[ 116.393088][ T33] cfg80211: failed to load regulatory.db Warning: Permanently added '[localhost]:20225' (ECDSA) to the list of known hosts. [ 119.952363][ T38] audit: type=1400 audit(1669624296.902:75): avc: denied { execute } for pid=3717 comm="sh" name="syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 119.975989][ T38] audit: type=1400 audit(1669624296.902:76): avc: denied { execute_no_trans } for pid=3717 comm="sh" path="/syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 2022/11/28 08:31:37 fuzzer started 2022/11/28 08:31:38 dialing manager at localhost:45177 [ 132.079170][ T38] audit: type=1400 audit(1669624309.032:77): avc: denied { mounton } for pid=3730 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 132.100258][ T38] audit: type=1400 audit(1669624309.042:78): avc: denied { mount } for pid=3730 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 132.102878][ T3730] cgroup: Unknown subsys name 'net' [ 132.168007][ T38] audit: type=1400 audit(1669624309.122:79): avc: denied { unmount } for pid=3730 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 132.434183][ T3730] cgroup: Unknown subsys name 'rlimit' [ 132.584148][ T38] audit: type=1400 audit(1669624309.532:80): avc: denied { mounton } for pid=3730 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 2022/11/28 08:31:49 syscalls: 3833 2022/11/28 08:31:49 code coverage: enabled 2022/11/28 08:31:49 comparison tracing: enabled 2022/11/28 08:31:49 extra coverage: enabled 2022/11/28 08:31:49 delay kcov mmap: enabled 2022/11/28 08:31:49 setuid sandbox: enabled 2022/11/28 08:31:49 namespace sandbox: enabled 2022/11/28 08:31:49 Android sandbox: enabled 2022/11/28 08:31:49 fault injection: enabled 2022/11/28 08:31:49 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2022/11/28 08:31:49 net packet injection: enabled 2022/11/28 08:31:49 net device setup: enabled 2022/11/28 08:31:49 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/11/28 08:31:49 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/11/28 08:31:49 NIC VF setup: PCI device 0000:00:11.0 is not available [ 132.627328][ T38] audit: type=1400 audit(1669624309.532:81): avc: denied { mount } for pid=3730 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 2022/11/28 08:31:49 USB emulation: enabled 2022/11/28 08:31:49 hci packet injection: enabled [ 132.655635][ T38] audit: type=1400 audit(1669624309.542:82): avc: denied { setattr } for pid=3730 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=763 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 2022/11/28 08:31:49 wifi device emulation: enabled 2022/11/28 08:31:49 802.15.4 emulation: enabled [ 132.681830][ T38] audit: type=1400 audit(1669624309.542:83): avc: denied { create } for pid=3730 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 2022/11/28 08:31:49 fetching corpus: 0, signal 0/2000 (executing program) [ 132.718988][ T38] audit: type=1400 audit(1669624309.542:84): avc: denied { write } for pid=3730 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 132.762080][ T38] audit: type=1400 audit(1669624309.552:85): avc: denied { read } for pid=3730 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 2022/11/28 08:31:50 fetching corpus: 50, signal 48557/52135 (executing program) 2022/11/28 08:31:50 fetching corpus: 95, signal 71755/76795 (executing program) 2022/11/28 08:31:51 fetching corpus: 143, signal 84766/91259 (executing program) 2022/11/28 08:31:52 fetching corpus: 192, signal 98921/106715 (executing program) 2022/11/28 08:31:52 fetching corpus: 242, signal 108641/117701 (executing program) 2022/11/28 08:31:53 fetching corpus: 292, signal 115989/126312 (executing program) 2022/11/28 08:31:53 fetching corpus: 340, signal 122863/134470 (executing program) 2022/11/28 08:31:54 fetching corpus: 389, signal 131473/144211 (executing program) 2022/11/28 08:31:55 fetching corpus: 437, signal 135226/149174 (executing program) 2022/11/28 08:31:55 fetching corpus: 487, signal 139334/154487 (executing program) 2022/11/28 08:31:56 fetching corpus: 537, signal 147398/163493 (executing program) 2022/11/28 08:31:56 fetching corpus: 583, signal 151379/168573 (executing program) 2022/11/28 08:31:57 fetching corpus: 633, signal 156576/174727 (executing program) 2022/11/28 08:31:58 fetching corpus: 680, signal 161668/180775 (executing program) 2022/11/28 08:31:58 fetching corpus: 725, signal 166731/186759 (executing program) 2022/11/28 08:31:59 fetching corpus: 773, signal 172620/193470 (executing program) 2022/11/28 08:31:59 fetching corpus: 821, signal 176664/198415 (executing program) 2022/11/28 08:32:00 fetching corpus: 869, signal 180688/203280 (executing program) 2022/11/28 08:32:01 fetching corpus: 919, signal 183899/207387 (executing program) 2022/11/28 08:32:01 fetching corpus: 965, signal 186465/210894 (executing program) 2022/11/28 08:32:02 fetching corpus: 1014, signal 190402/215615 (executing program) 2022/11/28 08:32:02 fetching corpus: 1057, signal 193114/219194 (executing program) 2022/11/28 08:32:03 fetching corpus: 1107, signal 195783/222735 (executing program) 2022/11/28 08:32:03 fetching corpus: 1154, signal 198307/226085 (executing program) 2022/11/28 08:32:04 fetching corpus: 1203, signal 201693/230233 (executing program) 2022/11/28 08:32:05 fetching corpus: 1251, signal 205542/234720 (executing program) 2022/11/28 08:32:05 fetching corpus: 1301, signal 208713/238602 (executing program) 2022/11/28 08:32:06 fetching corpus: 1351, signal 210574/241228 (executing program) 2022/11/28 08:32:06 fetching corpus: 1401, signal 214476/245659 (executing program) 2022/11/28 08:32:07 fetching corpus: 1450, signal 216504/248475 (executing program) 2022/11/28 08:32:07 fetching corpus: 1500, signal 219706/252238 (executing program) 2022/11/28 08:32:08 fetching corpus: 1548, signal 222701/255827 (executing program) 2022/11/28 08:32:08 fetching corpus: 1596, signal 224797/258569 (executing program) [ 152.221392][ T1369] ieee802154 phy0 wpan0: encryption failed: -22 [ 152.234396][ T1369] ieee802154 phy1 wpan1: encryption failed: -22 2022/11/28 08:32:09 fetching corpus: 1645, signal 227076/261469 (executing program) 2022/11/28 08:32:10 fetching corpus: 1694, signal 229673/264618 (executing program) 2022/11/28 08:32:10 fetching corpus: 1744, signal 231761/267298 (executing program) 2022/11/28 08:32:11 fetching corpus: 1794, signal 234387/270434 (executing program) 2022/11/28 08:32:11 fetching corpus: 1843, signal 237063/273614 (executing program) 2022/11/28 08:32:12 fetching corpus: 1890, signal 239854/276850 (executing program) 2022/11/28 08:32:12 fetching corpus: 1938, signal 243265/280493 (executing program) 2022/11/28 08:32:13 fetching corpus: 1986, signal 247758/285054 (executing program) 2022/11/28 08:32:13 fetching corpus: 2036, signal 251410/288917 (executing program) 2022/11/28 08:32:14 fetching corpus: 2083, signal 252693/290842 (executing program) 2022/11/28 08:32:14 fetching corpus: 2132, signal 254889/293438 (executing program) 2022/11/28 08:32:15 fetching corpus: 2182, signal 257178/296172 (executing program) 2022/11/28 08:32:15 fetching corpus: 2231, signal 259255/298669 (executing program) 2022/11/28 08:32:16 fetching corpus: 2281, signal 262240/301869 (executing program) 2022/11/28 08:32:16 fetching corpus: 2328, signal 263680/303805 (executing program) 2022/11/28 08:32:17 fetching corpus: 2375, signal 265598/306099 (executing program) 2022/11/28 