[ 52.152504][ T38] audit: type=1400 audit(1647345162.014:74): avc: denied { write } for pid=3639 comm="sh" path="pipe:[28183]" dev="pipefs" ino=28183 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:55106' (ECDSA) to the list of known hosts.
[ 67.223526][ T38] audit: type=1400 audit(1647345177.104:75): avc: denied { execute } for pid=3663 comm="sh" name="syz-execprog" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 67.253816][ T38] audit: type=1400 audit(1647345177.104:76): avc: denied { execute_no_trans } for pid=3663 comm="sh" path="/syz-execprog" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2022/03/15 11:52:57 parsed 1 programs
[ 67.622105][ T38] audit: type=1400 audit(1647345177.504:77): avc: denied { getattr } for pid=3663 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 67.651180][ T38] audit: type=1400 audit(1647345177.504:78): avc: denied { read } for pid=3663 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 67.673871][ T3669] cgroup: Unknown subsys name 'net'
[ 67.677488][ T38] audit: type=1400 audit(1647345177.504:79): avc: denied { open } for pid=3663 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 67.708194][ T38] audit: type=1400 audit(1647345177.514:80): avc: denied { read } for pid=3663 comm="syz-execprog" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 67.730912][ T38] audit: type=1400 audit(1647345177.514:81): avc: denied { open } for pid=3663 comm="syz-execprog" path="/dev/raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 67.754072][ T38] audit: type=1400 audit(1647345177.514:82): avc: denied { read } for pid=3663 comm="syz-execprog" name="vhci" dev="devtmpfs" ino=1102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[ 67.777369][ T38] audit: type=1400 audit(1647345177.514:83): avc: denied { open } for pid=3663 comm="syz-execprog" path="/dev/vhci" dev="devtmpfs" ino=1102 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[ 67.800954][ T38] audit: type=1400 audit(1647345177.544:84): avc: denied { mounton } for pid=3669 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 67.966964][ T3669] cgroup: Unknown subsys name 'rlimit'
2022/03/15 11:52:57 executed programs: 0
[ 69.248902][ T3691] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 69.249939][ T3692] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[ 69.251313][ T3693] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 69.251943][ T3693] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 69.253535][ T3694] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 69.254000][ T3694] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 69.254574][ T3694] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 69.254967][ T3694] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 69.255163][ T3694] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 69.256422][ T3694] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 69.256880][ T3694] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 69.257388][ T3694] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 69.257760][ T3694] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 69.259402][ T3691] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 69.260692][ T3691] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 69.261817][ T3691] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 69.262332][ T3691] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 69.262597][ T3691] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 69.266822][ T3692] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[ 69.272898][ T3694] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 69.279820][ T3692] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[ 69.396487][ T3692] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[ 69.404423][ T3692] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[ 69.412812][ T3692] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[ 69.448237][ T3681] chnl_net:caif_netlink_parms(): no params data found
[ 69.555143][ T3679] chnl_net:caif_netlink_parms(): no params data found
[ 69.592051][ T3682] chnl_net:caif_netlink_parms(): no params data found
[ 69.648264][ T3681] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.656613][ T3681] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.665074][ T3681] device bridge_slave_0 entered promiscuous mode
[ 69.694545][ T3681] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.702470][ T3681] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.711249][ T3681] device bridge_slave_1 entered promiscuous mode
[ 69.815653][ T3679] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.822757][ T3679] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.830497][ T3679] device bridge_slave_0 entered promiscuous mode
[ 69.854181][ T3681] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.867350][ T3681] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.876341][ T3679] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.886045][ T3679] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.893624][ T3679] device bridge_slave_1 entered promiscuous mode
[ 69.916834][ T3682] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.923459][ T3682] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.930988][ T3682] device bridge_slave_0 entered promiscuous mode
[ 69.939403][ T3682] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.947227][ T3682] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.954815][ T3682] device bridge_slave_1 entered promiscuous mode
[ 70.032852][ T3681] team0: Port device team_slave_0 added
[ 70.045314][ T3681] team0: Port device team_slave_1 added
[ 70.052870][ T3679] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 70.082150][ T3682] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 70.110908][ T3679] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 70.145645][ T3682] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 70.178686][ T3681] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 70.185744][ T3681] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.211552][ T3681] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 70.275850][ T3681] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 70.282973][ T3681] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.309122][ T3681] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 70.324276][ T3679] team0: Port device team_slave_0 added
[ 70.334579][ T3679] team0: Port device team_slave_1 added
[ 70.342396][ T3682] team0: Port device team_slave_0 added
[ 70.350480][ T3682] team0: Port device team_slave_1 added
[ 70.356287][ T3680] chnl_net:caif_netlink_parms(): no params data found
[ 70.470602][ T3679] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 70.480281][ T3679] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.516300][ T3679] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 70.545627][ T3682] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 70.557922][ T3682] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.585862][ T3682] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 70.600031][ T3681] device hsr_slave_0 entered promiscuous mode
[ 70.607609][ T3681] device hsr_slave_1 entered promiscuous mode
[ 70.621453][ T3679] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 70.628339][ T3679] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.653944][ T3679] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 70.671494][ T3682] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 70.678485][ T3682] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 70.705460][ T3682] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 70.827098][ T3679] device hsr_slave_0 entered promiscuous mode
[ 70.835003][ T3679] device hsr_slave_1 entered promiscuous mode
[ 70.843000][ T3679] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 70.851553][ T3679] Cannot create hsr debugfs directory
[ 70.912498][ T3680] bridge0: port 1(bridge_slave_0) entered blocking state
[ 70.919787][ T3680] bridge0: port 1(bridge_slave_0) entered disabled state
[ 70.929005][ T3680] device bridge_slave_0 entered promiscuous mode
[ 70.941690][ T3682] device hsr_slave_0 entered promiscuous mode
[ 70.948785][ T3682] device hsr_slave_1 entered promiscuous mode
[ 70.955396][ T3682] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 70.962891][ T3682] Cannot create hsr debugfs directory
[ 70.987240][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state
[ 70.997245][ T3680] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.005863][ T3680] device bridge_slave_1 entered promiscuous mode
[ 71.120766][ T3680] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 71.135261][ T3680] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 71.211862][ T3680] team0: Port device team_slave_0 added
[ 71.233659][ T3680] team0: Port device team_slave_1 added
[ 71.311769][ T3680] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 71.318667][ T3680] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.322318][ T39] Bluetooth: hci3: command 0x0409 tx timeout
[ 71.322318][ T1384] Bluetooth: hci1: command 0x0409 tx timeout
[ 71.322941][ T1384] Bluetooth: hci0: command 0x0409 tx timeout
[ 71.345438][ T3680] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 71.387334][ T3680] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 71.394939][ T3680] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 71.421062][ T3680] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 71.470251][ T39] Bluetooth: hci2: command 0x0409 tx timeout
[ 71.495006][ T3680] device hsr_slave_0 entered promiscuous mode
[ 71.503121][ T3680] device hsr_slave_1 entered promiscuous mode
[ 71.510188][ T3680] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 71.517806][ T3680] Cannot create hsr debugfs directory
