[ 44.962043][ T39] audit: type=1400 audit(1650620812.526:74): avc: denied { write } for pid=3563 comm="sh" path="pipe:[28956]" dev="pipefs" ino=28956 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:23052' (ECDSA) to the list of known hosts.
executing program
[ 48.397191][ T39] audit: type=1400 audit(1650620815.976:75): avc: denied { execute } for pid=3597 comm="sh" name="syz-executor294581350" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 48.414749][ T3597] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[ 48.426959][ T39] audit: type=1400 audit(1650620815.986:76): avc: denied { execute_no_trans } for pid=3597 comm="sh" path="/syz-executor294581350" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 48.472644][ T39] audit: type=1400 audit(1650620815.996:77): avc: denied { execmem } for pid=3597 comm="syz-executor294" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 48.496059][ T39] audit: type=1400 audit(1650620815.996:78): avc: denied { read } for pid=3597 comm="syz-executor294" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 48.518693][ T39] audit: type=1400 audit(1650620815.996:79): avc: denied { open } for pid=3597 comm="syz-executor294" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 48.541778][ T39] audit: type=1400 audit(1650620815.996:80): avc: denied { ioctl } for pid=3597 comm="syz-executor294" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 48.933261][ T39] audit: type=1400 audit(1650620816.516:81): avc: denied { write } for pid=3597 comm="syz-executor294" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[ 49.046875][ T3597] ------------[ cut here ]------------
[ 49.053773][ T3597] WARNING: CPU: 1 PID: 3597 at arch/x86/kvm/mmu/tdp_mmu.c:57 kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.069814][ T3597] Modules linked in:
[ 49.077988][ T3597] CPU: 1 PID: 3597 Comm: syz-executor294 Not tainted 5.18.0-rc3-syzkaller-00060-g59f0c2447e25 #0
[ 49.094588][ T3597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 49.108608][ T3597] RIP: 0010:kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.119821][ T3597] Code: 83 d8 a0 00 00 48 39 c5 75 24 e8 e3 4d 5a 00 e8 9e e0 45 00 5b 5d e9 d7 4d 5a 00 e8 b2 42 a5 00 e9 3d ff ff ff e8 c8 4d 5a 00 <0f> 0b eb ad e8 bf 4d 5a 00 0f 0b eb d3 e8 c6 42 a5 00 e9 64 ff ff
[ 49.150612][ T3597] RSP: 0018:ffffc90002e37c08 EFLAGS: 00010293
[ 49.160917][ T3597] RAX: 0000000000000000 RBX: ffffc90002cda000 RCX: 0000000000000000
[ 49.172645][ T3597] RDX: ffff888023f1e180 RSI: ffffffff811e1688 RDI: 0000000000000001
[ 49.181626][ T3597] RBP: ffffc90002ce40e8 R08: 0000000000000001 R09: 0000000000000001
[ 49.189702][ T3597] R10: ffffffff817ead48 R11: 0000000000000000 R12: ffffc90002cda000
[ 49.197642][ T3597] R13: ffffc90002e37c50 R14: 0000000000000003 R15: ffffc90002cdb240
[ 49.205412][ T3597] FS: 0000000000000000(0000) GS:ffff88802cb00000(0000) knlGS:0000000000000000
[ 49.214479][ T3597] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.221315][ T3597] CR2: 0000560ac4d0cd68 CR3: 000000000ba8e000 CR4: 0000000000152ee0
[ 49.229311][ T3597] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.237064][ T3597] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.244926][ T3597] Call Trace:
[ 49.248269][ T3597]
[ 49.251158][ T3597] kvm_arch_destroy_vm+0x350/0x470
[ 49.256147][ T3597] ? kvm_arch_pre_destroy_vm+0x20/0x20
[ 49.261202][ T3597] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 49.266965][ T3597] kvm_put_kvm+0x4fa/0xb70
[ 49.271306][ T3597] kvm_vm_release+0x3f/0x50
[ 49.275797][ T3597] __fput+0x277/0x9d0
[ 49.279968][ T3597] ? kvm_put_kvm+0xb70/0xb70
[ 49.284367][ T3597] task_work_run+0xdd/0x1a0
[ 49.289467][ T3597] do_exit+0xaff/0x2a00
[ 49.293938][ T3597] ? lock_downgrade+0x6e0/0x6e0
[ 49.299669][ T3597] ? mm_update_next_owner+0x7a0/0x7a0
[ 49.305323][ T3597] do_group_exit+0xd2/0x2f0
[ 49.310890][ T3597] __x64_sys_exit_group+0x3a/0x50
[ 49.316746][ T3597] do_syscall_64+0x35/0xb0
[ 49.321338][ T3597] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 49.326929][ T3597] RIP: 0033:0x7f0327505409
[ 49.331189][ T3597] Code: Unable to access opcode bytes at RIP 0x7f03275053df.