08:32:17 fetching corpus: 2425, signal 268390/309141 (executing program) 2022/11/28 08:32:18 fetching corpus: 2473, signal 271172/312096 (executing program) 2022/11/28 08:32:18 fetching corpus: 2523, signal 272764/314102 (executing program) 2022/11/28 08:32:19 fetching corpus: 2571, signal 274847/316431 (executing program) 2022/11/28 08:32:19 fetching corpus: 2620, signal 277061/318804 (executing program) 2022/11/28 08:32:20 fetching corpus: 2670, signal 279014/321012 (executing program) 2022/11/28 08:32:20 fetching corpus: 2716, signal 280245/322667 (executing program) 2022/11/28 08:32:21 fetching corpus: 2764, signal 281983/324744 (executing program) 2022/11/28 08:32:21 fetching corpus: 2810, signal 283273/326405 (executing program) 2022/11/28 08:32:22 fetching corpus: 2858, signal 284738/328166 (executing program) 2022/11/28 08:32:22 fetching corpus: 2906, signal 285797/329615 (executing program) 2022/11/28 08:32:23 fetching corpus: 2955, signal 287502/331513 (executing program) 2022/11/28 08:32:24 fetching corpus: 3003, signal 288854/333215 (executing program) 2022/11/28 08:32:24 fetching corpus: 3052, signal 291287/335648 (executing program) 2022/11/28 08:32:25 fetching corpus: 3101, signal 292581/337265 (executing program) 2022/11/28 08:32:25 fetching corpus: 3150, signal 294022/338974 (executing program) 2022/11/28 08:32:26 fetching corpus: 3196, signal 296822/341630 (executing program) 2022/11/28 08:32:27 fetching corpus: 3244, signal 297955/343086 (executing program) 2022/11/28 08:32:27 fetching corpus: 3292, signal 299494/344847 (executing program) 2022/11/28 08:32:28 fetching corpus: 3342, signal 300462/346170 (executing program) 2022/11/28 08:32:29 fetching corpus: 3391, signal 301357/347423 (executing program) 2022/11/28 08:32:29 fetching corpus: 3440, signal 302724/349011 (executing program) 2022/11/28 08:32:30 fetching corpus: 3483, signal 304195/350634 (executing program) 2022/11/28 08:32:30 fetching corpus: 3531, signal 305763/352242 (executing program) 2022/11/28 08:32:31 fetching corpus: 3580, signal 306649/353478 (executing program) 2022/11/28 08:32:31 fetching corpus: 3629, signal 308330/355246 (executing program) 2022/11/28 08:32:32 fetching corpus: 3676, signal 309584/356702 (executing program) 2022/11/28 08:32:32 fetching corpus: 3723, signal 310779/358041 (executing program) 2022/11/28 08:32:33 fetching corpus: 3773, signal 312584/359742 (executing program) 2022/11/28 08:32:33 fetching corpus: 3822, signal 313732/361065 (executing program) 2022/11/28 08:32:34 fetching corpus: 3872, signal 315102/362520 (executing program) 2022/11/28 08:32:34 fetching corpus: 3920, signal 316596/364004 (executing program) 2022/11/28 08:32:34 fetching corpus: 3969, signal 317839/365375 (executing program) 2022/11/28 08:32:35 fetching corpus: 4019, signal 320594/367630 (executing program) 2022/11/28 08:32:35 fetching corpus: 4068, signal 322370/369423 (executing program) 2022/11/28 08:32:36 fetching corpus: 4118, signal 323637/370764 (executing program) 2022/11/28 08:32:36 fetching corpus: 4167, signal 325100/372231 (executing program) 2022/11/28 08:32:37 fetching corpus: 4216, signal 326449/373563 (executing program) 2022/11/28 08:32:37 fetching corpus: 4266, signal 327853/374960 (executing program) 2022/11/28 08:32:38 fetching corpus: 4313, signal 328801/376077 (executing program) 2022/11/28 08:32:38 fetching corpus: 4361, signal 329853/377187 (executing program) 2022/11/28 08:32:39 fetching corpus: 4409, signal 331197/378467 (executing program) 2022/11/28 08:32:39 fetching corpus: 4459, signal 332361/379694 (executing program) 2022/11/28 08:32:39 fetching corpus: 4507, signal 333541/380859 (executing program) 2022/11/28 08:32:40 fetching corpus: 4557, signal 334238/381739 (executing program) 2022/11/28 08:32:40 fetching corpus: 4607, signal 335004/382658 (executing program) 2022/11/28 08:32:40 fetching corpus: 4657, signal 335945/383686 (executing program) 2022/11/28 08:32:41 fetching corpus: 4707, signal 337025/384761 (executing program) 2022/11/28 08:32:41 fetching corpus: 4756, signal 338024/385824 (executing program) 2022/11/28 08:32:42 fetching corpus: 4806, signal 340685/387753 (executing program) 2022/11/28 08:32:43 fetching corpus: 4853, signal 342226/389073 (executing program) 2022/11/28 08:32:43 fetching corpus: 4903, signal 342946/389921 (executing program) 2022/11/28 08:32:44 fetching corpus: 4950, signal 343986/390935 (executing program) 2022/11/28 08:32:44 fetching corpus: 5000, signal 344832/391878 (executing program) 2022/11/28 08:32:44 fetching corpus: 5050, signal 345919/392923 (executing program) 2022/11/28 08:32:45 fetching corpus: 5100, signal 347042/393953 (executing program) 2022/11/28 08:32:45 fetching corpus: 5148, signal 348187/395004 (executing program) 2022/11/28 08:32:46 fetching corpus: 5194, signal 349196/395959 (executing program) 2022/11/28 08:32:46 fetching corpus: 5242, signal 350088/396841 (executing program) 2022/11/28 08:32:47 fetching corpus: 5288, signal 351668/398035 (executing program) 2022/11/28 08:32:47 fetching corpus: 5338, signal 352659/398949 (executing program) 2022/11/28 08:32:48 fetching corpus: 5388, signal 354003/400050 (executing program) 2022/11/28 08:32:48 fetching corpus: 5437, signal 355481/401184 (executing program) 2022/11/28 08:32:49 fetching corpus: 5484, signal 356704/402200 (executing program) 2022/11/28 08:32:49 fetching corpus: 5533, signal 357647/403084 (executing program) 2022/11/28 08:32:50 fetching corpus: 5583, signal 358837/404087 (executing program) 2022/11/28 08:32:50 fetching corpus: 5630, signal 359668/404896 (executing program) 2022/11/28 08:32:51 fetching corpus: 5676, signal 361011/405923 (executing program) 2022/11/28 08:32:51 fetching corpus: 5725, signal 361803/406681 (executing program) 2022/11/28 08:32:51 fetching corpus: 5775, signal 362776/407543 (executing program) 2022/11/28 08:32:52 fetching corpus: 5824, signal 363136/408094 (executing program) 2022/11/28 08:32:52 fetching corpus: 5874, signal 364034/408897 (executing program) 2022/11/28 08:32:53 fetching corpus: 5919, signal 364739/409603 (executing program) 2022/11/28 08:32:53 fetching corpus: 5966, signal 365529/410299 (executing program) 2022/11/28 08:32:54 fetching corpus: 6015, signal 366468/411083 (executing program) 2022/11/28 08:32:54 fetching corpus: 6065, signal 367477/411858 (executing program) 2022/11/28 08:32:55 fetching corpus: 6115, signal 368933/412827 (executing program) 2022/11/28 08:32:55 fetching corpus: 6165, signal 369686/413512 (executing program) 2022/11/28 08:32:56 fetching corpus: 6214, signal 370453/414179 (executing program) 2022/11/28 08:32:56 fetching corpus: 6262, signal 371889/415099 (executing program) 2022/11/28 08:32:56 fetching corpus: 6311, signal 372901/415856 (executing program) 2022/11/28 08:32:57 fetching corpus: 6361, signal 374068/416664 (executing program) 2022/11/28 08:32:57 fetching corpus: 6409, signal 374728/417286 (executing program) 2022/11/28 08:32:58 fetching corpus: 6459, signal 375249/417809 (executing program) 2022/11/28 08:32:59 fetching corpus: 6507, signal 376228/418495 (executing program) 2022/11/28 08:32:59 fetching corpus: 6557, signal 377306/419231 (executing program) 2022/11/28 08:33:00 fetching corpus: 6606, signal 377976/419805 (executing program) 2022/11/28 08:33:00 fetching corpus: 6655, signal 378603/420354 (executing program) 2022/11/28 08:33:01 