[ 71.594261][ T3681] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 71.629861][ T3681] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 71.657059][ T3681] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 71.669094][ T3681] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 71.690494][ T3679] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 71.715484][ T3679] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 71.729075][ T3679] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 71.738878][ T3679] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 71.754874][ T3682] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 71.778303][ T3682] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 71.787649][ T3682] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 71.807393][ T3682] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 71.838110][ T3680] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 71.854954][ T3680] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 71.868618][ T3680] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 71.881152][ T3680] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.012050][ T3681] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.037709][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.047406][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.066322][ T3679] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.074896][ T3681] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.098256][ T3682] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.107835][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.116904][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.127789][ T3715] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.135081][ T3715] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.148626][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.166707][ T3679] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.176268][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.186232][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.194909][ T1384] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.202102][ T1384] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.209474][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.216849][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.235674][ T3680] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.246817][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.254775][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.264491][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.273282][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.281853][ T3716] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.288410][ T3716] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.300584][ T3682] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.317744][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.325779][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.333255][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.340593][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.348400][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.356704][ T3716] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.363055][ T3716] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.370593][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.378602][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.386666][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.395619][ T3716] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.403150][ T3716] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.409608][ T3716] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.426461][ T3680] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.437464][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.446128][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.454070][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 72.462559][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 72.470825][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 72.479538][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.489364][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.498269][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.508103][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.519797][ T1384] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.528009][ T1384] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.548724][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 72.561128][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.571798][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 72.581683][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 72.590863][ T3715] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.597836][ T3715] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.606598][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.616513][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 72.625357][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 72.638727][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 72.647008][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.664014][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 72.685595][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.694507][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.704422][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 72.713514][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 72.722129][ T50] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.729609][ T50] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 72.737245][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.770408][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.778960][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 72.790513][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 72.800322][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.812890][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.824149][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 72.833910][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.843571][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 72.852923][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.861887][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 72.871267][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 72.880437][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 72.888953][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 72.897552][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 72.906080][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 72.922090][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.929907][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 72.938993][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 72.949639][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 72.969578][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 72.984552][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 72.993416][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.003932][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 73.013141][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 73.025131][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 73.033698][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 73.042148][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 73.050743][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 73.059045][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 73.067642][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 73.084889][ T3681] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.094651][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.112492][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 73.129562][ T38] kauditd_printk_skb: 15 callbacks suppressed
[ 73.129574][ T38] audit: type=1400 audit(1647345183.004:100): avc: denied { module_request } for pid=3681 comm="syz-executor.1" kmod="netdev-xfrm0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 73.138877][ T3682] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.164536][ T38] audit: type=1400 audit(1647345183.044:101): avc: denied { sys_module } for pid=3681 comm="syz-executor.1" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 73.193074][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.200634][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.220717][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.229536][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.238086][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 73.245581][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 73.259232][ T3679] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.268450][ T3680] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.304638][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.313951][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.329771][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.338988][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.350681][ T3681] device veth0_vlan entered promiscuous mode
[ 73.357926][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.365905][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.377923][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.386958][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.398548][ T3715] Bluetooth: hci3: command 0x041b tx timeout
[ 73.403097][ T1384] Bluetooth: hci0: command 0x041b tx timeout
[ 73.408372][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.411261][ T1384] Bluetooth: hci1: command 0x041b tx timeout
[ 73.420771][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.436672][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.444781][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.454567][ T3682] device veth0_vlan entered promiscuous mode
[ 73.463323][ T3681] device veth1_vlan entered promiscuous mode
[ 73.483869][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 73.492495][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 73.501161][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.510587][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.535184][ T3682] device veth1_vlan entered promiscuous mode
[ 73.544496][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 73.554205][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 73.563170][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 73.572748][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.581762][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.590448][ T50] Bluetooth: hci2: command 0x041b tx timeout
[ 73.598792][ T3680] device veth0_vlan entered promiscuous mode
[ 73.611280][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.619113][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.627444][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 73.636373][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 73.654246][ T3679] device veth0_vlan entered promiscuous mode
[ 73.664477][ T3681] device veth0_macvtap entered promiscuous mode
[ 73.675680][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 73.684286][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 73.691900][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 73.700568][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 73.709657][ T3680] device veth1_vlan entered promiscuous mode
