last executing test programs: 53.073741482s ago: executing program 1 (id=544): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x400454da, 0x0) 34.819836123s ago: executing program 0 (id=546): munmap(&(0x7f0000ad4000/0x1000)=nil, 0x1000) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) openat$kvm(0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, 0x0) r3 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r3, 0x4018aee2, &(0x7f0000000100)=@attr_arm64={0x0, 0x5, 0x0, 0x0}) 30.913906952s ago: executing program 1 (id=547): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x101900, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000100)="a55afac482ae9086510a1cfeebb372c746b69b695f50f0fe4a42e0db94adb9afe18edc51d30da60113b8f98bcdfe68bbc48c525a1b3867d3b43108ff914877781493d36fc97b8d2f", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x8600, 0x408) 27.552192162s ago: executing program 0 (id=548): r0 = openat$kvm(0x0, &(0x7f0000000240), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f00000001c0)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000100)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000380)}) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f00000000c0)={0x5, 0x1, 0x0, 0x1000, &(0x7f0000000000/0x1000)=nil}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000002c0)=@attr_other={0x0, 0x8, 0x108, &(0x7f0000000000)=0xc000000000000000}) openat$kvm(0x0, 0x0, 0x0, 0x0) write$eventfd(0xffffffffffffffff, &(0x7f0000000000)=0xfffffffffffffffb, 0x8) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f0000000140)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) 23.671741269s ago: executing program 1 (id=549): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x0, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000100)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67301ce16f8f1f449a7a835673312b54ebb2aa8cc869d22627e7000000000000000000001f000e00", 0x0, 0x48) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x121218, 0x0) 20.602819327s ago: executing program 0 (id=550): ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xd7, 0x80000001}) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x40305829, &(0x7f0000000100)=@attr_other={0x0, 0xb, 0x9f01, &(0x7f0000000180)=0xfffffffffffffffc}) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_GET_VCPU_MMAP_SIZE(0xffffffffffffffff, 0xae04) 18.165473475s ago: executing program 1 (id=551): r0 = openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x101080, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r4 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r3, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r4, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r3, 0x0) r5 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a3ef2, 0x0) ioctl$KVM_CREATE_VM(r5, 0x40086602, 0x20000000) 14.315362379s ago: executing program 0 (id=552): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x2, 0x4f832, 0xffffffffffffffff, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r2, 0x40087602, 0x0) r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_IOEVENTFD(r3, 0x4040ae79, 0x0) 9.295910293s ago: executing program 1 (id=553): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x300000c, 0x4f832, 0xffffffffffffffff, 0x0) openat$kvm(0xffffffffffffff9c, 0x0, 0x408e02, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000080)={0x5, 0x1}) openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) ioctl$KVM_GET_ONE_REG(r2, 0x4010aeab, &(0x7f0000000100)=@arm64_core={0x603000000010003e, &(0x7f0000000000)=0x6}) openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40800, 0x0) 7.272120077s ago: executing program 0 (id=554): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0) ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) eventfd2(0x10, 0x80001) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, 0x0) ioctl$KVM_IOEVENTFD(0xffffffffffffffff, 0x4040ae79, 0x0) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x1) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x80) 3.826946737s ago: executing program 1 (id=555): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x400454d8, 0x0) 0s ago: executing program 0 (id=556): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm$arm64(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu$arm64(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) kernel console output (not intermixed with test programs): [ 366.900835][ T3129] 8021q: adding VLAN 0 to HW filter on device bond0 [ 414.975167][ T3129] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:64888' (ED25519) to the list of known hosts. [ 577.989850][ T25] audit: type=1400 audit(577.190:59): avc: denied { name_bind } for pid=3288 