fetching corpus: 6705, signal 379817/421157 (executing program) 2022/11/28 08:33:02 fetching corpus: 6751, signal 380909/421840 (executing program) 2022/11/28 08:33:02 fetching corpus: 6801, signal 381542/422381 (executing program) 2022/11/28 08:33:03 fetching corpus: 6849, signal 383041/423208 (executing program) 2022/11/28 08:33:03 fetching corpus: 6899, signal 383585/423700 (executing program) 2022/11/28 08:33:04 fetching corpus: 6948, signal 384880/424451 (executing program) 2022/11/28 08:33:04 fetching corpus: 6996, signal 386314/425192 (executing program) 2022/11/28 08:33:05 fetching corpus: 7046, signal 387394/425831 (executing program) 2022/11/28 08:33:05 fetching corpus: 7094, signal 387892/426277 (executing program) 2022/11/28 08:33:06 fetching corpus: 7141, signal 388587/426773 (executing program) 2022/11/28 08:33:07 fetching corpus: 7190, signal 389377/427374 (executing program) 2022/11/28 08:33:07 fetching corpus: 7238, signal 390376/427988 (executing program) 2022/11/28 08:33:08 fetching corpus: 7287, signal 391119/428485 (executing program) 2022/11/28 08:33:08 fetching corpus: 7335, signal 392075/429086 (executing program) 2022/11/28 08:33:09 fetching corpus: 7384, signal 393373/429744 (executing program) 2022/11/28 08:33:09 fetching corpus: 7434, signal 394423/430328 (executing program) 2022/11/28 08:33:10 fetching corpus: 7484, signal 395138/430824 (executing program) [ 213.689897][ T1369] ieee802154 phy0 wpan0: encryption failed: -22 [ 213.708557][ T1369] ieee802154 phy1 wpan1: encryption failed: -22 2022/11/28 08:33:11 fetching corpus: 7534, signal 395935/431298 (executing program) 2022/11/28 08:33:12 fetching corpus: 7584, signal 396809/431783 (executing program) 2022/11/28 08:33:13 fetching corpus: 7633, signal 398097/432364 (executing program) 2022/11/28 08:33:13 fetching corpus: 7683, signal 398717/432776 (executing program) 2022/11/28 08:33:14 fetching corpus: 7729, signal 399690/433304 (executing program) 2022/11/28 08:33:15 fetching corpus: 7778, signal 400485/433725 (executing program) 2022/11/28 08:33:15 fetching corpus: 7825, signal 401455/434243 (executing program) 2022/11/28 08:33:16 fetching corpus: 7875, signal 402397/434748 (executing program) 2022/11/28 08:33:16 fetching corpus: 7923, signal 403021/435110 (executing program) 2022/11/28 08:33:17 fetching corpus: 7971, signal 403631/435477 (executing program) 2022/11/28 08:33:18 fetching corpus: 8019, signal 404518/435900 (executing program) 2022/11/28 08:33:18 fetching corpus: 8069, signal 405331/436306 (executing program) 2022/11/28 08:33:19 fetching corpus: 8118, signal 406392/436767 (executing program) 2022/11/28 08:33:19 fetching corpus: 8168, signal 407197/437166 (executing program) 2022/11/28 08:33:21 fetching corpus: 8218, signal 408015/437561 (executing program) 2022/11/28 08:33:21 fetching corpus: 8265, signal 408464/437873 (executing program) 2022/11/28 08:33:22 fetching corpus: 8314, signal 409252/438233 (executing program) 2022/11/28 08:33:22 fetching corpus: 8364, signal 409771/438539 (executing program) 2022/11/28 08:33:23 fetching corpus: 8412, signal 410453/438835 (executing program) 2022/11/28 08:33:23 fetching corpus: 8462, signal 411139/439155 (executing program) 2022/11/28 08:33:24 fetching corpus: 8511, signal 411816/439478 (executing program) 2022/11/28 08:33:25 fetching corpus: 8560, signal 412435/439769 (executing program) 2022/11/28 08:33:26 fetching corpus: 8607, signal 413208/440120 (executing program) 2022/11/28 08:33:26 fetching corpus: 8656, signal 414140/440467 (executing program) 2022/11/28 08:33:27 fetching corpus: 8705, signal 414883/440747 (executing program) 2022/11/28 08:33:27 fetching corpus: 8754, signal 415388/441041 (executing program) 2022/11/28 08:33:28 fetching corpus: 8801, signal 415948/441272 (executing program) 2022/11/28 08:33:28 fetching corpus: 8851, signal 419361/441987 (executing program) 2022/11/28 08:33:29 fetching corpus: 8901, signal 420498/442345 (executing program) 2022/11/28 08:33:30 fetching corpus: 8949, signal 423730/443029 (executing program) 2022/11/28 08:33:30 fetching corpus: 8997, signal 424304/443275 (executing program) 2022/11/28 08:33:31 fetching corpus: 9046, signal 425254/443558 (executing program) 2022/11/28 08:33:31 fetching corpus: 9096, signal 425874/443762 (executing program) 2022/11/28 08:33:32 fetching corpus: 9145, signal 426839/443998 (executing program) 2022/11/28 08:33:32 fetching corpus: 9194, signal 427333/444226 (executing program) 2022/11/28 08:33:33 fetching corpus: 9243, signal 428073/444430 (executing program) 2022/11/28 08:33:33 fetching corpus: 9291, signal 428893/444654 (executing program) 2022/11/28 08:33:34 fetching corpus: 9338, signal 429647/444873 (executing program) 2022/11/28 08:33:34 fetching corpus: 9388, signal 430414/445052 (executing program) 2022/11/28 08:33:35 fetching corpus: 9435, signal 431538/445287 (executing program) 2022/11/28 08:33:35 fetching corpus: 9484, signal 432182/445514 (executing program) 2022/11/28 08:33:36 fetching corpus: 9534, signal 432977/445677 (executing program) 2022/11/28 08:33:37 fetching corpus: 9584, signal 433530/445816 (executing program) 2022/11/28 08:33:38 fetching corpus: 9632, signal 434451/446000 (executing program) 2022/11/28 08:33:38 fetching corpus: 9680, signal 435032/446157 (executing program) 2022/11/28 08:33:39 fetching corpus: 9728, signal 435350/446262 (executing program) 2022/11/28 08:33:39 fetching corpus: 9777, signal 435942/446392 (executing program) 2022/11/28 08:33:39 fetching corpus: 9827, signal 436591/446509 (executing program) 2022/11/28 08:33:40 fetching corpus: 9877, signal 437071/446606 (executing program) 2022/11/28 08:33:40 fetching corpus: 9926, signal 437623/446718 (executing program) 2022/11/28 08:33:41 fetching corpus: 9976, signal 438476/446848 (executing program) 2022/11/28 08:33:42 fetching corpus: 10025, signal 440007/447017 (executing program) 2022/11/28 08:33:42 fetching corpus: 10071, signal 440582/447173 (executing program) 2022/11/28 08:33:43 fetching corpus: 10118, signal 441348/447302 (executing program) 2022/11/28 08:33:43 fetching corpus: 10150, signal 441720/447369 (executing program) 2022/11/28 08:33:43 fetching corpus: 10156, signal 441764/447435 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441764/447458 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441765/447489 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447527 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447575 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447615 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447635 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447674 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441767/447696 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441768/447733 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441768/447763 (executing program) 2022/11/28 08:33:44 fetching corpus: 10156, signal 441770/447789 (executing program) 2022/11/28 08:33:44 fetching corpus: 10157, signal 441795/447841 (executing program) 2022/11/28 08:33:44 fetching corpus: 10157, signal 441795/447866 (executing program) 2022/11/28 08:33:44 fetching corpus: 10157, signal 441795/447882 (executing program) 2022/11/28 08:33:44 fetching corpus: 10157, signal 441795/447882 (executing program) 2022/11/28 08:33:56 starting 4 fuzzer processes 08:33:56 