[ 73.717616][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 73.725142][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 73.732221][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 73.780443][ T3679] device veth1_vlan entered promiscuous mode
[ 73.789261][ T3681] device veth1_macvtap entered promiscuous mode
[ 73.826601][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 73.835819][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 73.845589][ T3682] device veth0_macvtap entered promiscuous mode
[ 73.867512][ T3682] device veth1_macvtap entered promiscuous mode
[ 73.880260][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 73.890435][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 73.898603][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 73.907530][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 73.923917][ T3681] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 73.934240][ T3680] device veth0_macvtap entered promiscuous mode
[ 73.946549][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 73.956049][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 73.965651][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 73.981366][ T3681] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.989560][ T3680] device veth1_macvtap entered promiscuous mode
[ 74.002717][ T3679] device veth0_macvtap entered promiscuous mode
[ 74.020890][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 74.031282][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.042668][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.053973][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 74.064912][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 74.075790][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 74.084997][ T3682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.095609][ T3682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.107861][ T3682] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.119259][ T3682] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.131545][ T3682] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.132085][ T38] audit: type=1400 audit(1647345184.014:102): avc: denied { read } for pid=3110 comm="syslogd" name="log" dev="sda1" ino=1125 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 74.143225][ T3682] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.181145][ T3679] device veth1_macvtap entered promiscuous mode
[ 74.192582][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 74.201256][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 74.210000][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.218982][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.228355][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.240017][ T3681] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.249168][ T3681] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.261888][ T3681] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.271184][ T3681] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.289729][ T3680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.303645][ T3680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.316097][ T3680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.329546][ T3680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.347875][ T3680] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.360807][ T3682] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.371001][ T3682] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.379566][ T3682] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.389734][ T3682] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.407873][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 74.416524][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.427787][ T3680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.438705][ T3680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.448987][ T3680] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.460325][ T3680] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.472358][ T3680] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.492867][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.501522][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.518315][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.529978][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.540031][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.550848][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.560679][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 74.570779][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.581787][ T3679] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 74.590921][ T3680] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.599065][ T3680] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.608313][ T3680] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.618980][ T3680] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.635376][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 74.644252][ T1941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 74.663894][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.678480][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.688653][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.699112][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.709180][ T3679] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 74.720633][ T3679] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 74.733159][ T3679] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 74.762045][ T3717] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 74.772407][ T3717] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 74.788899][ T3679] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.801631][ T3679] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.812483][ T3679] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.823033][ T3679] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 74.923652][ T3709] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.935489][ T3709] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 74.953259][ T3720] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 74.978731][ T3709] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 74.989559][ T3709] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.023943][ T3715] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 75.045786][ T3701] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.058382][ T3701] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.061124][ T3709] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.072499][ T3713] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 75.074017][ T3709] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.091616][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 75.093418][ T38] audit: type=1400 audit(1647345184.974:103): avc: denied { mounton } for pid=3681 comm="syz-executor.1" path="/dev/binderfs" dev="devtmpfs" ino=2381 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 75.122842][ T38] audit: type=1400 audit(1647345184.974:104): avc: denied { mount } for pid=3681 comm="syz-executor.1" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 75.192317][ T3747] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.192757][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.200299][ T3747] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.210775][ T27] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 75.213163][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.247132][ T38] audit: type=1400 audit(1647345185.124:105): avc: denied { read write } for pid=3682 comm="syz-executor.2" name="loop2" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 75.256918][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.273442][ T40] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 75.282307][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.283267][ T38] audit: type=1400 audit(1647345185.124:106): avc: denied { open } for pid=3682 comm="syz-executor.2" path="/dev/loop2" dev="devtmpfs" ino=658 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 75.283296][ T38] audit: type=1400 audit(1647345185.124:107): avc: denied { ioctl } for pid=3682 comm="syz-executor.2" path="/dev/loop2" dev="devtmpfs" ino=658 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[ 75.283321][ T38] audit: type=1400 audit(1647345185.124:108): avc: denied { write } for pid=3749 comm="syz-executor.2" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 75.283344][ T38] audit: type=1400 audit(1647345185.124:109): avc: denied { ioctl } for pid=3749 comm="syz-executor.2" path="/dev/raw-gadget" dev="devtmpfs" ino=760 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 75.303440][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.324676][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 75.347262][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.419523][ T1384] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 75.470824][ T27] Bluetooth: hci3: command 0x040f tx timeout
[ 75.481888][ T3719] Bluetooth: hci1: command 0x040f tx timeout
[ 75.488682][ T3719] Bluetooth: hci0: command 0x040f tx timeout
[ 75.531604][ T7] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 75.570220][ T3718] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 75.632329][ T3719] Bluetooth: hci2: command 0x040f tx timeout
[ 75.711527][ T3748] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 75.740170][ T1384] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 75.820271][ T7] usb 7-1: Using ep0 maxpacket: 32
[ 75.850246][ T3718] usb 6-1: Using ep0 maxpacket: 32
[ 75.970359][ T7] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 75.980272][ T3748] usb 5-1: Using ep0 maxpacket: 32
[ 75.982503][ T7] usb 7-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 75.991808][ T3718] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 76.014764][ T1384] usb 8-1: Using ep0 maxpacket: 32
[ 76.020013][ T3718] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 76.120594][ T3748] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 76.131796][ T3748] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 76.150551][ T1384] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 76.161185][ T1384] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 28
[ 76.190328][ T7] usb 7-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26
[ 76.200640][ T7] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 76.209228][ T7] usb 7-1: Product: syz
[ 76.214507][ T7] usb 7-1: Manufacturer: syz
[ 76.219622][ T7] usb 7-1: SerialNumber: syz
[ 76.220538][ T3718] usb 6-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26
[ 76.228742][ T7] usb 7-1: config 0 descriptor??
