Warning: Permanently added '[localhost]:3375' (ECDSA) to the list of known hosts.
[   53.865667][   T39] audit: type=1400 audit(1661447996.512:75): avc:  denied  { execute } for  pid=3663 comm="sh" name="syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   53.880708][   T39] audit: type=1400 audit(1661447996.512:76): avc:  denied  { execute_no_trans } for  pid=3663 comm="sh" path="/syz-fuzzer" dev="sda1" ino=1134 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2022/08/25 17:19:56 fuzzer started
2022/08/25 17:19:57 dialing manager at localhost:40007
[   54.766572][   T39] audit: type=1400 audit(1661447997.412:77): avc:  denied  { mounton } for  pid=3673 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   54.773374][ T3673] cgroup: Unknown subsys name 'net'
[   54.780804][   T39] audit: type=1400 audit(1661447997.412:78): avc:  denied  { mount } for  pid=3673 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.797013][   T39] audit: type=1400 audit(1661447997.432:79): avc:  denied  { unmount } for  pid=3673 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   54.979956][ T3673] cgroup: Unknown subsys name 'rlimit'
[   55.115207][   T39] audit: type=1400 audit(1661447997.762:80): avc:  denied  { mounton } for  pid=3673 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
2022/08/25 17:19:57 syscalls: 3757
2022/08/25 17:19:57 code coverage: enabled
2022/08/25 17:19:57 comparison tracing: enabled
2022/08/25 17:19:57 extra coverage: enabled
2022/08/25 17:19:57 delay kcov mmap: enabled
2022/08/25 17:19:57 setuid sandbox: enabled
2022/08/25 17:19:57 namespace sandbox: enabled
2022/08/25 17:19:57 Android sandbox: enabled
2022/08/25 17:19:57 fault injection: enabled
2022/08/25 17:19:57 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2022/08/25 17:19:57 net packet injection: enabled
2022/08/25 17:19:57 net device setup: enabled
2022/08/25 17:19:57 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2022/08/25 17:19:57 devlink PCI setup: PCI device 0000:00:10.0 is not available
2022/08/25 17:19:57 USB emulation: enabled
2022/08/25 17:19:57 hci packet injection: enabled
2022/08/25 17:19:57 wifi device emulation: failed to parse kernel version (6.0.0-rc2-syzkaller-00054-gc40e8341e3b3                          )
2022/08/25 17:19:57 802.15.4 emulation: enabled
2022/08/25 17:19:57 fetching corpus: 0, signal 0/2000 (executing program)
[   55.131971][   T39] audit: type=1400 audit(1661447997.762:81): avc:  denied  { mount } for  pid=3673 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   55.154327][   T39] audit: type=1400 audit(1661447997.762:82): avc:  denied  { setattr } for  pid=3673 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=760 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
2022/08/25 17:19:58 fetching corpus: 50, signal 42153/45744 (executing program)
2022/08/25 17:19:58 fetching corpus: 100, signal 60251/65379 (executing program)
2022/08/25 17:19:58 fetching corpus: 150, signal 71314/77917 (executing program)
2022/08/25 17:19:58 fetching corpus: 200, signal 78707/86762 (executing program)
2022/08/25 17:19:58 fetching corpus: 250, signal 86423/95828 (executing program)
2022/08/25 17:19:59 fetching corpus: 300, signal 94872/105500 (executing program)
2022/08/25 17:19:59 fetching corpus: 350, signal 99858/111836 (executing program)
2022/08/25 17:20:00 fetching corpus: 400, signal 109046/122094 (executing program)
2022/08/25 17:20:00 fetching corpus: 450, signal 113062/127358 (executing program)
2022/08/25 17:20:00 fetching corpus: 500, signal 120246/135540 (executing program)
2022/08/25 17:20:00 fetching corpus: 549, signal 126247/142526 (executing program)
2022/08/25 17:20:01 fetching corpus: 599, signal 131122/148433 (executing program)
2022/08/25 17:20:01 fetching corpus: 648, signal 134882/153184 (executing program)
2022/08/25 17:20:01 fetching corpus: 698, signal 139878/159136 (executing program)
2022/08/25 17:20:01 fetching corpus: 748, signal 144415/164532 (executing program)
2022/08/25 17:20:01 fetching corpus: 797, signal 148413/169469 (executing program)
2022/08/25 17:20:01 fetching corpus: 847, signal 150976/173025 (executing program)
2022/08/25 17:20:02 fetching corpus: 897, signal 154250/177197 (executing program)
2022/08/25 17:20:02 fetching corpus: 947, signal 157554/181381 (executing program)
2022/08/25 17:20:02 fetching corpus: 996, signal 161745/186332 (executing program)
2022/08/25 17:20:02 fetching corpus: 1046, signal 165610/190917 (executing program)
2022/08/25 17:20:03 fetching corpus: 1096, signal 170288/196262 (executing program)
2022/08/25 17:20:03 fetching corpus: 1146, signal 172160/198992 (executing program)
2022/08/25 17:20:03 fetching corpus: 1196, signal 174698/202308 (executing program)
2022/08/25 17:20:03 fetching corpus: 1246, signal 177970/206269 (executing program)
2022/08/25 17:20:03 fetching corpus: 1296, signal 180632/209610 (executing program)
2022/08/25 17:20:04 fetching corpus: 1346, signal 184627/214119 (executing program)
2022/08/25 17:20:04 fetching corpus: 1396, signal 187371/217521 (executing program)
2022/08/25 17:20:04 fetching corpus: 1446, signal 189737/220596 (executing program)
2022/08/25 17:20:04 fetching corpus: 1495, signal 192215/223726 (executing program)
2022/08/25 17:20:05 fetching corpus: 1545, signal 195066/227111 (executing program)
2022/08/25 17:20:05 fetching corpus: 1595, signal 197082/229806 (executing program)
2022/08/25 17:20:05 fetching corpus: 1645, signal 199692/232954 (executing program)
2022/08/25 17:20:05 fetching corpus: 1695, signal 202526/236250 (executing program)
2022/08/25 17:20:05 fetching corpus: 1745, signal 205857/239939 (executing program)
2022/08/25 17:20:06 fetching corpus: 1793, signal 207463/242209 (executing program)