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000000)=[@window, @timestamp, @window], 0x3) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f0000000040)=[@mss={0x2, 0x80}], 0x1) r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000080), 0x8) ioctl$sock_ipv6_tunnel_SIOCGET6RD(r0, 0x89f8, &(0x7f0000000180)={'erspan0\x00', &(0x7f00000000c0)={'ip_vti0\x00', 0x0, 0x0, 0x0, 0x5, 0x0, {{0x12, 0x4, 0x1, 0x2, 0x48, 0x65, 0x0, 0x8, 0x2f, 0x0, @dev={0xac, 0x14, 0x14, 0x1c}, @broadcast, {[@timestamp_addr={0x44, 0x24, 0xe9, 0x1, 0x9, [{@remote, 0x15}, {@rand_addr, 0x1}, {@local, 0x1}, {@multicast2, 0x1000}]}, @timestamp={0x44, 0x10, 0x5d, 0x0, 0x7, [0x0, 0x0, 0x839]}]}}}}}) ioctl$sock_ipv6_tunnel_SIOCGET6RD(0xffffffffffffffff, 0x89f8, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000ac0)='./file0\x00', &(0x7f0000000b00), 0x800) socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000bc0)={0xffffffffffffffff, 0xffffffffffffffff}) openat$kvm(0xffffffffffffff9c, &(0x7f0000000c00), 0x80382, 0x0) getresgid(&(0x7f0000000c40), &(0x7f0000000c80), &(0x7f0000000cc0)=0x0) syz_clone(0x40000, 0x0, 0x0, 0x0, &(0x7f0000000dc0), &(0x7f0000000e00)="abb0f91d9c74effdd240882d7faf535d2e5b582f7cea73df58498cb9f58c78cd2ea0027d1f783518d4c0b7531527504c6e7abb71881ef845af20f83ad6e5cd3fa23c790c37a53291f3814fd1d3babee789da7f65b3f1da5db34d3c287ffbaad28a348365deb4cc7b9c47a863e87c4dcf2502a867696fc005347975f8e1f432ca8aa838981ae46257b7fdce5b22368fa1273ab5294c5e2aa5342265b33c7e674e6aebc0438ddc658eac968c36108fe6754e09ec19b8") r5 = syz_clone(0x82001000, &(0x7f0000001440), 0x0, &(0x7f00000014c0), &(0x7f0000001500), &(0x7f0000001540)="39f172ebb5db4e49b22ade464f506554a199d6e771a00f86aa3df3d9050b7b0a7292f27ddc260ee1ba3667c58e13fa34edd75ba84e73132b6471d194193607f05fafa8f7c2fa92dfe17e579034b2fefb9bfe067c8eee301409d704f05cf9e2ce6d0b266d3aae1c12f59c81e3ecd1c8e74f2aa7633b59e985a538e6ee98992071e96bb21d2a989bc2f3a800bd5254bfa479b727a2") getsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, 0x0, 0x0) syz_clone(0x1010000, 0x0, 0x0, &(0x7f00000017c0), &(0x7f0000001800), 0x0) r6 = getgid() r7 = socket$inet_icmp_raw(0x2, 0x3, 0x1) bpf$OBJ_GET_PROG(0x7, 0x0, 0x0) sendmmsg$unix(r1, &(0x7f0000002b00)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee01}}}], 0x20}}, {{0x0, 0x0, 0x0}}], 0x2, 0x4) openat$cgroup_procs(r1, &(0x7f0000003480)='tasks\x00', 0x2, 0x0) openat$binderfs(0xffffffffffffff9c, &(0x7f00000034c0)='./binderfs2/binder0\x00', 0x0, 0x0) sendmmsg$unix(0xffffffffffffffff, &(0x7f0000008240)=[{{&(0x7f0000002c40)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f0000002fc0)=[{0x0}, {&(0x7f0000002e00)="1e935f406a9f4498994fda098dd537284d9a505d45f1b2149f433174788dbc90fb72bf449cd4045d23ff59f631777934ac4e087147cecffb", 0x38}, {0x0}], 0x3, &(0x7f0000003240)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r4}}}, @rights={{0x1c, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r7]}}], 0x40}}, {{&(0x7f0000003280)=@abs={0x0, 0x0, 0x4e20}, 0x6e, &(0x7f0000003440)=[{0x0}, {&(0x7f0000003340)="e9e8e2d1ea64", 0x6}], 0x2, &(0x7f0000003800)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x20, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, r2, 0xffffffffffffffff]}}, @rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, r6}}}, @rights={{0x18, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff]}}], 0xa8}}, {{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}, {{&(0x7f00000064c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e, &(0x7f00000067c0)=[{0x0}, {0x0}, {&(0x7f0000006680)="c0513840", 0x4}, {&(0x7f00000066c0)}], 0x4, 0x0, 0x0, 0x40}}, {{0x0, 0x0, &(0x7f0000007d80)=[{&(0x7f0000007c40)}, {&(0x7f0000007c80)="da10d3b25d0deef97610265c993bf8cd973ab3cae29382beacb5511194cc52d98cef01da9ea777ec915e9167be12d7d5e66b122a48f24bfb54f0bea71efe47c766c4727cf8931d65532f9f2c79be4364ffc0cecdd153b0888398e9a200011fec288101272c1d573f", 0x68}], 0x2, &(0x7f0000008140)=[@rights={{0x28, 0x1, 0x1, [0xffffffffffffffff, r3, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0xee00}}}, @cred={{0x1c}}, @cred={{0x1c, 0x1, 0x2, {r5}}}, @rights={{0x10}}], 0x98}}], 0x6, 0x0) 08:33:56 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) io_setup(0x9, &(0x7f0000000080)=0x0) io_submit(r1, 0x2, &(0x7f0000000340)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0}, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x4, 0x0, r0, 0x0}]) 08:33:56 executing program 2: mount$fuseblk(0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={{}, 0x2c, {}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee00}}) r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/clear_refs\x00', 0x1, 0x0) write$sysctl(r0, &(0x7f0000000040)='1\x00', 0x2) 08:33:56 executing program 3: r0 = socket$kcm(0x29, 0x5, 0x0) sendmsg$kcm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000980)=[{&(0x7f0000000380)='a', 0x1}], 0x1}, 0x8884) r1 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/kcm\x00') preadv(r1, &(0x7f0000000340)=[{&(0x7f0000000000)=""/235, 0xeb}], 0x1, 0x0, 0x0) [ 260.068803][ T38] audit: type=1400 audit(1669624437.022:86): avc: denied { execmem } for pid=3746 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 264.736310][ T38] audit: type=1400 audit(1669624441.622:87): avc: denied { mounton } for pid=3751 comm="syz-executor.2" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 264.812410][ T38] audit: type=1400 audit(1669624441.632:88): avc: denied { mount } for pid=3751 comm="syz-executor.2" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 264.845280][ T38] audit: type=1400 audit(1669624441.632:89): avc: denied { create } for pid=3751 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 264.867931][ T38] audit: type=1400 audit(1669624441.642:90): avc: denied { read write } for pid=3751 comm="syz-executor.2" name="vhci" dev="devtmpfs" ino=1107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 264.903146][ T38] audit: type=1400 audit(1669624441.642:91): avc: denied { open } for pid=3751 comm="syz-executor.2" path="/dev/vhci" dev="devtmpfs" ino=1107 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 264.948471][ T3758] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 264.959121][ T3758] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 264.971010][ T3758] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 264.981149][ T3758] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 264.994268][ T3758] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 265.007422][ T38] audit: type=1400 audit(1669624441.752:92): avc: denied { ioctl } for pid=3752 comm="syz-executor.3" path="socket:[30082]" dev="sockfs" ino=30082 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 265.015416][ T3759] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 265.063011][ T3758] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 265.071353][ T3759] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 265.077299][ T3762] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 265.082222][ T3758] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 265.089103][ T3759] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 265.093971][ T3764] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 265.095507][ T3764] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 265.097358][ T3758] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 265.097755][ T3758] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 265.104209][ T3759] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 