[ 76.235047][ T3718] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 76.248498][ T3718] usb 6-1: Product: syz
[ 76.254007][ T3718] usb 6-1: Manufacturer: syz
[ 76.258566][ T3718] usb 6-1: SerialNumber: syz
[ 76.265017][ T3718] usb 6-1: config 0 descriptor??
[ 76.285069][ T7] em28xx 7-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0)
[ 76.295517][ T7] em28xx 7-1:0.0: Video interface 0 found:
[ 76.315685][ T3718] em28xx 6-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0)
[ 76.325078][ T3718] em28xx 6-1:0.0: Video interface 0 found:
[ 76.330427][ T3748] usb 5-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26
[ 76.341408][ T3748] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 76.349703][ T3748] usb 5-1: Product: syz
[ 76.354238][ T3748] usb 5-1: Manufacturer: syz
[ 76.359252][ T3748] usb 5-1: SerialNumber: syz
[ 76.367862][ T3748] usb 5-1: config 0 descriptor??
[ 76.390726][ T1384] usb 8-1: New USB device found, idVendor=eb1a, idProduct=a316, bcdDevice=5c.26
[ 76.402773][ T1384] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 76.412211][ T1384] usb 8-1: Product: syz
[ 76.416434][ T3748] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0)
[ 76.416687][ T3748] em28xx 5-1:0.0: Video interface 0 found:
[ 76.425704][ T1384] usb 8-1: Manufacturer: syz
[ 76.425726][ T1384] usb 8-1: SerialNumber: syz
[ 76.428720][ T1384] usb 8-1: config 0 descriptor??
[ 76.493084][ T1384] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (eb1a:a316, interface 0, class 0)
[ 76.504113][ T1384] em28xx 8-1:0.0: Video interface 0 found:
[ 76.611439][ T7] em28xx 7-1:0.0: unknown em28xx chip ID (0)
[ 76.660860][ T3718] em28xx 6-1:0.0: unknown em28xx chip ID (0)
[ 76.740211][ T3748] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[ 76.820443][ T1384] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[ 76.860405][ T7] em28xx 7-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 76.869330][ T7] em28xx 7-1:0.0: board has no eeprom
[ 76.920351][ T3718] em28xx 6-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 76.931912][ T3718] em28xx 6-1:0.0: board has no eeprom
[ 76.960354][ T3748] em28xx 5-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 76.969263][ T3748] em28xx 5-1:0.0: board has no eeprom
2022/03/15 11:53:06 executed programs: 4
[ 76.994740][ T1350] ieee802154 phy0 wpan0: encryption failed: -22
[ 77.003073][ T1350] ieee802154 phy1 wpan1: encryption failed: -22
[ 77.010210][ T7] em28xx 7-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57)
[ 77.023565][ T7] em28xx 7-1:0.0: analog set to bulk mode.
[ 77.052754][ T7] usb 7-1: USB disconnect, device number 2
[ 77.061708][ T3746] em28xx 7-1:0.0: Registering V4L2 extension
[ 77.064018][ T3718] em28xx 6-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57)
[ 77.080281][ T3748] em28xx 5-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57)
[ 77.083901][ T3718] em28xx 6-1:0.0: analog set to bulk mode.
[ 77.091675][ T3748] em28xx 5-1:0.0: analog set to bulk mode.
[ 77.114710][ T3746] em28xx 7-1:0.0: reading from i2c device at 0xb8 failed (error=-19)
[ 77.120841][ T3748] usb 5-1: USB disconnect, device number 2
[ 77.137709][ T3748] em28xx 5-1:0.0: Disconnecting em28xx
[ 77.143374][ T7] em28xx 7-1:0.0: Disconnecting em28xx
[ 77.143850][ T1384] em28xx 8-1:0.0: reading from i2c device at 0xa0 failed (error=-5)
[ 77.159646][ T3718] usb 6-1: USB disconnect, device number 2
[ 77.168125][ T1384] em28xx 8-1:0.0: board has no eeprom
[ 77.175620][ T3718] em28xx 6-1:0.0: Disconnecting em28xx
[ 77.177930][ T3746] em28xx 7-1:0.0: Config register raw data: 0xffffffed
[ 77.192564][ T3746] em28xx 7-1:0.0: AC97 chip type couldn't be determined
[ 77.202371][ T3746] em28xx 7-1:0.0: No AC97 audio processor
[ 77.214107][ T3746] usb 7-1: Decoder not found
[ 77.220295][ T3746] em28xx 7-1:0.0: failed to create media graph
[ 77.227975][ T3746] em28xx 7-1:0.0: V4L2 device video71 deregistered
[ 77.239366][ T3746] em28xx 7-1:0.0: Binding DVB extension
[ 77.245980][ T3746] em28xx 7-1:0.0: no endpoint for DVB mode and transfer type 0
[ 77.254258][ T3746] em28xx 7-1:0.0: failed to pre-allocate USB transfer buffers for DVB.
[ 77.263045][ T3746] em28xx 7-1:0.0: Remote control support is not available for this card.
