syzkaller login: [ 116.844624][ T47] audit: type=1400 audit(1611877438.102:41): avc: denied { map } for pid=10810 comm="bash" path="/bin/bash" dev="sda1" ino=1457 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 Warning: Permanently added '[localhost]:27928' (ECDSA) to the list of known hosts. [ 122.393876][ T47] audit: type=1400 audit(1611877443.652:42): avc: denied { map } for pid=10824 comm="syz-fuzzer" path="/syz-fuzzer" dev="sda1" ino=16526 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:object_r:file_t:s0 tclass=file permissive=1 2021/01/28 23:44:03 fuzzer started 2021/01/28 23:44:04 dialing manager at 10.0.2.10:43529 2021/01/28 23:44:04 syscalls: 3496 2021/01/28 23:44:04 code coverage: enabled 2021/01/28 23:44:04 comparison tracing: enabled 2021/01/28 23:44:04 extra coverage: enabled 2021/01/28 23:44:04 setuid sandbox: enabled 2021/01/28 23:44:04 namespace sandbox: enabled 2021/01/28 23:44:04 Android sandbox: /sys/fs/selinux/policy does not exist 2021/01/28 23:44:04 fault injection: enabled 2021/01/28 23:44:04 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2021/01/28 23:44:04 net packet injection: enabled 2021/01/28 23:44:04 net device setup: enabled 2021/01/28 23:44:04 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2021/01/28 23:44:04 devlink PCI setup: PCI device 0000:00:10.0 is not available 2021/01/28 23:44:04 USB emulation: enabled 2021/01/28 23:44:04 hci packet injection: enabled 2021/01/28 23:44:04 wifi device emulation: enabled [ 123.419867][ T47] audit: type=1400 audit(1611877444.672:43): avc: denied { integrity } for pid=10842 comm="syz-executor" lockdown_reason="debugfs access" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=lockdown permissive=1 2021/01/28 23:44:04 fetching corpus: 0, signal 0/2000 (executing program) 2021/01/28 23:44:04 fetching corpus: 50, signal 38213/41910 (executing program) 2021/01/28 23:44:05 fetching corpus: 100, signal 57021/62330 (executing program) 2021/01/28 23:44:05 fetching corpus: 150, signal 68708/75586 (executing program) 2021/01/28 23:44:05 fetching corpus: 200, signal 75788/84243 (executing program) 2021/01/28 23:44:06 fetching corpus: 250, signal 85306/95227 (executing program) 2021/01/28 23:44:06 fetching corpus: 300, signal 93099/104451 (executing program) 2021/01/28 23:44:06 fetching corpus: 350, signal 100640/113332 (executing program) 2021/01/28 23:44:06 fetching corpus: 400, signal 112679/126438 (executing program) 2021/01/28 23:44:06 fetching corpus: 450, signal 119045/134075 (executing program) 2021/01/28 23:44:07 fetching corpus: 500, signal 123532/139879 (executing program) 2021/01/28 23:44:07 fetching corpus: 550, signal 128582/146111 (executing program) 2021/01/28 23:44:07 fetching corpus: 600, signal 131384/150202 (executing program) 2021/01/28 23:44:07 fetching corpus: 650, signal 137311/157168 (executing program) 2021/01/28 23:44:07 fetching corpus: 700, signal 139882/160966 (executing program) 2021/01/28 23:44:08 fetching corpus: 750, signal 144071/166269 (executing program) 2021/01/28 23:44:08 fetching corpus: 800, signal 146416/169869 (executing program) 2021/01/28 23:44:08 fetching corpus: 850, signal 150239/174827 (executing program) 2021/01/28 23:44:08 fetching corpus: 900, signal 153625/179310 (executing program) 2021/01/28 23:44:08 fetching corpus: 950, signal 157085/183797 (executing program) 2021/01/28 23:44:09 fetching corpus: 1000, signal 160714/188417 (executing program) 2021/01/28 23:44:09 fetching corpus: 1050, signal 163414/192101 (executing program) 2021/01/28 23:44:09 fetching corpus: 1100, signal 167729/197284 (executing program) 2021/01/28 23:44:09 fetching corpus: 1150, signal 170268/200920 (executing program) 2021/01/28 23:44:09 fetching corpus: 1200, signal 173038/204692 (executing program) 2021/01/28 23:44:10 fetching corpus: 1250, signal 175530/208149 (executing program) 2021/01/28 23:44:10 fetching corpus: 1300, signal 177474/211090 (executing program) 2021/01/28 23:44:10 fetching corpus: 1350, signal 179629/214235 (executing program) 2021/01/28 23:44:11 fetching corpus: 1400, signal 181721/217321 (executing program) 2021/01/28 23:44:11 fetching corpus: 1450, signal 185051/221426 (executing program) 2021/01/28 23:44:11 fetching corpus: 1500, signal 187613/224865 (executing program) 2021/01/28 23:44:12 fetching corpus: 1550, signal 189525/227705 (executing program) 2021/01/28 23:44:12 fetching corpus: 1600, signal 191704/230786 (executing program) 2021/01/28 23:44:12 fetching corpus: 1650, signal 194434/234338 (executing program) 2021/01/28 23:44:12 fetching corpus: 1700, signal 196014/236853 (executing program) 2021/01/28 23:44:12 fetching corpus: 1750, signal 197749/239500 (executing program) 2021/01/28 23:44:13 fetching corpus: 1800, signal 200130/242671 (executing program) 2021/01/28 23:44:13 fetching corpus: 1850, signal 201679/245098 (executing program) 2021/01/28 23:44:13 fetching corpus: 1900, signal 204894/248890 (executing program) 2021/01/28 23:44:13 fetching corpus: 1950, signal 206442/251301 (executing program) 2021/01/28 23:44:13 fetching corpus: 2000, signal 208425/254081 (executing program) 2021/01/28 23:44:14 fetching corpus: 2050, signal 210131/256624 (executing program) 2021/01/28 23:44:15 fetching corpus: 2100, signal 211796/259095 (executing program) 2021/01/28 23:44:15 fetching corpus: 2150, signal 213321/261471 (executing program) 2021/01/28 23:44:15 fetching corpus: 2200, signal 214673/263638 (executing program) 2021/01/28 23:44:15 fetching corpus: 2250, signal 217212/266819 (executing program) 2021/01/28 23:44:16 fetching corpus: 2300, signal 218822/269140 (executing program) 2021/01/28 23:44:16 fetching corpus: 2350, signal 220241/271297 (executing program) 2021/01/28 23:44:16 fetching corpus: 2400, signal 221500/273355 (executing program) 2021/01/28 23:44:16 fetching corpus: 2450, signal 222699/275373 (executing program) 2021/01/28 23:44:17 fetching corpus: 2500, signal 224475/277849 (executing program) 2021/01/28 23:44:17 fetching corpus: 2550, signal 226442/280449 (executing program) 2021/01/28 23:44:17 fetching corpus: 2600, signal 227950/282681 (executing program) 2021/01/28 23:44:17 fetching corpus: 2650, signal 229201/284671 (executing program) 2021/01/28 23:44:17 fetching corpus: 2700, signal 231096/287154 (executing program) 2021/01/28 23:44:18 fetching corpus: 2750, signal 232222/289038 (executing program) 2021/01/28 23:44:18 fetching corpus: 2800, signal 234070/291436 (executing program) 2021/01/28 23:44:18 fetching corpus: 2850, signal 236620/294362 (executing program) 2021/01/28 23:44:18 fetching corpus: 2900, signal 237640/296119 (executing program) 2021/01/28 23:44:18 fetching corpus: 2950, signal 239221/298305 (executing program) 2021/01/28 23:44:18 fetching corpus: 3000, signal 240726/300389 (executing program) 2021/01/28 23:44:19 fetching corpus: 3050, signal 241991/302350 (executing program) 2021/01/28 23:44:19 fetching corpus: 3100, signal 243349/304332 (executing program) 2021/01/28 23:44:19 fetching corpus: 3150, signal 244794/306368 (executing program) 2021/01/28 23:44:19 fetching corpus: 3200, signal 246011/308224 (executing program) 2021/01/28 23:44:19 fetching corpus: 3250, signal 247713/310398 (executing program) 2021/01/28 23:44:20 fetching corpus: 3300, signal 249350/312494 (executing program) 2021/01/28 23:44:20 fetching corpus: 3350, signal 250608/314317 (executing program) 2021/01/28 23:44:20 fetching corpus: 3400, signal 251797/316097 (executing program) 2021/01/28 23:44:20 fetching corpus: 3450, signal 253829/318467 (executing program) 2021/01/28 23:44:20 fetching corpus: 3500, signal 255818/320774 (executing program) 2021/01/28 23:44:20 fetching corpus: 3550, signal 256752/322331 (executing program) 2021/01/28 23:44:21 fetching corpus: 3600, signal 257890/324068 (executing program) 2021/01/28 23:44:21 fetching corpus: 3650, signal 259191/325911 (executing program) 2021/01/28 23:44:21 fetching corpus: 3700, signal 260312/327567 (executing program) 2021/01/28 23:44:22 fetching corpus: 3750, signal 261619/329339 (executing program) 2021/01/28 23:44:22 fetching corpus: 3800, signal 263117/331257 (executing program) 2021/01/28 23:44:22 fetching corpus: 3850, signal 264569/333141 (executing program) 2021/01/28 23:44:22 fetching corpus: 3900, signal 266118/334996 (executing program) 2021/01/28 23:44:23 fetching corpus: 3950, signal 268324/337346 (executing program) 2021/01/28 23:44:23 fetching corpus: 4000, signal 269008/338657 (executing program) 2021/01/28 23:44:23 fetching corpus: 4050, signal 269956/340148 (executing program) 2021/01/28 23:44:23 fetching corpus: 4100, signal 270915/341602 (executing program) 2021/01/28 23:44:23 fetching corpus: 4150, signal 272340/343398 (executing program) 2021/01/28 23:44:24 fetching corpus: 4200, signal 273336/344893 (executing program) 2021/01/28 23:44:24 fetching corpus: 4250, signal 275162/346932 (executing program) 2021/01/28 23:44:24 fetching corpus: 4300, signal 276747/348719 (executing program) 2021/01/28 23:44:24 fetching corpus: 4350, signal 277542/350074 (executing program) 2021/01/28 23:44:24 fetching corpus: 4400, signal 278495/351454 (executing program) 2021/01/28 23:44:24 fetching corpus: 4450, signal 279490/352881 (executing program) 2021/01/28 23:44:25 fetching corpus: 4500, signal 280037/354035 (executing program) 2021/01/28 23:44:25 fetching corpus: 4550, signal 281706/355844 (executing program) 2021/01/28 23:44:25 fetching corpus: 4600, signal 282593/357230 (executing program) 2021/01/28 23:44:25 fetching corpus: 4650, signal 283497/358594 (executing program) 2021/01/28 23:44:25 fetching corpus: 4700, signal 284911/360251 (executing program) 2021/01/28 23:44:26 fetching corpus: 4750, signal 285661/361487 (executing program) 2021/01/28 23:44:26 fetching corpus: 4800, signal 286465/362743 (executing program) 2021/01/28 23:44:26 fetching corpus: 4850, signal 287607/364155 (executing program) 2021/01/28 23:44:26 fetching corpus: 4900, signal 288353/365413 (executing program) 2021/01/28 23:44:26 fetching corpus: 4950, signal 289415/366780 (executing program) 2021/01/28 23:44:27 fetching corpus: 5000, signal 290393/368115 (executing program) 2021/01/28 23:44:27 fetching corpus: 5050, signal 291421/369465 (executing program) 2021/01/28 23:44:27 fetching corpus: 5100, signal 292089/370613 (executing program) 2021/01/28 23:44:27 fetching corpus: 5150, signal 293199/372006 (executing program) 2021/01/28 23:44:27 fetching corpus: 5200, signal 293728/373055 (executing program) 2021/01/28 23:44:28 fetching corpus: 5250, signal 294525/374233 (executing program) 2021/01/28 23:44:28 fetching corpus: 5300, signal 295341/375455 (executing program) 2021/01/28 23:44:28 fetching corpus: 5350, signal 296368/376758 (executing program) 2021/01/28 23:44:29 fetching corpus: 5400, signal 297446/378089 (executing program) 2021/01/28 23:44:29 fetching corpus: 5450, signal 298245/379220 (executing program) 2021/01/28 23:44:29 fetching corpus: 5500, signal 298945/380318 (executing program) 2021/01/28 23:44:29 fetching corpus: 5550, signal 299780/381506 (executing program) 2021/01/28 23:44:29 fetching corpus: 5600, signal 300462/382592 (executing program) 2021/01/28 23:44:30 fetching corpus: 5650, signal 301280/383757 (executing program) 2021/01/28 23:44:30 fetching corpus: 5700, signal 301900/384782 (executing program) 2021/01/28 23:44:30 fetching corpus: 5750, signal 302962/386068 (executing program) 2021/01/28 23:44:30 fetching corpus: 5800, signal 303859/387243 (executing program) 2021/01/28 23:44:30 fetching corpus: 5850, signal 304450/388236 (executing program) 2021/01/28 23:44:30 fetching corpus: 5900, signal 304927/389143 (executing program) 2021/01/28 23:44:31 fetching corpus: 5950, signal 305589/390172 (executing program) 2021/01/28 23:44:31 fetching corpus: 6000, signal 306454/391286 (executing program) 2021/01/28 23:44:31 fetching corpus: 6050, signal 307288/392406 (executing program) 2021/01/28 23:44:31 fetching corpus: 6100, signal 308179/393522 (executing program) 2021/01/28 23:44:31 fetching corpus: 6150, signal 309531/394852 (executing program) 2021/01/28 23:44:32 fetching corpus: 6200, signal 310133/395859 (executing program) 2021/01/28 23:44:32 fetching corpus: 6250, signal 311017/397032 (executing program) 2021/01/28 23:44:32 fetching corpus: 6300, signal 311791/398031 (executing program) 2021/01/28 23:44:32 fetching corpus: 6350, signal 312320/398984 (executing program) 2021/01/28 23:44:32 fetching corpus: 6400, signal 313305/400085 (executing program) 2021/01/28 23:44:33 fetching corpus: 6450, signal 313889/400982 (executing program) 2021/01/28 23:44:33 fetching corpus: 6500, signal 314420/401886 (executing program) 2021/01/28 23:44:33 fetching corpus: 6550, signal 315441/402990 (executing program) 2021/01/28 23:44:33 fetching corpus: 6600, signal 316026/403903 (executing program) 2021/01/28 23:44:33 fetching corpus: 6650, signal 316830/404912 (executing program) 2021/01/28 23:44:34 fetching corpus: 6700, signal 318038/406068 (executing program) 2021/01/28 23:44:34 fetching corpus: 6750, signal 319013/407166 (executing program) 2021/01/28 23:44:34 fetching corpus: 6800, signal 319623/408060 (executing program) 2021/01/28 23:44:34 fetching corpus: 6850, signal 320323/408991 (executing program) 2021/01/28 23:44:34 fetching corpus: 6900, signal 321372/410063 (executing program) 2021/01/28 23:44:35 fetching corpus: 6950, signal 321817/410873 (executing program) 2021/01/28 23:44:35 fetching corpus: 7000, signal 322955/411968 (executing program) 2021/01/28 23:44:35 fetching corpus: 7050, signal 323513/412828 (executing program) 2021/01/28 23:44:35 fetching corpus: 7100, signal 324163/413738 (executing program) 2021/01/28 23:44:35 fetching corpus: 7150, signal 324761/414587 (executing program) 2021/01/28 23:44:35 fetching corpus: 7200, signal 325246/415371 (executing program) 2021/01/28 23:44:36 fetching corpus: 7250, signal 325956/416265 (executing program) 2021/01/28 23:44:36 fetching corpus: 7300, signal 326574/417153 (executing program) 2021/01/28 23:44:36 fetching corpus: 7350, signal 327335/418059 (executing program) 2021/01/28 23:44:36 fetching corpus: 7400, signal 328236/418982 (executing program) 2021/01/28 23:44:37 fetching corpus: 7450, signal 328884/419831 (executing program) 2021/01/28 23:44:37 fetching corpus: 7500, signal 329468/420627 (executing program) 2021/01/28 23:44:37 fetching corpus: 7550, signal 330208/421438 (executing program) 2021/01/28 23:44:37 fetching corpus: 7600, signal 330822/422274 (executing program) 2021/01/28 23:44:37 fetching corpus: 7650, signal 331362/423052 (executing program) 2021/01/28 23:44:38 fetching corpus: 7700, signal 331966/423846 (executing program) 2021/01/28 23:44:38 fetching corpus: 7750, signal 332440/424580 (executing program) 2021/01/28 23:44:38 fetching corpus: 7800, signal 333097/425362 (executing program) 2021/01/28 23:44:39 fetching corpus: 7850, signal 333649/426115 (executing program) 2021/01/28 23:44:39 fetching corpus: 7900, signal 334213/426885 (executing program) 2021/01/28 23:44:39 fetching corpus: 7950, signal 334805/427656 (executing program) 2021/01/28 23:44:39 fetching corpus: 8000, signal 335587/428436 (executing program) 2021/01/28 23:44:39 fetching corpus: 8050, signal 336110/429185 (executing program) 2021/01/28 23:44:40 fetching corpus: 8100, signal 336895/429981 (executing program) 2021/01/28 23:44:40 fetching corpus: 8150, signal 337398/430688 (executing program) 2021/01/28 23:44:40 fetching corpus: 8200, signal 338053/431425 (executing program) 2021/01/28 23:44:40 fetching corpus: 8250, signal 338769/432195 (executing program) 2021/01/28 23:44:40 fetching corpus: 8300, signal 339255/432912 (executing program) 2021/01/28 23:44:41 fetching corpus: 8350, signal 339777/433621 (executing program) 2021/01/28 23:44:41 fetching corpus: 8400, signal 340735/434486 (executing program) 2021/01/28 23:44:41 fetching corpus: 8450, signal 341403/435264 (executing program) 2021/01/28 23:44:41 fetching corpus: 8500, signal 341807/435966 (executing program) 2021/01/28 23:44:41 fetching corpus: 8550, signal 342953/436856 (executing program) 2021/01/28 23:44:42 fetching corpus: 8600, signal 343534/437565 (executing program) 2021/01/28 23:44:42 fetching corpus: 8650, signal 344222/438292 (executing program) 2021/01/28 23:44:42 fetching corpus: 8700, signal 344943/439015 (executing program) 2021/01/28 23:44:42 fetching corpus: 8750, signal 345398/439694 (executing program) 2021/01/28 23:44:42 fetching corpus: 8800, signal 346239/440415 (executing program) 2021/01/28 23:44:43 fetching corpus: 8850, signal 347108/441174 (executing program) 2021/01/28 23:44:43 fetching corpus: 8900, signal 347697/441818 (executing program) 2021/01/28 23:44:43 fetching corpus: 8950, signal 348580/442567 (executing program) 2021/01/28 23:44:43 fetching corpus: 9000, signal 349028/443207 (executing program) 2021/01/28 23:44:43 fetching corpus: 9050, signal 349623/443843 (executing program) 2021/01/28 23:44:44 fetching corpus: 9100, signal 350130/444479 (executing program) 2021/01/28 23:44:44 fetching corpus: 9150, signal 350679/445098 (executing program) 2021/01/28 23:44:44 fetching corpus: 9200, signal 351253/445737 (executing program) 2021/01/28 23:44:44 fetching corpus: 9250, signal 351885/446367 (executing program) 2021/01/28 23:44:45 fetching corpus: 9300, signal 352653/447049 (executing program) 2021/01/28 23:44:45 fetching corpus: 9350, signal 353805/447797 (executing program) 2021/01/28 23:44:45 fetching corpus: 9400, signal 354305/448412 (executing program) 2021/01/28 23:44:45 fetching corpus: 9450, signal 354782/449022 (executing program) 2021/01/28 23:44:45 fetching corpus: 9500, signal 355226/449640 (executing program) 2021/01/28 23:44:46 fetching corpus: 9550, signal 355672/450184 (executing program) 2021/01/28 23:44:46 fetching corpus: 9600, signal 356190/450769 (executing program) 2021/01/28 23:44:46 fetching corpus: 9650, signal 356908/451428 (executing program) 2021/01/28 23:44:46 fetching corpus: 9700, signal 357457/452015 (executing program) 2021/01/28 23:44:46 fetching corpus: 9750, signal 357966/452572 (executing program) 2021/01/28 23:44:47 fetching corpus: 9800, signal 358510/453162 (executing program) 2021/01/28 23:44:47 fetching corpus: 9850, signal 358983/453739 (executing program) 2021/01/28 23:44:47 fetching corpus: 9900, signal 359517/454292 (executing program) 2021/01/28 23:44:47 fetching corpus: 9950, signal 359931/454819 (executing program) 2021/01/28 23:44:48 fetching corpus: 10000, signal 360292/455353 (executing program) 2021/01/28 23:44:48 fetching corpus: 10050, signal 360809/455928 (executing program) 2021/01/28 23:44:48 fetching corpus: 10100, signal 361235/456430 (executing program) 2021/01/28 23:44:48 fetching corpus: 10150, signal 361885/456953 (executing program) 2021/01/28 23:44:49 fetching corpus: 10200, signal 362451/457506 (executing program) 2021/01/28 23:44:49 fetching corpus: 10250, signal 363104/458013 (executing program) 2021/01/28 23:44:49 fetching corpus: 10300, signal 363617/458568 (executing program) 2021/01/28 23:44:50 fetching corpus: 10350, signal 364323/459088 (executing program) 2021/01/28 23:44:50 fetching corpus: 10400, signal 364792/459611 (executing program) 2021/01/28 23:44:50 fetching corpus: 10450, signal 365191/460109 (executing program) 2021/01/28 23:44:50 fetching corpus: 10500, signal 365913/460612 (executing program) 2021/01/28 23:44:50 fetching corpus: 10550, signal 366287/461136 (executing program) 2021/01/28 23:44:50 fetching corpus: 10600, signal 366653/461624 (executing program) 2021/01/28 23:44:51 fetching corpus: 10650, signal 367310/462135 (executing program) 2021/01/28 23:44:51 fetching corpus: 10700, signal 367762/462642 (executing program) 2021/01/28 23:44:51 fetching corpus: 10750, signal 368152/463084 (executing program) 2021/01/28 23:44:51 fetching corpus: 10800, signal 368501/463554 (executing program) 2021/01/28 23:44:52 fetching corpus: 10850, signal 369089/464031 (executing program) 2021/01/28 23:44:52 fetching corpus: 10900, signal 369738/464540 (executing program) 2021/01/28 23:44:52 fetching corpus: 10950, signal 370477/465019 (executing program) 2021/01/28 23:44:52 fetching corpus: 11000, signal 371250/465477 (executing program) 2021/01/28 23:44:53 fetching corpus: 11050, signal 371881/465975 (executing program) 2021/01/28 23:44:53 fetching corpus: 11100, signal 372360/466386 (executing program) 2021/01/28 23:44:53 fetching corpus: 11150, signal 372722/466841 (executing program) 2021/01/28 23:44:53 fetching corpus: 11200, signal 373367/467263 (executing program) 2021/01/28 23:44:53 fetching corpus: 11250, signal 374216/467723 (executing program) 2021/01/28 23:44:54 fetching corpus: 11300, signal 374629/468149 (executing program) 2021/01/28 23:44:54 fetching corpus: 11350, signal 375081/468544 (executing program) 2021/01/28 23:44:54 fetching corpus: 11400, signal 375688/468961 (executing program) 2021/01/28 23:44:54 fetching corpus: 11450, signal 376024/469379 (executing program) 2021/01/28 23:44:54 fetching corpus: 11500, signal 376425/469816 (executing program) 2021/01/28 23:44:55 fetching corpus: 11550, signal 376901/470223 (executing program) 2021/01/28 23:44:55 fetching corpus: 11600, signal 377892/470647 (executing program) 2021/01/28 23:44:55 fetching corpus: 11650, signal 378426/471069 (executing program) 2021/01/28 23:44:55 fetching corpus: 11700, signal 379117/471466 (executing program) 2021/01/28 23:44:55 fetching corpus: 11750, signal 379711/471807 (executing program) 2021/01/28 23:44:56 fetching corpus: 11800, signal 380066/471808 (executing program) 2021/01/28 23:44:56 fetching corpus: 11850, signal 380565/471824 (executing program) 2021/01/28 23:44:56 fetching corpus: 11900, signal 380997/471824 (executing program) 2021/01/28 23:44:56 fetching corpus: 11950, signal 381723/471824 (executing program) 2021/01/28 23:44:56 fetching corpus: 12000, signal 382147/471824 (executing program) 2021/01/28 23:44:57 fetching corpus: 12050, signal 382640/471824 (executing program) 2021/01/28 23:44:57 fetching corpus: 12100, signal 383116/471824 (executing program) 2021/01/28 23:44:58 fetching corpus: 12150, signal 383577/471825 (executing program) 2021/01/28 23:44:58 fetching corpus: 12200, signal 384063/471825 (executing program) 2021/01/28 23:44:58 fetching corpus: 12250, signal 384453/471825 (executing program) 2021/01/28 23:44:58 fetching corpus: 12300, signal 384863/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12350, signal 385307/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12400, signal 386501/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12450, signal 386851/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12500, signal 387344/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12550, signal 387702/471825 (executing program) 2021/01/28 23:44:59 fetching corpus: 12600, signal 388033/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12650, signal 388530/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12700, signal 389019/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12750, signal 389465/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12800, signal 389934/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12850, signal 390324/471827 (executing program) 2021/01/28 23:45:00 fetching corpus: 12900, signal 390632/471827 (executing program) 2021/01/28 23:45:01 fetching corpus: 12950, signal 391039/471829 (executing program) 2021/01/28 23:45:01 fetching corpus: 13000, signal 391691/471829 (executing program) 2021/01/28 23:45:01 fetching corpus: 13050, signal 392188/471829 (executing program) 2021/01/28 23:45:01 fetching corpus: 13100, signal 392572/471829 (executing program) 2021/01/28 23:45:02 fetching corpus: 13150, signal 393086/471829 (executing program) 2021/01/28 23:45:02 fetching corpus: 13200, signal 393493/471829 (executing program) 2021/01/28 23:45:02 fetching corpus: 13250, signal 393828/471832 (executing program) 2021/01/28 23:45:02 fetching corpus: 13300, signal 394208/471832 (executing program) 2021/01/28 23:45:02 fetching corpus: 13350, signal 394605/471832 (executing program) 2021/01/28 