265.112816][ T3750] Bluetooth: hci2: HCI_REQ-0x0c1a [ 265.120105][ T3752] Bluetooth: hci1: HCI_REQ-0x0c1a [ 265.120568][ T3759] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 265.121907][ T3759] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 265.124536][ T3751] Bluetooth: hci0: HCI_REQ-0x0c1a [ 265.137316][ T38] audit: type=1400 audit(1669624442.092:93): avc: denied { read } for pid=3751 comm="syz-executor.2" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 265.249801][ T38] audit: type=1400 audit(1669624442.122:94): avc: denied { open } for pid=3752 comm="syz-executor.3" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 265.278533][ T38] audit: type=1400 audit(1669624442.132:95): avc: denied { mounton } for pid=3752 comm="syz-executor.3" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 265.919889][ T3759] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 265.928663][ T3759] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 265.941530][ T3759] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 265.970853][ T3759] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 266.002282][ T63] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 266.010516][ T63] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 266.028273][ T3765] Bluetooth: hci3: HCI_REQ-0x0c1a [ 266.445673][ T38] audit: type=1400 audit(1669624443.382:96): avc: denied { module_request } for pid=3751 comm="syz-executor.2" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 266.676729][ T3751] chnl_net:caif_netlink_parms(): no params data found [ 266.896547][ T3750] chnl_net:caif_netlink_parms(): no params data found [ 266.935026][ T3751] [ 266.939610][ T3751] ====================================================== [ 266.950057][ T3751] WARNING: possible circular locking dependency detected [ 266.961014][ T3751] 6.1.0-rc7-syzkaller #0 Not tainted [ 266.971022][ T3751] ------------------------------------------------------ [ 266.983698][ T3751] syz-executor.2/3751 is trying to acquire lock: [ 266.993536][ T3751] ffffffff8c6c9868 (zonelist_update_seq.seqcount){...-}-{0:0}, at: __alloc_pages+0x4aa/0x5b0 [ 267.009508][ T3751] [ 267.009508][ T3751] but task is already holding lock: [ 267.019045][ T3751] ffff88802c82a4d8 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x60c/0xe30 [ 267.034156][ T3751] [ 267.034156][ T3751] which lock already depends on the new lock. [ 267.034156][ T3751] [ 267.051279][ T3751] [ 267.051279][ T3751] the existing dependency chain (in reverse order) is: [ 267.063202][ T3751] [ 267.063202][ T3751] -> #4 (&base->lock){-.-.}-{2:2}: [ 267.072502][ T3751] _raw_spin_lock_irqsave+0x3d/0x60 [ 267.081763][ T3751] lock_timer_base+0x5a/0x1f0 [ 267.088590][ T3751] __mod_timer+0x398/0xe30 [ 267.095026][ T3751] __queue_delayed_work+0x1a7/0x270 [ 267.102927][ T3751] queue_delayed_work_on+0x109/0x120 [ 267.110618][ T3751] psi_task_change+0x1bf/0x2f0 [ 267.116270][ T3751] enqueue_task+0x1ec/0x3a0 [ 267.123817][ T3751] wake_up_new_task+0x632/0xdb0 [ 267.129734][ T3751] kernel_clone+0x229/0x980 [ 267.137570][ T3751] user_mode_thread+0xb1/0xf0 [ 267.145369][ T3751] rest_init+0x27/0x270 [ 267.152042][ T3751] arch_call_rest_init+0x13/0x1c [ 267.165671][ T3751] start_kernel+0x477/0x498 [ 267.173438][ T3751] secondary_startup_64_no_verify+0xce/0xdb [ 267.182968][ T3751] [ 267.182968][ T3751] -> #3 (&rq->__lock){-.-.}-{2:2}: [ 267.191489][ T3751] _raw_spin_lock_nested+0x34/0x40 [ 267.199551][ T3751] raw_spin_rq_lock_nested+0x2f/0x120 [ 267.208608][ T3751] task_fork_fair+0x6c/0x520 [ 267.216153][ T3751] sched_cgroup_fork+0x3d1/0x540 [ 267.225008][ T3751] copy_process+0x4351/0x7190 [ 267.232569][ T3751] kernel_clone+0xeb/0x980 [ 267.238431][ T3751] user_mode_thread+0xb1/0xf0 [ 267.243403][ T3751] rest_init+0x27/0x270 [ 267.248139][ T3751] arch_call_rest_init+0x13/0x1c [ 267.254010][ T3751] start_kernel+0x477/0x498 [ 267.260569][ T3751] secondary_startup_64_no_verify+0xce/0xdb [ 267.267837][ T3751] [ 267.267837][ T3751] -> #2 (&p->pi_lock){-.-.}-{2:2}: [ 267.277099][ T3751] _raw_spin_lock_irqsave+0x3d/0x60 [ 267.282673][ T3751] try_to_wake_up+0xb2/0x20f0 [ 267.288493][ T3751] up+0x79/0xb0 [ 267.292942][ T3751] __up_console_sem+0xa4/0xc0 [ 267.300491][ T3751] console_unlock+0x4ce/0x600 [ 267.306882][ T3751] vga_remove_vgacon.cold+0x99/0x9e [ 267.313225][ T3751] virtio_gpu_probe.cold+0xe3/0x15d [ 267.319179][ T3751] virtio_dev_probe+0x57b/0x870 [ 267.326302][ T3751] really_probe+0x249/0xb90 [ 267.332877][ T3751] __driver_probe_device+0x1df/0x4d0 [ 267.338835][ T3751] driver_probe_device+0x4c/0x1a0 [ 267.352897][ T3751] __driver_attach+0x1d4/0x550 [ 267.359371][ T3751] bus_for_each_dev+0x14b/0x1d0 [ 267.366423][ T3751] bus_add_driver+0x4cd/0x640 [ 267.374894][ T3751] driver_register+0x224/0x3a0 [ 267.381455][ T3751] do_one_initcall+0x141/0x780 [ 267.387432][ T3751] kernel_init_freeable+0x6ff/0x788 [ 267.394560][ T3751] kernel_init+0x1e/0x1d0 [ 267.400779][ T3751] ret_from_fork+0x1f/0x30 [ 267.407696][ T3751] [ 267.407696][ T3751] -> #1 ((console_sem).lock){-...}-{2:2}: [ 267.416920][ T3751] _raw_spin_lock_irqsave+0x3d/0x60 [ 267.422748][ T3751] down_trylock+0x12/0x70 [ 267.428407][ T3751] __down_trylock_console_sem+0x40/0x120 [ 267.434678][ T3751] vprintk_emit+0x16b/0x600 [ 267.441990][ T3751] vprintk+0x84/0xa0 [ 267.448084][ T3751] _printk+0xbe/0xf1 [ 267.454259][ T3751] build_zonelists+0x2e7/0x400 [ 267.461767][ T3751] __build_all_zonelists+0x122/0x180 [ 267.467366][ T3751] build_all_zonelists_init+0x35/0x12f [ 267.476405][ T3751] build_all_zonelists+0x123/0x140 [ 267.483718][ T3751] start_kernel+0xbd/0x498 [ 267.489054][ T3751] secondary_startup_64_no_verify+0xce/0xdb [ 267.496856][ T3751] [ 267.496856][ T3751] -> #0 (zonelist_update_seq.seqcount){...-}-{0:0}: [ 267.505713][ T3751] __lock_acquire+0x2a43/0x56d0 [ 267.511130][ T3751] lock_acquire+0x1e3/0x630 [ 267.516569][ T3751] __alloc_pages_slowpath.constprop.0+0x1ae/0x23d0 [ 267.524741][ T3751] __alloc_pages+0x4aa/0x5b0 [ 267.530561][ T3751] cache_grow_begin+0x75/0x360 [ 267.550746][ T3751] cache_alloc_refill+0x27f/0x380 [ 267.555851][ T3751] kmem_cache_alloc+0x364/0x460 [ 267.560933][ T3751] fill_pool+0x264/0x5c0 [ 267.577826][ T3751] __debug_object_init+0x7a/0xd10 [ 267.583458][ T3751] debug_object_activate+0x330/0x3e0 [ 267.588984][ T3751] __mod_timer+0x77d/0xe30 [ 267.593688][ T3751] __queue_delayed_work+0x1a7/0x270 [ 267.600160][ T3751] queue_delayed_work_on+0x109/0x120 [ 267.609082][ T3751] wg_ratelimiter_init+0x19c/0x2c0 [ 267.617754][ T3751] wg_newlink+0x470/0x8f0 [ 267.623736][ T3751] __rtnl_newlink+0x1087/0x17e0 [ 267.630801][ T3751] rtnl_newlink+0x68/0xa0 [ 267.636559][ T3751] rtnetlink_rcv_msg+0x43e/0xca0 [ 267.644754][ T3751] netlink_rcv_skb+0x157/0x430 [ 267.650606][ T3751] netlink_unicast+0x547/0x7f0 [ 267.656215][ T3751] netlink_sendmsg+0x91b/0xe10 [ 267.661697][ T3751] sock_sendmsg+0xd3/0x120 [ 267.666930][ T3751] __sys_sendto+0x23a/0x340 [ 267.672230][ T3751] __x64_sys_sendto+0xe1/0x1b0 [ 267.677968][ T3751] do_syscall_64+0x39/0xb0 [ 267.683381][ T3751] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 267.690682][ T3751] [ 267.690682][ T3751] other info that might help us debug this: [ 267.690682][ T3751] [ 267.704474][ T3751] Chain exists of: [ 267.704474][ T3751] zonelist_update_seq.seqcount --> &rq->__lock --> &base->lock [ 267.704474][ T3751] [ 267.722173][ T3751] Possible unsafe locking scenario: [ 267.722173][ T3751] [ 267.732632][ T3751] CPU0 CPU1 [ 267.738954][ T3751] ---- ---- [ 267.744178][ T3751] lock(&base->lock); [ 267.748504][ T3751] lock(&rq->__lock); [ 267.754172][ T3751] lock(&base->lock); [ 267.762261][ T3751] lock(zonelist_update_seq.seqcount); [ 267.769745][ T3751] [ 267.769745][ T3751] *** DEADLOCK *** [ 267.769745][ T3751] [ 267.778397][ T3751] 3 locks held by syz-executor.2/3751: [ 267.784520][ T3751] #0: ffffffff8deabca8 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x3e9/0xca0 [ 267.793791][ T3751] #1: ffffffff8d3bd668 (init_lock){+.