[ 77.272996][ T27] em28xx 5-1:0.0: Registering V4L2 extension
[ 77.300379][ T1384] em28xx 8-1:0.0: Identified as Kworld PlusTV HD Hybrid 330 (card=57)
[ 77.310759][ T1384] em28xx 8-1:0.0: analog set to bulk mode.
[ 77.321409][ T1384] usb 8-1: USB disconnect, device number 2
[ 77.329167][ T1384] em28xx 8-1:0.0: Disconnecting em28xx
[ 77.339844][ T27] em28xx 5-1:0.0: Config register raw data: 0xffffffed
[ 77.349983][ T27] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[ 77.359595][ T27] em28xx 5-1:0.0: No AC97 audio processor
[ 77.369010][ T27] usb 5-1: Decoder not found
[ 77.375445][ T27] em28xx 5-1:0.0: failed to create media graph
[ 77.382420][ T27] em28xx 5-1:0.0: V4L2 device video71 deregistered
[ 77.389806][ T27] em28xx 5-1:0.0: Binding DVB extension
[ 77.396600][ T27] em28xx 5-1:0.0: no endpoint for DVB mode and transfer type 0
[ 77.407480][ T27] em28xx 5-1:0.0: failed to pre-allocate USB transfer buffers for DVB.
[ 77.418311][ T27] em28xx 5-1:0.0: Remote control support is not available for this card.
[ 77.429136][ T3719] em28xx 6-1:0.0: Registering V4L2 extension
[ 77.486793][ T3719] em28xx 6-1:0.0: Config register raw data: 0xffffffed
[ 77.496119][ T3719] em28xx 6-1:0.0: AC97 chip type couldn't be determined
[ 77.505757][ T3719] em28xx 6-1:0.0: No AC97 audio processor
[ 77.516159][ T3719] usb 6-1: Decoder not found
[ 77.522726][ T3719] em28xx 6-1:0.0: failed to create media graph
[ 77.531334][ T3719] em28xx 6-1:0.0: V4L2 device video71 deregistered
[ 77.542092][ T3719] em28xx 6-1:0.0: Binding DVB extension
[ 77.549531][ T3719] em28xx 6-1:0.0: no endpoint for DVB mode and transfer type 0
[ 77.558300][ T3719] em28xx 6-1:0.0: failed to pre-allocate USB transfer buffers for DVB.
[ 77.566716][ T3719] em28xx 6-1:0.0: Remote control support is not available for this card.
[ 77.575382][ T3718] em28xx 6-1:0.0: Closing input extension
[ 77.581636][ T7] em28xx 7-1:0.0: Closing input extension
[ 77.583397][ T3719] Bluetooth: hci0: command 0x0419 tx timeout
[ 77.595769][ T3716] em28xx 8-1:0.0: Registering V4L2 extension
[ 77.605868][ T3719] Bluetooth: hci1: command 0x0419 tx timeout
[ 77.616733][ T3718] em28xx 6-1:0.0: Freeing device
[ 77.618585][ T7] em28xx 7-1:0.0: Freeing device
[ 77.624335][ T3719] Bluetooth: hci3: command 0x0419 tx timeout
[ 77.665374][ T3716] em28xx 8-1:0.0: Config register raw data: 0xffffffed
[ 77.673292][ T3716] em28xx 8-1:0.0: AC97 chip type couldn't be determined
[ 77.685925][ T3716] em28xx 8-1:0.0: No AC97 audio processor
[ 77.695188][ T3716] usb 8-1: Decoder not found
[ 77.704443][ T3716] em28xx 8-1:0.0: failed to create media graph
[ 77.713524][ T3716] em28xx 8-1:0.0: V4L2 device video71 deregistered
[ 77.721672][ T3719] Bluetooth: hci2: command 0x0419 tx timeout
[ 77.730573][ T3716] em28xx 8-1:0.0: Binding DVB extension
[ 77.731046][ T3771] ==================================================================
[ 77.737975][ T3716] em28xx 8-1:0.0: no endpoint for DVB mode and transfer type 0
[ 77.746494][ T3771] BUG: KASAN: use-after-free in v4l2_fh_init+0x279/0x2c0
[ 77.746710][ T3771] Read of size 8 at addr ffff8880006c08c0 by task v4l_id/3771
[ 77.746723][ T3771]
[ 77.746739][ T3771] CPU: 2 PID: 3771 Comm: v4l_id Not tainted 5.17.0-rc8-syzkaller #0
[ 77.746798][ T3771] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 77.746852][ T3771] Call Trace:
[ 77.755695][ T3716] em28xx 8-1:0.0: failed to pre-allocate USB transfer buffers for DVB.
[ 77.763798][ T3771]
[ 77.763812][ T3771] dump_stack_lvl+0xcd/0x134
[ 77.776788][ T3716] em28xx 8-1:0.0: Remote control support is not available for this card.