2022/08/25 17:20:06 fetching corpus: 1843, signal 209478/244780 (executing program)
2022/08/25 17:20:06 fetching corpus: 1893, signal 211004/246907 (executing program)
2022/08/25 17:20:06 fetching corpus: 1943, signal 213187/249569 (executing program)
2022/08/25 17:20:07 fetching corpus: 1993, signal 214995/251889 (executing program)
2022/08/25 17:20:07 fetching corpus: 2043, signal 217326/254618 (executing program)
2022/08/25 17:20:07 fetching corpus: 2093, signal 218867/256685 (executing program)
2022/08/25 17:20:07 fetching corpus: 2140, signal 221002/259205 (executing program)
2022/08/25 17:20:07 fetching corpus: 2190, signal 223080/261701 (executing program)
2022/08/25 17:20:08 fetching corpus: 2239, signal 224156/263421 (executing program)
2022/08/25 17:20:08 fetching corpus: 2287, signal 225553/265400 (executing program)
2022/08/25 17:20:08 fetching corpus: 2337, signal 227116/267391 (executing program)
2022/08/25 17:20:08 fetching corpus: 2386, signal 228223/269054 (executing program)
2022/08/25 17:20:08 fetching corpus: 2435, signal 229871/271116 (executing program)
2022/08/25 17:20:09 fetching corpus: 2485, signal 231253/272939 (executing program)
2022/08/25 17:20:09 fetching corpus: 2534, signal 232647/274803 (executing program)
2022/08/25 17:20:09 fetching corpus: 2584, signal 233999/276623 (executing program)
2022/08/25 17:20:09 fetching corpus: 2633, signal 234968/278118 (executing program)
2022/08/25 17:20:10 fetching corpus: 2683, signal 236265/279823 (executing program)
2022/08/25 17:20:10 fetching corpus: 2733, signal 238538/282249 (executing program)
2022/08/25 17:20:10 fetching corpus: 2783, signal 239732/283912 (executing program)
2022/08/25 17:20:10 fetching corpus: 2833, signal 241460/285862 (executing program)
2022/08/25 17:20:10 fetching corpus: 2883, signal 243185/287788 (executing program)
2022/08/25 17:20:11 fetching corpus: 2933, signal 244193/289277 (executing program)
2022/08/25 17:20:11 fetching corpus: 2983, signal 245503/290929 (executing program)
2022/08/25 17:20:11 fetching corpus: 3032, signal 247283/292852 (executing program)
2022/08/25 17:20:11 fetching corpus: 3082, signal 248738/294604 (executing program)
2022/08/25 17:20:12 fetching corpus: 3132, signal 249887/296082 (executing program)
2022/08/25 17:20:12 fetching corpus: 3181, signal 251107/297586 (executing program)
2022/08/25 17:20:12 fetching corpus: 3231, signal 252226/299010 (executing program)
2022/08/25 17:20:12 fetching corpus: 3281, signal 253448/300508 (executing program)
2022/08/25 17:20:12 fetching corpus: 3331, signal 254737/302061 (executing program)
2022/08/25 17:20:12 fetching corpus: 3381, signal 256161/303693 (executing program)
2022/08/25 17:20:13 fetching corpus: 3431, signal 258180/305710 (executing program)
2022/08/25 17:20:13 fetching corpus: 3481, signal 260025/307569 (executing program)
2022/08/25 17:20:13 fetching corpus: 3530, signal 260847/308792 (executing program)
2022/08/25 17:20:13 fetching corpus: 3580, signal 262580/310509 (executing program)
2022/08/25 17:20:14 fetching corpus: 3630, signal 263853/311931 (executing program)
2022/08/25 17:20:14 fetching corpus: 3680, signal 265720/313720 (executing program)
2022/08/25 17:20:14 fetching corpus: 3730, signal 266727/314956 (executing program)
2022/08/25 17:20:14 fetching corpus: 3779, signal 268604/316728 (executing program)
2022/08/25 17:20:14 fetching corpus: 3828, signal 269657/318003 (executing program)
2022/08/25 17:20:15 fetching corpus: 3878, signal 270928/319400 (executing program)
2022/08/25 17:20:15 fetching corpus: 3927, signal 271703/320487 (executing program)
2022/08/25 17:20:15 fetching corpus: 3977, signal 273183/321968 (executing program)
2022/08/25 17:20:15 fetching corpus: 4027, signal 274316/323308 (executing program)
2022/08/25 17:20:16 fetching corpus: 4077, signal 275185/324379 (executing program)
2022/08/25 17:20:16 fetching corpus: 4127, signal 276277/325588 (executing program)
2022/08/25 17:20:16 fetching corpus: 4177, signal 277790/326998 (executing program)
2022/08/25 17:20:16 fetching corpus: 4227, signal 278903/328247 (executing program)
2022/08/25 17:20:16 fetching corpus: 4277, signal 279793/329352 (executing program)
2022/08/25 17:20:16 fetching corpus: 4327, signal 280988/330639 (executing program)
2022/08/25 17:20:17 fetching corpus: 4377, signal 281989/331787 (executing program)
2022/08/25 17:20:17 fetching corpus: 4427, signal 283068/332936 (executing program)
2022/08/25 17:20:17 fetching corpus: 4477, signal 284186/334128 (executing program)
2022/08/25 17:20:17 fetching corpus: 4527, signal 285341/335289 (executing program)
2022/08/25 17:20:17 fetching corpus: 4577, signal 286440/336379 (executing program)
2022/08/25 17:20:18 fetching corpus: 4627, signal 287088/337230 (executing program)
2022/08/25 17:20:18 fetching corpus: 4677, signal 288315/338413 (executing program)
2022/08/25 17:20:18 fetching corpus: 4727, signal 289184/339386 (executing program)
2022/08/25 17:20:18 fetching corpus: 4777, signal 290190/340384 (executing program)
2022/08/25 17:20:18 fetching corpus: 4827, signal 291402/341464 (executing program)
2022/08/25 17:20:19 fetching corpus: 4877, signal 292482/342493 (executing program)
2022/08/25 17:20:19 fetching corpus: 4927, signal 293379/343476 (executing program)
2022/08/25 17:20:19 fetching corpus: 4977, signal 294376/344418 (executing program)
[   77.439132][ T1355] ieee802154 phy0 wpan0: encryption failed: -22
[   77.445346][ T1355] ieee802154 phy1 wpan1: encryption failed: -22
2022/08/25 17:20:20 fetching corpus: 5027, signal 295478/345446 (executing program)
2022/08/25 17:20:20 fetching corpus: 5077, signal 296945/346678 (executing program)
2022/08/25 17:20:20 fetching corpus: 5127, signal 297829/347500 (executing program)
2022/08/25 17:20:20 fetching corpus: 5177, signal 298865/348422 (executing program)