+.}-{3:3}, at: wg_ratelimiter_init+0x1b/0x2c0 [ 267.802613][ T3751] #2: ffff88802c82a4d8 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x60c/0xe30 [ 267.812655][ T3751] [ 267.812655][ T3751] stack backtrace: [ 267.818582][ T3751] CPU: 2 PID: 3751 Comm: syz-executor.2 Not tainted 6.1.0-rc7-syzkaller #0 [ 267.828036][ T3751] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 267.838534][ T3751] Call Trace: [ 267.842393][ T3751] [ 267.845735][ T3751] dump_stack_lvl+0xd1/0x138 [ 267.850842][ T3751] check_noncircular+0x25f/0x2e0 [ 267.856901][ T3751] ? print_circular_bug+0x1e0/0x1e0 [ 267.863363][ T3751] ? stack_trace_save+0x90/0xc0 [ 267.867813][ T3751] ? filter_irq_stacks+0x90/0x90 [ 267.872589][ T3751] __lock_acquire+0x2a43/0x56d0 [ 267.877330][ T3751] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 267.882626][ T3751] ? unwind_next_frame+0xd61/0x1d00 [ 267.887620][ T3751] ? arch_stack_walk+0x60/0xf0 [ 267.892620][ T3751] lock_acquire+0x1e3/0x630 [ 267.897328][ T3751] ? __alloc_pages+0x4aa/0x5b0 [ 267.905387][ T3751] ? lock_release+0x810/0x810 [ 267.913486][ T3751] ? unwind_next_frame+0xd61/0x1d00 [ 267.919949][ T3751] ? arch_stack_walk+0x60/0xf0 [ 267.924841][ T3751] ? __module_text_address+0xcb/0x1a0 [ 267.930795][ T3751] ? __zone_watermark_ok+0x275/0x460 [ 267.938079][ T3751] __alloc_pages_slowpath.constprop.0+0x1ae/0x23d0 [ 267.946874][ T3751] ? __alloc_pages+0x4aa/0x5b0 [ 267.953156][ T3751] ? warn_alloc+0x190/0x190 [ 267.959115][ T3751] ? kasan_save_stack+0x35/0x40 [ 267.964990][ T3751] ? __zone_watermark_ok+0x460/0x460 [ 267.972551][ T3751] ? prepare_alloc_pages+0x178/0x570 [ 267.979504][ T3751] ? wg_newlink+0x470/0x8f0 [ 267.985015][ T3751] ? __rtnl_newlink+0x1087/0x17e0 [ 267.990398][ T3751] ? rtnl_newlink+0x68/0xa0 [ 267.994536][ T3751] __alloc_pages+0x4aa/0x5b0 [ 268.000624][ T3751] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.007836][ T3751] ? __alloc_pages_slowpath.constprop.0+0x23d0/0x23d0 [ 268.018048][ T3751] ? find_held_lock+0x2d/0x110 [ 268.025883][ T3751] ? lock_downgrade+0x6e0/0x6e0 [ 268.033501][ T3751] ? do_raw_spin_lock+0x124/0x2b0 [ 268.039079][ T3751] cache_grow_begin+0x75/0x360 [ 268.043504][ T3751] cache_alloc_refill+0x27f/0x380 [ 268.048687][ T3751] kmem_cache_alloc+0x364/0x460 [ 268.053219][ T3751] fill_pool+0x264/0x5c0 [ 268.057952][ T3751] ? __list_del_entry_valid+0x110/0x110 [ 268.063616][ T3751] __debug_object_init+0x7a/0xd10 [ 268.068692][ T3751] ? debug_object_activate+0x1b7/0x3e0 [ 268.073987][ T3751] ? lock_downgrade+0x6e0/0x6e0 [ 268.079283][ T3751] ? debug_object_free+0x360/0x360 [ 268.085370][ T3751] debug_object_activate+0x330/0x3e0 [ 268.091587][ T3751] ? lock_release+0x810/0x810 [ 268.096998][ T3751] ? debug_object_assert_init+0x2e0/0x2e0 [ 268.104491][ T3751] ? rwlock_bug.part.0+0x90/0x90 [ 268.110184][ T3751] ? lock_timer_base+0x174/0x1f0 [ 268.115644][ T3751] __mod_timer+0x77d/0xe30 [ 268.121006][ T3751] ? enqueue_timer+0x660/0x660 [ 268.125491][ T3751] ? mark_held_locks+0x9f/0xe0 [ 268.132604][ T3751] __queue_delayed_work+0x1a7/0x270 [ 268.138776][ T3751] queue_delayed_work_on+0x109/0x120 [ 268.145075][ T3751] wg_ratelimiter_init+0x19c/0x2c0 [ 268.150228][ T3751] wg_newlink+0x470/0x8f0 [ 268.155250][ T3751] ? wg_pm_notification+0x180/0x180 [ 268.161848][ T3751] __rtnl_newlink+0x1087/0x17e0 [ 268.168593][ T3751] ? lock_downgrade+0x6e0/0x6e0 [ 268.174712][ T3751] ? rtnl_link_unregister+0x250/0x250 [ 268.180502][ T3751] ? do_raw_spin_unlock+0x175/0x230 [ 268.186940][ T3751] ? mark_held_locks+0x9f/0xe0 [ 268.192655][ T3751] rtnl_newlink+0x68/0xa0 [ 268.197926][ T3751] ? __rtnl_newlink+0x17e0/0x17e0 [ 268.203366][ T3751] rtnetlink_rcv_msg+0x43e/0xca0 [ 268.209072][ T3751] ? rtnl_getlink+0xae0/0xae0 [ 268.214141][ T3751] netlink_rcv_skb+0x157/0x430 [ 268.219558][ T3751] ? rtnl_getlink+0xae0/0xae0 [ 268.226137][ T3751] ? netlink_ack+0xd60/0xd60 [ 268.231518][ T3751] ? netlink_deliver_tap+0x1a2/0xc50 [ 268.236672][ T3751] ? netlink_deliver_tap+0x1b1/0xc50 [ 268.243033][ T3751] netlink_unicast+0x547/0x7f0 [ 268.248592][ T3751] ? netlink_attachskb+0x890/0x890 [ 268.255853][ T3751] netlink_sendmsg+0x91b/0xe10 [ 268.261616][ T3751] ? netlink_unicast+0x7f0/0x7f0 [ 268.267320][ T3751] ? netlink_unicast+0x7f0/0x7f0 [ 268.273733][ T3751] sock_sendmsg+0xd3/0x120 [ 268.278331][ T3751] __sys_sendto+0x23a/0x340 [ 268.282915][ T3751] ? __ia32_sys_getpeername+0xb0/0xb0 [ 268.288089][ T3751] ? restore_fpregs_from_fpstate+0xc1/0x1c0 [ 268.294468][ T3751] __x64_sys_sendto+0xe1/0x1b0 [ 268.301042][ T3751] ? syscall_enter_from_user_mode+0x26/0xb0 [ 268.307809][ T3751] do_syscall_64+0x39/0xb0 [ 268.312207][ T3751] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 268.319014][ T3751] RIP: 0033:0x7f840763e10c [ 268.323139][ T3751] Code: fa fa ff ff 44 8b 4c 24 2c 4c 8b 44 24 20 89 c5 44 8b 54 24 28 48 8b 54 24 18 b8 2c 00 00 00 48 8b 74 24 10 8b 7c 24 08 0f 05 <48> 3d 00 f0 ff ff 77 34 89 ef 48 89 44 24 08 e8 20 fb ff ff 48 8b [ 268.345206][ T3751] RSP: 002b:00007ffca4afbbd0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c [ 268.352516][ T3751] RAX: ffffffffffffffda RBX: 00007f84082d4620 RCX: 00007f840763e10c [ 268.361561][ T3751] RDX: 000000000000003c RSI: 00007f84082d4670 RDI: 0000000000000003 [ 268.372862][ T3751] RBP: 0000000000000000 R08: 00007ffca4afbc24 R09: 000000000000000c [ 268.386291][ T3751] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000000 [ 268.394308][ T3751] R13: 00007f84082d4670 R14: 0000000000000003 R15: 0000000000000000 [ 268.403245][ T3751] [ 268.429975][ T3759] Bluetooth: hci1: command 0x0409 tx timeout [ 268.430680][ T63] Bluetooth: hci0: command 0x0409 tx timeout [ 268.435765][ T3759] Bluetooth: hci2: command 0x0409 tx timeout [ 268.435813][ T3759] Bluetooth: hci3: command 0x0409 tx timeout [ 268.453555][ T3752] chnl_net:caif_netlink_parms(): no params data found [ 269.058328][ T3751] bridge0: port 1(bridge_slave_0) entered blocking state [ 269.065138][ T3751] bridge0: port 1(bridge_slave_0) entered disabled state [ 269.088459][ T3751] device bridge_slave_0 entered promiscuous mode [ 269.105866][ T3751] bridge0: port 2(bridge_slave_1) entered blocking state [ 269.116684][ T3751] bridge0: port 2(bridge_slave_1) entered disabled state [ 269.126965][ T3751] device bridge_slave_1 entered promiscuous mode [ 269.325948][ T3750] bridge0: port 1(bridge_slave_0) entered blocking state [ 269.333119][ T3750] bridge0: port 1(bridge_slave_0) entered disabled state [ 269.354806][ T3750] device bridge_slave_0 entered promiscuous mode [ 269.381958][ T3750] bridge0: port 2(bridge_slave_1) entered blocking state [ 269.401525][ T3750] bridge0: port 2(bridge_slave_1) entered disabled state [ 269.413171][ T3750] device bridge_slave_1 entered promiscuous mode [ 269.729620][ T3751] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 