[ 77.779074][ T3771] print_address_description.constprop.0.cold+0x8d/0x303
[ 77.790348][ T1384] em28xx 8-1:0.0: Closing input extension
[ 77.798631][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 77.844366][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 77.849093][ T3771] kasan_report.cold+0x83/0xdf
[ 77.853932][ T3771] ? kmem_cache_alloc_trace+0x1a0/0x4a0
[ 77.860040][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 77.865148][ T3771] v4l2_fh_init+0x279/0x2c0
[ 77.869844][ T3771] v4l2_fh_open+0x88/0xc0
[ 77.874208][ T3771] em28xx_v4l2_open+0x11c/0x570
[ 77.879090][ T3771] v4l2_open+0x21c/0x3f0
[ 77.883117][ T3771] ? v4l2_release+0x3b0/0x3b0
[ 77.888063][ T3771] chrdev_open+0x266/0x770
[ 77.893100][ T3771] ? cdev_device_add+0x220/0x220
[ 77.898148][ T3771] ? fsnotify_perm.part.0+0x22d/0x620
[ 77.903847][ T3771] do_dentry_open+0x4b9/0x1250
[ 77.908599][ T3771] ? cdev_device_add+0x220/0x220
[ 77.913469][ T3771] ? may_open+0x1f6/0x420
[ 77.917733][ T3771] path_openat+0x1c9e/0x2940
[ 77.922078][ T3771] ? lock_chain_count+0x20/0x20
[ 77.927227][ T3771] ? path_lookupat+0x860/0x860
[ 77.932045][ T3771] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 77.938333][ T3771] do_filp_open+0x1aa/0x400
[ 77.943049][ T3771] ? may_open_dev+0xf0/0xf0
[ 77.947497][ T3771] ? rwlock_bug.part.0+0x90/0x90
[ 77.952399][ T3771] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 77.958770][ T3771] ? _find_next_bit+0x1e3/0x260
[ 77.963746][ T3771] ? _raw_spin_unlock+0x24/0x40
[ 77.968775][ T3771] ? alloc_fd+0x2f0/0x670
[ 77.973145][ T3771] do_sys_openat2+0x16d/0x4d0
[ 77.977934][ T3771] ? find_held_lock+0x2d/0x110
[ 77.982707][ T3771] ? build_open_flags+0x6f0/0x6f0
[ 77.988120][ T3771] ? lock_downgrade+0x6e0/0x6e0
[ 77.993109][ T3771] __x64_sys_openat+0x13f/0x1f0
[ 77.998177][ T3771] ? __ia32_sys_open+0x1c0/0x1c0
[ 78.003148][ T3771] ? syscall_enter_from_user_mode+0x21/0x70
[ 78.009451][ T3771] do_syscall_64+0x35/0xb0
[ 78.013939][ T3771] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 78.019949][ T3771] RIP: 0033:0x7ff577781697
[ 78.024665][ T3771] Code: 25 00 00 41 00 3d 00 00 41 00 74 37 64 8b 04 25 18 00 00 00 85 c0 75 5b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 85 00 00 00 48 83 c4 68 5d 41 5c c3 0f 1f
[ 78.044395][ T3771] RSP: 002b:00007ffc30e4da00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 78.053026][ T3771] RAX: ffffffffffffffda RBX: 000056266ea42c40 RCX: 00007ff577781697
[ 78.061194][ T3771] RDX: 0000000000000000 RSI: 00007ffc30e4df23 RDI: 00000000ffffff9c
[ 78.069331][ T3771] RBP: 00007ffc30e4df23 R08: 0000000000000000 R09: 0000000000000000
[ 78.077668][ T3771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 78.086252][ T3771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 78.094293][ T3771]
[ 78.097382][ T3771]
[ 78.099546][ T3771] Allocated by task 3716:
[ 78.103566][ T3771] kasan_save_stack+0x1e/0x40
[ 78.108068][ T3771] __kasan_kmalloc+0xa6/0xd0
[ 78.113009][ T3771] kmem_cache_alloc_trace+0x1ea/0x4a0
[ 78.118719][ T3771] em28xx_v4l2_init.cold+0x93/0x32a7
[ 78.124483][ T3771] em28xx_init_extension+0x12f/0x1f0
[ 78.129918][ T3771] request_module_async+0x5d/0x70
[ 78.135238][ T3771] process_one_work+0x9ac/0x1650
[ 78.140379][ T3771] worker_thread+0x7e2/0x1110
[ 78.145043][ T3771] kthread+0x2e9/0x3a0
[ 78.149124][ T3771] ret_from_fork+0x1f/0x30
[ 78.153769][ T3771]
[ 78.156318][ T3771] Freed by task 3716:
[ 78.160321][ T3771] kasan_save_stack+0x1e/0x40
[ 78.165241][ T3771] kasan_set_track+0x21/0x30
[ 78.169867][ T3771] kasan_set_free_info+0x20/0x30
[ 78.174970][ T3771] ____kasan_slab_free+0xff/0x140
[ 78.180028][ T3771] kfree+0xf8/0x2b0
[ 78.184019][ T3771] kref_put.isra.0+0x6f/0xa0
[ 78.188779][ T3771] em28xx_v4l2_init.cold+0x263/0x32a7
[ 78.195295][ T3771] em28xx_init_extension+0x12f/0x1f0
[ 78.202831][ T3771] request_module_async+0x5d/0x70
[ 78.210170][ T3771] process_one_work+0x9ac/0x1650
[ 78.217001][ T3771] worker_thread+0x7e2/0x1110
[ 78.222878][ T3771] kthread+0x2e9/0x3a0
[ 78.228657][ T3771] ret_from_fork+0x1f/0x30
[ 78.234024][ T3771]
[ 78.236400][ T3771] The buggy address belongs to the object at ffff8880006c0000
[ 78.236400][ T3771] which belongs to the cache kmalloc-16k of size 16384
[ 78.255932][ T3771] The buggy address is located 2240 bytes inside of
[ 78.255932][ T3771] 16384-byte region [ffff8880006c0000, ffff8880006c4000)
[ 78.274379][ T3771] The buggy address belongs to the page:
[ 78.281739][ T3771] page:ffffea000001b000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x6c0