23:45:02 fetching corpus: 13400, signal 395070/471832 (executing program) 2021/01/28 23:45:03 fetching corpus: 13450, signal 395409/471832 (executing program) 2021/01/28 23:45:03 fetching corpus: 13500, signal 395746/471832 (executing program) 2021/01/28 23:45:03 fetching corpus: 13550, signal 396372/471832 (executing program) 2021/01/28 23:45:04 fetching corpus: 13600, signal 396701/471832 (executing program) 2021/01/28 23:45:04 fetching corpus: 13650, signal 397136/471832 (executing program) 2021/01/28 23:45:04 fetching corpus: 13700, signal 398347/471832 (executing program) 2021/01/28 23:45:04 fetching corpus: 13750, signal 398635/471832 (executing program) 2021/01/28 23:45:04 fetching corpus: 13800, signal 399011/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 13850, signal 399349/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 13900, signal 399864/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 13950, signal 400178/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 14000, signal 400584/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 14050, signal 400861/471832 (executing program) 2021/01/28 23:45:05 fetching corpus: 14100, signal 401308/471832 (executing program) 2021/01/28 23:45:06 fetching corpus: 14150, signal 401647/471832 (executing program) 2021/01/28 23:45:06 fetching corpus: 14200, signal 402138/471832 (executing program) 2021/01/28 23:45:06 fetching corpus: 14250, signal 402622/471832 (executing program) 2021/01/28 23:45:06 fetching corpus: 14300, signal 403012/471832 (executing program) 2021/01/28 23:45:06 fetching corpus: 14350, signal 403341/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14400, signal 403626/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14450, signal 404252/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14500, signal 404522/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14550, signal 404860/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14600, signal 405225/471832 (executing program) 2021/01/28 23:45:07 fetching corpus: 14650, signal 405719/471832 (executing program) 2021/01/28 23:45:08 fetching corpus: 14700, signal 406276/471832 (executing program) 2021/01/28 23:45:08 fetching corpus: 14750, signal 406770/471832 (executing program) 2021/01/28 23:45:08 fetching corpus: 14800, signal 407171/471832 (executing program) 2021/01/28 23:45:08 fetching corpus: 14850, signal 407703/471832 (executing program) 2021/01/28 23:45:08 fetching corpus: 14900, signal 407980/471832 (executing program) 2021/01/28 23:45:09 fetching corpus: 14950, signal 408311/471832 (executing program) 2021/01/28 23:45:09 fetching corpus: 15000, signal 408801/471832 (executing program) 2021/01/28 23:45:09 fetching corpus: 15050, signal 409081/471833 (executing program) 2021/01/28 23:45:09 fetching corpus: 15100, signal 409466/471833 (executing program) 2021/01/28 23:45:10 fetching corpus: 15150, signal 409912/471833 (executing program) 2021/01/28 23:45:10 fetching corpus: 15200, signal 410250/471833 (executing program) 2021/01/28 23:45:10 fetching corpus: 15250, signal 410619/471833 (executing program) 2021/01/28 23:45:10 fetching corpus: 15300, signal 410951/471833 (executing program) 2021/01/28 23:45:10 fetching corpus: 15350, signal 411281/471833 (executing program) 2021/01/28 23:45:11 fetching corpus: 15400, signal 411802/471833 (executing program) 2021/01/28 23:45:11 fetching corpus: 15450, signal 412113/471833 (executing program) 2021/01/28 23:45:11 fetching corpus: 15500, signal 412471/471834 (executing program) 2021/01/28 23:45:11 fetching corpus: 15550, signal 412824/471834 (executing program) 2021/01/28 23:45:11 fetching corpus: 15600, signal 413183/471834 (executing program) 2021/01/28 23:45:11 fetching corpus: 15650, signal 413515/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15700, signal 413854/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15750, signal 414142/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15800, signal 414572/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15850, signal 414953/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15900, signal 415284/471834 (executing program) 2021/01/28 23:45:12 fetching corpus: 15950, signal 415592/471834 (executing program) 2021/01/28 23:45:13 fetching corpus: 16000, signal 415974/471834 (executing program) 2021/01/28 23:45:13 fetching corpus: 16050, signal 416415/471834 (executing program) 2021/01/28 23:45:13 fetching corpus: 16100, signal 416742/471834 (executing program) 2021/01/28 23:45:13 fetching corpus: 16150, signal 417165/471834 (executing program) 2021/01/28 23:45:13 fetching corpus: 16200, signal 417572/471834 (executing program) 2021/01/28 23:45:14 fetching corpus: 16250, signal 417963/471838 (executing program) 2021/01/28 23:45:14 fetching corpus: 16300, signal 418336/471838 (executing program) 2021/01/28 23:45:14 fetching corpus: 16350, signal 418720/471838 (executing program) 2021/01/28 23:45:15 fetching corpus: 16400, signal 419069/471838 (executing program) 2021/01/28 23:45:15 fetching corpus: 16450, signal 419518/471838 (executing program) 2021/01/28 23:45:15 fetching corpus: 16500, signal 419929/471838 (executing program) 2021/01/28 23:45:15 fetching corpus: 16550, signal 420355/471838 (executing program) 2021/01/28 23:45:15 fetching corpus: 16600, signal 420596/471838 (executing program) 2021/01/28 23:45:16 fetching corpus: 16650, signal 421005/471838 (executing program) 2021/01/28 23:45:16 fetching corpus: 16700, signal 421516/471838 (executing program) 2021/01/28 23:45:16 fetching corpus: 16750, signal 421877/471838 (executing program) 2021/01/28 23:45:16 fetching corpus: 16800, signal 422093/471838 (executing program) 2021/01/28 23:45:16 fetching corpus: 16850, signal 422462/471838 (executing program) 2021/01/28 23:45:17 fetching corpus: 16900, signal 422765/471838 (executing program) 2021/01/28 23:45:17 fetching corpus: 16950, signal 423023/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17000, signal 423419/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17050, signal 423728/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17100, signal 424087/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17150, signal 424355/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17200, signal 424636/471838 (executing program) 2021/01/28 23:45:18 fetching corpus: 17250, signal 425121/471838 (executing program) 2021/01/28 23:45:19 fetching corpus: 17300, signal 425436/471838 (executing program) 2021/01/28 23:45:19 fetching corpus: 17350, signal 425689/471838 (executing program) 2021/01/28 23:45:19 fetching corpus: 17400, signal 425946/471838 (executing program) 2021/01/28 23:45:19 fetching corpus: 17450, signal 426219/471838 (executing program) 2021/01/28 23:45:19 fetching corpus: 17500, signal 426460/471838 (executing program) 2021/01/28 23:45:20 fetching corpus: 17550, signal 426871/471838 (executing program) 2021/01/28 23:45:20 fetching corpus: 17600, signal 427474/471838 (executing program) 2021/01/28 23:45:20 fetching corpus: 17650, signal 428024/471838 (executing program) 2021/01/28 23:45:20 fetching corpus: 17700, signal 428352/471838 (executing program) 2021/01/28 23:45:20 fetching corpus: 17750, signal 428695/471838 (executing program) 2021/01/28 23:45:21 fetching corpus: 17800, signal 429065/471838 (executing program) 2021/01/28 23:45:21 fetching corpus: 17850, signal 429618/471838 (executing program) 2021/01/28 23:45:21 fetching corpus: 17900, signal 429979/471838 (executing program) 2021/01/28 23:45:21 fetching corpus: 17950, signal 430288/471838 (executing program) 2021/01/28 23:45:21 fetching corpus: 18000, signal 430568/471838 (executing program) 2021/01/28 23:45:22 fetching corpus: 18050, signal 430881/471838 (executing program) 2021/01/28 23:45:22 fetching corpus: 18100, signal 431216/471838 (executing program) 2021/01/28 23:45:22 fetching corpus: 18150, signal 431792/471838 (executing program) 2021/01/28 23:45:22 fetching corpus: 18200, signal 432095/471838 (executing program) 2021/01/28 23:45:23 fetching corpus: 18250, signal 432434/471838 (executing program) 2021/01/28 23:45:23 fetching corpus: 18300, signal 432722/471838 (executing program) 2021/01/28 23:45:23 fetching corpus: 18350, signal 432989/471838 (executing program) 2021/01/28 23:45:23 fetching corpus: 18400, signal 433354/471838 (executing program) 2021/01/28 23:45:24 fetching corpus: 18450, signal 433747/471838 (executing program) 2021/01/28 23:45:24 fetching corpus: 18500, signal 434123/471838 (executing program) 2021/01/28 23:45:24 fetching corpus: 18550, signal 434467/471838 (executing program) 2021/01/28 23:45:24 fetching corpus: 18600, signal 434825/471838 (executing program) 2021/01/28 23:45:24 fetching corpus: 18650, signal 435097/471838 (executing program) 2021/01/28 23:45:25 fetching corpus: 18700, signal 435423/471838 (executing program) 2021/01/28 23:45:25 fetching corpus: 18750, signal 435736/471838 (executing program) 2021/01/28 23:45:25 fetching corpus: 18800, signal 435955/471838 (executing program) 2021/01/28 23:45:25 fetching corpus: 18850, signal 436229/471838 (executing program) 2021/01/28 23:45:25 fetching corpus: 18900, signal 436696/471838 (executing program) 2021/01/28 23:45:26 fetching corpus: 18950, signal 436968/471838 (executing program) 2021/01/28 23:45:26 fetching corpus: 19000, signal 437232/471838 (executing program) 2021/01/28 23:45:26 fetching corpus: 19050, signal 437504/471838 (executing program) 2021/01/28 23:45:26 fetching corpus: 19100, signal 437870/471838 (executing program) 2021/01/28 23:45:27 fetching corpus: 19150, signal 438110/471838 (executing program) 2021/01/28 23:45:27 fetching corpus: 19200, signal 438367/471838 (executing program) 2021/01/28 23:45:27 fetching corpus: 19250, signal 438626/471838 (executing program) 2021/01/28 23:45:28 fetching corpus: 19300, signal 438848/471840 (executing program) 2021/01/28 23:45:28 fetching corpus: 19350, signal 439118/471840 (executing program) 2021/01/28 23:45:28 fetching corpus: 19400, signal 439512/471840 (executing program) 2021/01/28 23:45:28 fetching corpus: 19450, signal 439701/471840 (executing program) 2021/01/28 23:45:28 fetching corpus: 19500, signal 439976/471840 (executing program) 2021/01/28 23:45:29 fetching corpus: 19550, signal 440247/471840 (executing program) 2021/01/28 23:45:29 fetching corpus: 19600, signal 440473/471840 (executing program) 2021/01/28 23:45:29 fetching corpus: 19650, signal 440773/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19700, signal 441055/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19750, signal 441293/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19800, signal 441563/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19850, signal 441734/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19900, signal 441997/471840 (executing program) 2021/01/28 23:45:30 fetching corpus: 19950, signal 442242/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20000, signal 442521/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20050, signal 442773/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20100, signal 443160/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20150, signal 443522/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20200, signal 443695/471840 (executing program) 2021/01/28 23:45:31 fetching corpus: 20250, signal 444109/471840 (executing program) 2021/01/28 23:45:32 fetching corpus: 20300, signal 444320/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20350, signal 444583/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20400, signal 444928/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20450, signal 445223/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20500, signal 445524/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20550, signal 445768/471840 (executing program) 2021/01/28 23:45:33 fetching corpus: 20600, signal 445973/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20650, signal 446250/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20700, signal 