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 579.810250][ T25] audit: type=1400 audit(579.030:60): avc: denied { execute } for pid=3289 comm="sh" name="syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 579.842964][ T25] audit: type=1400 audit(579.040:61): avc: denied { execute_no_trans } for pid=3289 comm="sh" path="/syz-executor" dev="vda" ino=1867 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 598.035914][ T25] audit: type=1400 audit(597.250:62): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1869 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 598.071006][ T25] audit: type=1400 audit(597.280:63): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 598.153895][ T3289] cgroup: Unknown subsys name 'net' [ 598.204186][ T25] audit: type=1400 audit(597.420:64): avc: denied { unmount } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 598.648663][ T3289] cgroup: Unknown subsys name 'cpuset' [ 598.745504][ T3289] cgroup: Unknown subsys name 'rlimit' [ 599.709242][ T25] audit: type=1400 audit(598.920:65): avc: denied { setattr } for pid=3289 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 599.736410][ T25] audit: type=1400 audit(598.950:66): avc: denied { create } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 599.750181][ T25] audit: type=1400 audit(598.960:67): avc: denied { write } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 599.776520][ T25] audit: type=1400 audit(598.990:68): avc: denied { module_request } for pid=3289 comm="syz-executor" kmod="net-pf-16-proto-16-family-nl802154" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 600.295009][ T25] audit: type=1400 audit(599.510:69): avc: denied { read } for pid=3289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 600.354764][ T25] audit: type=1400 audit(599.570:70): avc: denied { mounton } for pid=3289 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 600.375482][ T25] audit: type=1400 audit(599.590:71): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 601.541810][ T3293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 601.774720][ T3289] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 647.344239][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 647.355050][ T25] audit: type=1400 audit(646.560:76): avc: denied { execmem } for pid=3294 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 721.291894][ T25] audit: type=1400 audit(720.510:77): avc: denied { read } for pid=3296 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 721.305814][ T25] audit: type=1400 audit(720.520:78): avc: denied { open } for pid=3296 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 721.392219][ T25] audit: type=1400 audit(720.610:79): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 722.709549][ T25] audit: type=1400 audit(721.920:80): avc: denied { sys_module } for pid=3296 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 746.511850][ T3296] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 746.799542][ T3296] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 747.104119][ T3297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 747.404003][ T3297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 762.672584][ T3296] hsr_slave_0: entered promiscuous mode [ 762.726447][ T3296] hsr_slave_1: entered promiscuous mode [ 764.463066][ T3297] hsr_slave_0: entered promiscuous mode [ 764.515017][ T3297] hsr_slave_1: entered promiscuous mode [ 764.572759][ T3297] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 764.589931][ T3297] Cannot create hsr debugfs directory [ 769.862750][ T3296] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 770.338270][ T3296] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 770.620636][ T3296] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 770.881431][ T3296] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 772.243420][ T3297] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 772.411782][ T3297] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 772.560610][ T3297] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 772.713682][ T3297] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 785.436412][ T3296] 8021q: adding VLAN 0 to HW filter on device bond0 [ 787.686500][ T3297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 842.573451][ T3296] veth0_vlan: entered promiscuous mode [ 843.053190][ T3296] veth1_vlan: entered promiscuous mode [ 844.822985][ T3297] veth0_vlan: entered promiscuous mode [ 845.016154][ T3296] veth0_macvtap: entered promiscuous mode [ 845.411157][ T3296] veth1_macvtap: entered promiscuous mode [ 845.710575][ T3297] veth1_vlan: entered promiscuous mode [ 847.592098][ T3296] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.600854][ T3296] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.608446][ T3296] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 847.614996][ T3296] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 848.429503][ T3297] veth0_macvtap: entered promiscuous mode [ 848.978098][ T3297] veth1_macvtap: entered promiscuous mode [ 850.324660][ T25] audit: type=1400 audit(849.430:81): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 850.550803][ T25] audit: type=1400 audit(849.750:82): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.s2vn0s/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 850.823232][ T25] audit: type=1400 audit(850.030:83): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 851.115921][ T25] audit: type=1400 audit(850.330:84): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.s2vn0s/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 851.284167][ T25] audit: type=1400 audit(850.500:85): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/syzkaller.s2vn0s/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=3272 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 851.326582][ T3297] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.352805][ T3297] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.366384][ T3297] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.390272][ T3297] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 851.912616][ T25] audit: type=1400 audit(851.130:86): avc: denied { unmount } for pid=3296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 852.165803][ T25] audit: type=1400 audit(851.360:87): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=1546 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 852.318350][ T25] audit: type=1400 audit(851.520:88): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="gadgetfs" ino=3284 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 852.612802][ T25] audit: type=1400 audit(851.810:89): avc: denied { mount } for pid=3296 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 852.652348][ T25] audit: type=1400 audit(851.860:90): avc: denied { mounton } for pid=3296 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 854.054432][ T3296] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 868.373069][ T25] kauditd_printk_skb: 4 callbacks suppressed [ 868.399296][ T25] audit: type=1400 audit(867.550:95): avc: denied { read } for pid=3444 comm="syz.0.5" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 868.408136][ T25] audit: type=1400 audit(867.590:96): avc: denied { open } for pid=3444 comm="syz.0.5" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 868.862801][ T25] audit: type=1400 audit(868.060:97): avc: denied { ioctl } for pid=3444 comm="syz.0.5" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0x1500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 872.933716][ T25] audit: type=1400 audit(872.150:98): avc: denied { append } for pid=3448 comm="syz.0.7" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 935.802176][ T25] audit: type=1400 audit(935.010:99): avc: denied { write } for pid=3498 comm="syz.1.32" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1000.242417][ T25] audit: type=1400 audit(999.450:100): avc: denied { map } for pid=3547 comm="syz.1.54" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1000.328281][ T25] audit: type=1400 audit(999.510:101): avc: denied { execute } for pid=3547 comm="syz.1.54" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1009.485250][ T25] audit: type=1400 audit(1008.690:102): avc: denied { setattr } for pid=3553 comm="syz.0.57" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1018.158611][ T25] audit: type=1400 audit(1017.360:103): avc: denied { execute } for pid=3559 comm="syz.1.60" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3683 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1505.379775][ T25] audit: type=1400 audit(1504.590:104): avc: denied { ioctl } for pid=3903 comm="syz.1.199" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0xb704 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 2982.271419][ T4901] Unable to handle kernel paging request at virtual address ffef800000000001 [ 2982.328662][ T4901] KASAN: maybe wild-memory-access in range [0xff00000000000010-0xff0000000000001f] [ 2982.373675][ T4901] Mem abort info: [ 2982.374874][ T4901] ESR = 0x0000000096000004 [ 2982.375688][ T4901] EC = 0x25: DABT (current EL), IL = 32 bits [ 2982.376406][ T4901] SET = 0, FnV = 0 [ 2982.419412][ T25] audit: type=1400 audit(2981.610:105): avc: denied { read } for pid=3088 comm="syslogd" name="log" dev="vda" ino=1857 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 2982.423622][ T25] audit: type=1400 audit(2981.630:106): avc: denied { search } for pid=3088 