[ 78.295222][ T3771] head:ffffea000001b000 order:3 compound_mapcount:0 compound_pincount:0
[ 78.306588][ T3771] flags: 0x7ff00000010200(slab|head|node=0|zone=0|lastcpupid=0x7ff)
[ 78.317072][ T3771] raw: 007ff00000010200 ffffea0000ad2008 ffff888010c41c50 ffff888010c40b00
[ 78.327537][ T3771] raw: 0000000000000000 ffff8880006c0000 0000000100000001 0000000000000000
[ 78.336135][ T3771] page dumped because: kasan: bad access detected
[ 78.342997][ T3771] page_owner tracks the page as allocated
[ 78.348911][ T3771] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x3420c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_COMP|__GFP_HARDWALL|__GFP_THISNODE), pid 3716, ts 77602134289, free_ts 77521486898
[ 78.368533][ T3771] get_page_from_freelist+0xa72/0x2f50
[ 78.374320][ T3771] __alloc_pages+0x1b2/0x500
[ 78.379047][ T3771] cache_grow_begin+0x75/0x390
[ 78.383870][ T3771] cache_alloc_refill+0x27f/0x380
[ 78.389139][ T3771] kmem_cache_alloc_trace+0x380/0x4a0
[ 78.394612][ T3771] em28xx_v4l2_init.cold+0x93/0x32a7
[ 78.400270][ T3771] em28xx_init_extension+0x12f/0x1f0
[ 78.405655][ T3771] request_module_async+0x5d/0x70
[ 78.410652][ T3771] process_one_work+0x9ac/0x1650
[ 78.415465][ T3771] worker_thread+0x7e2/0x1110
[ 78.419900][ T3771] kthread+0x2e9/0x3a0
[ 78.424015][ T3771] ret_from_fork+0x1f/0x30
[ 78.428314][ T3771] page last free stack trace:
[ 78.433266][ T3771] free_pcp_prepare+0x374/0x870
[ 78.438148][ T3771] free_unref_page+0x19/0x690
[ 78.442905][ T3771] slabs_destroy+0x89/0xc0
[ 78.447255][ T3771] ___cache_free+0x303/0x600
[ 78.451595][ T3771] qlist_free_all+0x50/0x1a0
[ 78.455952][ T3771] kasan_quarantine_reduce+0x180/0x200
[ 78.461381][ T3771] __kasan_slab_alloc+0x97/0xb0
[ 78.466491][ T3771] kmem_cache_alloc_trace+0x258/0x4a0
[ 78.471769][ T3771] nsim_fib_event_work+0x1200/0x2490
[ 78.477175][ T3771] process_one_work+0x9ac/0x1650
[ 78.482103][ T3771] worker_thread+0x833/0x1110
[ 78.486834][ T3771] kthread+0x2e9/0x3a0
[ 78.490969][ T3771] ret_from_fork+0x1f/0x30
[ 78.495482][ T3771]
[ 78.497903][ T3771] Memory state around the buggy address:
[ 78.503887][ T3771] ffff8880006c0780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 78.511840][ T3771] ffff8880006c0800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 78.519946][ T3771] >ffff8880006c0880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 78.527749][ T3771] ^
[ 78.533802][ T3771] ffff8880006c0900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 78.541654][ T3771] ffff8880006c0980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 78.549296][ T3771] ==================================================================
[ 78.557668][ T3771] Disabling lock debugging due to kernel taint
[ 78.564703][ T3748] em28xx 5-1:0.0: Closing input extension
[ 78.569401][ T3771] Kernel panic - not syncing: panic_on_warn set ...
[ 78.578805][ T3771] CPU: 3 PID: 3771 Comm: v4l_id Tainted: G B 5.17.0-rc8-syzkaller #0
[ 78.583964][ T3748] em28xx 5-1:0.0: Freeing device
[ 78.589930][ T3771] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 78.604958][ T3771] Call Trace:
[ 78.608237][ T3771]
[ 78.611203][ T3771] dump_stack_lvl+0xcd/0x134
[ 78.617027][ T3771] panic+0x2b0/0x6dd
[ 78.622214][ T3771] ? __warn_printk+0xf3/0xf3
[ 78.628101][ T3771] ? preempt_schedule_common+0x59/0xc0
[ 78.634771][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 78.639815][ T3771] ? preempt_schedule_thunk+0x16/0x18
[ 78.645590][ T3771] ? trace_hardirqs_on+0x38/0x1c0
[ 78.676976][ T3771] ? trace_hardirqs_on+0x51/0x1c0
[ 78.682632][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 78.688355][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 78.694413][ T3771] end_report.cold+0x63/0x6f
[ 78.700339][ T3771] kasan_report.cold+0x71/0xdf
[ 78.706108][ T3771] ? kmem_cache_alloc_trace+0x1a0/0x4a0
[ 78.712088][ T3771] ? v4l2_fh_init+0x279/0x2c0
[ 78.716744][ T3771] v4l2_fh_init+0x279/0x2c0
[ 78.722393][ T3771] v4l2_fh_open+0x88/0xc0
[ 78.727711][ T3771] em28xx_v4l2_open+0x11c/0x570
[ 78.734292][ T3771] v4l2_open+0x21c/0x3f0
[ 78.739585][ T3771] ? v4l2_release+0x3b0/0x3b0
[ 78.744317][ T3771] chrdev_open+0x266/0x770
[ 78.748666][ T3771] ? cdev_device_add+0x220/0x220
[ 78.753607][ T3771] ? fsnotify_perm.part.0+0x22d/0x620
[ 78.759068][ T3771] do_dentry_open+0x4b9/0x1250
[ 78.764385][ T3771] ? cdev_device_add+0x220/0x220
[ 78.769412][ T3771] ? may_open+0x1f6/0x420
[ 78.773907][ T3771] path_openat+0x1c9e/0x2940
[ 78.778782][ T3771] ? lock_chain_count+0x20/0x20
[ 78.783657][ T3771] ? path_lookupat+0x860/0x860