446601/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20750, signal 446854/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20800, signal 447248/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20850, signal 447589/471840 (executing program) 2021/01/28 23:45:34 fetching corpus: 20900, signal 447753/471840 (executing program) 2021/01/28 23:45:35 fetching corpus: 20950, signal 447999/471840 (executing program) 2021/01/28 23:45:35 fetching corpus: 21000, signal 448312/471840 (executing program) 2021/01/28 23:45:35 fetching corpus: 21050, signal 448503/471840 (executing program) 2021/01/28 23:45:35 fetching corpus: 21100, signal 448828/471840 (executing program) 2021/01/28 23:45:35 fetching corpus: 21150, signal 449088/471840 (executing program) 2021/01/28 23:45:36 fetching corpus: 21200, signal 449364/471840 (executing program) 2021/01/28 23:45:36 fetching corpus: 21250, signal 449734/471840 (executing program) 2021/01/28 23:45:36 fetching corpus: 21300, signal 449927/471840 (executing program) 2021/01/28 23:45:36 fetching corpus: 21350, signal 450097/471840 (executing program) 2021/01/28 23:45:36 fetching corpus: 21400, signal 450308/471840 (executing program) 2021/01/28 23:45:37 fetching corpus: 21450, signal 450563/471840 (executing program) 2021/01/28 23:45:37 fetching corpus: 21500, signal 450809/471840 (executing program) 2021/01/28 23:45:37 fetching corpus: 21550, signal 451162/471840 (executing program) 2021/01/28 23:45:37 fetching corpus: 21600, signal 451468/471840 (executing program) 2021/01/28 23:45:38 fetching corpus: 21650, signal 451745/471840 (executing program) 2021/01/28 23:45:38 fetching corpus: 21700, signal 452249/471840 (executing program) 2021/01/28 23:45:38 fetching corpus: 21750, signal 452523/471840 (executing program) 2021/01/28 23:45:39 fetching corpus: 21800, signal 452856/471840 (executing program) 2021/01/28 23:45:39 fetching corpus: 21850, signal 453088/471840 (executing program) 2021/01/28 23:45:40 fetching corpus: 21900, signal 453425/471840 (executing program) 2021/01/28 23:45:40 fetching corpus: 21950, signal 453641/471840 (executing program) 2021/01/28 23:45:40 fetching corpus: 22000, signal 453906/471840 (executing program) 2021/01/28 23:45:40 fetching corpus: 22050, signal 454276/471840 (executing program) 2021/01/28 23:45:40 fetching corpus: 22100, signal 454514/471840 (executing program) 2021/01/28 23:45:41 fetching corpus: 22150, signal 454785/471849 (executing program) 2021/01/28 23:45:41 fetching corpus: 22200, signal 454998/471849 (executing program) 2021/01/28 23:45:41 fetching corpus: 22250, signal 455438/471849 (executing program) 2021/01/28 23:45:41 fetching corpus: 22300, signal 455684/471849 (executing program) 2021/01/28 23:45:42 fetching corpus: 22350, signal 455984/471849 (executing program) 2021/01/28 23:45:42 fetching corpus: 22400, signal 456241/471849 (executing program) 2021/01/28 23:45:42 fetching corpus: 22450, signal 456452/471849 (executing program) 2021/01/28 23:45:42 fetching corpus: 22500, signal 456751/471850 (executing program) 2021/01/28 23:45:43 fetching corpus: 22550, signal 457033/471850 (executing program) 2021/01/28 23:45:43 fetching corpus: 22600, signal 457288/471850 (executing program) 2021/01/28 23:45:43 fetching corpus: 22650, signal 457538/471850 (executing program) 2021/01/28 23:45:43 fetching corpus: 22700, signal 457784/471850 (executing program) 2021/01/28 23:45:44 fetching corpus: 22750, signal 458071/471850 (executing program) 2021/01/28 23:45:44 fetching corpus: 22800, signal 458377/471850 (executing program) 2021/01/28 23:45:44 fetching corpus: 22850, signal 458686/471850 (executing program) 2021/01/28 23:45:44 fetching corpus: 22900, signal 459020/471850 (executing program) 2021/01/28 23:45:44 fetching corpus: 22950, signal 459326/471850 (executing program) 2021/01/28 23:45:45 fetching corpus: 23000, signal 459607/471850 (executing program) 2021/01/28 23:45:45 fetching corpus: 23050, signal 459829/471850 (executing program) 2021/01/28 23:45:45 fetching corpus: 23100, signal 460144/471850 (executing program) 2021/01/28 23:45:45 fetching corpus: 23150, signal 460414/471850 (executing program) 2021/01/28 23:45:45 fetching corpus: 23200, signal 460639/471850 (executing program) 2021/01/28 23:45:46 fetching corpus: 23250, signal 460888/471850 (executing program) 2021/01/28 23:45:46 fetching corpus: 23300, signal 461190/471850 (executing program) 2021/01/28 23:45:47 fetching corpus: 23350, signal 461451/471850 (executing program) 2021/01/28 23:45:47 fetching corpus: 23400, signal 461708/471850 (executing program) 2021/01/28 23:45:47 fetching corpus: 23450, signal 461937/471850 (executing program) 2021/01/28 23:45:47 fetching corpus: 23500, signal 462207/471850 (executing program) 2021/01/28 23:45:47 fetching corpus: 23550, signal 462441/471850 (executing program) 2021/01/28 23:45:48 fetching corpus: 23600, signal 462717/471852 (executing program) 2021/01/28 23:45:48 fetching corpus: 23650, signal 462952/471852 (executing program) 2021/01/28 23:45:48 fetching corpus: 23700, signal 463153/471853 (executing program) 2021/01/28 23:45:48 fetching corpus: 23750, signal 463463/471853 (executing program) 2021/01/28 23:45:49 fetching corpus: 23800, signal 463698/471853 (executing program) 2021/01/28 23:45:49 fetching corpus: 23850, signal 463966/471853 (executing program) 2021/01/28 23:45:49 fetching corpus: 23900, signal 464258/471855 (executing program) 2021/01/28 23:45:50 fetching corpus: 23950, signal 464469/471855 (executing program) 2021/01/28 23:45:50 fetching corpus: 24000, signal 464669/471855 (executing program) 2021/01/28 23:45:50 fetching corpus: 24050, signal 464853/471857 (executing program) 2021/01/28 23:45:50 fetching corpus: 24100, signal 465175/471857 (executing program) 2021/01/28 23:45:51 fetching corpus: 24150, signal 465496/471857 (executing program) 2021/01/28 23:45:51 fetching corpus: 24200, signal 465777/471859 (executing program) 2021/01/28 23:45:51 fetching corpus: 24250, signal 465973/471859 (executing program) 2021/01/28 23:45:51 fetching corpus: 24300, signal 466171/471860 (executing program) 2021/01/28 23:45:51 fetching corpus: 24350, signal 466450/471860 (executing program) 2021/01/28 23:45:51 fetching corpus: 24400, signal 466713/471860 (executing program) 2021/01/28 23:45:52 fetching corpus: 24450, signal 467003/471860 (executing program) 2021/01/28 23:45:52 fetching corpus: 24500, signal 467334/471860 (executing program) 2021/01/28 23:45:52 fetching corpus: 24550, signal 467597/471860 (executing program) 2021/01/28 23:45:52 fetching corpus: 24600, signal 467923/471860 (executing program) 2021/01/28 23:45:52 fetching corpus: 24650, signal 468529/471860 (executing program) 2021/01/28 23:45:53 fetching corpus: 24700, signal 468950/471860 (executing program) 2021/01/28 23:45:53 fetching corpus: 24738, signal 469125/471860 (executing program) 2021/01/28 23:45:53 fetching corpus: 24738, signal 469125/471860 (executing program) 2021/01/28 23:45:56 starting 4 fuzzer processes 23:45:57 executing program 0: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='gid_map\x00') ioctl$EXT4_IOC_MOVE_EXT(r0, 0x5451, 0x0) [ 235.815439][ T47] audit: type=1400 audit(1611877557.072:44): avc: denied { map } for pid=10844 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=25920 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 23:45:57 executing program 1: mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc000, 0x0) openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x0) 23:45:57 executing program 2: r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='gid_map\x00') ioctl$sock_SIOCBRADDBR(r0, 0x8903, &(0x7f0000000040)='vlan0\x00') 23:45:57 executing program 3: openat$tun(0xffffffffffffff9c, &(0x7f0000000040)='/dev/net/tun\x00', 0x101202, 0x0) [ 237.109639][T10845] IPVS: ftp: loaded support on port[0] = 21 [ 237.299405][T10845] chnl_net:caif_netlink_parms(): no params data found [ 237.352815][T10847] IPVS: ftp: loaded support on port[0] = 21 [ 237.415044][T10845] bridge0: port 1(bridge_slave_0) entered blocking state [ 237.425611][T10845] bridge0: port 1(bridge_slave_0) entered disabled state [ 237.436044][T10845] device bridge_slave_0 entered promiscuous mode [ 237.451119][T10845] bridge0: port 2(bridge_slave_1) entered blocking state [ 237.459785][T10845] bridge0: port 2(bridge_slave_1) entered disabled state [ 237.472229][T10845] device bridge_slave_1 entered promiscuous mode [ 237.518815][T10845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 237.541287][T10845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 237.609235][T10845] team0: Port device team_slave_0 added [ 237.641883][T10845] team0: Port device team_slave_1 added [ 237.692920][T10845] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 237.704913][T10845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.744900][T10845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 237.783859][T10845] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 237.792161][T10845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 237.792843][T10849] IPVS: ftp: loaded support on port[0] = 21 [ 237.827368][T10845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 237.850938][T10847] chnl_net:caif_netlink_parms(): no params data found [ 237.905893][T10845] device hsr_slave_0 entered promiscuous mode [ 237.917378][T10845] device hsr_slave_1 entered promiscuous mode [ 237.988393][T10851] IPVS: ftp: loaded support on port[0] = 21 [ 238.079056][T10847] bridge0: port 1(bridge_slave_0) entered blocking state [ 238.088696][T10847] bridge0: port 1(bridge_slave_0) entered disabled state [ 238.098141][T10847] device bridge_slave_0 entered promiscuous mode [ 238.132373][T10847] bridge0: port 2(bridge_slave_1) entered blocking state [ 238.140385][T10847] bridge0: port 2(bridge_slave_1) entered disabled state [ 238.151299][T10847] device bridge_slave_1 entered promiscuous mode [ 238.202868][T10847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 238.228067][T10847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 238.354922][T10847] team0: Port device team_slave_0 added [ 238.365160][T10847] team0: Port device team_slave_1 added [ 238.400434][T10847] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 238.410949][T10847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.448683][T10847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 238.464435][T10847] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 238.472468][T10847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 238.503577][T10847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 238.638378][T10849] chnl_net:caif_netlink_parms(): no params data found [ 238.652827][T10847] device hsr_slave_0 entered promiscuous mode [ 238.662590][T10847] device hsr_slave_1 entered promiscuous mode [ 238.670904][T10847] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 238.682269][T10847] Cannot create hsr debugfs directory [ 238.753686][T10851] chnl_net:caif_netlink_parms(): no params data found [ 238.788396][ T47] audit: type=1400 audit(1611877560.042:45): avc: denied { create } for pid=10845 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 238.824600][ T47] audit: type=1400 audit(1611877560.042:46): avc: denied { write } for pid=10845 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 238.841165][T10845] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 238.860257][ T47] audit: type=1400 audit(1611877560.042:47): avc: denied { read } for pid=10845 comm="syz-executor.0" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_generic_socket permissive=1 [ 238.907196][T10845] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 238.948259][T10845] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 238.998585][T10845] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 239.065545][T10849] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.077631][T10849] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.088787][T10849] device bridge_slave_0 entered promiscuous mode [ 239.105318][ T3485] Bluetooth: hci0: command 0x0409 tx timeout [ 