last executing test programs: 1m59.398862588s ago: executing program 1 (id=402): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r2 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_vgic_v3_setup(r4, 0x4, 0x40) ioctl$KVM_SET_DEVICE_ATTR(r2, 0x4018aee1, &(0x7f00000000c0)=@attr_other={0x0, 0x1, 0x84, &(0x7f0000000000)=0x1}) 1m53.199998334s ago: executing program 0 (id=403): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x800454df, 0x0) 1m40.671503842s ago: executing program 1 (id=404): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000010000000000000008"]) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0xffffff7f, 0xff25) 1m25.123338338s ago: executing program 0 (id=405): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0x10000000000001, 0xe80) 1m15.609124826s ago: executing program 1 (id=406): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x8600, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x101000, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_setup_cpu$arm64(r2, r4, &(0x7f0000bfd000/0x400000)=nil, &(0x7f0000000580)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) syz_kvm_setup_cpu$arm64(0xffffffffffffffff, r4, &(0x7f0000bff000/0x400000)=nil, &(0x7f0000000780)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) 58.852855666s ago: executing program 0 (id=407): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x101000, 0x0) ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_SET_DEVICE_ATTR_vm(r1, 0x4018aee1, &(0x7f0000000180)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000140)={0x3, 0x80000001, 0x1}}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r3, &(0x7f0000bee000/0x400000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0400000000000000400000"], 0x40}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r3, 0xae80, 0x0) 53.582254631s ago: executing program 1 (id=408): r0 = openat$kvm(0x0, &(0x7f0000000100), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0}], 0x1, 0x0, 0x0, 0x0) r3 = syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r3, 0x4018aee1, &(0x7f0000000140)=@attr_other={0x0, 0x6, 0x1, &(0x7f00000000c0)=0x101}) 39.57249952s ago: executing program 0 (id=409): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, 0x0, 0xe00) 34.991580527s ago: executing program 1 (id=410): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x8000000}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="050000000000000018"], 0x18}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 14.699011063s ago: executing program 1 (id=411): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x54e3, 0x0) close(0x5) 12.350696254s ago: executing program 0 (id=412): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) munmap(&(0x7f0000002000/0x4000)=nil, 0x4000) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) close(0x3) close(0x4) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000140)={0x10000}) close(0x4) 0s ago: executing program 0 (id=413): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) kernel console output (not intermixed with test programs): [ 490.977567][ T3119] 8021q: adding VLAN 0 to HW filter on device bond0 [ 575.265575][ T3119] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:44651' (ED25519) to the list of known hosts. [ 800.020273][ T24] audit: type=1400 audit(799.000:74): avc: denied { name_bind } for pid=3274 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 801.398013][ T24] audit: type=1400 audit(800.380:75): avc: denied { execute } for pid=3276 comm="sh" name="syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 801.419018][ T24] audit: type=1400 audit(800.400:76): avc: denied { execute_no_trans } for pid=3276 comm="sh" path="/syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 837.648079][ T24] audit: type=1400 audit(836.630:77): avc: denied { mounton } for pid=3276 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1737 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 837.715806][ T24] audit: type=1400 audit(836.690:78): avc: denied { mount } for pid=3276 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 837.837937][ T3276] cgroup: Unknown subsys name 'net' [ 837.906594][ T24] audit: type=1400 audit(836.890:79): avc: denied { unmount } for pid=3276 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 838.454080][ T3276] cgroup: Unknown subsys name 'cpuset' [ 838.588944][ T3276] cgroup: Unknown subsys name 'rlimit' [ 840.020223][ T24] audit: type=1400 audit(839.000:80): avc: denied { setattr } for pid=3276 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 840.056262][ T24] audit: type=1400 audit(839.020:81): avc: denied { create } for pid=3276 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 840.093842][ T24] audit: type=1400 audit(839.050:82): avc: denied { write } for pid=3276 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 840.117202][ T24] audit: type=1400 audit(839.100:83): avc: denied { module_request } for pid=3276 comm="syz-executor" kmod="net-pf-16-proto-16-family-nl802154" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 840.816825][ T24] audit: type=1400 audit(839.790:84): avc: denied { read } for pid=3276 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 840.889735][ T24] audit: type=1400 audit(839.870:85): avc: denied { mounton } for pid=3276 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 840.914994][ T24] audit: type=1400 audit(839.890:86): avc: denied { mount } for pid=3276 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 842.427490][ T3280] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 842.796900][ T24] kauditd_printk_skb: 2 callbacks suppressed [ 842.797213][ T24] audit: type=1400 audit(841.770:89): avc: denied { read } for pid=3276 comm="syz-executor" name="swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 842.841007][ T24] audit: type=1400 audit(841.790:90): avc: denied { open } for pid=3276 comm="syz-executor" path="/swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 842.897907][ T3276] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 904.839883][ T24] audit: type=1400 audit(903.820:91): avc: denied { execmem } for pid=3281 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 905.077576][ T24] audit: type=1400 audit(904.040:92): avc: denied { mounton } for pid=3281 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 905.133819][ T24] audit: type=1400 audit(904.070:93): avc: denied { mount } for pid=3281 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 905.231080][ T24] audit: type=1400 audit(904.210:94): avc: denied { read } for pid=3281 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 905.248435][ T24] audit: type=1400 audit(904.220:95): avc: denied { open } for pid=3281 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 905.363027][ T24] audit: type=1400 audit(904.340:96): avc: denied { mounton } for pid=3281 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 907.818772][ T24] audit: type=1400 audit(906.800:97): avc: denied { mounton } for pid=3281 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=1511 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 907.991359][ T24] audit: type=1400 audit(906.960:98): avc: denied { mount } for pid=3281 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 908.008343][ T24] audit: type=1400 audit(906.980:99): avc: denied { mount } for pid=3283 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 908.085760][ T24] audit: type=1401 audit(907.060:100): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" [ 910.031216][ T24] kauditd_printk_skb: 6 callbacks suppressed [ 910.056429][ T24] audit: type=1400 audit(909.010:107): avc: denied { read write } for pid=3283 comm="syz-executor" name="loop1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 910.144114][ T24] audit: type=1400 audit(909.070:108): avc: denied { open } for pid=3283 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=638 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 910.194559][ T24] audit: type=1400 audit(909.170:109): avc: denied { ioctl } for pid=3283 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=638 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 912.446536][ T24] audit: type=1400 audit(911.340:110): avc: denied { read } for pid=3285 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 912.527193][ T24] audit: type=1400 audit(911.500:111): avc: denied { open } for pid=3285 comm="syz.1.2" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 912.817444][ T24] audit: type=1400 audit(911.800:112): avc: denied { write } for pid=3285 comm="syz.1.2" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 914.174579][ T24] audit: type=1400 audit(913.140:113): avc: denied { create } for pid=3284 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 914.648382][ T24] audit: type=1400 audit(913.620:114): avc: denied { sys_admin } for pid=3284 