[ 78.788816][ T3771] ? lockdep_hardirqs_on_prepare+0x400/0x400
[ 78.794816][ T3771] do_filp_open+0x1aa/0x400
[ 78.799539][ T3771] ? may_open_dev+0xf0/0xf0
[ 78.804300][ T3771] ? rwlock_bug.part.0+0x90/0x90
[ 78.809069][ T3771] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70
[ 78.815240][ T3771] ? _find_next_bit+0x1e3/0x260
[ 78.820072][ T3771] ? _raw_spin_unlock+0x24/0x40
[ 78.824986][ T3771] ? alloc_fd+0x2f0/0x670
[ 78.829330][ T3771] do_sys_openat2+0x16d/0x4d0
[ 78.830327][ T7] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[ 78.834014][ T3771] ? find_held_lock+0x2d/0x110
[ 78.847125][ T3771] ? build_open_flags+0x6f0/0x6f0
[ 78.852102][ T3771] ? lock_downgrade+0x6e0/0x6e0
[ 78.856858][ T3771] __x64_sys_openat+0x13f/0x1f0
[ 78.861644][ T3771] ? __ia32_sys_open+0x1c0/0x1c0
[ 78.866506][ T3771] ? syscall_enter_from_user_mode+0x21/0x70
[ 78.872435][ T3771] do_syscall_64+0x35/0xb0
[ 78.877273][ T3771] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 78.883409][ T3771] RIP: 0033:0x7ff577781697
[ 78.887795][ T3771] Code: 25 00 00 41 00 3d 00 00 41 00 74 37 64 8b 04 25 18 00 00 00 85 c0 75 5b 44 89 e2 48 89 ee bf 9c ff ff ff b8 01 01 00 00 0f 05 <48> 3d 00 f0 ff ff 0f 87 85 00 00 00 48 83 c4 68 5d 41 5c c3 0f 1f
[ 78.907258][ T3771] RSP: 002b:00007ffc30e4da00 EFLAGS: 00000246 ORIG_RAX: 0000000000000101
[ 78.916641][ T3771] RAX: ffffffffffffffda RBX: 000056266ea42c40 RCX: 00007ff577781697
[ 78.925817][ T3771] RDX: 0000000000000000 RSI: 00007ffc30e4df23 RDI: 00000000ffffff9c
[ 78.935180][ T3771] RBP: 00007ffc30e4df23 R08: 0000000000000000 R09: 0000000000000000
[ 78.943851][ T3771] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 78.952294][ T3771] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 78.960782][ T3771]
[ 78.964964][ T3771] Kernel Offset: disabled
[ 78.969322][ T3771] Rebooting in 86400 seconds..
VM DIAGNOSIS:
11:53:07 Registers:
info registers vcpu 0
RAX=0000000080010002 RBX=ffffc90001ebfd98 RCX=0000000000000000 RDX=ffffffff8b8bc6c0
RSI=ffffffff89ae51a0 RDI=ffffc90001ebfd98 RBP=0000000000000001 RSP=ffffc90000007e30
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff81674cd5 R11=0000000000000001
R12=000000120e862384 R13=ffff88802ca2a680 R14=ffff88802ca2a600 R15=ffff88802ca2a600
RIP=ffffffff83e2f6b2 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f9e55963250 CR3=000000001cd20000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff84420b6c RDI=ffffffff907ef2e0 RBP=ffffffff907ef2a0 RSP=ffffc90002b3f3e0
R8 =0000000000000053 R9 =0000000000000000 R10=ffffffff84420b5d R11=000000000000001f
R12=0000000000000000 R13=fffffbfff20fdea7 R14=fffffbfff20fde5e R15=dffffc0000000000
RIP=ffffffff84420b92 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f9e55d9e111 CR3=000000001c0a0000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a XMM01=0000ffff0000000000000000000000ff
XMM02=0000ffff0000000000000000000000ff XMM03=7838326d65205d3631373354205b5d32
XMM04=69726373656420656361667265746e69 XMM05=666964202c726f747069726373656420
XMM06=20676e6974746573746c612030206563 XMM07=203a312d3820627375205d3438333154
XMM08=30200000726f737365636f7270206f00 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000000 RBX=0000000000000001 RCX=0000000000000000 RDX=ffff888022c5c0c0
RSI=ffffffff815f1812 RDI=0000000000000003 RBP=ffffc90002cbf640 RSP=ffffc90002cbf608
R8 =0000000000000000 R9 =0000000000000001 R10=ffffffff815f1824 R11=0000000000000000
R12=000000000000001a R13=ffff8880232822c0 R14=0000000000000000 R15=ffffc90002cbf690
RIP=ffffffff815f1814 RFL=00000093 [--S-A-C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007ff57762a840 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=000056266ea43700 CR3=000000004254e000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=0000000000000007 RBX=ffff8880188b3ac0 RCX=0000000000000000 RDX=0000000000000000
RSI=ffffffff812bcc38 RDI=ffff8880188b3b40 RBP=ffff8880188b3b00 RSP=ffffc9000067fc40
R8 =0000000000000000 R9 =ffff8880188b2287 R10=ffffffff812c6169 R11=0000000000000000
R12=0000000000000007 R13=ffff8880188b3ad0 R14=0000000000000000 R15=0000000000000001
RIP=ffffffff812bcc46 RFL=00000012 [----A--] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555556f0f400 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007fa4dd01d300 CR3=000000002594a000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff
XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000
XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000
XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000
XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000