[ 49.338459][ T3597] RSP: 002b:00007ffc4a0be998 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 49.346318][ T3597] RAX: ffffffffffffffda RBX: 00007f0327578350 RCX: 00007f0327505409
[ 49.354992][ T3597] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 49.362877][ T3597] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 68742f636f72702f
[ 49.370773][ T3597] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007f0327578350
[ 49.378544][ T3597] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[ 49.386365][ T3597]
[ 49.390782][ T3597] Kernel panic - not syncing: panic_on_warn set ...
[ 49.397186][ T3597] CPU: 1 PID: 3597 Comm: syz-executor294 Not tainted 5.18.0-rc3-syzkaller-00060-g59f0c2447e25 #0
[ 49.407158][ T3597] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 49.415960][ T3597] Call Trace:
[ 49.419170][ T3597]
[ 49.422078][ T3597] dump_stack_lvl+0xcd/0x134
[ 49.426776][ T3597] panic+0x2d7/0x636
[ 49.430564][ T3597] ? panic_print_sys_info.part.0+0x10b/0x10b
[ 49.436442][ T3597] ? __warn.cold+0x1d1/0x2c5
[ 49.441087][ T3597] ? kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.446284][ T3597] __warn.cold+0x1e2/0x2c5
[ 49.450500][ T3597] ? kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.455791][ T3597] report_bug+0x1bd/0x210
[ 49.460005][ T3597] handle_bug+0x3c/0x60
[ 49.464026][ T3597] exc_invalid_op+0x14/0x40
[ 49.468490][ T3597] asm_exc_invalid_op+0x12/0x20
[ 49.473075][ T3597] RIP: 0010:kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.478861][ T3597] Code: 83 d8 a0 00 00 48 39 c5 75 24 e8 e3 4d 5a 00 e8 9e e0 45 00 5b 5d e9 d7 4d 5a 00 e8 b2 42 a5 00 e9 3d ff ff ff e8 c8 4d 5a 00 <0f> 0b eb ad e8 bf 4d 5a 00 0f 0b eb d3 e8 c6 42 a5 00 e9 64 ff ff
[ 49.498199][ T3597] RSP: 0018:ffffc90002e37c08 EFLAGS: 00010293
[ 49.503906][ T3597] RAX: 0000000000000000 RBX: ffffc90002cda000 RCX: 0000000000000000
[ 49.512079][ T3597] RDX: ffff888023f1e180 RSI: ffffffff811e1688 RDI: 0000000000000001
[ 49.520731][ T3597] RBP: ffffc90002ce40e8 R08: 0000000000000001 R09: 0000000000000001
[ 49.528674][ T3597] R10: ffffffff817ead48 R11: 0000000000000000 R12: ffffc90002cda000
[ 49.536300][ T3597] R13: ffffc90002e37c50 R14: 0000000000000003 R15: ffffc90002cdb240
[ 49.544216][ T3597] ? trace_hardirqs_on+0x38/0x1c0
[ 49.549366][ T3597] ? kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.554733][ T3597] ? kvm_mmu_uninit_tdp_mmu+0xf8/0x130
[ 49.560081][ T3597] kvm_arch_destroy_vm+0x350/0x470
[ 49.565054][ T3597] ? kvm_arch_pre_destroy_vm+0x20/0x20
[ 49.570398][ T3597] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80
[ 49.576489][ T3597] kvm_put_kvm+0x4fa/0xb70
[ 49.580557][ T3597] kvm_vm_release+0x3f/0x50
[ 49.584861][ T3597] __fput+0x277/0x9d0
[ 49.588728][ T3597] ? kvm_put_kvm+0xb70/0xb70
[ 49.593209][ T3597] task_work_run+0xdd/0x1a0
[ 49.597605][ T3597] do_exit+0xaff/0x2a00
[ 49.601554][ T3597] ? lock_downgrade+0x6e0/0x6e0
[ 49.606356][ T3597] ? mm_update_next_owner+0x7a0/0x7a0
[ 49.611387][ T3597] do_group_exit+0xd2/0x2f0
[ 49.615429][ T3597] __x64_sys_exit_group+0x3a/0x50
[ 49.621418][ T3597] do_syscall_64+0x35/0xb0
[ 49.626669][ T3597] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 49.632756][ T3597] RIP: 0033:0x7f0327505409
[ 49.637329][ T3597] Code: Unable to access opcode bytes at RIP 0x7f03275053df.