269.741855][ T3752] bridge0: port 1(bridge_slave_0) entered blocking state [ 269.748126][ T3752] bridge0: port 1(bridge_slave_0) entered disabled state [ 269.768759][ T3752] device bridge_slave_0 entered promiscuous mode [ 269.788216][ T3752] bridge0: port 2(bridge_slave_1) entered blocking state [ 269.799144][ T3752] bridge0: port 2(bridge_slave_1) entered disabled state [ 269.816900][ T3752] device bridge_slave_1 entered promiscuous mode [ 269.928877][ T3750] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 269.944113][ T3751] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 270.118397][ T3750] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 270.139676][ T3752] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 270.284969][ T3765] chnl_net:caif_netlink_parms(): no params data found [ 270.300903][ T3752] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 270.313786][ T3751] team0: Port device team_slave_0 added [ 270.322691][ T3750] team0: Port device team_slave_0 added [ 270.430815][ T3751] team0: Port device team_slave_1 added [ 270.439180][ T3750] team0: Port device team_slave_1 added [ 270.466655][ T63] Bluetooth: hci3: command 0x041b tx timeout [ 270.473845][ T63] Bluetooth: hci2: command 0x041b tx timeout [ 270.482874][ T3756] Bluetooth: hci1: command 0x041b tx timeout [ 270.541972][ T3759] Bluetooth: hci0: command 0x041b tx timeout [ 270.733300][ T3752] team0: Port device team_slave_0 added [ 270.836892][ T3750] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 270.843784][ T3750] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 270.900554][ T3750] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 271.038491][ T3752] team0: Port device team_slave_1 added [ 271.047434][ T3751] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 271.057351][ T3751] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.098039][ T3751] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 271.111258][ T3750] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 271.118856][ T3750] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.151250][ T3750] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 271.301844][ T3751] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 271.309755][ T3751] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.354400][ T3751] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 271.501934][ T3752] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 271.511618][ T3752] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.555242][ T3752] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 271.621091][ T3765] bridge0: port 1(bridge_slave_0) entered blocking state [ 271.631296][ T3765] bridge0: port 1(bridge_slave_0) entered disabled state [ 271.646386][ T3765] device bridge_slave_0 entered promiscuous mode [ 271.666997][ T3752] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 271.673415][ T3752] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 271.721620][ T3752] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 271.829058][ T3765] bridge0: port 2(bridge_slave_1) entered blocking state [ 271.835708][ T3765] bridge0: port 2(bridge_slave_1) entered disabled state [ 271.849391][ T3765] device bridge_slave_1 entered promiscuous mode [ 271.978234][ T3751] device hsr_slave_0 entered promiscuous mode [ 271.989400][ T3751] device hsr_slave_1 entered promiscuous mode [ 272.536424][ T63] Bluetooth: hci1: command 0x040f tx timeout [ 272.546420][ T3759] Bluetooth: hci2: command 0x040f tx timeout [ 272.591778][ T63] Bluetooth: hci3: command 0x040f tx timeout [ 272.620951][ T3759] Bluetooth: hci0: command 0x040f tx timeout [ 272.622249][ T3750] device hsr_slave_0 entered promiscuous mode [ 272.640747][ T3750] device hsr_slave_1 entered promiscuous mode [ 272.655164][ T3750] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 272.669704][ T3750] Cannot create hsr debugfs directory [ 272.684848][ T3765] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 272.924636][ T3765] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 272.989992][ T3752] device hsr_slave_0 entered promiscuous mode [ 273.004763][ T3752] device hsr_slave_1 entered promiscuous mode [ 273.022052][ T3752] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 273.037548][ T3752] Cannot create hsr debugfs directory [ 273.224577][ T3765] team0: Port device team_slave_0 added [ 273.351106][ T3765] team0: Port device team_slave_1 added [ 273.690215][ T3765] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 273.697532][ T3765] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 273.724062][ T3765] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 273.743780][ T3765] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 273.756870][ T3765] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 273.824688][ T3765] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 274.250364][ T3765] device hsr_slave_0 entered promiscuous mode [ 274.262060][ T3765] device hsr_slave_1 entered promiscuous mode [ 274.272177][ T3765] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 274.283319][ T3765] Cannot create hsr debugfs directory [ 274.505020][ T3751] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 274.579014][ T3751] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 274.616508][ T63] Bluetooth: hci3: command 0x0419 tx timeout [ 274.618317][ T3759] Bluetooth: hci1: command 0x0419 tx timeout [ 274.618444][ T3756] Bluetooth: hci2: command 0x0419 tx timeout [ 274.683308][ T3751] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 274.706672][ T3764] Bluetooth: hci0: command 0x0419 tx timeout [ 274.723504][ T3751] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 274.852177][ T3750] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 274.866968][ T3750] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 274.912611][ T3750] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 275.013333][ T3750] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 275.125912][ T1369] ieee802154 phy0 wpan0: encryption failed: -22 [ 275.125961][ T3752] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 275.144966][ T1369] ieee802154 phy1 wpan1: encryption failed: -22 [ 275.185401][ T3752] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 275.219650][ T3752] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 275.235399][ T3752] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 275.317583][ T3765] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 275.344939][ T3765] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 275.369673][ T3751] 8021q: adding VLAN 0 to HW filter on device bond0 [ 275.386466][ T3765] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 275.403794][ T3765] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 275.450679][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 275.462846][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 275.479205][ T3751] 8021q: adding VLAN 0 to HW filter on device team0 [ 275.530272][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 275.550174][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 275.567352][ T3797] bridge0: port 1(bridge_slave_0) entered blocking state [ 275.575610][ T3797] bridge0: port 1(bridge_slave_0) entered forwarding state [ 275.585917][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 275.619811][ T3750] 8021q: adding VLAN 0 to HW filter on device bond0 [ 