[ 51.230631][ T40] audit: type=1400 audit(1661445273.504:74): avc: denied { write } for pid=3631 comm="sh" path="pipe:[29898]" dev="pipefs" ino=29898 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 Warning: Permanently added '[localhost]:17696' (ECDSA) to the list of known hosts. [ 54.234825][ T40] audit: type=1400 audit(1661445276.524:75): avc: denied { execute } for pid=3674 comm="sh" name="syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 54.250062][ T40] audit: type=1400 audit(1661445276.534:76): avc: denied { execute_no_trans } for pid=3674 comm="sh" path="/syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 2022/08/25 16:34:36 fuzzer started 2022/08/25 16:34:37 dialing manager at localhost:40007 [ 55.125583][ T40] audit: type=1400 audit(1661445277.414:77): avc: denied { mounton } for pid=3685 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 55.131796][ T3685] cgroup: Unknown subsys name 'net' [ 55.147982][ T40] audit: type=1400 audit(1661445277.414:78): avc: denied { mount } for pid=3685 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 55.179102][ T40] audit: type=1400 audit(1661445277.474:79): avc: denied { unmount } for pid=3685 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 55.400057][ T3685] cgroup: Unknown subsys name 'rlimit' [ 55.548249][ T40] audit: type=1400 audit(1661445277.844:80): avc: denied { mounton } for pid=3685 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 2022/08/25 16:34:37 syscalls: 3757 2022/08/25 16:34:37 code coverage: enabled 2022/08/25 16:34:37 comparison tracing: enabled 2022/08/25 16:34:37 extra coverage: enabled 2022/08/25 16:34:37 delay kcov mmap: enabled 2022/08/25 16:34:37 setuid sandbox: enabled 2022/08/25 16:34:37 namespace sandbox: enabled 2022/08/25 16:34:37 Android sandbox: enabled 2022/08/25 16:34:37 fault injection: enabled 2022/08/25 16:34:37 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2022/08/25 16:34:37 net packet injection: enabled 2022/08/25 16:34:37 net device setup: enabled 2022/08/25 16:34:37 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2022/08/25 16:34:37 devlink PCI setup: PCI device 0000:00:10.0 is not available 2022/08/25 16:34:37 USB emulation: enabled 2022/08/25 16:34:37 hci packet injection: enabled 2022/08/25 16:34:37 wifi device emulation: failed to parse kernel version (6.0.0-rc2-syzkaller-00054-gc40e8341e3b3) 2022/08/25 16:34:37 802.15.4 emulation: enabled [ 55.568475][ T40] audit: type=1400 audit(1661445277.854:81): avc: denied { mount } for pid=3685 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 2022/08/25 16:34:37 fetching corpus: 0, signal 0/2000 (executing program) [ 55.590043][ T40] audit: type=1400 audit(1661445277.854:82): avc: denied { setattr } for pid=3685 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 2022/08/25 16:34:38 fetching corpus: 50, signal 45452/48925 (executing program) 2022/08/25 16:34:39 fetching corpus: 100, signal 62587/67512 (executing program) 2022/08/25 16:34:39 fetching corpus: 150, signal 77053/83306 (executing program) 2022/08/25 16:34:39 fetching corpus: 200, signal 86452/94024 (executing program) 2022/08/25 16:34:39 fetching corpus: 250, signal 91929/100825 (executing program) 2022/08/25 16:34:40 fetching corpus: 300, signal 100718/110747 (executing program) 2022/08/25 16:34:40 fetching corpus: 350, signal 107089/118293 (executing program) 2022/08/25 16:34:40 fetching corpus: 400, signal 112520/124859 (executing program) 2022/08/25 16:34:40 fetching corpus: 450, signal 116387/129876 (executing program) 2022/08/25 16:34:40 fetching corpus: 500, signal 122230/136755 (executing program) 2022/08/25 16:34:40 fetching corpus: 550, signal 128142/143634 (executing program) 2022/08/25 16:34:41 fetching corpus: 600, signal 132521/149023 (executing program) 2022/08/25 16:34:41 fetching corpus: 650, signal 135571/153111 (executing program) 2022/08/25 16:34:41 fetching corpus: 700, signal 140120/158572 (executing program) 2022/08/25 16:34:41 fetching corpus: 750, signal 146875/165955 (executing program) 2022/08/25 16:34:41 fetching corpus: 800, signal 150638/170559 (executing program) 2022/08/25 16:34:42 fetching corpus: 850, signal 154115/174877 (executing program) 2022/08/25 16:34:42 fetching corpus: 900, signal 157828/179313 (executing program) 2022/08/25 16:34:42 fetching corpus: 950, signal 160833/183189 (executing program) 2022/08/25 16:34:42 fetching corpus: 1000, signal 162639/185879 (executing program) 2022/08/25 16:34:42 fetching corpus: 1050, signal 166089/189998 (executing program) 2022/08/25 16:34:43 fetching corpus: 1100, signal 168416/193165 (executing program) 2022/08/25 16:34:43 fetching corpus: 1150, signal 170979/196423 (executing program) 2022/08/25 16:34:43 fetching corpus: 1200, signal 173272/199480 (executing program) 2022/08/25 16:34:43 fetching corpus: 1250, signal 176653/203445 (executing program) 2022/08/25 16:34:43 fetching corpus: 1300, signal 179333/206799 (executing program) 2022/08/25 16:34:44 fetching corpus: 1350, signal 182221/210284 (executing program) 2022/08/25 16:34:44 fetching corpus: 1400, signal 186363/214743 (executing program) 2022/08/25 16:34:44 fetching corpus: 1450, signal 187918/216972 (executing program) 2022/08/25 16:34:45 fetching corpus: 1500, signal 191013/220523 (executing program) 2022/08/25 16:34:45 fetching corpus: 1550, signal 193504/223523 (executing program) 2022/08/25 16:34:45 fetching corpus: 1600, signal 196161/226685 (executing program) 2022/08/25 16:34:45 fetching corpus: 1650, signal 198024/229144 (executing program) 2022/08/25 16:34:46 fetching corpus: 1700, signal 200754/232276 (executing program) 2022/08/25 16:34:46 fetching corpus: 1750, signal 203525/235414 (executing program) 2022/08/25 16:34:47 fetching corpus: 1800, signal 205224/237691 (executing program) 2022/08/25 16:34:47 fetching corpus: 1850, signal 207524/240388 (executing program) 2022/08/25 16:34:47 fetching corpus: 1900, signal 209943/243121 (executing program) 2022/08/25 16:34:48 fetching corpus: 1950, signal 211572/245299 (executing program) 2022/08/25 16:34:48 fetching corpus: 2000, signal 213473/247636 (executing program) 2022/08/25 16:34:48 fetching corpus: 2050, signal 214965/249601 (executing program) 2022/08/25 16:34:48 fetching corpus: 2100, signal 217005/251981 (executing program) 2022/08/25 16:34:49 fetching corpus: 2150, signal 218664/254051 (executing program) 2022/08/25 16:34:49 fetching corpus: 2200, signal 219902/255782 (executing program) 2022/08/25 16:34:49 fetching corpus: 2250, signal 221998/258151 (executing program) 2022/08/25 16:34:49 fetching corpus: 2300, signal 224520/260836 (executing program) 2022/08/25 16:34:49 fetching corpus: 2350, signal 225890/262651 (executing program) 2022/08/25 16:34:50 fetching corpus: 2400, signal 227702/264771 (executing program) 2022/08/25 16:34:50 fetching corpus: 2450, signal 229302/266697 (executing program) 2022/08/25 16:34:50 fetching corpus: 2500, signal 230881/268559 (executing program) 2022/08/25 16:34:50 fetching corpus: 2550, signal 232410/270384 (executing program) 2022/08/25 16:34:50 fetching corpus: 2600, signal 233679/271998 (executing program) 2022/08/25 16:34:51 fetching corpus: 2650, signal 234773/273437 (executing program) 2022/08/25 16:34:51 fetching corpus: 2700, signal 236707/275491 (executing program) 2022/08/25 16:34:51 fetching corpus: 2750, signal 238470/277431 (executing program) 2022/08/25 16:34:52 fetching corpus: 2800, signal 239716/279026 (executing program) 2022/08/25 16:34:52 fetching corpus: 2850, signal 241114/280698 (executing program) 2022/08/25 16:34:53 fetching corpus: 2900, signal 242746/282524 (executing program) 2022/08/25 16:34:53 fetching corpus: 2950, signal 244871/284640 (executing program) 2022/08/25 16:34:53 fetching corpus: 3000, signal 246155/286165 (executing program) 2022/08/25 16:34:53 fetching corpus: 3050, signal 248083/288098 (executing program) 2022/08/25 16:34:53 fetching corpus: 3100, signal 249413/289609 (executing program) 2022/08/25 16:34:54 fetching corpus: 3150, signal 