comm="syz-executor" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 919.317737][ T24] audit: type=1400 audit(918.300:115): avc: denied { sys_chroot } for pid=3288 comm="syz-executor" capability=18 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 920.269129][ T3288] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 920.605394][ T24] audit: type=1400 audit(919.580:116): avc: denied { mount } for pid=3289 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 1038.357565][ T24] audit: type=1400 audit(1037.320:117): avc: denied { sys_module } for pid=3301 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 1070.898591][ T3301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1071.385080][ T3301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1072.538966][ T3303] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1073.106395][ T3303] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1093.613592][ T3301] hsr_slave_0: entered promiscuous mode [ 1093.719769][ T3301] hsr_slave_1: entered promiscuous mode [ 1094.696940][ T3303] hsr_slave_0: entered promiscuous mode [ 1094.779491][ T3303] hsr_slave_1: entered promiscuous mode [ 1094.864709][ T3303] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1094.870481][ T3303] Cannot create hsr debugfs directory [ 1102.249056][ T3301] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1102.947985][ T3301] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1103.447862][ T3301] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1104.043373][ T3301] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1105.980233][ T3303] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 1106.288992][ T3303] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 1106.510167][ T3303] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 1106.718797][ T3303] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 1127.296869][ T3301] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1130.168286][ T3303] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1224.077393][ T3301] veth0_vlan: entered promiscuous mode [ 1224.736405][ T3301] veth1_vlan: entered promiscuous mode [ 1227.009065][ T3303] veth0_vlan: entered promiscuous mode [ 1228.199033][ T3303] veth1_vlan: entered promiscuous mode [ 1229.165147][ T3301] veth0_macvtap: entered promiscuous mode [ 1230.057636][ T3301] veth1_macvtap: entered promiscuous mode [ 1231.994404][ T3303] veth0_macvtap: entered promiscuous mode [ 1232.870135][ T3303] veth1_macvtap: entered promiscuous mode [ 1233.398530][ T3301] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1233.427044][ T3301] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1233.429312][ T3301] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1233.465251][ T3301] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1237.048721][ T3303] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1237.051114][ T3303] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1237.108525][ T3303] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1237.111098][ T3303] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.155134][ T24] audit: type=1400 audit(1272.120:118): avc: denied { ioctl } for pid=3458 comm="syz.1.8" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1377.597398][ T24] audit: type=1400 audit(1376.560:119): avc: denied { execute } for pid=3503 comm="syz.1.26" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=4003 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1474.398493][ T24] audit: type=1400 audit(1473.370:120): avc: denied { append } for pid=3541 comm="syz.1.42" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1695.183809][ T24] audit: type=1400 audit(1694.160:121): avc: denied { setattr } for pid=3632 comm="syz.1.80" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2641.864701][ T24] audit: type=1400 audit(2640.830:122): avc: denied { map } for pid=4032 comm="syz.0.205" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 3135.085222][ T24] audit: type=1400 audit(3134.010:123): avc: denied { map } for pid=4239 comm="syz.0.266" path="pipe:[2968]" dev="pipefs" ino=2968 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 3576.037616][ T4429] kvm [4429]: Failed to find VMA for hva 0x21016000 [ 4363.605773][ T4765] KVM: debugfs: duplicate directory 4765-4 [ 4378.255977][ T4771] Unable to handle kernel paging request at virtual address efff800000000001 [ 4378.376165][ T4771] KASAN: null-ptr-deref in range [0x0000000000000010-0x000000000000001f] [ 4378.378569][ T4771] Mem abort info: [ 4378.380123][ T4771] ESR = 0x0000000096000005 [ 4378.583857][ T4771] EC = 0x25: DABT (current EL), IL = 32 bits [ 4378.585976][ T4771] SET = 0, FnV = 0 [ 4378.587495][ T4771] EA = 0, S1PTW = 0 [ 4378.589059][ T4771] FSC = 0x05: level 1 translation fault [ 4378.590751][ T4771] Data abort info: [ 4378.799155][ T4771] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 4378.801284][ T4771] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 4378.938274][ T4771] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 4378.940327][ T4771] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000044b18000 [ 4379.135878][ T4771] [efff800000000001] pgd=1000000049a4e003, p4d=1000000049a4f003, pud=0000000000000000 [ 4379.141626][ T4771] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP [ 4379.143658][ T4771] Modules linked in: [ 4379.145626][ T4771] CPU: 0 UID: 0 PID: 4771 Comm: syz.0.413 Not tainted 6.13.0-rc3-syzkaller-g0474d2287f08 #0 [ 4379.147993][ T4771] Hardware name: linux,dummy-virt (DT) [ 4379.149649][ T4771] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 4379.151498][ T4771] pc : __hwasan_check_x0_67043362+0x4/0x30 [ 4379.154191][ T4771] lr : vgic_its_save_tables_v0+0x25c/0x7e0 [ 4379.155761][ T4771] sp : ffff8000a2447bc0 [ 4379.156959][ T4771] x29: ffff8000a2447c30 x28: 41f0000018eb8000 x27: 0000000000000000 [ 4379.161223][ T4771] x26: 0000000000000000 x25: f1f00000196cc740 x24: 0000000000000000 [ 4379.163431][ T4771] x23: 36f000001955a180 x22: 0000000000000000 x21: 05f00000196cc7d0 [ 4379.165521][ T4771] x20: 05f00000196cc7d0 x19: efff800000000000 x18: 0000000000000004 [ 4379.167675][ T4771] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000 [ 4379.169708][ T4771] x14: 00000000000206b4 x13: ffff800083b30960 x12: 0000000000000028 [ 4379.171912][ T4771] x11: 0000000000000000 x10: 0000000000002000 x9 : efff800000000000 [ 4379.174184][ T4771] x8 : 0000000020000000 x7 : ffff8000801176b4 x6 : 0000000000000000 [ 4379.176356][ T4771] x5 : 0000000000000000 x4 : 41f0000018eb8b30 x3 : 5aff8000a244e3d0 [ 4379.178557][ T4771] x2 : ffff800080117730 x1 : 0000000000000001 x0 : 0000000000000010 [ 4379.180966][ T4771] Call trace: [ 4379.182137][ T4771] __hwasan_check_x0_67043362+0x4/0x30 (P) [ 4379.184172][ T4771] vgic_its_set_attr+0x394/0x508 [ 4379.185784][ T4771] kvm_device_ioctl_attr+0x150/0x18c [ 4379.187173][ T4771] kvm_device_ioctl+0x154/0x1b0 [ 4379.188633][ T4771] __arm64_sys_ioctl+0x108/0x188 [ 4379.190142][ T4771] invoke_syscall+0x78/0x1b8 [ 4379.191470][ T4771] el0_svc_common+0xe8/0x1b0 [ 4379.192871][ T4771] do_el0_svc+0x40/0x50 [ 4379.194186][ T4771] el0_svc+0x54/0x14c [ 4379.195469][ T4771] el0t_64_sync_handler+0x84/0x108 [ 4379.196972][ T4771] el0t_64_sync+0x198/0x19c [ 4379.198798][ T4771] Code: a90efbfd d2800401 143b666d 9344dc10 (38706930) [ 4379.201130][ T4771] ---[ end trace 0000000000000000 ]--- [ 4379.203221][ T4771] Kernel panic - not syncing: Oops: Fatal exception [ 4379.206098][ T4771] Kernel Offset: disabled [ 4379.207259][ T4771] CPU features: 0x000,000000d0,00bef2f8,837ffe1f [ 4379.208793][ T4771] Memory Limit: none [ 4379.210517][ T4771] Rebooting in 86400 seconds.. VM DIAGNOSIS: 17:17:13 Registers: info registers vcpu 0 CPU#0 PC=ffff800083a692ac X00=0000000000000000 X01=1850da27a2bd7a54 X02=0000000000000000 X03=ffff800083a6927c X04=ffff800080007828 X05=0000000000000000 X06=0000000000000000 X07=ffff800083091d48 X08=41f0000018eb8000 X09=0000000000000000 X10=0000000000ff0100 X11=000000000000003a X12=41f0000018eb8000 X13=0000000000000002 X14=0000000000000000 X15=41f0000018eb8a80 X16=0000000000000005 X17=fff07fffee504000 X18=0000000000000001 X19=05f000001097cd00 X20=05f000001097cd00 X21=05f000001097cd28 X22=4af0000019511462 X23=0000000000000028 X24=000000000000004c X25=05f000001097cd38 X26=0000000000000014 X27=05f000001097cd38 X28=4af000001951144e X29=ffff8000800078c0 X30=ffff80008342d96c SP=ffff8000800078c0 PSTATE=20402009 --C- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=1000000000000000:1000000000000000 Z01=0000001000000000:0000000000000000 Z02=0000000000000010:0000000000000000 Z03=00d000a800000000:0000000000000000 Z04=0000000000000000:0000000000000002 Z05=0000000000000010:0000000000000002 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffca46cd90:0000ffffca46cd90 Z17=ffffff80ffffffd0:0000ffffca46cd60 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000