[ 49.645259][ T3597] RSP: 002b:00007ffc4a0be998 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 49.654240][ T3597] RAX: ffffffffffffffda RBX: 00007f0327578350 RCX: 00007f0327505409
[ 49.663585][ T3597] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000
[ 49.671903][ T3597] RBP: 0000000000000000 R08: ffffffffffffffc0 R09: 68742f636f72702f
[ 49.680273][ T3597] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007f0327578350
[ 49.689788][ T3597] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001
[ 49.699383][ T3597]
[ 49.704213][ T3597] Kernel Offset: disabled
[ 49.709372][ T3597] Rebooting in 86400 seconds..
VM DIAGNOSIS:
09:46:57 Registers:
info registers vcpu 0
RAX=fffff520005a2eac RBX=1ffff920005a2eac RCX=1ffffffff200e9ee RDX=dffffc0000000000
RSI=ffff8880239fab08 RDI=ffff8880239fa080 RBP=ffff8880239fab2a RSP=ffffc90002d17528
R8 =0000000000000000 R9 =ffffffff9005b947 R10=0000000000000001 R11=0000000000000001
R12=ffff8880239fab08 R13=0000000000000008 R14=ffff8880239faae0 R15=0000000000000000
RIP=ffffffff815c4bb3 RFL=00000806 [-O---P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f852e12f690 CR3=00000000231c1000 CR4=00152ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=61657268747062696c2f343662696c2f XMM01=00302e6f732e6461657268747062696c
XMM02=ffff000000000000ffffffffffffffff XMM03=ffffffffffffffffffffffffffffffff
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff845aedac RDI=ffffffff90882ba0 RBP=ffffffff90882b60 RSP=ffffc90002e375b8
R8 =0000000000000076 R9 =0000000000000000 R10=ffffffff845aed9d R11=000000000000001f
R12=0000000000000000 R13=fffffbfff21105bf R14=fffffbfff2110576 R15=dffffc0000000000
RIP=ffffffff845aedd2 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c01300
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c01300
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=0000560ac4d0cd68 CR3=000000000ba8e000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=ffffffffffffffff0000000000000000
XMM02=000000000000ff0000000000000000ff XMM03=000000ff00000000000000ff000000ff
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=45444e494649003d4550595456454400 XMM09=00000000000000000000000000000000
XMM10=20202000002020202020202020202020 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000001 RBX=0000000000000000 RCX=1ffff1100288f500 RDX=0000000000000001
RSI=dffffc0000000000 RDI=ffff88801447a802 RBP=ffff88801447a800 RSP=ffffc900050ce6f8
R8 =0000000000000001 R9 =ffff88801447a803 R10=ffffed100288f500 R11=0000000000000001
R12=0000000000007378 R13=ffffed100288f500 R14=0000000000000001 R15=ffff88802cc3aec0
RIP=ffffffff815d366a RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000561a33c5a300 CR3=000000000ba8e000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000a60ce07b00000000cec3662e XMM01=00000000000000005ca6259562d0ad46
XMM02=00000000000000000000000000000000 XMM03=00000000843d73656361667265746e69
XMM04=2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f2f XMM05=0000006e0000005b0000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=61667265746e6900883d656d616e6669 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=0000000000000001 RBX=0000000000000000 RCX=1ffff1100288f500 RDX=0000000000000001
RSI=dffffc0000000000 RDI=ffff88801447a802 RBP=ffff88801447a800 RSP=ffffc900007f8bd8
R8 =0000000000000001 R9 =ffff88801447a803 R10=ffffed100288f500 R11=0000000000000001
R12=00000000000050c9 R13=ffffed100288f500 R14=0000000000000001 R15=ffff88802cd3aec0
RIP=ffffffff815d366a RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00000067 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 0000ffff
CR0=80050033 CR2=00007fca77c27300 CR3=000000002032f000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0974c2dd7a98e4d44204e89ad2b670e6 XMM01=123632cd20187ce18dd9ecc5917b37ec
XMM02=c0eaf85038d8c8285ec2c99f84829a8f XMM03=43a622c31d93c8089c0e4be39f0ca8f8
XMM04=000000000000000000000000ffff9d29 XMM05=000000000000000000000000d00bfe88
XMM06=00000000000000000000000000000000 XMM07=00000000d00bfe88ffff9d290000001b
XMM08=00000000700000009c0000009a000000 XMM09=00000000000000000000000000000000
XMM10=0e4f86cc847e7e68fec5573549622ef4 XMM11=50a1a30d4dd70e908dbdab1d94ed524d
XMM12=0d0c0f0e09080b0a0504070601000302 XMM13=0c0f0e0d080b0a090407060500030201
XMM14=00000000000000000000000000001640 XMM15=00000000000000000000000000000040