2022/08/25 17:20:20 fetching corpus: 5226, signal 299888/349318 (executing program)
2022/08/25 17:20:21 fetching corpus: 5276, signal 300822/350181 (executing program)
2022/08/25 17:20:21 fetching corpus: 5326, signal 301815/351089 (executing program)
2022/08/25 17:20:21 fetching corpus: 5376, signal 302875/352021 (executing program)
2022/08/25 17:20:21 fetching corpus: 5426, signal 303516/352765 (executing program)
2022/08/25 17:20:21 fetching corpus: 5476, signal 304387/353605 (executing program)
2022/08/25 17:20:22 fetching corpus: 5526, signal 305118/354357 (executing program)
2022/08/25 17:20:22 fetching corpus: 5576, signal 306202/355239 (executing program)
2022/08/25 17:20:22 fetching corpus: 5626, signal 308968/356828 (executing program)
2022/08/25 17:20:22 fetching corpus: 5676, signal 309739/357546 (executing program)
2022/08/25 17:20:22 fetching corpus: 5726, signal 310561/358277 (executing program)
2022/08/25 17:20:23 fetching corpus: 5776, signal 311699/359151 (executing program)
2022/08/25 17:20:23 fetching corpus: 5826, signal 312339/359806 (executing program)
2022/08/25 17:20:23 fetching corpus: 5876, signal 313237/360554 (executing program)
2022/08/25 17:20:23 fetching corpus: 5926, signal 314394/361378 (executing program)
2022/08/25 17:20:23 fetching corpus: 5976, signal 314928/361947 (executing program)
2022/08/25 17:20:24 fetching corpus: 6026, signal 316339/362848 (executing program)
2022/08/25 17:20:24 fetching corpus: 6076, signal 317427/363685 (executing program)
2022/08/25 17:20:24 fetching corpus: 6126, signal 318495/364417 (executing program)
2022/08/25 17:20:24 fetching corpus: 6176, signal 319396/365111 (executing program)
2022/08/25 17:20:25 fetching corpus: 6225, signal 320029/365711 (executing program)
2022/08/25 17:20:25 fetching corpus: 6275, signal 320634/366302 (executing program)
2022/08/25 17:20:25 fetching corpus: 6325, signal 322507/367345 (executing program)
2022/08/25 17:20:25 fetching corpus: 6375, signal 323215/367925 (executing program)
2022/08/25 17:20:25 fetching corpus: 6425, signal 324065/368560 (executing program)
2022/08/25 17:20:25 fetching corpus: 6475, signal 324761/369114 (executing program)
2022/08/25 17:20:26 fetching corpus: 6525, signal 325355/369659 (executing program)
2022/08/25 17:20:26 fetching corpus: 6575, signal 325873/370131 (executing program)
2022/08/25 17:20:26 fetching corpus: 6625, signal 326704/370725 (executing program)
2022/08/25 17:20:26 fetching corpus: 6675, signal 327572/371305 (executing program)
2022/08/25 17:20:26 fetching corpus: 6725, signal 328761/371976 (executing program)
2022/08/25 17:20:27 fetching corpus: 6775, signal 329331/372446 (executing program)
2022/08/25 17:20:27 fetching corpus: 6825, signal 330059/372979 (executing program)
2022/08/25 17:20:27 fetching corpus: 6875, signal 330617/373458 (executing program)
2022/08/25 17:20:27 fetching corpus: 6925, signal 331225/373982 (executing program)
2022/08/25 17:20:28 fetching corpus: 6975, signal 332186/374619 (executing program)
2022/08/25 17:20:28 fetching corpus: 7025, signal 332807/375112 (executing program)
2022/08/25 17:20:28 fetching corpus: 7075, signal 333738/375624 (executing program)
2022/08/25 17:20:28 fetching corpus: 7125, signal 334489/376117 (executing program)
2022/08/25 17:20:28 fetching corpus: 7175, signal 335236/376605 (executing program)
2022/08/25 17:20:29 fetching corpus: 7225, signal 336782/377289 (executing program)
2022/08/25 17:20:29 fetching corpus: 7275, signal 337315/377696 (executing program)
2022/08/25 17:20:29 fetching corpus: 7325, signal 338392/378227 (executing program)
2022/08/25 17:20:29 fetching corpus: 7375, signal 338912/378613 (executing program)
2022/08/25 17:20:30 fetching corpus: 7425, signal 339548/379020 (executing program)
2022/08/25 17:20:30 fetching corpus: 7475, signal 340261/379442 (executing program)
2022/08/25 17:20:30 fetching corpus: 7525, signal 340739/379793 (executing program)
2022/08/25 17:20:30 fetching corpus: 7575, signal 341504/380232 (executing program)
2022/08/25 17:20:31 fetching corpus: 7625, signal 342466/380667 (executing program)
2022/08/25 17:20:31 fetching corpus: 7675, signal 342937/381030 (executing program)
2022/08/25 17:20:31 fetching corpus: 7725, signal 343584/381389 (executing program)
2022/08/25 17:20:31 fetching corpus: 7775, signal 344257/381769 (executing program)
2022/08/25 17:20:32 fetching corpus: 7825, signal 344937/382127 (executing program)
2022/08/25 17:20:32 fetching corpus: 7875, signal 345556/382464 (executing program)
2022/08/25 17:20:32 fetching corpus: 7925, signal 346237/382813 (executing program)
2022/08/25 17:20:32 fetching corpus: 7975, signal 346868/383143 (executing program)
2022/08/25 17:20:32 fetching corpus: 8025, signal 348011/383598 (executing program)
2022/08/25 17:20:33 fetching corpus: 8075, signal 348792/383923 (executing program)
2022/08/25 17:20:33 fetching corpus: 8125, signal 349663/384283 (executing program)
2022/08/25 17:20:33 fetching corpus: 8175, signal 350396/384582 (executing program)
2022/08/25 17:20:33 fetching corpus: 8225, signal 350927/384881 (executing program)
2022/08/25 17:20:33 fetching corpus: 8275, signal 351455/385156 (executing program)
2022/08/25 17:20:34 fetching corpus: 8325, signal 352082/385427 (executing program)
2022/08/25 17:20:34 fetching corpus: 8375, signal 352695/385686 (executing program)
2022/08/25 17:20:34 fetching corpus: 8425, signal 353239/385951 (executing program)
2022/08/25 17:20:34 fetching corpus: 8475, signal 354187/386324 (executing program)
2022/08/25 17:20:34 fetching corpus: 8525, signal 354661/386571 (executing program)
2022/08/25 17:20:35 fetching corpus: 8575, signal 355617/386834 (executing program)
2022/08/25 17:20:35 fetching corpus: 8625, signal 356214/387073 (executing program)