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 SYZFAIL: failed to recv rpc [ 2982.489748][ T4901] EA = 0, S1PTW = 0 fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor) [ 2982.563126][ T4901] FSC = 0x04: level 0 translation fault [ 2982.571724][ T4901] Data abort info: [ 2982.572569][ T4901] ISV = 0, ISS = 0x00000004, ISS2 = 0x00000000 [ 2982.573278][ T4901] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 2982.574015][ T4901] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 2982.574907][ T4901] [ffef800000000001] address between user and kernel address ranges [ 2982.588628][ T25] audit: type=1400 audit(2981.780:107): avc: denied { write } for pid=3088 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2982.621815][ T25] audit: type=1400 audit(2981.820:108): avc: denied { add_name } for pid=3088 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 2982.660933][ T25] audit: type=1400 audit(2981.870:109): avc: denied { create } for pid=3088 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 2982.736536][ T25] audit: type=1400 audit(2981.950:110): avc: denied { append open } for pid=3088 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 2982.743859][ T4901] Internal error: Oops: 0000000096000004 [#1] SMP [ 2982.748046][ T4901] Modules linked in: [ 2982.750285][ T4901] CPU: 0 UID: 0 PID: 4901 Comm: syz.0.556 Not tainted 6.15.0-rc4-syzkaller-gc4e91ea0cc7e #0 PREEMPT [ 2982.752428][ T4901] Hardware name: linux,dummy-virt (DT) [ 2982.753906][ T4901] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 2982.755585][ T4901] pc : vgic_its_save_tables_v0+0x3e0/0xe38 [ 2982.758085][ T4901] lr : vgic_its_save_tables_v0+0x37c/0xe38 [ 2982.759382][ T4901] sp : ffff80008fe57bf0 [ 2982.760311][ T4901] x29: ffff80008fe57c70 x28: 4ff000001d14a6f0 x27: 0000000000000000 [ 2982.762290][ T4901] x26: 0000000000000040 x25: 00000000fffffdfd x24: e7f000001d644d40 [ 2982.764161][ T4901] x23: 4ff000001d14a638 x22: 38f000001d644d90 x21: 38f000001d644d90 [ 2982.765965][ T4901] x20: a4f000001d1aa540 x19: efff800000000000 x18: 00000000000000ff [ 2982.767808][ T4901] x17: 0000000000000048 x16: ffff800080011d9c x15: 0000000020000300 [ 2982.769625][ T4901] x14: 0000000000000002 x13: fff000000e3e0008 x12: 0ff0000000000001 [ 2982.771500][ T4901] x11: 0000000000000010 x10: 0000000000002000 x9 : 0000000000000000 [ 2982.773496][ T4901] x8 : 0000000000000000 x7 : ffff80008021fbf4 x6 : 0000000000000000 [ 2982.775229][ T4901] x5 : 0000000000000000 x4 : 0000000000000001 x3 : ffff800080158ffc [ 2982.777037][ T4901] x2 : ffff80008021fc70 x1 : 38f000001d644d90 x0 : 0000000000000000 [ 2982.779015][ T4901] Call trace: [ 2982.780074][ T4901] vgic_its_save_tables_v0+0x3e0/0xe38 (P) [ 2982.781650][ T4901] vgic_its_set_attr+0x544/0x828 [ 2982.782837][ T4901] kvm_device_ioctl+0x354/0x418 [ 2982.783978][ T4901] __arm64_sys_ioctl+0x18c/0x244 [ 2982.785259][ T4901] invoke_syscall+0x90/0x2b4 [ 2982.786263][ T4901] el0_svc_common+0x180/0x2f4 [ 2982.787410][ T4901] do_el0_svc+0x58/0x74 [ 2982.788472][ T4901] el0_svc+0x58/0x134 [ 2982.789553][ T4901] el0t_64_sync_handler+0x78/0x108 [ 2982.790738][ T4901] el0t_64_sync+0x198/0x19c [ 2982.792376][ T4901] Code: 9100412b b2481d69 d344fd2c d378fd69 (386c6a6c) [ 2982.794335][ T4901] ---[ end trace 0000000000000000 ]--- [ 2982.796255][ T4901] Kernel panic - not syncing: Oops: Fatal exception [ 2982.798832][ T4901] Kernel Offset: disabled [ 2982.799994][ T4901] CPU features: 0x0000,000001a0,017de6f8,837ffe1f [ 2982.801501][ T4901] Memory Limit: none [ 2982.803207][ T4901] Rebooting in 86400 seconds.. VM DIAGNOSIS: 18:16:52 Registers: info registers vcpu 0 CPU#0 PC=ffff80008066f200 X00=0000000000000000 X01=0000000000000001 X02=ffff800080007a28 X03=0000000000000002 X04=0000000000000000 X05=0000000000000000 X06=0000000000000000 X07=ffff8000852db5f8 X08=7df000000dc8939c X09=0000000000000000 X10=0000000000ff0100 X11=000000000000007d X12=fffe800000dc8938 X13=000000000000a888 X14=0000000000000000 X15=ffff800080007690 X16=ffff800080010cdc X17=00000000000000af X18=00000000000000ff X19=efff800000000000 X20=0000000000000001 X21=0000000000000001 X22=0000000000000000 X23=ffff800087b58000 X24=0000000000000000 X25=000000007ffffffe X26=0000000000000000 X27=7df000000dc893d0 X28=000000000000007d X29=ffff8000800079b0 X30=ffff8000852dfef4 SP=ffff800080007850 PSTATE=60402009 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=0000fffff8e77dc0:fd8b5cf1ae5e6800 Z02=0000fffff8e77da0:ffffff80ffffffd8 Z03=0000fffff8e77e50:0000fffff8e77e50 Z04=0000fffff8e77e50:0000ffffadd37888 Z05=0000fffff8e77e20:0000fffff8e77e50 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000fffff8e78070:0000fffff8e78070 Z17=ffffff80ffffffd0:0000fffff8e78040 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000