251145/291444 (executing program) 2022/08/25 16:34:54 fetching corpus: 3200, signal 251921/292529 (executing program) 2022/08/25 16:34:54 fetching corpus: 3250, signal 253556/294210 (executing program) 2022/08/25 16:34:54 fetching corpus: 3300, signal 254943/295739 (executing program) 2022/08/25 16:34:54 fetching corpus: 3350, signal 256170/297078 (executing program) 2022/08/25 16:34:55 fetching corpus: 3400, signal 257423/298446 (executing program) 2022/08/25 16:34:55 fetching corpus: 3450, signal 258527/299725 (executing program) 2022/08/25 16:34:55 fetching corpus: 3500, signal 260588/301568 (executing program) 2022/08/25 16:34:55 fetching corpus: 3550, signal 262011/303021 (executing program) 2022/08/25 16:34:56 fetching corpus: 3600, signal 262793/304078 (executing program) 2022/08/25 16:34:56 fetching corpus: 3650, signal 263905/305313 (executing program) 2022/08/25 16:34:56 fetching corpus: 3700, signal 265051/306532 (executing program) 2022/08/25 16:34:56 fetching corpus: 3750, signal 266364/307858 (executing program) 2022/08/25 16:34:57 fetching corpus: 3800, signal 267908/309342 (executing program) 2022/08/25 16:34:57 fetching corpus: 3850, signal 268845/310389 (executing program) 2022/08/25 16:34:57 fetching corpus: 3900, signal 269424/311233 (executing program) 2022/08/25 16:34:57 fetching corpus: 3950, signal 270551/312398 (executing program) 2022/08/25 16:34:57 fetching corpus: 4000, signal 272021/313735 (executing program) 2022/08/25 16:34:57 fetching corpus: 4050, signal 272883/314696 (executing program) 2022/08/25 16:34:58 fetching corpus: 4100, signal 273963/315833 (executing program) 2022/08/25 16:34:58 fetching corpus: 4150, signal 275145/316993 (executing program) 2022/08/25 16:34:58 fetching corpus: 4200, signal 276180/318091 (executing program) 2022/08/25 16:34:58 fetching corpus: 4250, signal 277177/319136 (executing program) 2022/08/25 16:34:58 fetching corpus: 4300, signal 277935/319956 (executing program) 2022/08/25 16:34:59 fetching corpus: 4350, signal 278871/320971 (executing program) 2022/08/25 16:34:59 fetching corpus: 4400, signal 280322/322202 (executing program) 2022/08/25 16:34:59 fetching corpus: 4450, signal 281359/323198 (executing program) 2022/08/25 16:34:59 fetching corpus: 4500, signal 282154/324017 (executing program) [ 77.596011][ T1353] ieee802154 phy0 wpan0: encryption failed: -22 [ 77.603726][ T1353] ieee802154 phy1 wpan1: encryption failed: -22 2022/08/25 16:35:00 fetching corpus: 4550, signal 283409/325128 (executing program) 2022/08/25 16:35:00 fetching corpus: 4600, signal 284387/326058 (executing program) 2022/08/25 16:35:00 fetching corpus: 4650, signal 285348/326999 (executing program) 2022/08/25 16:35:00 fetching corpus: 4700, signal 286223/327898 (executing program) 2022/08/25 16:35:00 fetching corpus: 4750, signal 287165/328832 (executing program) 2022/08/25 16:35:01 fetching corpus: 4800, signal 287817/329578 (executing program) 2022/08/25 16:35:01 fetching corpus: 4850, signal 288845/330522 (executing program) 2022/08/25 16:35:01 fetching corpus: 4900, signal 290018/331500 (executing program) 2022/08/25 16:35:01 fetching corpus: 4950, signal 290981/332372 (executing program) 2022/08/25 16:35:01 fetching corpus: 5000, signal 292080/333220 (executing program) 2022/08/25 16:35:02 fetching corpus: 5050, signal 293061/334080 (executing program) 2022/08/25 16:35:02 fetching corpus: 5100, signal 293905/334858 (executing program) 2022/08/25 16:35:02 fetching corpus: 5150, signal 294804/335608 (executing program) 2022/08/25 16:35:03 fetching corpus: 5200, signal 296024/336556 (executing program) 2022/08/25 16:35:03 fetching corpus: 5250, signal 296807/337273 (executing program) 2022/08/25 16:35:03 fetching corpus: 5300, signal 297497/337953 (executing program) 2022/08/25 16:35:04 fetching corpus: 5350, signal 298397/338682 (executing program) 2022/08/25 16:35:04 fetching corpus: 5400, signal 299259/339399 (executing program) 2022/08/25 16:35:04 fetching corpus: 5450, signal 299901/340006 (executing program) 2022/08/25 16:35:04 fetching corpus: 5500, signal 300775/340749 (executing program) 2022/08/25 16:35:04 fetching corpus: 5550, signal 301655/341440 (executing program) 2022/08/25 16:35:05 fetching corpus: 5600, signal 302331/342065 (executing program) 2022/08/25 16:35:05 fetching corpus: 5650, signal 303202/342738 (executing program) 2022/08/25 16:35:05 fetching corpus: 5700, signal 304742/343639 (executing program) 2022/08/25 16:35:05 fetching corpus: 5750, signal 305459/344206 (executing program) 2022/08/25 16:35:06 fetching corpus: 5800, signal 306117/344784 (executing program) 2022/08/25 16:35:06 fetching corpus: 5850, signal 307154/345499 (executing program) 2022/08/25 16:35:06 fetching corpus: 5900, signal 307986/346100 (executing program) 2022/08/25 16:35:06 fetching corpus: 5950, signal 308877/346725 (executing program) 2022/08/25 16:35:07 fetching corpus: 6000, signal 309580/347261 (executing program) 2022/08/25 16:35:07 fetching corpus: 6050, signal 310359/347839 (executing program) 2022/08/25 16:35:07 fetching corpus: 6100, signal 311434/348493 (executing program) 2022/08/25 16:35:07 fetching corpus: 6150, signal 312236/349085 (executing program) 2022/08/25 16:35:08 fetching corpus: 6200, signal 313056/349583 (executing program) 2022/08/25 16:35:08 fetching corpus: 6250, signal 313812/350096 (executing program) 2022/08/25 16:35:08 fetching corpus: 6300, signal 314680/350680 (executing program) 2022/08/25 16:35:08 fetching corpus: 6350, signal 315592/351210 (executing program) 2022/08/25 16:35:09 fetching corpus: 6400, signal 316400/351753 (executing program) 2022/08/25 16:35:09 fetching corpus: 6450, signal 317401/352321 (executing program) 2022/08/25 16:35:09 fetching corpus: 6500, signal 318656/352889 (executing program) 2022/08/25 16:35:09 fetching corpus: 6550, signal 319623/353428 (executing program) [ 87.833089][ T38] cfg80211: failed to load regulatory.db 2022/08/25 16:35:10 fetching corpus: 6600, signal 320681/353997 (executing program) 2022/08/25 16:35:10 fetching corpus: 6650, signal 321340/354422 (executing program) 2022/08/25 16:35:10 fetching corpus: 6700, signal 322210/354906 (executing program) 2022/08/25 16:35:10 fetching corpus: 6750, signal 323410/355455 (executing program) 2022/08/25 16:35:11 fetching corpus: 6800, signal 323896/355813 (executing program) 2022/08/25 16:35:11 fetching corpus: 6850, signal 324625/356212 (executing program) 2022/08/25 16:35:11 fetching corpus: 6900, signal 325350/356635 (executing program) 2022/08/25 16:35:11 fetching corpus: 6950, signal 325969/357003 (executing program) 2022/08/25 16:35:11 fetching corpus: 7000, signal 326695/357404 (executing program) 2022/08/25 16:35:12 fetching corpus: 7050, signal 327357/357798 (executing program) 2022/08/25 16:35:12 fetching corpus: 7100, signal 328204/358171 (executing program) 2022/08/25 16:35:12 fetching corpus: 7150, signal 328917/358524 (executing program) 2022/08/25 16:35:12 fetching corpus: 7200, signal 329743/358931 (executing program) 2022/08/25 16:35:13 fetching corpus: 7250, signal 330363/359268 (executing program) 2022/08/25 16:35:13 fetching corpus: 7300, signal 331649/359719 (executing program) 2022/08/25 16:35:13 fetching corpus: 7350, signal 332169/360002 (executing program) 2022/08/25 16:35:13 fetching corpus: 7400, signal 333056/360363 (executing program) 2022/08/25 16:35:13 fetching corpus: 7450, signal 333730/360698 (executing program) 2022/08/25 16:35:14 fetching corpus: 7500, signal 334579/361035 (executing program) 2022/08/25 16:35:14 fetching corpus: 7550, signal 335323/361342 (executing program) 2022/08/25 16:35:14 fetching corpus: 7600, signal 335840/361606 (executing program) 2022/08/25 16:35:14 fetching corpus: 7650, signal 336492/361912 (executing program) 2022/08/25 16:35:15 fetching corpus: 7700, signal 337205/362159 (executing program) 2022/08/25 16:35:15 fetching corpus: 7750, signal 340792/362805 (executing program) 2022/08/25 16:35:15 fetching corpus: 7800, signal 341283/363044 (executing program) 2022/08/25 16:35:16 fetching corpus: 7850, signal 342343/363337 (executing program) 2022/08/25 16:35:16 fetching corpus: 7900, signal 343203/363586 (executing program) 2022/08/25 16:35:16 fetching corpus: 7950, signal 343871/363831 (executing program) 2022/08/25 16:35:16 fetching corpus: 8000, signal 344401/364015 (executing program) 2022/08/25 16:35:16 fetching corpus: 8050, signal 345291/364242 (executing program) 2022/08/25 16:35:16 fetching corpus: 8100, signal 345892/364487 (executing program) 2022/08/25 16:35:17 fetching corpus: 8150, signal 346803/364674 (executing program) 2022/08/25 16:35:17 fetching corpus: 8200, signal 347709/364878 (executing program) 2022/08/25 16:35:17 fetching corpus: 8250, signal 348399/365033 (executing program) 2022/08/25 16:35:18 fetching corpus: 8300, signal 349046/365176 (executing program) 2022/08/25 16:35:18 fetching corpus: 8350, signal 349730/365325 (executing program) 2022/08/25 16:35:18 fetching corpus: 8400, signal 350346/365451 (executing program) 2022/08/25 16:35:18 fetching corpus: 8450, signal 351039/365606 (executing program) 2022/08/25 16:35:18 fetching corpus: 8500, signal 351645/365733 (executing program) 2022/08/25 16:35:19 fetching corpus: 8550, signal 352313/365831 (executing program) 2022/08/25 16:35:19 fetching corpus: 8600, signal 352778/365928 (executing program) 2022/08/25 16:35:19 fetching corpus: 8650, signal 353507/366038 (executing program) 2022/08/25 16:35:19 fetching corpus: 8700, signal 354366/366118 (executing program) 2022/08/25 16:35:20 fetching corpus: 8750, signal 355058/366221 (executing program) 2022/08/25 16:35:20 fetching corpus: 8800, signal 355926/366313 (executing program) 2022/08/25 16:35:20 fetching corpus: 8850, signal 356508/366371 (executing program) 2022/08/25 16:35:20 fetching corpus: 8900, signal 357101/366439 (executing program) 2022/08/25 16:35:21 fetching corpus: 8950, signal 357887/366500 (executing program) 2022/08/25 16:35:21 fetching corpus: 9000, signal 359209/366519 (executing program) 2022/08/25 16:35:21 fetching corpus: 9048, signal 360029/366519 (executing program) 2022/08/25 16:35:21 fetching corpus: 9048, signal 360029/366519 (executing program) 2022/08/25 16:35:25 starting 4 fuzzer processes 16:35:25 executing program 0: prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffb000/0x2000)=nil) prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x3000)=nil) 16:35:25 executing program 1: r0 = epoll_create(0x3) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x6000000d}) 16:35:25 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f00000002c0)={0x15, 0x300}) 16:35:25 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 102.795943][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 102.796005][ T40] audit: type=1400 audit(1661445325.084:86): avc: denied { execmem } for pid=3704 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 103.112222][ T40] audit: type=1400 audit(1661445325.404:87): avc: denied { mounton } for pid=3709 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 103.127764][ T40] audit: type=1400 audit(1661445325.404:88): avc: denied { mount } for pid=3709 comm="syz-executor.0" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 103.141830][ T40] audit: type=1400 audit(1661445325.404:89): avc: denied { create } for pid=3709 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 103.156433][ T40] audit: type=1400 audit(1661445325.404:90): avc: denied { read write } for pid=3709 comm="syz-executor.0" name="vhci" dev="devtmpfs" ino=1104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 103.171622][ T40] audit: type=1400 audit(1661445325.414:91): avc: denied { open } for pid=3709 comm="syz-executor.0" path="/dev/vhci" dev="devtmpfs" ino=1104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 104.168222][ T40] audit: type=1400 audit(1661445326.454:92): avc: denied { ioctl } for pid=3710 comm="syz-executor.1" path="socket:[29966]" dev="sockfs" ino=29966 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 104.202312][ T3718] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 104.204993][ T3719] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.209358][ T3718] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 104.214908][ T3719] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 104.219001][ T3718] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 104.224332][ T3719] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 104.238384][ T3721] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 104.238538][ T3723] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 104.243257][ T3721] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.251063][ T3726] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 104.255386][ T3721] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 104.269263][ T3721] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 104.269439][ T3727] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 104.269812][ T3724] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 104.270975][ T3723] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 104.271579][ T3723] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 104.272248][ T3723] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 104.273283][ T3723] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 104.273605][ T3723] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 104.273781][ T3723] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 104.275851][ T3719] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 104.276219][ T3721] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 104.277789][ T3721] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 104.278184][ T3721] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 104.293427][ T40] audit: type=1400 audit(1661445326.574:93): avc: denied { read } for pid=3711 comm="syz-executor.3" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 104.361842][ T40] audit: type=1400 audit(1661445326.574:94): avc: denied { open } for pid=3711 comm="syz-executor.3" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 104.380807][ T40] audit: type=1400 audit(1661445326.584:95): avc: denied { mounton } for pid=3711 comm="syz-executor.3" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 104.736976][ T3710] chnl_net:caif_netlink_parms(): no params data found [ 104.783669][ T3711] chnl_net:caif_netlink_parms(): no params data found [ 104.851764][ T3709] chnl_net:caif_netlink_parms(): no params data found [ 105.070243][ T3713] chnl_net:caif_netlink_parms(): no params data found [ 105.132157][ T3711] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.137836][ T3711] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.146467][ T3711] device bridge_slave_0 entered promiscuous mode [ 105.182072][ T3711] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.191184][ T3711] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.197299][ T3711] device bridge_slave_1 entered promiscuous mode [ 105.297882][ T3710] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.303100][ T3710] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.312099][ T3710] device bridge_slave_0 entered promiscuous mode [ 105.426711][ T3711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.438071][ T3710] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.444876][ T3710] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.453040][ T3710] device bridge_slave_1 entered promiscuous mode [ 105.505861][ T3711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.596202][ T3709] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.601405][ T3709] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.612473][ T3709] device bridge_slave_0 entered promiscuous mode [ 105.701566][ T3709] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.706666][ T3709] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.713486][ T3709] device bridge_slave_1 entered promiscuous mode [ 105.724780][ T3711] team0: Port device team_slave_0 added [ 105.733802][ T3710] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.741170][ T3713] bridge0: port 1(bridge_slave_0) entered blocking state [ 105.746067][ T3713] bridge0: port 1(bridge_slave_0) entered disabled state [ 105.752759][ T3713] device bridge_slave_0 entered promiscuous mode [ 105.788736][ T3711] team0: Port device team_slave_1 added [ 105.826284][ T3710] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 105.840063][ T3713] bridge0: port 2(bridge_slave_1) entered blocking state [ 105.846307][ T3713] bridge0: port 2(bridge_slave_1) entered disabled state [ 105.853755][ T3713] device bridge_slave_1 entered promiscuous mode [ 105.992353][ T3709] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.999448][ T3711] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.004625][ T3711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.022856][ T3711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.063472][ T3713] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.072751][ T3709] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.105447][ T3711] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.111459][ T3711] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.130083][ T3711] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.140582][ T3710] team0: Port device team_slave_0 added [ 106.148505][ T3713] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.189413][ T3709] team0: Port device team_slave_0 added [ 106.199539][ T3709] team0: Port device team_slave_1 added [ 106.206134][ T3710] team0: Port device team_slave_1 added [ 106.309293][ T38] Bluetooth: hci3: command 0x0409 tx timeout [ 106.373855][ T3709] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.379700][ T3709] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.387781][ T172] Bluetooth: hci2: command 0x0409 tx timeout [ 106.397601][ T3709] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.402823][ T172] Bluetooth: hci1: command 0x0409 tx timeout [ 106.415354][ T3709] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.417157][ T172] Bluetooth: hci0: command 0x0409 tx timeout [ 106.421414][ T3709] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.421437][ T3709] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.471946][ T3713] team0: Port device team_slave_0 added [ 106.483000][ T3711] device hsr_slave_0 entered promiscuous mode [ 106.489749][ T3711] device hsr_slave_1 entered promiscuous mode [ 106.499311][ T3710] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.507969][ T3710] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.523590][ T3710] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.532234][ T3710] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.536702][ T3710] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.553796][ T3710] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.563587][ T3713] team0: Port device team_slave_1 added [ 106.739084][ T3713] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.745434][ T3713] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.765362][ T3713] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.779260][ T3709] device hsr_slave_0 entered promiscuous mode [ 106.785210][ T3709] device hsr_slave_1 entered promiscuous mode [ 106.823244][ T3709] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 106.832695][ T3709] Cannot create hsr debugfs directory [ 106.882631][ T3710] device hsr_slave_0 entered promiscuous mode [ 106.890590][ T3710] device hsr_slave_1 entered promiscuous mode [ 106.897006][ T3710] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 106.905162][ T3710] Cannot create hsr debugfs directory [ 106.910383][ T3713] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.915386][ T3713] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.936122][ T3713] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.163992][ T3713] device hsr_slave_0 entered promiscuous mode [ 107.172876][ T3713] device hsr_slave_1 entered promiscuous mode [ 107.179165][ T3713] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 107.185466][ T3713] Cannot create hsr debugfs directory [ 107.630115][ T3711] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 107.641461][ T3711] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 107.652282][ T3711] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 107.659971][ T3711] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 107.741114][ T3709] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 107.761538][ T3709] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 107.780130][ T3709] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 107.793613][ T3709] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.894179][ T3711] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.905608][ T3710] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 107.916533][ T3710] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 107.933096][ T3710] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 107.947327][ T3710] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 107.975433][ T172] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 107.983376][ T172] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.010358][ T3711] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.059776][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.067113][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.078016][ T3746] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.083649][ T3746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.108421][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.114431][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.123644][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.131293][ T3746] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.136746][ T3746] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.143368][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.152036][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.184736][ T3713] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 108.193965][ T172] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.201080][ T172] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.208568][ T172] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.223718][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.230324][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.236057][ T3713] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 108.266889][ T3713] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 108.284690][ T3709] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.290667][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.296589][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.305478][ T3713] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 108.340479][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.346374][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.360524][ T3711] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.388100][ T3709] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.397875][ T3752] Bluetooth: hci3: command 0x041b tx timeout [ 108.398758][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.411398][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.439709][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.448363][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.456897][ T6] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.462812][ T6] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.474934][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.479527][ T3752] Bluetooth: hci0: command 0x041b tx timeout [ 108.489340][ T3752] Bluetooth: hci1: command 0x041b tx timeout [ 108.493883][ T3752] Bluetooth: hci2: command 0x041b tx timeout [ 108.511603][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.518942][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.525643][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.530969][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.535594][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 