[   92.795338][   T29] cfg80211: failed to load regulatory.db
2022/08/25 17:20:35 fetching corpus: 8675, signal 356820/387301 (executing program)
2022/08/25 17:20:35 fetching corpus: 8725, signal 357292/387526 (executing program)
2022/08/25 17:20:35 fetching corpus: 8774, signal 358063/387753 (executing program)
2022/08/25 17:20:35 fetching corpus: 8823, signal 358482/387948 (executing program)
2022/08/25 17:20:36 fetching corpus: 8873, signal 358973/388148 (executing program)
2022/08/25 17:20:36 fetching corpus: 8923, signal 359728/388388 (executing program)
2022/08/25 17:20:36 fetching corpus: 8973, signal 360245/388577 (executing program)
2022/08/25 17:20:36 fetching corpus: 9023, signal 360782/388771 (executing program)
2022/08/25 17:20:36 fetching corpus: 9073, signal 361313/388956 (executing program)
2022/08/25 17:20:36 fetching corpus: 9123, signal 362122/389167 (executing program)
2022/08/25 17:20:37 fetching corpus: 9173, signal 362685/389344 (executing program)
2022/08/25 17:20:38 fetching corpus: 9223, signal 363243/389525 (executing program)
2022/08/25 17:20:38 fetching corpus: 9273, signal 363732/389671 (executing program)
2022/08/25 17:20:38 fetching corpus: 9323, signal 364334/389846 (executing program)
2022/08/25 17:20:38 fetching corpus: 9373, signal 364896/389985 (executing program)
2022/08/25 17:20:38 fetching corpus: 9423, signal 365487/390127 (executing program)
2022/08/25 17:20:39 fetching corpus: 9473, signal 366094/390277 (executing program)
2022/08/25 17:20:39 fetching corpus: 9523, signal 366430/390404 (executing program)
2022/08/25 17:20:39 fetching corpus: 9573, signal 366978/390436 (executing program)
2022/08/25 17:20:39 fetching corpus: 9623, signal 367383/390440 (executing program)
2022/08/25 17:20:39 fetching corpus: 9673, signal 367969/390445 (executing program)
2022/08/25 17:20:40 fetching corpus: 9723, signal 368304/390445 (executing program)
2022/08/25 17:20:40 fetching corpus: 9773, signal 368803/390456 (executing program)
2022/08/25 17:20:40 fetching corpus: 9823, signal 369195/390469 (executing program)
2022/08/25 17:20:40 fetching corpus: 9873, signal 370058/390469 (executing program)
2022/08/25 17:20:40 fetching corpus: 9923, signal 370524/390469 (executing program)
2022/08/25 17:20:40 fetching corpus: 9973, signal 370904/390471 (executing program)
2022/08/25 17:20:41 fetching corpus: 10023, signal 371303/390480 (executing program)
2022/08/25 17:20:41 fetching corpus: 10073, signal 371858/390480 (executing program)
2022/08/25 17:20:41 fetching corpus: 10123, signal 372446/390484 (executing program)
2022/08/25 17:20:41 fetching corpus: 10173, signal 373048/390484 (executing program)
2022/08/25 17:20:41 fetching corpus: 10223, signal 373508/390661 (executing program)
2022/08/25 17:20:42 fetching corpus: 10273, signal 374060/390663 (executing program)
2022/08/25 17:20:42 fetching corpus: 10323, signal 374630/390663 (executing program)
2022/08/25 17:20:42 fetching corpus: 10373, signal 375012/390663 (executing program)
2022/08/25 17:20:42 fetching corpus: 10423, signal 375702/390671 (executing program)
2022/08/25 17:20:43 fetching corpus: 10473, signal 376078/390672 (executing program)
2022/08/25 17:20:43 fetching corpus: 10523, signal 376590/390682 (executing program)
2022/08/25 17:20:43 fetching corpus: 10573, signal 377222/390683 (executing program)
2022/08/25 17:20:43 fetching corpus: 10623, signal 377721/390683 (executing program)
2022/08/25 17:20:43 fetching corpus: 10673, signal 378146/390683 (executing program)
2022/08/25 17:20:44 fetching corpus: 10723, signal 378847/390685 (executing program)
2022/08/25 17:20:44 fetching corpus: 10773, signal 379455/390711 (executing program)
2022/08/25 17:20:44 fetching corpus: 10823, signal 379917/390711 (executing program)
2022/08/25 17:20:44 fetching corpus: 10873, signal 380602/390711 (executing program)
2022/08/25 17:20:45 fetching corpus: 10923, signal 381148/390718 (executing program)
2022/08/25 17:20:45 fetching corpus: 10973, signal 381719/390724 (executing program)
2022/08/25 17:20:45 fetching corpus: 11023, signal 382463/390730 (executing program)
2022/08/25 17:20:45 fetching corpus: 11073, signal 383063/390731 (executing program)
2022/08/25 17:20:46 fetching corpus: 11123, signal 383532/390740 (executing program)
2022/08/25 17:20:46 fetching corpus: 11126, signal 383544/390740 (executing program)
2022/08/25 17:20:46 fetching corpus: 11126, signal 383544/390740 (executing program)
2022/08/25 17:20:50 starting 4 fuzzer processes
17:20:50 executing program 0:
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2800004, 0x12, r1, 0x2000)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='memory.current\x00', 0x275a, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={0x0, 0x6c}}, 0x0)
socket(0x0, 0x0, 0x0)
sendmmsg$alg(0xffffffffffffffff, 0x0, 0x0, 0x0)
write$binfmt_script(r2, &(0x7f0000000140)=ANY=[], 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, 0x0)
ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
writev(r3, &(0x7f0000001300)=[{&(0x7f0000000140)="d2", 0x1}], 0x1)
ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000080)=0xb700)

17:20:50 executing program 1:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x48}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000a80)={{0x14}, [@NFT_MSG_NEWCHAIN={0x38, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_POLICY={0x8, 0x5, 0x1, 0x0, 0xfffffffffffffffe}, @NFTA_CHAIN_HOOK={0xc, 0xb, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}]}, @NFTA_CHAIN_HOOK={0x4}]}], {0x14}}, 0x60}}, 0x0)

17:20:50 executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c0000001a002102"], 0x1c}}, 0x0)

17:20:50 executing program 3:
syz_mount_image$ntfs3(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000040)={[{@sys_immutable}]})