239.122795][T10849] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.132929][T10849] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.145392][T10849] device bridge_slave_1 entered promiscuous mode [ 239.179792][T10851] bridge0: port 1(bridge_slave_0) entered blocking state [ 239.189231][T10851] bridge0: port 1(bridge_slave_0) entered disabled state [ 239.200393][T10851] device bridge_slave_0 entered promiscuous mode [ 239.248091][T10851] bridge0: port 2(bridge_slave_1) entered blocking state [ 239.258565][T10851] bridge0: port 2(bridge_slave_1) entered disabled state [ 239.271552][T10851] device bridge_slave_1 entered promiscuous mode [ 239.286269][T10849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 239.324063][T10849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 239.343987][ T3941] Bluetooth: hci1: command 0x0409 tx timeout [ 239.386861][T10849] team0: Port device team_slave_0 added [ 239.399179][T10851] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 239.411507][T10849] team0: Port device team_slave_1 added [ 239.422986][T10851] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 239.458651][T10849] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 239.467678][T10849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 239.511818][T10849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 239.541078][T10849] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 239.549202][T10849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 239.579226][T10849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 239.620791][T10851] team0: Port device team_slave_0 added [ 239.630665][T10851] team0: Port device team_slave_1 added [ 239.663418][ T3941] Bluetooth: hci2: command 0x0409 tx timeout [ 239.692038][T10851] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 239.702695][T10851] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 239.740601][T10851] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 239.767452][T10849] device hsr_slave_0 entered promiscuous mode [ 239.777981][T10849] device hsr_slave_1 entered promiscuous mode [ 239.790825][T10849] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 239.801764][T10849] Cannot create hsr debugfs directory [ 239.812191][T10851] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 239.823735][T10851] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 239.863003][T10851] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 239.878375][T10847] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 239.904393][T10847] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 239.954657][T10851] device hsr_slave_0 entered promiscuous mode [ 239.966274][T10851] device hsr_slave_1 entered promiscuous mode [ 239.979056][T10851] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 239.991103][T10877] Bluetooth: hci3: command 0x0409 tx timeout [ 239.993343][T10851] Cannot create hsr debugfs directory [ 240.015198][T10847] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 240.039389][T10847] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 240.142695][T10845] 8021q: adding VLAN 0 to HW filter on device bond0 [ 240.292850][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 240.304464][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 240.320828][T10845] 8021q: adding VLAN 0 to HW filter on device team0 [ 240.357486][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 240.371782][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 240.386434][T10877] bridge0: port 1(bridge_slave_0) entered blocking state [ 240.397716][T10877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 240.414912][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 240.431699][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 240.455692][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 240.467512][ T46] bridge0: port 2(bridge_slave_1) entered blocking state [ 240.477874][ T46] bridge0: port 2(bridge_slave_1) entered forwarding state [ 240.507614][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 240.527603][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 240.543607][T10849] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 240.560757][T10849] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 240.578290][T10849] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 240.599657][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 240.620265][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 240.631835][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 240.659424][T10849] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 240.680951][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 240.692798][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 240.704015][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 240.714975][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 240.753883][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 240.766621][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 240.790199][T10845] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 240.849670][T10847] 8021q: adding VLAN 0 to HW filter on device bond0 [ 240.867729][T10851] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 240.883060][T10851] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 240.925340][T10851] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 240.942119][T10851] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 240.976248][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 240.988108][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 240.997985][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 241.008946][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 241.041657][T10847] 8021q: adding VLAN 0 to HW filter on device team0 [ 241.072175][T10845] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 241.101195][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 241.115411][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 241.125830][T10877] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.134304][T10877] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.168843][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 241.178183][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 241.183551][ T55] Bluetooth: hci0: command 0x041b tx timeout [ 241.188890][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 241.208439][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.216702][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.228470][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 241.238568][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 241.248707][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 241.259226][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 241.269273][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 241.286782][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 241.299441][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 241.334050][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 241.345744][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 241.366546][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 241.380562][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 241.409006][T10847] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 241.424706][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 241.433510][ T55] Bluetooth: hci1: command 0x041b tx timeout [ 241.437686][ T3071] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 241.490273][T10849] 8021q: adding VLAN 0 to HW filter on device bond0 [ 241.508458][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 241.521055][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 241.531769][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 241.546178][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 241.561422][T10845] device veth0_vlan entered promiscuous mode [ 241.594939][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 241.604349][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 241.627546][T10849] 8021q: adding VLAN 0 to HW filter on device team0 [ 241.638159][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 241.647132][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 241.669603][T10847] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 241.682845][T10845] device veth1_vlan entered promiscuous mode [ 241.698055][T10851] 8021q: adding VLAN 0 to HW filter on device bond0 [ 241.725411][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 241.738102][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 241.751846][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 241.765564][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 241.777005][T10879] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.786441][T10879] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.796481][T10879] Bluetooth: hci2: command 0x041b tx timeout [ 241.805127][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 241.814547][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 241.825067][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 241.837136][T10879] bridge0: port 2(bridge_slave_1) entered blocking state [ 241.848032][T10879] bridge0: port 2(bridge_slave_1) entered forwarding state [ 241.863037][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 241.872758][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 241.897875][T10851] 8021q: adding VLAN 0 to HW filter on device team0 [ 241.913716][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 241.944863][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 241.955780][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 241.967215][ T55] bridge0: port 1(bridge_slave_0) entered blocking state [ 241.978099][ T55] bridge0: port 1(bridge_slave_0) entered forwarding state [ 241.989541][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 241.999595][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 242.009541][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 242.019565][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 242.030552][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 242.058208][T10845] device veth0_macvtap entered promiscuous mode [ 242.063492][T10876] Bluetooth: hci3: command 0x041b tx timeout [ 242.083885][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 242.096192][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 242.109063][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 242.121786][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 242.149099][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 242.159597][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 242.171125][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 242.181936][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 242.194045][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 242.207849][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 242.216939][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 242.227497][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 242.238712][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 242.261197][T10845] device veth1_macvtap entered promiscuous mode [ 242.273594][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 242.283999][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 242.312996][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 242.329921][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 242.342377][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 242.368936][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 242.383994][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 242.400269][T10847] device veth0_vlan entered promiscuous mode [ 242.423769][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 242.436378][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 242.460331][T10845] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 242.477330][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 242.487363][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 