syzkaller syzkaller login: [ 11.941229][ T23] kauditd_printk_skb: 60 callbacks suppressed [ 11.941236][ T23] audit: type=1400 audit(1635240184.310:71): avc: denied { transition } for pid=290 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 11.947779][ T23] audit: type=1400 audit(1635240184.320:72): avc: denied { write } for pid=290 comm="sh" path="pipe:[5001]" dev="pipefs" ino=5001 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 [ 12.086309][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!! [ 13.086038][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!! [ 13.195370][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #288!!! [ 13.305358][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! Warning: Permanently added '10.128.1.153' (ECDSA) to the list of known hosts. 2021/10/26 09:23:11 parsed 1 programs [ 19.139617][ T23] audit: type=1400 audit(1635240191.510:73): avc: denied { getattr } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 19.152812][ T370] cgroup: Unknown subsys name 'net' [ 19.163407][ T23] audit: type=1400 audit(1635240191.510:74): avc: denied { read } for pid=365 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 19.189532][ T23] audit: type=1400 audit(1635240191.510:75): avc: denied { open } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 19.189712][ T370] cgroup: Unknown subsys name 'devices' [ 19.213050][ T23] audit: type=1400 audit(1635240191.520:76): avc: denied { read } for pid=365 comm="syz-execprog" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 19.241399][ T23] audit: type=1400 audit(1635240191.520:77): avc: denied { open } for pid=365 comm="syz-execprog" path="/dev/raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 19.264860][ T23] audit: type=1400 audit(1635240191.520:78): avc: denied { mounton } for pid=370 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 19.287579][ T23] audit: type=1400 audit(1635240191.520:79): avc: denied { mount } for pid=370 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 19.309758][ T23] audit: type=1400 audit(1635240191.550:80): avc: denied { unmount } for pid=370 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 19.396731][ T370] cgroup: Unknown subsys name 'hugetlb' [ 19.402418][ T370] cgroup: Unknown subsys name 'rlimit' 2021/10/26 09:23:11 executed programs: 0 [ 19.466805][ T23] audit: type=1400 audit(1635240191.840:81): avc: denied { mounton } for pid=370 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 19.520043][ T23] audit: type=1400 audit(1635240191.840:82): avc: denied { mount } for pid=370 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 19.588362][ T377] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.595676][ T377] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.603064][ T377] device bridge_slave_0 entered promiscuous mode [ 19.615600][ T377] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.622679][ T377] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.630191][ T377] device bridge_slave_1 entered promiscuous mode [ 19.686422][ T380] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.693589][ T380] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.701141][ T380] device bridge_slave_0 entered promiscuous mode [ 19.708470][ T380] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.715561][ T380] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.722992][ T380] device bridge_slave_1 entered promiscuous mode [ 19.760838][ T381] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.768081][ T381] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.775746][ T381] device bridge_slave_0 entered promiscuous mode [ 19.801950][ T385] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.809192][ T385] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.816578][ T385] device bridge_slave_0 entered promiscuous mode [ 19.825554][ T381] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.832576][ T381] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.839937][ T381] device bridge_slave_1 entered promiscuous mode [ 19.850354][ T390] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.857463][ T390] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.864682][ T390] device bridge_slave_0 entered promiscuous mode [ 19.874011][ T380] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.881488][ T380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 19.888754][ T380] bridge0: port 1(bridge_slave_0) entered blocking state [ 19.895783][ T380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 19.903438][ T385] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.910698][ T385] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.918051][ T385] device bridge_slave_1 entered promiscuous mode [ 19.936405][ T390] bridge0: port 2(bridge_slave_1) entered blocking state [ 19.943429][ T390] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.950916][ T390] device bridge_slave_1 entered promiscuous mode [ 20.005603][ T377] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.012739][ T377] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.020014][ T377] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.027035][ T377] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.036295][ T383] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.043419][ T383] bridge0: port 1(bridge_slave_0) entered disabled state [ 20.050805][ T383] device bridge_slave_0 entered promiscuous mode [ 20.065781][ T383] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.072979][ T383] bridge0: port 2(bridge_slave_1) entered disabled state [ 20.080467][ T383] device bridge_slave_1 entered promiscuous mode [ 20.117465][ T390] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.124623][ T390] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.131892][ T390] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.138918][ T390] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.148766][ T381] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.156054][ T381] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.163881][ T381] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.170970][ T381] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.184256][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 20.192054][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 20.199442][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 20.206690][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 20.213784][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 20.221153][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 20.228526][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 20.235770][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 20.243266][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 20.251040][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 20.299701][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 20.308759][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.317297][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.325562][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 20.334818][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 20.343327][ T108] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.350395][ T108] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.357760][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.366089][ T108] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.373277][ T108] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.380693][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.388580][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.419532][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 20.427838][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.436439][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.444302][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 20.452668][ T108] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.455509][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 20.459703][ T108] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.475950][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 20.484020][ T108] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.491052][ T108] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.498365][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.506764][ T108] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.513765][ T108] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.521100][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.529122][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.537053][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 20.565962][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.574603][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.583106][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.607361][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 20.616072][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.624158][ T108] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.631210][ T108] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.638733][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.646777][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.654864][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 20.662374][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 20.669898][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 20.678122][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 20.686472][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 20.694613][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 20.702843][ T108] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.709861][ T108] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.717381][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.725682][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.733877][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 20.742224][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.750312][ T108] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.757332][ T108] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.764607][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 20.772839][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 20.781114][ T108] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 20.798700][ T377] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 20.811032][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 20.819866][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 20.827753][ T409] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 20.830334][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 20.853321][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 20.863519][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 20.870581][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 20.878200][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 20.886673][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 20.894892][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 20.902295][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 20.909964][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 20.918400][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 20.927063][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 20.935062][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 20.943870][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 20.952238][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 20.960882][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 20.968803][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 20.970016][ T426] KVM: debugfs: duplicate directory 426-5 [ 20.976883][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 20.990484][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.018129][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 21.026285][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.034397][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 21.040567][ T434] KVM: debugfs: duplicate directory 434-5 [ 21.042810][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.060055][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 21.069216][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.075440][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 21.077644][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 21.093763][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 21.101300][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 21.109696][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 21.117899][ T382] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.124924][ T382] bridge0: port 1(bridge_slave_0) entered forwarding state [ 21.132340][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 21.140732][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 21.149178][ T382] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.156212][ T382] bridge0: port 2(bridge_slave_1) entered forwarding state [ 21.163509][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 21.171740][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 21.179671][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 21.187627][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 21.210874][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 21.219943][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 21.228023][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 21.241386][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 21.250223][ T451] KVM: debugfs: duplicate directory 451-5 [ 21.251195][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.265871][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 21.277670][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.316842][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.328262][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.337877][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 21.347274][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 21.355062][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.363426][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 21.371938][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 21.380519][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 21.388641][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 21.396595][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 21.404642][ T382] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.440096][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 21.451156][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.460389][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 21.468566][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.518725][ C0] hrtimer: interrupt took 16654 ns [ 21.550655][ T499] KVM: debugfs: duplicate directory 499-5 [ 21.936820][ T705] cgroup: fork rejected by pids controller in /syz2 [ 21.947892][ T708] KVM: debugfs: duplicate directory 708-5 [ 22.174706][ T990] KVM: debugfs: duplicate directory 990-5 [ 22.703010][ T1469] cgroup: fork rejected by pids controller in /syz0 [ 22.717384][ T1558] ------------[ cut here ]------------ [ 22.722874][ T1558] kernel BUG at arch/x86/kvm/../../../virt/kvm/kvm_main.c:516! [ 22.731058][ T1471] KVM: debugfs: duplicate directory 1471-5 [ 22.740177][ T1549] KVM: debugfs: duplicate directory 1549-5 [ 22.750610][ T1549] ------------[ cut here ]------------ [ 22.758831][ T1549] kernel BUG at arch/x86/kvm/../../../virt/kvm/kvm_main.c:516! [ 22.788938][ T1530] ------------[ cut here ]------------ [ 22.807676][ T1549] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 22.811137][ T1530] kernel BUG at arch/x86/kvm/../../../virt/kvm/kvm_main.c:516! [ 22.813760][ T1549] CPU: 1 PID: 1549 Comm: syz-executor.1 Not tainted 5.10.75-syzkaller-01082-g234d53d2bb60 #0 [ 22.813766][ T1549] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 22.813789][ T1549] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 22.813806][ T1549] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 22.868357][ T1549] RSP: 0018:ffffc90002e077d0 EFLAGS: 00010293 [ 22.874395][ T1549] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff8881152b93c0 [ 22.882339][ T1549] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 22.890299][ T1549] RBP: ffffc90002e077f0 R08: ffffffff8108676a R09: 0000000000000003 [ 22.898261][ T1549] R10: fffff520005c0ee9 R11: 0000000000000004 R12: dffffc0000000000 [ 22.906211][ T1549] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 22.914163][ T1549] FS: 00007fd7b2d0b700(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 22.923061][ T1549] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 22.929614][ T1549] CR2: 00007ffc0e9677c0 CR3: 0000000124354000 CR4: 00000000003526a0 [ 22.937571][ T1549] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 22.945512][ T1549] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 22.953468][ T1549] Call Trace: [ 22.956733][ T1549] ? kvm_mmu_notifier_invalidate_range_start+0x300/0x300 [ 22.963724][ T1549] __mmu_notifier_invalidate_range_end+0x246/0x300 [ 22.970195][ T1549] wp_page_copy+0xe51/0x1750 [ 22.974755][ T1549] ? copy_user_highpage+0x1b0/0x1b0 [ 22.979925][ T1549] ? __kasan_check_write+0x14/0x20 [ 22.985004][ T1549] ? _raw_spin_trylock+0xcb/0x1a0 [ 22.990016][ T1549] ? irq_exit_rcu+0x9/0x10 [ 22.994417][ T1549] ? sysvec_apic_timer_interrupt+0xcb/0xe0 [ 23.000194][ T1549] do_wp_page+0x73b/0xc80 [ 23.004501][ T1549] handle_pte_fault+0x575/0xac0 [ 23.009325][ T1549] ___handle_speculative_fault+0xd97/0x17d0 [ 23.015187][ T1549] ? __handle_speculative_fault+0x2a0/0x2a0 [ 23.021146][ T1549] ? sysvec_apic_timer_interrupt+0xcb/0xe0 [ 23.026929][ T1549] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 23.033072][ T1549] ? _raw_read_unlock+0x25/0x40 [ 23.037904][ T1549] ? get_vma+0x14e/0x160 [ 23.042120][ T1549] __handle_speculative_fault+0xc3/0x2a0 [ 23.047721][ T1549] do_user_addr_fault+0x8c9/0xd70 [ 23.052715][ T1549] ? trace_raw_output_x86_exceptions+0x100/0x100 [ 23.059010][ T1549] ? asm_sysvec_apic_timer_interrupt+0xa/0x20 [ 23.065069][ T1549] ? switch_fpu_return+0xe/0x10 [ 23.069890][ T1549] exc_page_fault+0x98/0x2d0 [ 23.074450][ T1549] ? asm_exc_page_fault+0x8/0x30 [ 23.079359][ T1549] asm_exc_page_fault+0x1e/0x30 [ 23.084300][ T1549] RIP: 0033:0x7fd7b2d3b5b5 [ 23.088688][ T1549] Code: 4b 48 48 8b 53 40 48 8b 73 38 48 8b 7b 30 48 85 c0 74 62 48 83 ec 08 ff 73 70 ff 73 68 ff 73 60 ff d0 48 83 c4 20 48 8b 0c 24 <48> 89 81 80 00 00 00 e9 f5 fd ff ff 0f 1f 80 00 00 00 00 48 8b 04 [ 23.108275][ T1549] RSP: 002b:00007fd7b2d0b1a0 EFLAGS: 00010203 [ 23.114312][ T1549] RAX: 0000000000000005 RBX: 00007fd7b2e97f60 RCX: 00007fd7b2e97f60 [ 23.122254][ T1549] RDX: 0000000000000000 RSI: 00007fd7b2d3b3ae RDI: 0000000000000004 [ 23.130195][ T1549] RBP: 00007fd7b2deee8f R08: 0000000000000000 R09: 0000000000000000 [ 23.138137][ T1549] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 23.146079][ T1549] R13: 00007ffc0e891a7f R14: 00007fd7b2d0b300 R15: 0000000000022000 [ 23.154040][ T1549] Modules linked in: [ 23.157950][ T1530] invalid opcode: 0000 [#2] PREEMPT SMP KASAN [ 23.164043][ T1530] CPU: 0 PID: 1530 Comm: syz-executor.1 Tainted: G D 5.10.75-syzkaller-01082-g234d53d2bb60 #0 [ 23.175583][ T1530] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 23.185649][ T1530] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 23.192915][ T1530] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 23.212504][ T1530] RSP: 0000:ffffc90002d777d0 EFLAGS: 00010293 [ 23.218555][ T1530] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff888124e662c0 [ 23.226509][ T1530] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 23.234553][ T1530] RBP: ffffc90002d777f0 R08: ffffffff8108676a R09: 0000000000000003 [ 23.242509][ T1530] R10: fffff520005aeee9 R11: 0000000000000004 R12: dffffc0000000000 [ 23.250563][ T1530] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 23.258522][ T1530] FS: 00005555564ed400(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.267533][ T1530] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.274100][ T1530] CR2: 00007f9f15e98ef0 CR3: 0000000124354000 CR4: 00000000003526b0 [ 23.282058][ T1530] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.290013][ T1530] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.298097][ T1530] Call Trace: [ 23.301383][ T1530] ? kvm_mmu_notifier_invalidate_range_start+0x300/0x300 [ 23.308392][ T1530] __mmu_notifier_invalidate_range_end+0x246/0x300 [ 23.314882][ T1530] wp_page_copy+0xe51/0x1750 [ 23.319466][ T1530] ? copy_user_highpage+0x1b0/0x1b0 [ 23.324655][ T1530] ? __kasan_check_write+0x14/0x20 [ 23.329756][ T1530] ? _raw_spin_trylock+0xcb/0x1a0 [ 23.334767][ T1530] do_wp_page+0x73b/0xc80 [ 23.339084][ T1530] handle_pte_fault+0x575/0xac0 [ 23.343943][ T1530] ___handle_speculative_fault+0xd97/0x17d0 [ 23.349822][ T1530] ? __handle_speculative_fault+0x2a0/0x2a0 [ 23.355712][ T1530] ? __kasan_check_write+0x14/0x20 [ 23.360814][ T1530] ? _raw_read_unlock+0x25/0x40 [ 23.365659][ T1530] ? get_vma+0x14e/0x160 [ 23.369983][ T1530] __handle_speculative_fault+0xc3/0x2a0 [ 23.375609][ T1530] do_user_addr_fault+0x8c9/0xd70 [ 23.380617][ T1530] ? trace_raw_output_x86_exceptions+0x100/0x100 [ 23.386931][ T1530] exc_page_fault+0x98/0x2d0 [ 23.391506][ T1530] ? asm_exc_page_fault+0x8/0x30 [ 23.396260][ T1647] cgroup: fork rejected by pids controller in [ 23.396425][ T1530] asm_exc_page_fault+0x1e/0x30 [ 23.396429][ T1647] /syz4 [ 23.402564][ T1530] RIP: 0033:0x7fd7b2d94a4b [ 23.414527][ T1530] Code: 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 bc ff ff ff f7 d8 <64> 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 [ 23.434293][ T1530] RSP: 002b:00007ffc0e891af8 EFLAGS: 00010213 [ 23.440352][ T1530] RAX: 000000000000006e RBX: 0000000000000032 RCX: ffffffffffffffbc [ 23.448407][ T1530] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fd7b2e9802c [ 23.456366][ T1530] RBP: 00007fd7b2e9802c R08: 00007ffc0e9630b8 R09: 0000000000000000 [ 23.464346][ T1530] R10: 00007ffc0e891bd0 R11: 0000000000000246 R12: 00000000000058a2 [ 23.472302][ T1530] R13: 00000000000003e8 R14: 00007fd7b2e97f60 R15: 0000000000005870 [ 23.480526][ T1530] Modules linked in: [ 23.490621][ T1558] invalid opcode: 0000 [#3] PREEMPT SMP KASAN [ 23.496694][ T1558] CPU: 0 PID: 1558 Comm: syz-executor.1 Tainted: G D 5.10.75-syzkaller-01082-g234d53d2bb60 #0 [ 23.508214][ T1558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 23.518269][ T1558] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 23.525535][ T1558] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 23.545211][ T1558] RSP: 0000:ffffc90002e677d0 EFLAGS: 00010293 [ 23.551269][ T1558] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff888115634f00 [ 23.559230][ T1558] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 23.567203][ T1558] RBP: ffffc90002e677f0 R08: ffffffff8108676a R09: 0000000000000003 [ 23.575173][ T1558] R10: fffff520005ccee9 R11: 0000000000000004 R12: dffffc0000000000 [ 23.583169][ T1558] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 23.591136][ T1558] FS: 00007fd7b2cea700(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 23.600542][ T1558] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 23.607119][ T1558] CR2: 00007ffda71797c0 CR3: 0000000124354000 CR4: 00000000003526b0 [ 23.615088][ T1558] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 23.623051][ T1558] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 23.631092][ T1558] Call Trace: [ 23.634390][ T1558] ? kvm_mmu_notifier_invalidate_range_start+0x300/0x300 [ 23.641417][ T1558] __mmu_notifier_invalidate_range_end+0x246/0x300 [ 23.647907][ T1558] wp_page_copy+0xe51/0x1750 [ 23.652487][ T1558] ? copy_user_highpage+0x1b0/0x1b0 [ 23.657670][ T1558] ? __kasan_check_write+0x14/0x20 [ 23.662766][ T1558] ? _raw_spin_trylock+0xcb/0x1a0 [ 23.667864][ T1558] ? update_load_avg+0x45c/0xa00 [ 23.672786][ T1558] do_wp_page+0x73b/0xc80 [ 23.677104][ T1558] handle_pte_fault+0x575/0xac0 [ 23.681943][ T1558] ___handle_speculative_fault+0xd97/0x17d0 [ 23.687820][ T1558] ? __handle_speculative_fault+0x2a0/0x2a0 [ 23.693699][ T1558] ? to_ratio+0x30/0x30 [ 23.697841][ T1558] ? __kasan_check_write+0x14/0x20 [ 23.702938][ T1558] ? put_pid+0xe1/0x120 [ 23.707075][ T1558] ? _raw_read_unlock+0x25/0x40 [ 23.711904][ T1558] ? get_vma+0x14e/0x160 [ 23.716134][ T1558] __handle_speculative_fault+0xc3/0x2a0 [ 23.721757][ T1558] do_user_addr_fault+0x8c9/0xd70 [ 23.726766][ T1558] ? kernel_thread+0x1e0/0x1e0 [ 23.731513][ T1558] ? trace_raw_output_x86_exceptions+0x100/0x100 [ 23.737862][ T1558] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 23.743922][ T1558] ? exit_to_user_mode_prepare+0x3b/0xe0 [ 23.749540][ T1558] exc_page_fault+0x98/0x2d0 [ 23.754201][ T1558] ? asm_exc_page_fault+0x8/0x30 [ 23.759123][ T1558] asm_exc_page_fault+0x1e/0x30 [ 23.763957][ T1558] RIP: 0033:0x7fd7b2d3b3b6 [ 23.768361][ T1558] Code: 00 00 00 64 f0 83 04 25 b8 ff ff ff 01 64 48 8b 04 25 00 00 00 00 48 8d b8 f0 fe ff ff e8 32 33 01 00 85 c0 0f 84 ba 01 00 00 <64> f0 83 2c 25 b8 ff ff ff 01 e8 3b d1 00 00 48 8b 0c 24 8b 00 48 [ 23.781948][ T1549] ---[ end trace 3a0917369529d7d5 ]--- [ 23.788041][ T1558] RSP: 002b:00007fd7b2cea1a0 EFLAGS: 00010207 [ 23.788053][ T1558] RAX: 000000000000004e RBX: 00007fd7b2e98020 RCX: 00007fd7b2e98020 [ 23.788058][ T1558] RDX: 0000000000000000 RSI: 00007fd7b2d3b3ae RDI: 0000000000000000 [ 23.788064][ T1558] RBP: 00007fd7b2deee8f R08: 0000000000000000 R09: 0000000000000000 [ 23.788069][ T1558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 23.788075][ T1558] R13: 00007ffc0e891a7f R14: 00007fd7b2cea300 R15: 0000000000022000 [ 23.788081][ T1558] Modules linked in: [ 23.790750][ T1558] ---[ end trace 3a0917369529d7d6 ]--- [ 23.850274][ T1530] ---[ end trace 3a0917369529d7d7 ]--- [ 23.855799][ T1549] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 23.863167][ T1530] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 23.870512][ T1549] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 23.890346][ T1530] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 23.910118][ T1549] RSP: 0018:ffffc90002e077d0 EFLAGS: 00010293 [ 23.918999][ T1530] RSP: 0018:ffffc90002e077d0 EFLAGS: 00010293 [ 23.925111][ T1558] RIP: 0010:kvm_mmu_notifier_invalidate_range_end+0xb2/0xc0 [ 23.932572][ T1549] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff8881152b93c0 [ 23.940693][ T1530] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff8881152b93c0 [ 23.948749][ T1558] Code: 49 8b 1e 48 c7 c7 ff ff ff ff 48 89 de e8 46 96 64 00 48 85 db 78 0e e8 7c 91 64 00 5b 41 5c 41 5e 41 5f 5d c3 e8 6e 91 64 00 <0f> 0b 66 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 [ 23.968483][ T1549] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 23.976971][ T1530] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 23.984984][ T1549] RBP: ffffc90002e077f0 R08: ffffffff8108676a R09: 0000000000000003 [ 23.993072][ T1530] RBP: ffffc90002e077f0 R08: ffffffff8108676a R09: 0000000000000003 [ 24.001245][ T1549] R10: fffff520005c0ee9 R11: 0000000000000004 R12: dffffc0000000000 [ 24.009395][ T1558] RSP: 0018:ffffc90002e077d0 EFLAGS: 00010293 [ 24.015509][ T1530] R10: fffff520005c0ee9 R11: 0000000000000004 R12: dffffc0000000000 [ 24.023505][ T1558] RAX: ffffffff81086782 RBX: ffffffffffffffff RCX: ffff8881152b93c0 [ 24.031664][ T1549] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 24.039812][ T1530] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 24.047883][ T1558] RDX: 0000000000000000 RSI: ffffffffffffffff RDI: ffffffffffffffff [ 24.056013][ T1549] FS: 00007fd7b2d0b700(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.065019][ T1530] FS: 00005555564ed400(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.074188][ T1558] RBP: ffffc90002e077f0 R08: ffffffff8108676a R09: 0000000000000003 [ 24.082427][ T1549] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.089189][ T1530] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 24.095865][ T1558] R10: fffff520005c0ee9 R11: 0000000000000004 R12: dffffc0000000000 [ 24.103874][ T1549] CR2: 00007ffda71797c0 CR3: 0000000124354000 CR4: 00000000003526b0 [ 24.112036][ T1530] CR2: 00007ffda71797c0 CR3: 0000000124354000 CR4: 00000000003526b0 [ 24.120170][ T1558] R13: dffffc0000000000 R14: ffffc90002efd160 R15: ffffc90002ef4000 [ 24.128288][ T1549] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.136420][ T1530] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 24.144414][ T1558] FS: 00007fd7b2cea700(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 24.153474][ T1549] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.163540][ T1530] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 24.171649][ T1549] Kernel panic - not syncing: Fatal exception [ 24.177765][ T1549] Kernel Offset: disabled [ 24.182188][ T1549] Rebooting in 86400 seconds..