[  107.736586][   T39] kauditd_printk_skb: 3 callbacks suppressed
[  107.736598][   T39] audit: type=1400 audit(1661448050.382:86): avc:  denied  { execmem } for  pid=3698 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[  108.005174][   T39] audit: type=1400 audit(1661448050.652:87): avc:  denied  { mounton } for  pid=3703 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[  108.030029][   T39] audit: type=1400 audit(1661448050.672:88): avc:  denied  { mount } for  pid=3703 comm="syz-executor.0" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[  108.048005][   T39] audit: type=1400 audit(1661448050.672:89): avc:  denied  { create } for  pid=3703 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  108.060958][   T39] audit: type=1400 audit(1661448050.672:90): avc:  denied  { read write } for  pid=3703 comm="syz-executor.0" name="vhci" dev="devtmpfs" ino=1104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  108.078115][   T39] audit: type=1400 audit(1661448050.672:91): avc:  denied  { open } for  pid=3703 comm="syz-executor.0" path="/dev/vhci" dev="devtmpfs" ino=1104 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1
[  109.048084][   T39] audit: type=1400 audit(1661448051.692:92): avc:  denied  { ioctl } for  pid=3703 comm="syz-executor.0" path="socket:[29868]" dev="sockfs" ino=29868 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[  109.060896][ T3709] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  109.076279][ T3709] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  109.084426][ T3709] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  109.091507][ T3708] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  109.098770][ T3709] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  109.106407][ T3709] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  109.136336][   T39] audit: type=1400 audit(1661448051.782:93): avc:  denied  { read } for  pid=3703 comm="syz-executor.0" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  109.139225][ T3711] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  109.155761][ T3714] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  109.156768][   T39] audit: type=1400 audit(1661448051.782:94): avc:  denied  { open } for  pid=3703 comm="syz-executor.0" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[  109.157141][ T3714] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  109.168373][ T3711] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  109.189600][   T39] audit: type=1400 audit(1661448051.782:95): avc:  denied  { mounton } for  pid=3703 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[  109.193529][ T3711] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  109.194284][ T3717] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  109.194689][ T3717] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  109.195506][ T3717] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  109.196415][ T3717] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  109.197164][ T3717] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  109.197493][ T3717] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  109.197960][ T3717] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  109.198248][ T3717] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  109.212976][ T3711] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  109.218986][ T3717] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  109.225014][ T3711] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  109.277430][ T3711] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  109.284178][ T3711] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  109.605076][ T3703] chnl_net:caif_netlink_parms(): no params data found
[  109.620625][ T3705] chnl_net:caif_netlink_parms(): no params data found
[  109.744575][ T3706] chnl_net:caif_netlink_parms(): no params data found
[  109.923443][ T3704] chnl_net:caif_netlink_parms(): no params data found
[  110.005215][ T3705] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.011666][ T3705] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.019688][ T3705] device bridge_slave_0 entered promiscuous mode
[  110.061189][ T3703] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.066155][ T3703] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.071137][ T3703] device bridge_slave_0 entered promiscuous mode
[  110.132152][ T3705] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.137050][ T3705] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.143472][ T3705] device bridge_slave_1 entered promiscuous mode
[  110.173927][ T3703] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.179348][ T3703] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.186375][ T3703] device bridge_slave_1 entered promiscuous mode
[  110.220809][ T3706] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.230267][ T3706] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.240927][ T3706] device bridge_slave_0 entered promiscuous mode
[  110.322244][ T3706] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.328815][ T3706] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.337532][ T3706] device bridge_slave_1 entered promiscuous mode
[  110.375751][ T3705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.387319][ T3703] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.438592][ T3705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.448471][ T3703] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.522529][ T3706] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.614248][ T3706] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.697731][ T3703] team0: Port device team_slave_0 added