242.499603][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 242.509810][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 242.520111][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 242.550517][T10851] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 242.565967][T10851] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 242.583000][T10845] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 242.596305][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 242.608547][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 242.619654][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 242.630848][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 242.641650][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 242.651746][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 242.661552][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 242.671746][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 242.681593][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 242.691450][T10847] device veth1_vlan entered promiscuous mode [ 242.718958][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 242.729966][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 242.750209][T10845] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.764420][T10845] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.775220][T10845] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.789313][T10845] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 242.826503][T10849] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 242.884244][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 242.894511][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 242.931994][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 242.945353][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 242.968017][T10847] device veth0_macvtap entered promiscuous mode [ 242.987335][T10847] device veth1_macvtap entered promiscuous mode [ 243.007679][T10851] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 243.044358][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 243.057480][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 243.069545][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 243.080954][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 243.123715][T10847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 243.143995][T10847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.159105][T10847] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 243.180645][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.193069][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.205536][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 243.217607][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 243.228896][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 243.239375][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 243.251692][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 243.269067][T10876] Bluetooth: hci0: command 0x040f tx timeout [ 243.294860][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.304387][T10847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 243.309755][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 243.326248][T10847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 243.347043][T10847] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 243.360001][T10849] device veth0_vlan entered promiscuous mode [ 243.368706][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 243.378169][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 243.388355][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 243.398050][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 243.408382][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 243.419672][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 243.429157][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 243.448245][ T47] audit: type=1400 audit(1611877564.702:48): avc: denied { associate } for pid=10845 comm="syz-executor.0" name="syz0" scontext=unconfined_u:object_r:unlabeled_t:s0 tcontext=system_u:object_r:unlabeled_t:s0 tclass=filesystem permissive=1 [ 243.493000][T10847] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.503607][ T3485] Bluetooth: hci1: command 0x040f tx timeout [ 243.504735][T10847] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.522721][T10847] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.533463][T10847] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 243.565407][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 243.565936][T10845] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 243.575203][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 243.605487][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 243.616951][T10877] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 243.643333][T10849] device veth1_vlan entered promiscuous mode [ 243.689939][T10851] device veth0_vlan entered promiscuous mode [ 243.746377][T10851] device veth1_vlan entered promiscuous mode [ 243.780358][T10849] device veth0_macvtap entered promiscuous mode 23:46:05 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file1\x00'}, 0x6e) [ 243.807569][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 243.822051][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 243.833414][ T3485] Bluetooth: hci2: command 0x040f tx timeout [ 243.834778][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 243.854303][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready 23:46:05 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file1\x00'}, 0x6e) [ 243.883377][ T4042] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 243.914295][T10860] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 243.928460][T10860] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 23:46:05 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file1\x00'}, 0x6e) [ 243.936052][T10849] device veth1_macvtap entered promiscuous mode [ 243.975838][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 243.990316][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 244.002844][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready 23:46:05 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000100)=@file={0x1, './file1\x00'}, 0x6e) [ 244.016529][ T3485] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 244.032158][T10851] device veth0_macvtap entered promiscuous mode [ 244.054674][T10851] device veth1_macvtap entered promiscuous mode [ 244.080171][T10882] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.090202][T10882] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.091383][T10849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 244.114898][T10849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.133361][T10849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 244.144154][T10876] Bluetooth: hci3: command 0x040f tx timeout [ 244.151765][T10849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! 23:46:05 executing program 0: pselect6(0x40, &(0x7f0000000080), 0x0, &(0x7f0000000100)={0x10000}, 0x0, 0x0) [ 244.156121][T10849] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 244.194697][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 244.207702][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 244.221067][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 244.232631][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 244.242997][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 244.271966][T10849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 244.287627][T10849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.302294][T10849] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 244.314589][T10849] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.330496][T10849] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 244.345029][T10876] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 244.355592][T10876] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 244.377572][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 244.394461][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.408830][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 244.421218][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.432828][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 244.445210][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.458624][T10851] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 244.471303][T10849] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.484722][T10849] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.497420][T10849] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.510406][T10849] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.529485][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 244.543509][T10880] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 244.561484][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 244.575383][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.587648][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 244.599733][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.612329][T10851] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 244.628155][T10851] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 244.643458][T10851] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 244.658615][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready 23:46:05 executing program 1: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x700) [ 244.671137][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 244.694957][T10851] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.708833][T10851] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.721162][T10851] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.733329][T10851] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 244.838519][ T2952] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.849342][ T2952] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.850565][ T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.860465][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 244.868894][ T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.889453][T10879] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 244.913458][ T2952] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.922308][ T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 244.922441][ T2952] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.926298][ T3941] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 244.933522][ T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 244.967150][ T55] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready 23:46:06 executing program 0: r0 = openat$vcsu(0xffffff9c, &(0x7f0000002840)='/dev/vcsu\x00', 0x0, 0x0) syz_io_uring_setup(0x1e03, &(0x7f0000002880)={0x0, 0x0, 0x20, 0x0, 0x0, 0x0, r0}, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0, 0x0) 23:46:06 executing program 2: syz_mount_image$tmpfs(&(0x7f00000003c0)='tmpfs\x00', &(0x7f0000000400)='./file1\x00', 0x0, 0x0, 0x0, 0x22, &(0x7f00000006c0)) 23:46:06 executing program 1: process_vm_writev(0x0, &(0x7f0000000240)=[{&(0x7f0000000280)=""/175, 0xfffffffffffffe8d}, {&(0x7f0000000000)=""/27, 0x1b}, {&(0x7f0000000100)=""/16, 0x10}, {&(0x7f0000000140)=""/193, 0xc1}], 0x4, &(0x7f0000000380), 0x0, 0x0) 23:46:06 executing program 3: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) lsetxattr$trusted_overlay_opaque(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='trusted.overlay.opaque\x00', 0x0, 0x0, 0x0) 23:46:06 executing program 2: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0xf, 0x0, 0x0) 23:46:06 executing program 0: name_to_handle_at(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x2) 23:46:06 executing program 1: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) recvfrom(r0, 0x0, 0x0, 0x40010142, 0x0, 0x0) 23:46:06 executing program 3: socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) recvmmsg(r1, &(0x7f0000008880)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) write$nbd(r1, &(0x7f0000000080)=ANY=[], 