x190/0x190 [ 179.603227][ T9248] ? lock_release+0x8d0/0x8d0 [ 179.603248][ T9248] ? lock_is_held_type+0xb0/0xe0 [ 179.603273][ T9248] ? do_fb_ioctl+0x2f2/0x6c0 [ 179.603305][ T9248] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 179.603319][ T9248] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 179.603378][ T9248] ? trace_hardirqs_on+0x5f/0x220 [ 179.603400][ T9248] do_fb_ioctl+0x33f/0x6c0 [ 179.603416][ T9248] ? fb_set_suspend+0x1a0/0x1a0 [ 179.603553][ T9248] ? tomoyo_execute_permission+0x470/0x470 [ 179.603579][ T9248] ? lock_is_held_type+0xb0/0xe0 [ 179.603656][ T9248] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 179.603826][ T9248] ? do_vfs_ioctl+0x27d/0x1090 [ 179.603878][ T9248] ? __fget_files+0x294/0x400 [ 179.603891][ T9248] fb_ioctl+0xdd/0x130 [ 179.603900][ T9248] ? do_fb_ioctl+0x6c0/0x6c0 [ 179.603908][ T9248] ksys_ioctl+0x11a/0x180 [ 179.603917][ T9248] __x64_sys_ioctl+0x6f/0xb0 [ 179.603929][ T9248] ? lockdep_hardirqs_on+0x6a/0xe0 [ 179.603944][ T9248] do_syscall_64+0x60/0xe0 [ 179.603958][ T9248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 179.604615][ T9248] RIP: 0033:0x45c049 [ 179.604638][ T9248] Code: Bad RIP value. [ 179.604643][ T9248] RSP: 002b:00007f6c2203ac88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 179.604652][ T9248] RAX: ffffffffffffffda RBX: 00000000006fa440 RCX: 000000000045c049 [ 179.604657][ T9248] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003 [ 179.604662][ T9248] RBP: 00000000004a906e R08: 0000000000000000 R09: 0000000000000000 [ 179.604667][ T9248] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000074bf00 [ 179.604672][ T9248] R13: 00007fff36b2545f R14: 00007f6c2201b000 R15: 0000000000000003 [ 179.604729][ T9248] [ 179.604732][ T9248] [ 179.604735][ T9248] Memory state around the buggy address: [ 179.604977][ T9248] ffffc900099c0f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 179.605011][ T9248] ffffc900099c0f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 179.605022][ T9248] >ffffc900099c1000: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 179.605027][ T9248] ^ [ 179.605038][ T9248] ffffc900099c1080: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 179.605044][ T9248] ffffc900099c1100: f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 f9 [ 179.605047][ T9248] ================================================================== [ 179.605526][ T9248] Disabling lock debugging due to kernel taint [ 179.608312][ T9248] Kernel panic - not syncing: panic_on_warn set ... [ 179.608332][ T9248] CPU: 2 PID: 9248 Comm: syz-executor.2 Tainted: G B 5.8.0-rc5-syzkaller #0 [ 179.608344][ T9248] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 179.608374][ T9248] Call Trace: [ 179.608482][ T9248] dump_stack+0x18f/0x20d [ 179.608499][ T9248] ? bitfill_aligned+0x2b0/0x400 [ 179.608647][ T9248] panic+0x2e3/0x75c [ 179.608662][ T9248] ? __warn_printk+0xf3/0xf3 [ 179.608683][ T9248] ? preempt_schedule_common+0x59/0xc0 [ 179.608696][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.608787][ T9248] ? preempt_schedule_thunk+0x16/0x18 [ 179.608800][ T9248] ? trace_hardirqs_on+0x55/0x220 [ 179.608809][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.608817][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.608826][ T9248] end_report+0x4d/0x53 [ 179.608836][ T9248] kasan_report.cold+0xd/0x37 [ 179.608857][ T9248] ? bitfill_aligned+0x34a/0x400 [ 179.608870][ T9248] bitfill_aligned+0x34a/0x400 [ 179.608884][ T9248] sys_fillrect+0x408/0x7a0 [ 179.608896][ T9248] ? sys_fillrect+0x7a0/0x7a0 [ 179.608917][ T9248] drm_fb_helper_sys_fillrect+0x1e/0x190 [ 179.608930][ T9248] bit_clear_margins+0x2d5/0x4a0 [ 179.608942][ T9248] ? bit_bmove+0x210/0x210 [ 179.608961][ T9248] fbcon_clear_margins+0x1d5/0x230 [ 179.608976][ T9248] fbcon_switch+0xb6e/0x16c0 [ 179.608990][ T9248] ? fbcon_scroll+0x3600/0x3600 [ 179.609008][ T9248] ? fbcon_cursor+0x52b/0x650 [ 179.609019][ T9248] ? kmalloc_array.constprop.0+0x20/0x20 [ 179.609029][ T9248] ? is_console_locked+0x5/0x10 [ 179.609036][ T9248] ? fbcon_set_origin+0x26/0x50 [ 179.609045][ T9248] redraw_screen+0x2ae/0x770 [ 179.609053][ T9248] ? vc_init+0x440/0x440 [ 179.609061][ T9248] ? fb_get_color_depth+0x11a/0x240 [ 179.609072][ T9248] ? fbcon_set_palette+0x3a8/0x490 [ 179.609081][ T9248] fbcon_modechanged+0x575/0x710 [ 179.609089][ T9248] fbcon_update_vcs+0x3a/0x50 [ 179.609097][ T9248] fb_set_var+0xae8/0xd60 [ 179.609104][ T9248] ? fb_blank+0x190/0x190 [ 179.609112][ T9248] ? lock_release+0x8d0/0x8d0 [ 179.609121][ T9248] ? lock_is_held_type+0xb0/0xe0 [ 179.609135][ T9248] ? do_fb_ioctl+0x2f2/0x6c0 [ 179.609147][ T9248] ? _raw_spin_unlock_irqrestore+0x62/0xe0 [ 179.609154][ T9248] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 179.609161][ T9248] ? trace_hardirqs_on+0x5f/0x220 [ 179.609170][ T9248] do_fb_ioctl+0x33f/0x6c0 [ 179.609178][ T9248] ? fb_set_suspend+0x1a0/0x1a0 [ 179.609186][ T9248] ? tomoyo_execute_permission+0x470/0x470 [ 179.609195][ T9248] ? lock_is_held_type+0xb0/0xe0 [ 179.609205][ T9248] ? __sanitizer_cov_trace_switch+0x45/0x70 [ 179.609225][ T9248] ? do_vfs_ioctl+0x27d/0x1090 [ 179.609239][ T9248] ? __fget_files+0x294/0x400 [ 179.609437][ T9248] fb_ioctl+0xdd/0x130 [ 179.609457][ T9248] ? do_fb_ioctl+0x6c0/0x6c0 [ 179.609464][ T9248] ksys_ioctl+0x11a/0x180 [ 179.609471][ T9248] __x64_sys_ioctl+0x6f/0xb0 [ 179.609477][ T9248] ? lockdep_hardirqs_on+0x6a/0xe0 [ 179.609486][ T9248] do_syscall_64+0x60/0xe0 [ 179.609511][ T9248] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 179.609564][ T9248] RIP: 0033:0x45c049 [ 179.609568][ T9248] Code: Bad RIP value. [ 179.609575][ T9248] RSP: 002b:00007f6c2203ac88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 179.609587][ T9248] RAX: ffffffffffffffda RBX: 00000000006fa440 RCX: 000000000045c049 [ 179.609594][ T9248] RDX: 0000000020000000 RSI: 0000000000004601 RDI: 0000000000000003 [ 179.609600][ T9248] RBP: 00000000004a906e R08: 0000000000000000 R09: 0000000000000000 [ 179.609604][ T9248] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000074bf00 [ 179.609608][ T9248] R13: 00007fff36b2545f R14: 00007f6c2201b000 R15: 0000000000000003 [ 179.616887][ T9248] Kernel Offset: disabled [ 179.616887][ T9248] Rebooting in 86400 seconds..