[  110.709821][ T3704] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.714903][ T3704] bridge0: port 1(bridge_slave_0) entered disabled state
[  110.722008][ T3704] device bridge_slave_0 entered promiscuous mode
[  110.753948][ T3705] team0: Port device team_slave_0 added
[  110.764149][ T3703] team0: Port device team_slave_1 added
[  110.785845][ T3704] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.790846][ T3704] bridge0: port 2(bridge_slave_1) entered disabled state
[  110.801552][ T3704] device bridge_slave_1 entered promiscuous mode
[  110.839249][ T3706] team0: Port device team_slave_0 added
[  110.846677][ T3705] team0: Port device team_slave_1 added
[  110.910654][ T3706] team0: Port device team_slave_1 added
[  110.994283][ T3703] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.999214][ T3703] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.017907][ T3703] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.032137][ T3704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  111.041151][ T3704] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  111.078895][ T3706] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.084289][ T3706] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.099786][ T3706] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.109748][ T3705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.116201][ T3705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.137060][ T3705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.149469][ T3703] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.155412][ T3703] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.174915][ T3703] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.194184][ T1260] Bluetooth: hci0: command 0x0409 tx timeout
[  111.210758][ T3706] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.215609][ T3706] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.232352][ T3706] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.241171][ T3705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.247088][ T3705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.270387][ T3705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.273604][   T29] Bluetooth: hci1: command 0x0409 tx timeout
[  111.278386][  T173] Bluetooth: hci2: command 0x0409 tx timeout
[  111.343956][ T3704] team0: Port device team_slave_0 added
[  111.360713][   T29] Bluetooth: hci3: command 0x0409 tx timeout
[  111.404086][ T3705] device hsr_slave_0 entered promiscuous mode
[  111.409947][ T3705] device hsr_slave_1 entered promiscuous mode
[  111.441367][ T3704] team0: Port device team_slave_1 added
[  111.486189][ T3703] device hsr_slave_0 entered promiscuous mode
[  111.493064][ T3703] device hsr_slave_1 entered promiscuous mode
[  111.498526][ T3703] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.505017][ T3703] Cannot create hsr debugfs directory
[  111.538619][ T3706] device hsr_slave_0 entered promiscuous mode
[  111.543980][ T3706] device hsr_slave_1 entered promiscuous mode
[  111.548277][ T3706] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.554210][ T3706] Cannot create hsr debugfs directory
[  111.607496][ T3704] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.611831][ T3704] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.628548][ T3704] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.706647][ T3704] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.711833][ T3704] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.733829][ T3704] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.936578][ T3704] device hsr_slave_0 entered promiscuous mode
[  111.942226][ T3704] device hsr_slave_1 entered promiscuous mode
[  111.946881][ T3704] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.951811][ T3704] Cannot create hsr debugfs directory
[  112.303612][ T3705] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  112.316123][ T3705] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  112.328508][ T3705] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  112.339939][ T3705] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  112.443078][ T3703] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  112.450222][ T3703] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  112.458678][ T3703] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  112.466919][ T3703] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  112.555822][ T3706] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  112.564966][ T3706] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  112.588824][ T3706] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  112.611882][ T3705] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.624637][ T3706] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  112.683017][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  112.691585][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  112.709834][ T3705] 8021q: adding VLAN 0 to HW filter on device team0
[  112.719722][ T3704] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  112.729098][ T3704] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  112.739080][ T3704] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  112.767559][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  112.776848][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  112.783679][   T40] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.789345][   T40] bridge0: port 1(bridge_slave_0) entered forwarding state
[  112.797010][ T3704] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  112.819657][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  112.841157][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  112.847702][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  112.854149][ T3741] bridge0: port 2(bridge_slave_1) entered blocking state