0x10) recvmmsg(r0, &(0x7f0000007c40)=[{{&(0x7f0000001200)=@ipx, 0x80, &(0x7f00000000c0)=[{&(0x7f0000001280)=""/195, 0xc3}], 0x1, &(0x7f0000001380)=""/29, 0x1d}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0, 0x0) 23:46:06 executing program 1: syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount$9p_tcp(&(0x7f0000000080)='127.0.0.1\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000100)='9p\x00', 0x0, &(0x7f0000000140)={'trans=tcp,', {'port'}, 0x2c, {[{@noextend='noextend'}, {@privport='privport'}]}}) [ 245.270725][ T47] audit: type=1400 audit(1611877566.522:49): avc: denied { create } for pid=10930 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 245.323554][ T47] audit: type=1400 audit(1611877566.532:50): avc: denied { read } for pid=10930 comm="syz-executor.1" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_netfilter_socket permissive=1 [ 245.349629][ T37] Bluetooth: hci0: command 0x0419 tx timeout 23:46:06 executing program 2: r0 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, 0x0) 23:46:06 executing program 0: pselect6(0x0, 0x0, 0x0, &(0x7f0000000100), &(0x7f0000000180), 0x0) [ 245.422764][T10942] 9pnet: p9_fd_create_tcp (10942): problem connecting socket to 127.0.0.1 23:46:06 executing program 1: syz_mount_image$romfs(0x0, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f00000004c0)=[{&(0x7f0000000100)=@file={0x1, './file0\x00'}, 0x6e, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000200)="de", 0x1}, {&(0x7f0000000300)="86", 0x1}], 0x3}], 0x1, 0x0) 23:46:06 executing program 0: syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x0, 0x400040) 23:46:06 executing program 2: syz_mount_image$romfs(&(0x7f0000000040)='romfs\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1, &(0x7f0000000200)=[{0x0, 0x0, 0x200}], 0x0, &(0x7f0000000240)) 23:46:06 executing program 1: r0 = openat$vhost_vsock(0xffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1) [ 245.554472][T10956] loop2: detected capacity change from 2 to 0 [ 245.565352][T10956] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 245.581825][T10956] VFS: Can't find a romfs filesystem on dev loop2. [ 245.581825][T10956] [ 245.602662][ T55] Bluetooth: hci1: command 0x0419 tx timeout [ 245.676339][T10956] loop2: detected capacity change from 2 to 0 [ 245.685269][T10956] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 245.695376][T10956] VFS: Can't find a romfs filesystem on dev loop2. [ 245.695376][T10956] [ 245.906908][ T25] Bluetooth: hci2: command 0x0419 tx timeout 23:46:07 executing program 0: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x3, 0x0, 0x0) 23:46:07 executing program 1: r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_ipv6_tunnel_SIOCDEL6RD(r0, 0x89fa, &(0x7f0000000240)={'ip6gre0\x00', 0x0}) 23:46:07 executing program 2: openat$vcsu(0xffffff9c, &(0x7f0000000000)='/dev/vcsu\x00', 0x10000, 0x0) 23:46:07 executing program 3: timer_create(0x0, &(0x7f00000001c0)={0x0, 0x0, 0x4, @thr={0x0, 0x0}}, 0x0) [ 246.236717][ T37] Bluetooth: hci3: command 0x0419 tx timeout 23:46:07 executing program 2: syz_mount_image$romfs(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)) getresgid(&(0x7f0000000040), &(0x7f0000000080), &(0x7f00000000c0)) 23:46:07 executing program 1: r0 = socket$inet_tcp(0x2, 0x1, 0x0) getsockname(r0, 0x0, &(0x7f0000000180)) 23:46:07 executing program 0: socketpair(0x10, 0x3, 0x80010000, &(0x7f0000000000)) 23:46:07 executing program 3: mknodat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0xc000, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x0, 0x0) 23:46:07 executing program 1: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x23, 0x0, 0x0) 23:46:07 executing program 0: syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', 0x0, 0x0, 0x0, 0x0, 0x5ad1b4979271a913, &(0x7f0000000300)) 23:46:07 executing program 1: openat$vcsu(0xffffff9c, &(0x7f0000000000)='/dev/vcsu\x00', 0x6002, 0x0) 23:46:07 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) recvmmsg(r0, &(0x7f0000002d80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0) 23:46:07 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0x12, 0x0, &(0x7f0000000380)="263abd040e98ff4dc870bd6688a8640888a8", 0x0, 0x200}, 0x28) 23:46:07 executing program 0: socketpair(0x11, 0x0, 0x0, &(0x7f0000000040)) [ 246.451203][ T47] audit: type=1400 audit(1611877567.702:51): avc: denied { open } for pid=11005 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=perf_event permissive=1 23:46:07 executing program 1: syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x844, &(0x7f00000002c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id'}}) 23:46:07 executing program 0: syz_mount_image$romfs(0x0, &(0x7f00000006c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) link(&(0x7f0000000200)='./file0\x00', 0x0) [ 246.492439][ T47] audit: type=1400 audit(1611877567.702:52): avc: denied { perfmon } for pid=11005 comm="syz-executor.3" capability=38 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1 [ 246.521694][ T47] audit: type=1400 audit(1611877567.702:53): avc: denied { kernel } for pid=11005 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=perf_event permissive=1 [ 246.549539][ T47] audit: type=1400 audit(1611877567.702:54): avc: denied { confidentiality } for pid=11005 comm="syz-executor.3" lockdown_reason="unsafe use of perf" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=lockdown permissive=1 [ 246.581384][ T47] audit: type=1400 audit(1611877567.752:55): avc: denied { prog_load } for pid=11005 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 [ 246.608465][ T47] audit: type=1400 audit(1611877567.752:56): avc: denied { bpf } for pid=11005 comm="syz-executor.3" capability=39 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=capability2 permissive=1 [ 246.648265][ T47] audit: type=1400 audit(1611877567.902:57): avc: denied { prog_run } for pid=11005 comm="syz-executor.3" scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=bpf permissive=1 [ 246.665844][T11013] fuse: Bad value for 'fd' [ 246.688682][T11013] fuse: Bad value for 'fd' 23:46:07 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0x12, 0x0, &(0x7f0000000380)="263abd040e98ff4dc870bd6688a8640888a8", 0x0, 0x200}, 0x28) 23:46:07 executing program 1: syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x844, &(0x7f00000002c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id'}}) 23:46:08 executing program 0: bpf$BPF_MAP_LOOKUP_AND_DELETE_BATCH(0x19, 0x0, 0x7800) [ 246.762578][T11021] fuse: Bad value for 'fd' 23:46:08 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000580)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r0, &(0x7f0000000000)=@abs, 0x6e) 23:46:08 executing program 3: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) gettid() perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x3, &(0x7f00000006c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x5, 0x487, &(0x7f000000cf3d)=""/195}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x0, 0x12, 0x0, &(0x7f0000000380)="263abd040e98ff4dc870bd6688a8640888a8", 0x0, 0x200}, 0x28) 23:46:08 executing program 1: syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x844, &(0x7f00000002c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id'}}) 23:46:08 executing program 0: syz_io_uring_setup(0x4, &(0x7f0000000040), &(0x7f00003fd000/0xc00000)=nil, &(0x7f00006a8000/0x4000)=nil, 0x0, 0x0) [ 247.303490][T11032] fuse: Bad value for 'fd' [ 247.307732][T11034] ------------[ cut here ]------------ [ 247.319091][T11034] WARNING: CPU: 2 PID: 11034 at include/linux/cpumask.h:137 try_to_wake_up+0xe11/0x14a0 [ 247.319091][T11034] Modules linked in: 23:46:08 executing program 1: syz_mount_image$fuse(&(0x7f0000000040)='fuse\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x844, &(0x7f00000002c0)={{'fd'}, 0x2c, {'rootmode'}, 0x2c, {'user_id', 0x3d, 0xee00}, 0x2c, {'group_id'}}) [ 247.342697][T11034] CPU: 2 PID: 11034 Comm: io_wq_manager Not tainted 5.11.0-rc5-syzkaller #0 [ 247.342697][T11034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 247.342697][T11034] RIP: 0010:try_to_wake_up+0xe11/0x14a0 [ 247.342697][T11034] Code: 00 00 48 81 c7 78 ae 03 8d e8 9b 6c 66 00 48 8b 44 24 10 48 0f a3 05 f6 d1 b4 0b 49 c7 c4 00 4d 03 00 0f 92 c0 e9 bb fd ff ff <0f> 0b e9 7f f5 ff ff 48 8d bd d8 01 00 00 48 b8 00 00 00 00 00 fc [ 247.342697][T11034] RSP: 0018:ffffc90001287d48 EFLAGS: 00010002 [ 247.342697][T11034] RAX: dffffc0000000000 RBX: 1ffff92000250faf RCX: 0000000000000000 [ 247.342697][T11034] RDX: 1ffff1100d6d348e RSI: ffffffff83beb29b RDI: 0000000000000003 [ 247.342697][T11034] RBP: ffff88806b69a0c0 R08: 0000000000000040 R09: ffffffff8d03ae8f [ 247.342697][T11034] R10: ffffffff83beb258 R11: 0000000000000000 R12: ffff88806b69a478 [ 247.342697][T11034] R13: 0000000000000287 R14: ffff88806b69a968 R15: 0000000000000008 [ 247.342697][T11034] FS: 0000000000000000(0000) GS:ffff88802cc00000(0000) knlGS:0000000000000000 [ 247.342697][T11034] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 247.342697][T11034] CR2: 000000000075c000 CR3: 000000006fb92000 CR4: 0000000000150ee0 [ 247.342697][T11034] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 247.342697][T11034] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 247.504548][T11034] Call Trace: [ 247.504548][T11034] ? lock_downgrade+0x6d0/0x6d0 [ 247.504548][T11034] ? do_raw_spin_lock+0x120/0x2b0 [ 247.504548][T11034] ? migrate_swap_stop+0x9f0/0x9f0 [ 247.504548][T11034] ? rwlock_bug.part.0+0x90/0x90 [ 247.504548][T11034] ? _raw_spin_unlock_irq+0x1f/0x40 [ 247.504548][T11034] create_io_worker+0x590/0x8d0 [ 247.504548][T11034] io_wq_manager+0x16b/0xb80 [ 247.504548][T11034] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 247.504548][T11034] ? lockdep_hardirqs_on+0x79/0x100 [ 247.504548][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.504548][T11034] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 247.504548][T11034] ? __kthread_parkme+0x13f/0x1e0 [ 247.504548][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.504548][T11034] kthread+0x3b1/0x4a0 [ 247.504548][T11034] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 247.504548][T11034] ret_from_fork+0x1f/0x30 [ 247.504548][T11034] Kernel panic - not syncing: panic_on_warn set ... [ 247.504548][T11034] CPU: 2 PID: 11034 Comm: io_wq_manager Not tainted 5.11.0-rc5-syzkaller #0 [ 247.504548][T11034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 247.504548][T11034] Call Trace: [ 247.504548][T11034] dump_stack+0x107/0x163 [ 247.504548][T11034] panic+0x306/0x73d [ 247.504548][T11034] ? __warn_printk+0xf3/0xf3 [ 247.504548][T11034] ? __warn.cold+0x1a/0x44 [ 247.504548][T11034] ? try_to_wake_up+0xe11/0x14a0 [ 247.504548][T11034] __warn.cold+0x35/0x44 [ 247.504548][T11034] ? try_to_wake_up+0xe11/0x14a0 [ 247.504548][T11034] report_bug+0x1bd/0x210 [ 247.504548][T11034] handle_bug+0x3c/0x60 [ 247.504548][T11034] exc_invalid_op+0x14/0x40 [ 247.504548][T11034] asm_exc_invalid_op+0x12/0x20 [ 247.504548][T11034] RIP: 0010:try_to_wake_up+0xe11/0x14a0 [ 247.504548][T11034] Code: 00 00 48 81 c7 78 ae 03 8d e8 9b 6c 66 00 48 8b 44 24 10 48 0f a3 05 f6 d1 b4 0b 49 c7 c4 00 4d 03 00 0f 92 c0 e9 bb fd ff ff <0f> 0b e9 7f f5 ff ff 48 8d bd d8 01 00 00 48 b8 00 00 00 00 00 fc [ 247.504548][T11034] RSP: 0018:ffffc90001287d48 EFLAGS: 00010002 [ 247.504548][T11034] RAX: dffffc0000000000 RBX: 1ffff92000250faf RCX: 0000000000000000 [ 247.504548][T11034] RDX: 1ffff1100d6d348e RSI: ffffffff83beb29b RDI: 0000000000000003 [ 247.504548][T11034] RBP: ffff88806b69a0c0 R08: 0000000000000040 R09: ffffffff8d03ae8f [ 247.504548][T11034] R10: ffffffff83beb258 R11: 0000000000000000 R12: ffff88806b69a478 [ 247.504548][T11034] R13: 0000000000000287 R14: ffff88806b69a968 R15: 0000000000000008 [ 247.504548][T11034] ? find_first_bit+0x48/0xb0 [ 247.504548][T11034] ? find_first_bit+0x8b/0xb0 [ 247.504548][T11034] ? try_to_wake_up+0x9d7/0x14a0 [ 247.504548][T11034] ? lock_downgrade+0x6d0/0x6d0 [ 247.504548][T11034] ? do_raw_spin_lock+0x120/0x2b0 [ 247.504548][T11034] ? migrate_swap_stop+0x9f0/0x9f0 [ 247.504548][T11034] ? rwlock_bug.part.0+0x90/0x90 [ 247.504548][T11034] ? _raw_spin_unlock_irq+0x1f/0x40 [ 247.504548][T11034] create_io_worker+0x590/0x8d0 [ 247.504548][T11034] io_wq_manager+0x16b/0xb80 [ 247.504548][T11034] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 247.504548][T11034] ? lockdep_hardirqs_on+0x79/0x100 [ 247.504548][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.504548][T11034] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 247.504548][T11034] ? __kthread_parkme+0x13f/0x1e0 [ 247.504548][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.504548][T11034] kthread+0x3b1/0x4a0 [ 247.907907][T11034] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 247.913327][T11034] ret_from_fork+0x1f/0x30 [ 247.919661][T11034] [ 247.919661][T11034] ====================================================== [ 247.919661][T11034] WARNING: possible circular locking dependency detected [ 247.919661][T11034] 5.11.0-rc5-syzkaller #0 Not tainted [ 247.919661][T11034] ------------------------------------------------------ [ 247.919661][T11034] io_wq_manager/11034 is trying to acquire lock: [ 247.919661][T11034] ffffffff8b363058 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x60 [ 247.919661][T11034] [ 247.919661][T11034] but task is already holding lock: [ 247.919661][T11034] ffff88806b69a980 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0x98/0x14a0 [ 247.919661][T11034] [ 247.919661][T11034] which lock already depends on the new lock. [ 247.919661][T11034] [ 247.919661][T11034] [ 247.919661][T11034] the existing dependency chain (in reverse order) is: [ 247.919661][T11034] [ 247.919661][T11034] -> #1 (&p->pi_lock){-.