275.649259][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 275.664416][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 275.681718][ T3796] bridge0: port 2(bridge_slave_1) entered blocking state [ 275.690050][ T3796] bridge0: port 2(bridge_slave_1) entered forwarding state [ 275.748066][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 275.758098][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 275.767285][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 275.796221][ T3750] 8021q: adding VLAN 0 to HW filter on device team0 [ 275.837666][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 275.869653][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 275.881768][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 275.910233][ T3797] bridge0: port 1(bridge_slave_0) entered blocking state [ 275.921389][ T3797] bridge0: port 1(bridge_slave_0) entered forwarding state [ 275.950102][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 275.961775][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 275.975520][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 276.035227][ T3752] 8021q: adding VLAN 0 to HW filter on device bond0 [ 276.062803][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 276.072030][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 276.086827][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 276.100804][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 276.119329][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 276.150024][ T3752] 8021q: adding VLAN 0 to HW filter on device team0 [ 276.172817][ T3751] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 276.186573][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 276.198819][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 276.209543][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 276.220975][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 276.229376][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 276.239381][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 276.253767][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 276.271676][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 276.285354][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 276.342805][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 276.354673][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 276.380273][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 276.407528][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 276.422160][ T3796] bridge0: port 1(bridge_slave_0) entered blocking state [ 276.433915][ T3796] bridge0: port 1(bridge_slave_0) entered forwarding state [ 276.444185][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 276.454293][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 276.464487][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 276.477059][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 276.487366][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 276.497063][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 276.507022][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 276.517937][ T3796] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 276.570106][ T3750] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 276.621111][ T38] audit: type=1400 audit(1669624453.562:97): avc: denied { sys_module } for pid=3751 comm="syz-executor.2" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 276.632751][ T3765] 8021q: adding VLAN 0 to HW filter on device bond0 [ 276.730244][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 276.747340][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 276.760976][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 276.773579][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 276.784737][ T836] bridge0: port 2(bridge_slave_1) entered blocking state [ 276.791715][ T836] bridge0: port 2(bridge_slave_1) entered forwarding state [ 276.800908][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 276.810682][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 276.819783][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 276.829174][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 276.842368][ T836] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 276.902846][ T3765] 8021q: adding VLAN 0 to HW filter on device team0 [ 276.934771][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 276.945957][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 276.958516][ T3797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready VM DIAGNOSIS: 08:34:04 Registers: info registers vcpu 0 RAX=0000000000000000 RBX=ffffffff8c2bc9c0 RCX=ffffffff89ecece5 RDX=ffffed10058c6b92 RSI=0000000000000000 RDI=ffffffff89f00f73 RBP=dffffc0000000000 RSP=ffffffff8c207e10 R8 =0000000000000000 R9 =ffff88802c635c8b R10=ffffed10058c6b91 R11=0000000000000001 R12=0000000000000000 R13=0000000000000000 R14=ffffffff8e50f2d0 R15=0000000000000000 RIP=ffffffff89f0065f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00000000 FS =0000 0000000000000000 ffffffff 00000000 GS =0000 ffff88802c600000 ffffffff 00000000 LDT=0000 0000000000000000 ffffffff 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fa8d03821c0 CR3=000000006366b000 CR4=00150ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000ff000000000000ff0000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000001 RBX=ffff888012d061c0 RCX=ffffffff89ecece5 RDX=ffffed10058e6b92 RSI=0000000000000000 RDI=ffffffff89f00f73 RBP=dffffc0000000000 RSP=ffffc9000066fdf8 R8 =0000000000000000 R9 =ffff88802c735c8b R10=ffffed10058e6b91 R11=0000000000000001 R12=0000000000000001 R13=0000000000000001 R14=ffffffff8e50f2d0 R15=0000000000000000 RIP=ffffffff89f0065f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00000000 FS =0000 0000000000000000 ffffffff 00000000 GS =0000 ffff88802c700000 ffffffff 00000000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6f4f6d8a98 CR3=0000000065885000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=ffffffffffffffffff00000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=0000000000000032 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff84672fe5 RDI=ffffffff91c92de0 RBP=ffffffff91c92da0 RSP=ffffc90002f56550 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=2d2d2d2d2d2d2d2d R12=0000000000000000 R13=0000000000000032 R14=ffffffff84672f80 R15=0000000000000000 RIP=ffffffff8467300f RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00005555570d4400 ffffffff 00c00000 GS =0000 ffff88802c800000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6f502d4620 CR3=00000000634bb000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=0000ff000000ff000000000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000000000000003 RBX=ffff888012d0a240 RCX=ffffffff89ecece5 RDX=ffffed1005926b92 RSI=0000000000000000 RDI=ffffffff89f00f73 RBP=dffffc0000000000 RSP=ffffc9000068fdf8 R8 =0000000000000000 R9 =ffff88802c935c8b R10=ffffed1005926b91 R11=0000000000000001 R12=0000000000000003 R13=0000000000000003 R14=ffffffff8e50f2d0 R15=0000000000000000 RIP=ffffffff89f0065f RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802c900000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffe65efa020 CR3=00000000631b0000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000ff000000000000 XMM05=00000000000000000000000000000000 XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000