[  112.858383][ T3741] bridge0: port 2(bridge_slave_1) entered forwarding state
[  112.864568][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  112.879390][ T3703] 8021q: adding VLAN 0 to HW filter on device bond0
[  112.903122][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  112.912977][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  112.920408][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  112.927099][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  112.950455][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  112.958598][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  112.965962][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  112.973520][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  113.003525][ T3705] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  113.011784][ T3705] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  113.025706][ T3703] 8021q: adding VLAN 0 to HW filter on device team0
[  113.036321][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  113.043785][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  113.050965][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.058419][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.065152][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.072054][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.079086][ T3384] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.084867][ T3384] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.120172][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.129369][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.137057][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.144215][   T38] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.149754][   T38] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.156353][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  113.163204][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  113.187448][ T3705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.194947][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.219379][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  113.219517][   T39] audit: type=1400 audit(1661448055.862:96): avc:  denied  { module_request } for  pid=3705 comm="syz-executor.3" kmod="netdev-xfrm0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[  113.247211][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  113.249072][   T39] audit: type=1400 audit(1661448055.892:97): avc:  denied  { sys_module } for  pid=3705 comm="syz-executor.3" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[  113.255171][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  113.272892][ T3384] Bluetooth: hci0: command 0x041b tx timeout
[  113.275627][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  113.288856][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  113.295150][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  113.301974][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  113.309633][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  113.326669][ T3703] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  113.336721][ T3703] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  113.348571][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  113.355884][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  113.364353][   T38] Bluetooth: hci2: command 0x041b tx timeout
[  113.369944][   T38] Bluetooth: hci1: command 0x041b tx timeout
[  113.370090][ T3706] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.413062][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  113.418749][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  113.432857][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.432996][   T38] Bluetooth: hci3: command 0x041b tx timeout
[  113.441103][   T40] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.464252][ T3706] 8021q: adding VLAN 0 to HW filter on device team0
[  113.473640][ T3703] 8021q: adding VLAN 0 to HW filter on device batadv0
[  113.499213][ T3704] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.508731][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  113.518720][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  113.525359][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.530976][    T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.537993][    T6] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.543214][    T6] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.581254][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.588795][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  113.596196][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  113.603789][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.611431][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.618904][ T3739] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.623915][ T3739] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.629356][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.636134][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  113.643793][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  113.651137][ T3739] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  113.666229][ T3705] device veth0_vlan entered promiscuous mode
[  113.678484][ T3705] device veth1_vlan entered promiscuous mode
[  113.700596][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  113.706784][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  113.714334][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  113.721221][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  113.728481][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  113.736197][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  113.761282][ T3704] 8021q: adding VLAN 0 to HW filter on device team0