-.}-{2:2}: [ 247.919661][T11034] _raw_spin_lock_irqsave+0x39/0x50 [ 247.919661][T11034] try_to_wake_up+0x98/0x14a0 [ 247.919661][T11034] up+0x75/0xb0 [ 247.919661][T11034] __up_console_sem+0x4a/0x80 [ 247.919661][T11034] console_unlock+0x591/0xbb0 [ 247.919661][T11034] vprintk_emit+0x189/0x490 [ 247.919661][T11034] vprintk_func+0x8d/0x1e0 [ 247.919661][T11034] printk+0xba/0xed [ 247.919661][T11034] kauditd_hold_skb.cold+0x41/0x50 [ 247.919661][T11034] kauditd_send_queue+0x19d/0x210 [ 247.919661][T11034] kauditd_thread+0x7f0/0xb80 [ 247.919661][T11034] kthread+0x3b1/0x4a0 [ 247.919661][T11034] ret_from_fork+0x1f/0x30 [ 247.919661][T11034] [ 247.919661][T11034] -> #0 ((console_sem).lock){-...}-{2:2}: [ 247.919661][T11034] __lock_acquire+0x2b26/0x54f0 [ 247.919661][T11034] lock_acquire+0x1a8/0x720 [ 247.919661][T11034] _raw_spin_lock_irqsave+0x39/0x50 [ 247.919661][T11034] down_trylock+0xe/0x60 [ 247.919661][T11034] __down_trylock_console_sem+0x3e/0xd0 [ 247.919661][T11034] vprintk_emit+0x137/0x490 [ 247.919661][T11034] vprintk_func+0x8d/0x1e0 [ 247.919661][T11034] printk+0xba/0xed [ 247.919661][T11034] report_bug.cold+0x72/0xab [ 247.919661][T11034] handle_bug+0x3c/0x60 [ 247.919661][T11034] exc_invalid_op+0x14/0x40 [ 247.919661][T11034] asm_exc_invalid_op+0x12/0x20 [ 247.919661][T11034] try_to_wake_up+0xe11/0x14a0 [ 247.919661][T11034] create_io_worker+0x590/0x8d0 [ 247.919661][T11034] io_wq_manager+0x16b/0xb80 [ 247.919661][T11034] kthread+0x3b1/0x4a0 [ 247.919661][T11034] ret_from_fork+0x1f/0x30 [ 247.919661][T11034] [ 247.919661][T11034] other info that might help us debug this: [ 247.919661][T11034] [ 247.919661][T11034] Possible unsafe locking scenario: [ 247.919661][T11034] [ 247.919661][T11034] CPU0 CPU1 [ 247.919661][T11034] ---- ---- [ 247.919661][T11034] lock(&p->pi_lock); [ 247.919661][T11034] lock((console_sem).lock); [ 247.919661][T11034] lock(&p->pi_lock); [ 247.919661][T11034] lock((console_sem).lock); [ 247.919661][T11034] [ 247.919661][T11034] *** DEADLOCK *** [ 247.919661][T11034] [ 247.919661][T11034] 1 lock held by io_wq_manager/11034: [ 247.919661][T11034] #0: ffff88806b69a980 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0x98/0x14a0 [ 247.919661][T11034] [ 247.919661][T11034] stack backtrace: [ 247.919661][T11034] CPU: 2 PID: 11034 Comm: io_wq_manager Not tainted 5.11.0-rc5-syzkaller #0 [ 247.919661][T11034] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS rel-1.12.0-59-gc9ba5276e321-prebuilt.qemu.org 04/01/2014 [ 247.919661][T11034] Call Trace: [ 247.919661][T11034] dump_stack+0x107/0x163 [ 247.919661][T11034] check_noncircular+0x25f/0x2e0 [ 247.919661][T11034] ? print_circular_bug+0x480/0x480 [ 247.919661][T11034] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 247.919661][T11034] ? space_used+0x1a3/0x2a0 [ 247.919661][T11034] ? format_decode+0x230/0xad0 [ 247.919661][T11034] ? lockdep_lock+0xc6/0x200 [ 247.919661][T11034] ? call_rcu_zapped+0xb0/0xb0 [ 247.919661][T11034] __lock_acquire+0x2b26/0x54f0 [ 247.919661][T11034] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 247.919661][T11034] lock_acquire+0x1a8/0x720 [ 247.919661][T11034] ? down_trylock+0xe/0x60 [ 247.919661][T11034] ? lock_release+0x710/0x710 [ 247.919661][T11034] ? vprintk_func+0x8d/0x1e0 [ 247.919661][T11034] _raw_spin_lock_irqsave+0x39/0x50 [ 247.919661][T11034] ? down_trylock+0xe/0x60 [ 247.919661][T11034] down_trylock+0xe/0x60 [ 247.919661][T11034] ? vprintk_func+0x8d/0x1e0 [ 247.919661][T11034] __down_trylock_console_sem+0x3e/0xd0 [ 247.919661][T11034] vprintk_emit+0x137/0x490 [ 247.919661][T11034] vprintk_func+0x8d/0x1e0 [ 247.919661][T11034] printk+0xba/0xed [ 247.919661][T11034] ? record_print_text.cold+0x16/0x16 [ 247.919661][T11034] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 247.919661][T11034] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 247.919661][T11034] ? report_bug.cold+0x66/0xab [ 247.919661][T11034] ? try_to_wake_up+0xe11/0x14a0 [ 247.919661][T11034] report_bug.cold+0x72/0xab [ 247.919661][T11034] handle_bug+0x3c/0x60 [ 247.919661][T11034] exc_invalid_op+0x14/0x40 [ 247.919661][T11034] asm_exc_invalid_op+0x12/0x20 [ 247.919661][T11034] RIP: 0010:try_to_wake_up+0xe11/0x14a0 [ 247.919661][T11034] Code: 00 00 48 81 c7 78 ae 03 8d e8 9b 6c 66 00 48 8b 44 24 10 48 0f a3 05 f6 d1 b4 0b 49 c7 c4 00 4d 03 00 0f 92 c0 e9 bb fd ff ff <0f> 0b e9 7f f5 ff ff 48 8d bd d8 01 00 00 48 b8 00 00 00 00 00 fc [ 247.919661][T11034] RSP: 0018:ffffc90001287d48 EFLAGS: 00010002 [ 247.919661][T11034] RAX: dffffc0000000000 RBX: 1ffff92000250faf RCX: 0000000000000000 [ 247.919661][T11034] RDX: 1ffff1100d6d348e RSI: ffffffff83beb29b RDI: 0000000000000003 [ 247.919661][T11034] RBP: ffff88806b69a0c0 R08: 0000000000000040 R09: ffffffff8d03ae8f [ 247.919661][T11034] R10: ffffffff83beb258 R11: 0000000000000000 R12: ffff88806b69a478 [ 247.919661][T11034] R13: 0000000000000287 R14: ffff88806b69a968 R15: 0000000000000008 [ 247.919661][T11034] ? find_first_bit+0x48/0xb0 [ 247.919661][T11034] ? find_first_bit+0x8b/0xb0 [ 247.919661][T11034] ? try_to_wake_up+0x9d7/0x14a0 [ 247.919661][T11034] ? lock_downgrade+0x6d0/0x6d0 [ 247.919661][T11034] ? do_raw_spin_lock+0x120/0x2b0 [ 247.919661][T11034] ? migrate_swap_stop+0x9f0/0x9f0 [ 247.919661][T11034] ? rwlock_bug.part.0+0x90/0x90 [ 247.919661][T11034] ? _raw_spin_unlock_irq+0x1f/0x40 [ 247.919661][T11034] create_io_worker+0x590/0x8d0 [ 247.919661][T11034] io_wq_manager+0x16b/0xb80 [ 247.919661][T11034] ? _raw_spin_unlock_irqrestore+0x42/0x50 [ 247.919661][T11034] ? lockdep_hardirqs_on+0x79/0x100 [ 247.919661][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.919661][T11034] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 247.919661][T11034] ? __kthread_parkme+0x13f/0x1e0 [ 247.919661][T11034] ? io_wq_cpu_online+0x250/0x250 [ 247.919661][T11034] kthread+0x3b1/0x4a0 [ 247.919661][T11034] ? kthread_create_worker_on_cpu+0xf0/0xf0 [ 247.919661][T11034] ret_from_fork+0x1f/0x30 [ 247.919661][T11034] Kernel Offset: disabled [ 247.919661][T11034] Rebooting in 86400 seconds.. VM DIAGNOSIS: 23:46:09 Registers: info registers vcpu 0 RAX=00000089971bb0b5 RBX=0000000000000000 RCX=00000000000006e0 RDX=0000000000000089 RSI=ffff88802ca1fa00 RDI=0000000000000b54 RBP=ffff88802ca1fa00 RSP=ffffc90000007d68 R8 =000000000000003f R9 =ffffffff8d03ae8f R10=ffffffff8165b637 R11=0000000000000000 R12=0000000000000b54 R13=0000000000000019 R14=0000000000000001 R15=ffff88802ca26a00 RIP=ffffffff812fbb2b RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f214363e700 ffffffff 00c00000 GS =0000 ffff88802ca00000 ffffffff 00c00000 LDT=0000 0000000000000000 ffffffff 00c00000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000000000b60004 CR3=0000000068305000 CR4=00150ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000007369680000000000736980 XMM02=00000000007369600000000000736968 XMM03=00000000007369800000000000736960 XMM04=695f7a79730070757465735f676e6972 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000096 RBX=000000c00001e500 RCX=00007f7b214a26d0 RDX=000000c00001e500 RSI=00000000000000f7 RDI=00007ffdbcbc8080 RBP=000000c0004d9e88 RSP=000000c0004d9e70 R8 =00000000000000e9 R9 =00007ffdbcbc8090 R10=000000000000b620 R11=0000000000000202 R12=0000000000000000 R13=0000000000000001 R14=000000c00f915c80 R15=0000000000000000 RIP=000000000041715c RFL=00010202 [-------] CPL=3 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0033 0000000000000000 ffffffff 00a0fb00 DPL=3 CS64 [-RA] SS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000000c000254790 ffffffff 00c00000 GS =0000 0000000000000000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000003c000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00000000023f3318 CR3=000000001b359000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000 XMM02=652e29646e616d6d6f632a282e637069 XMM03=00000000000000000000000000000000 XMM04=303030306378302f3030306466333030 XMM05=3030663778302826202c6c696e3d2930 XMM06=293030303478302f3030303861363030 XMM07=0a29307830202c307830202c6c696e3d XMM08=30202c307830202c307830202c273030 XMM09=3778302826202c3434387830202c3078 XMM10=277b7b3d293063323030303030303066 XMM11=6f72277b202c63327830202c7d276466 XMM12=202c63327830202c7d2765646f6d746f XMM13=64337830202c2764695f72657375277b XMM14=2c63327830202c7d303065657830202c XMM15=0a297d7d2764695f70756f7267277b20 info registers vcpu 2 RAX=0000000000000000 RBX=00000000000003f9 RCX=0000000000000000 RDX=00000000000003f9 RSI=ffffffff84184bf1 RDI=ffffffff8fc82800 RBP=ffffffff8fc827c0 RSP=ffffc90001287790 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff84184be2 R11=000000000000001f R12=0000000000000000 R13=0000000000000000 R14=0000000000000001 R15=ffffffff8fc82810 RIP=ffffffff84184c1a RFL=00000006 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802cc00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000079000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000077000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=000000000075c000 CR3=000000006fb92000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=00000000000000000000000000000000 XMM01=00000000007369680000000000736980 XMM02=00000000007369600000000000736968 XMM03=00000000007369800000000000736960 XMM04=695f7a79730070757465735f676e6972 XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000000080000000 RBX=ffffffff8cb90280 RCX=1ffffffff1a07c0b RDX=0000000000000108 RSI=ffffc90000817c40 RDI=ffff888026e88040 RBP=ffff888026e88040 RSP=ffffc90000817b98 R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff81789718 R11=0000000000000000 R12=ffffc90000817c40 R13=0000000000000108 R14=ffffc90000817c60 R15=ffff8880213aea80 RIP=ffffffff87756950 RFL=00010286 [--S--P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007fae961fe7c0 ffffffff 00c00000 GS =0000 ffff88802cd00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000b4000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000b2000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffd0e2999cc CR3=0000000018fe4000 CR4=00150ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=0a0a297d7d2764695f70756f7267277b XMM01=7566246567616d695f746e756f6d5f7a XMM02=26202c273030785c65737566273d2930 XMM03=34303030303030303066377830282628 XMM04=65737566246567616d695f746e756f6d XMM05=7566246567616d695f746e756f6d5f7a XMM06=273030785c30656c69662f2e273d2930 XMM07=38303030303030303066377830282620 XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000