108.540943][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 108.568357][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.582506][ T3710] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.601171][ T3711] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.620065][ T40] audit: type=1400 audit(1661445330.914:96): avc: denied { module_request } for pid=3711 comm="syz-executor.3" kmod="netdev-xfrm0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 108.654305][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 108.662385][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 108.665936][ T40] audit: type=1400 audit(1661445330.954:97): avc: denied { sys_module } for pid=3711 comm="syz-executor.3" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 108.669237][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 108.692042][ T1258] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 108.709115][ T3713] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.730019][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 108.738249][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 108.747360][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 108.756409][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 108.765018][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.782308][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.796756][ T3710] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.811870][ T3709] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 108.823055][ T3709] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 108.839171][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 108.844967][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 108.853085][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 108.860073][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 108.866763][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 108.875144][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 108.882119][ T3746] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.887719][ T3746] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.898666][ T3713] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.920282][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 108.925693][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 108.935974][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 108.941918][ T175] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.945909][ T175] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.951349][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 108.958476][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 109.023090][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 109.031969][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 109.040076][ T6] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.046106][ T6] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.054226][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 109.062882][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 109.070792][ T6] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.077270][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.084028][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 109.092278][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 109.099651][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 109.106121][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.114173][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 109.122107][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.128431][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 109.135256][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 109.142909][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 109.150785][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 109.158253][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 109.165193][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 109.174085][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 109.183688][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 109.191378][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 109.198562][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 109.232666][ T3713] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 109.242397][ T3713] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 109.249985][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 109.255501][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 109.262132][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 109.267624][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 109.273272][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 109.280280][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 109.286584][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 109.294258][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 109.299340][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 109.305344][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 109.313432][ T3710] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 109.344871][ T3709] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.362734][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 109.371987][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 109.382970][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 109.393011][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 109.402598][ T3711] device veth0_vlan entered promiscuous mode [ 109.414515][ T3711] device veth1_vlan entered promiscuous mode [ 109.437181][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 109.446677][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 109.453259][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 109.459679][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 109.473835][ T3710] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.484617][ T3713] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 109.491804][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 109.498266][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 109.533683][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 109.542635][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 109.560969][ T3711] device veth0_macvtap entered promiscuous mode [ 109.575567][ T3711] device veth1_macvtap entered promiscuous mode [ 109.603203][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 109.610124][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 109.616622][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 109.624727][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 109.656238][ T3711] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 109.662705][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 109.669345][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 109.681822][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 109.688918][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 109.704179][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 109.713209][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 109.726882][ T3711] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 109.733762][ T3709] device veth0_vlan entered promiscuous mode [ 109.739876][ T3711] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.746119][ T3711] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.752221][ T3711] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.759208][ T3711] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 109.772332][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 109.781102][ T3751] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 109.830714][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 109.837324][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 109.846543][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 109.855540][ T3748] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 109.865059][ T3709] device veth1_vlan entered promiscuous mode [ 109.920188][ T40] audit: type=1400 audit(1661445332.214:98): avc: denied { mounton } for pid=3711 comm="syz-executor.3" path="/dev/binderfs" dev="devtmpfs" ino=2383 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 109.921716][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 109.942200][ T40] audit: type=1400 audit(1661445332.224:99): avc: denied { mount } for pid=3711 comm="syz-executor.3" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 109.948855][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 109.971723][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 109.979202][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 109.986253][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 109.994300][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 110.002208][ T3713] device veth0_vlan entered promiscuous mode [ 110.015994][ T3710] device veth0_vlan entered promiscuous mode [ 110.031595][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 110.038860][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 110.045787][ T40] audit: type=1400 audit(1661445332.334:100): avc: denied { read write } for pid=3711 comm="syz-executor.3" name="loop3" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 110.050255][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 110.067340][ T40] audit: type=1400 audit(1661445332.344:101): avc: denied { open } for pid=3711 comm="syz-executor.3" path="/dev/loop3" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 110.072790][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 110.092809][ T40] audit: type=1400 audit(1661445332.344:102): avc: denied { ioctl } for pid=3711 comm="syz-executor.3" path="/dev/loop3" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 110.107034][ T3713] device veth1_vlan entered promiscuous mode 16:35:32 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 110.119326][ T40] audit: type=1400 audit(1661445332.364:103): avc: denied { mounton } for pid=3780 comm="syz-executor.3" path="/syzkaller-testdir2372222358/syzkaller.pJSFvq/0/file1" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 110.139269][ T3710] device veth1_vlan entered promiscuous mode [ 110.143307][ T40] audit: type=1400 audit(1661445332.364:104): avc: denied { mount } for pid=3780 comm="syz-executor.3" name="/" dev="autofs" ino=30352 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 110.162764][ T40] audit: type=1400 audit(1661445332.414:105): avc: denied { unmount } for pid=3711 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:autofs_t tclass=filesystem permissive=1 [ 110.185574][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready 16:35:32 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 110.206289][ T3747] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 110.240124][ T3709] device veth0_macvtap entered promiscuous mode [ 110.265300][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready 16:35:32 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 110.273291][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 110.280428][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 110.288497][ T3710] device veth0_macvtap entered promiscuous mode [ 110.295668][ T3710] device veth1_macvtap entered promiscuous mode [ 110.308893][ T3709] device veth1_macvtap entered promiscuous mode 16:35:32 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) [ 110.344006][ T3710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.354236][ T3710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.364276][ T3710] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.371083][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 110.378239][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 110.383809][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 110.390796][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 110.398093][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 110.405087][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 110.412417][ T175] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 110.420117][ T3713] device veth0_macvtap entered promiscuous mode [ 110.430782][ T3713] device veth1_macvtap entered promiscuous mode [ 110.450603][ T3710] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.458493][ T3710] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.469173][ T3710] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.475732][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.479298][ T3752] Bluetooth: hci3: command 0x040f tx timeout [ 110.490425][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.505550][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.516827][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.529724][ T3709] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.538595][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 110.545961][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 110.548233][ T3752] Bluetooth: hci2: command 0x040f tx timeout [ 110.556310][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 110.558352][ T3752] Bluetooth: hci1: command 0x040f tx timeout [ 110.565420][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 110.570045][ T3752] Bluetooth: hci0: command 0x040f tx timeout [ 110.578954][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 110.594246][ T3759] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 110.607654][ T3710] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.616132][ T3710] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.627167][ T3710] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.636301][ T3710] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.651110][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.662316][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.670685][ T3709] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.683314][ T3709] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.693608][ T3709] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.721585][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 110.729284][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 110.742977][ T3709] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.750993][ T3709] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.759126][ T3709] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.770369][ T3709] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.795159][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.804313][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.815230][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.826525][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.835984][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0 [ 110.845343][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.853975][ T3713] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 110.863210][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.873505][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.888447][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.898885][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.905218][ T3713] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1 [ 110.912575][ T3713] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 110.923637][ T3713] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 110.933286][ T3752] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 110.941091][ T3752] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 110.948492][ T3752] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 110.957205][ T3752] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 110.973925][ T3713] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.986708][ T3713] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 110.993737][ T3713] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.000446][ T3713] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 16:35:33 executing program 0: prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffb000/0x2000)=nil) prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x3000)=nil) 16:35:33 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) 16:35:33 executing program 1: r0 = epoll_create(0x3) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x6000000d}) 16:35:33 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f00000002c0)={0x15, 0x300}) 16:35:33 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f00000002c0)={0x15, 0x300}) 16:35:33 executing program 0: prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffb000/0x2000)=nil) prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x3000)=nil) 16:35:33 executing program 3: mkdir(&(0x7f0000000000)='./file1\x00', 0x0) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0]) mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400)) chdir(&(0x7f0000000140)='./file1\x00') symlink(&(0x7f0000000080)='./file1\x00', &(0x7f0000000180)='./file1\x00') r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0) ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0x9362, 0x0) open(&(0x7f00000000c0)='./file1\x00', 0x0, 0x0) 16:35:33 executing program 2: r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f00000002c0)={0x15, 0x300}) 16:35:33 executing program 0: prctl$PR_SET_MM(0x23, 0x3, &(0x7f0000ffb000/0x2000)=nil) prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x3000)=nil) 16:35:33 executing program 1: r0 = epoll_create(0x3) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x6000000d}) 16:35:33 executing program 3: openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x5}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000003b80)=ANY=[@ANYBLOB="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"/1492], &(0x7f0000000100)='GPL\x00'}, 0x48) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_clone(0xe1809400, 0x0, 0x0, 0x0, &(0x7f0000000a80), 0x0) 16:35:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00') r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) statx(r0, &(0x7f0000002a80)='./file0\x00', 0x0, 0x0, 0x0) 16:35:33 executing program 2: r0 = socket$inet_smc(0x2b, 0x1, 0x0) setsockopt$inet_tcp_buf(r0, 0x6, 0xd, &(0x7f0000000100)="9e", 0x1) getsockopt$inet_tcp_int(r0, 0x6, 0x0, 0x0, 0x0) 16:35:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00') r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) statx(r0, &(0x7f0000002a80)='./file0\x00', 0x0, 0x0, 0x0) 16:35:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00') r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) statx(r0, &(0x7f0000002a80)='./file0\x00', 0x0, 0x0, 0x0) 16:35:33 executing program 0: r0 = syz_open_procfs(0x0, &(0x7f0000000040)='fd\x00') r1 = socket(0x10, 0x2, 0x0) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setresuid(0x0, r2, 0x0) statx(r0, &(0x7f0000002a80)='./file0\x00', 0x0, 0x0, 0x0) 16:35:33 executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$inet6(0xa, 0x5, 0x0) accept$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000100)=0x1c) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x930, 0x0, 0x50, r1, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r2, 0x4068aea3, &(0x7f00000001c0)={0xc7, 0x0, 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000000080)={0xffe00000, 0x3}) unshare(0x40000200) pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000240)=0x100000) ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f0000000000)={[0x6000, 0x6000], 0x0, 0xa, 0x3}) 16:35:33 executing program 1: r0 = epoll_create(0x3) r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f0000000080)={0x6000000d}) 16:35:34 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = dup(r1) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x2, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0) socket$nl_route(0x10, 0x3, 0x0) socket(0x10, 0x0, 0x0) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={0x0}}, 0x0) sendmsg$ETHTOOL_MSG_STRSET_GET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000280)={&(0x7f00000000c0)={0x14, 0x0, 0x0, 0x70bd29, 0x25dfdbff}, 0x14}}, 0x0) creat(&(0x7f0000000000)='./file0\x00', 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000}) ioctl$KVM_NMI(r3, 0xae9a) ioctl$KVM_RUN(r3, 0xae80, 0x0) 16:35:34 executing program 1: r0 = syz_io_uring_setup(0x56c, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000000c0)=0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000240)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @null]}}, 0x0) io_uring_enter(r0, 0x2905, 0x0, 0x0, 0x0, 0x200000000000000) 16:35:34 executing program 3: openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0) sched_setattr(0x0, 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0) ftruncate(0xffffffffffffffff, 0x0) fcntl$setlease(0xffffffffffffffff, 0x400, 0x0) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) sched_setattr(0x0, &(0x7f0000000140)={0x38, 0x5}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0xe, 0x16, &(0x7f0000003b80)=ANY=[@ANYBLOB="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"/1492], &(0x7f0000000100)='GPL\x00'}, 0x48) recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) syz_clone(0xe1809400, 0x0, 0x0, 0x0, &(0x7f0000000a80), 0x0) 16:35:34 executing program 2: socket$inet6_tcp(0xa, 0x1, 0x0) r0 = socket$inet6(0xa, 0x5, 0x0) accept$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, &(0x7f0000000100)=0x1c) r1 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000ffa000/0x4000)=nil, 0x930, 0x0, 0x50, r1, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_CAP_HYPERV_ENFORCE_CPUID(r2, 0x4068aea3, &(0x7f00000001c0)={0xc7, 0x0, 0x1}) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0xc028ae92, &(0x7f0000000080)={0xffe00000, 0x3}) unshare(0x40000200) pipe2$watch_queue(&(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff}, 0x80) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000240)=0x100000) ioctl$KVM_SET_DEBUGREGS(r1, 0x4080aea2, &(0x7f0000000000)={[0x6000, 0x6000], 0x0, 0xa, 0x3}) [ 111.811061][ T3845] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 16:35:34 executing program 1: r0 = syz_io_uring_setup(0x56c, &(0x7f00000001c0), &(0x7f0000ffb000/0x4000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000000040)=0x0, &(0x7f00000000c0)=0x0) r3 = socket$vsock_stream(0x28, 0x1, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000080)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x80, &(0x7f0000000240)=@ax25={{0x3, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}, [@null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @null]}}, 0x0) io_uring_enter(r0, 0x2905, 0x0, 0x0, 0x0, 0x200000000000000) [ 111.878487][ T3850] ------------[ cut here ]------------ [ 111.882848][ T3850] WARNING: CPU: 2 PID: 3850 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xbd/0xe0 [ 111.895217][ T3850] Modules linked in: [ 111.901943][ T3850] CPU: 2 PID: 3850 Comm: kvm-nx-lpage-re Not tainted 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 111.914352][ T3850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 111.924177][ T3850] RIP: 0010:lockdep_assert_cpus_held+0xbd/0xe0 [ 111.930646][ T3850] Code: e8 88 11 34 00 be ff ff ff ff 48 c7 c7 70 39 e3 8b e8 b7 14 38 08 31 ff 89 c3 89 c6 e8 2c 0e 34 00 85 db 75 d5 e8 63 11 34 00 <0f> 0b eb cc 48 c7 c7 04 c4 dd 8d e8 93 b7 7f 00 e9 62 ff ff ff 48 [ 111.947586][ T3850] RSP: 0018:ffffc9000328fc28 EFLAGS: 00010293 [ 111.952652][ T3850] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 111.959869][ T3850] RDX: ffff88801eece200 RSI: ffffffff814728bd RDI: 0000000000000005 [ 111.966140][ T3850] RBP: ffff888067228000 R08: 0000000000000005 R09: 0000000000000000 [ 111.972907][ T3850] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc9000328fde0 [ 111.980806][ T3850] R13: ffffffff8bfd96e0 R14: 1ffff92000651f8c R15: ffffc9000328fe04 [ 111.991184][ T3850] FS: 0000000000000000(0000) GS:ffff88802ca00000(0000) knlGS:0000000000000000 [ 111.999014][ T3850] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.004887][ T3850] CR2: 0000001b33726000 CR3: 000000001bc89000 CR4: 0000000000152ee0 [ 112.012455][ T3850] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 112.019184][ T3850] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 112.024950][ T3850] Call Trace: [ 112.028105][ T3850] [ 112.030388][ T3850] cpuset_attach+0x92/0x520 [ 112.033559][ T3850] ? guarantee_online_cpus+0x4d0/0x4d0 [ 112.037008][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.041199][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.044629][ T3850] cgroup_migrate_execute+0xbc7/0x1220 [ 112.048680][ T3850] cgroup_attach_task+0x416/0x7c0 [ 112.052032][ T3850] ? cgroup_migrate+0x1f0/0x1f0 [ 112.055081][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.058621][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.061740][ T3850] cgroup_attach_task_all+0xde/0x140 [ 112.064812][ T3850] kvm_vm_worker_thread+0xdd/0x5a0 [ 112.068637][ T3850] ? kvm_mmu_pte_write+0xdc0/0xdc0 [ 112.073056][ T3850] ? __bpf_trace_kvm_unmap_hva_range+0xe0/0xe0 [ 112.079084][ T3850] kthread+0x2e4/0x3a0 [ 112.082175][ T3850] ? kthread_complete_and_exit+0x40/0x40 [ 112.085798][ T3850] ret_from_fork+0x1f/0x30 [ 112.090104][ T3850] [ 112.092735][ T3850] Kernel panic - not syncing: panic_on_warn set ... [ 112.096784][ T3850] CPU: 2 PID: 3850 Comm: kvm-nx-lpage-re Not tainted 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0 [ 112.103409][ T3850] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014 [ 112.110035][ T3850] Call Trace: [ 112.112531][ T3850] [ 112.114607][ T3850] dump_stack_lvl+0xcd/0x134 [ 112.117990][ T3850] panic+0x2c8/0x627 [ 112.120766][ T3850] ? panic_print_sys_info.part.0+0x10b/0x10b [ 112.124679][ T3850] ? __warn.cold+0x248/0x2c4 [ 112.127881][ T3850] ? lockdep_assert_cpus_held+0xbd/0xe0 [ 112.131652][ T3850] __warn.cold+0x259/0x2c4 [ 112.135010][ T3850] ? lockdep_assert_cpus_held+0xbd/0xe0 [ 112.138951][ T3850] report_bug+0x1bc/0x210 [ 112.142065][ T3850] handle_bug+0x3c/0x60 [ 112.145246][ T3850] exc_invalid_op+0x14/0x40 [ 112.148664][ T3850] asm_exc_invalid_op+0x16/0x20 [ 112.152228][ T3850] RIP: 0010:lockdep_assert_cpus_held+0xbd/0xe0 [ 112.156077][ T3850] Code: e8 88 11 34 00 be ff ff ff ff 48 c7 c7 70 39 e3 8b e8 b7 14 38 08 31 ff 89 c3 89 c6 e8 2c 0e 34 00 85 db 75 d5 e8 63 11 34 00 <0f> 0b eb cc 48 c7 c7 04 c4 dd 8d e8 93 b7 7f 00 e9 62 ff ff ff 48 [ 112.169775][ T3850] RSP: 0018:ffffc9000328fc28 EFLAGS: 00010293 [ 112.173759][ T3850] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 112.179262][ T3850] RDX: ffff88801eece200 RSI: ffffffff814728bd RDI: 0000000000000005 [ 112.184913][ T3850] RBP: ffff888067228000 R08: 0000000000000005 R09: 0000000000000000 [ 112.190765][ T3850] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc9000328fde0 [ 112.196843][ T3850] R13: ffffffff8bfd96e0 R14: 1ffff92000651f8c R15: ffffc9000328fe04 [ 112.202758][ T3850] ? lockdep_assert_cpus_held+0xbd/0xe0 [ 112.207234][ T3850] ? lockdep_assert_cpus_held+0xbd/0xe0 [ 112.211494][ T3850] cpuset_attach+0x92/0x520 [ 112.216359][ T3850] ? guarantee_online_cpus+0x4d0/0x4d0 [ 112.220829][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.224830][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.228116][ T3850] cgroup_migrate_execute+0xbc7/0x1220 [ 112.231561][ T3850] cgroup_attach_task+0x416/0x7c0 [ 112.234900][ T3850] ? cgroup_migrate+0x1f0/0x1f0 [ 112.238509][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.241672][ T3850] ? _raw_spin_unlock_irq+0x1f/0x40 [ 112.244611][ T3850] cgroup_attach_task_all+0xde/0x140 [ 112.247618][ T3850] kvm_vm_worker_thread+0xdd/0x5a0 [ 112.250747][ T3850] ? kvm_mmu_pte_write+0xdc0/0xdc0 [ 112.254821][ T3850] ? __bpf_trace_kvm_unmap_hva_range+0xe0/0xe0 [ 112.259278][ T3850] kthread+0x2e4/0x3a0 [ 112.263053][ T3850] ? kthread_complete_and_exit+0x40/0x40 [ 112.267986][ T3850] ret_from_fork+0x1f/0x30 [ 112.271435][ T3850] [ 112.276159][ T3850] Kernel Offset: disabled [ 112.279970][ T3850] Rebooting in 86400 seconds.. VM DIAGNOSIS: 16:35:34 Registers: info registers vcpu 0 RAX=000000000005b975 RBX=ffffffff8bcbc980 RCX=ffffffff897f4825 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000000 RSP=ffffffff8bc07e18 R8 =0000000000000001 R9 =ffff88802c834c4b R10=ffffed1005906989 R11=0000000000000001 R12=fffffbfff1797930 R13=0000000000000000 R14=ffffffff8dddf3d0 R15=0000000000000000 RIP=ffffffff89824e5b RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1 ES =0000 0000000000000000 000fffff 00000000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 000fffff 00000000 FS =0000 0000000000000000 000fffff 00000000 GS =0000 ffff88802c800000 000fffff 00000000 LDT=0000 0000000000000000 000fffff 00000000 TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000001000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007fbe5263a718 CR3=0000000062e21000 CR4=00152ef0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 1 RAX=0000000000000000 RBX=0000000000000000 RCX=0000000000000001 RDX=0000000000000000 RSI=0000000000000001 RDI=0000000000000000 RBP=ffffc9000334f238 RSP=ffffc9000334f218 R8 =0000000000000000 R9 =ffffffff8dddf3d7 R10=fffffbfff1bbbe7a R11=0000000000000000 R12=0000000000000000 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000 RIP=ffffffff81339ef0 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 00007f6e622a5700 ffffffff 00c00000 GS =0000 ffff88802c900000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe0000048000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007ffc524c2018 CR3=000000006900b000 CR4=00152ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 2 RAX=000000000000006c RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8 RSI=ffffffff846141b1 RDI=ffffffff914810c0 RBP=ffffffff91481080 RSP=ffffc9000328f580 R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000 R12=0000000000000000 R13=000000000000006c R14=ffffffff84614150 R15=0000000000000000 RIP=ffffffff846141db RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 0000000000000000 ffffffff 00c00000 GS =0000 ffff88802ca00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe000008f000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=0000001b33726000 CR3=000000006197c000 CR4=00152ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000 info registers vcpu 3 RAX=0000003ddb49ec80 RBX=0000000000000001 RCX=00000000000006e0 RDX=000000000000003d RSI=ffff88802cb27200 RDI=00000000000496f4 RBP=ffff88802cb27200 RSP=ffffc90002e6fb50 R8 =0000000000000005 R9 =000000000000003f R10=0000000000000019 R11=0000000000000000 R12=00000000000496f4 R13=0000000000000019 R14=ffff88802cb2a540 R15=0000000000000000 RIP=ffffffff8133aea1 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0 ES =0000 0000000000000000 ffffffff 00c00000 CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA] SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA] DS =0000 0000000000000000 ffffffff 00c00000 FS =0000 000055555558d400 ffffffff 00c00000 GS =0000 ffff88802cb00000 ffffffff 00c00000 LDT=0000 0000000000000000 00000000 00000000 TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy GDT= fffffe00000d6000 0000007f IDT= fffffe0000000000 00000fff CR0=80050033 CR2=00007f6e62284718 CR3=000000006197c000 CR4=00152ee0 DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 DR6=00000000fffe0ff0 DR7=0000000000000400 EFER=0000000000000d01 FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80 FPR0=0000000000000000 0000 FPR1=0000000000000000 0000 FPR2=0000000000000000 0000 FPR3=0000000000000000 0000 FPR4=0000000000000000 0000 FPR5=0000000000000000 0000 FPR6=0000000000000000 0000 FPR7=0000000000000000 0000 XMM00=ffffffffffffff00ffffffffffffffff XMM01=ffffffffffffffffffffffffffffffff XMM02=00000000000000000000000000000000 XMM03=00000000000000000000000000000000 XMM04=000000000000000000000000000000ff XMM05=00000000000000000000000000000000 XMM06=0000000000000000000000524f525245 XMM07=00000000000000000000000000000000 XMM08=000000000000000000524f5252450040 XMM09=00000000000000000000000000000000 XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000 XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000 XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000