[  113.769314][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  113.775343][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  113.782266][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  113.790135][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  113.797292][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  113.804192][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  113.809679][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  113.823418][ T3706] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  113.856781][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  113.862608][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  113.868675][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  113.880079][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  113.887730][   T24] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.893489][   T24] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.900127][ T3705] device veth0_macvtap entered promiscuous mode
[  113.911919][ T3705] device veth1_macvtap entered promiscuous mode
[  113.937870][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  113.947886][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  113.955021][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  113.959901][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  113.966218][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  113.971464][ T3760] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.977223][ T3760] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.981962][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  113.989667][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  113.995054][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  114.000233][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  114.006935][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  114.014372][ T3760] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  114.031072][ T3706] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.043687][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  114.050033][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  114.056001][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  114.068667][ T3705] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.084509][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  114.093503][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  114.101043][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  114.108456][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  114.116489][ T3705] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.132960][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  114.140350][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  114.151813][ T3705] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.158785][ T3705] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.165575][ T3705] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.170881][ T3705] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.190039][ T3704] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  114.198566][ T3704] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.211848][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  114.219866][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  114.227329][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  114.233471][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  114.240058][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  114.246680][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  114.257226][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  114.263402][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  114.269673][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  114.282037][ T3703] device veth0_vlan entered promiscuous mode
[  114.295468][ T3703] device veth1_vlan entered promiscuous mode
[  114.337703][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  114.344636][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  114.351081][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  114.363042][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  114.368896][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  114.374210][ T3746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  114.392534][   T39] audit: type=1400 audit(1661448057.032:98): avc:  denied  { mounton } for  pid=3705 comm="syz-executor.3" path="/dev/binderfs" dev="devtmpfs" ino=2383 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[  114.394355][ T3704] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.415781][   T39] audit: type=1400 audit(1661448057.042:99): avc:  denied  { mount } for  pid=3705 comm="syz-executor.3" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[  114.431155][ T3706] device veth0_vlan entered promiscuous mode
[  114.446782][ T3706] device veth1_vlan entered promiscuous mode
[  114.451774][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  114.459813][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  114.467347][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  114.474328][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  114.481633][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  114.492444][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  114.498959][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  114.508245][ T3703] device veth0_macvtap entered promiscuous mode
[  114.528874][ T3703] device veth1_macvtap entered promiscuous mode
[  114.544932][   T39] audit: type=1400 audit(1661448057.192:100): avc:  denied  { read write } for  pid=3705 comm="syz-executor.3" name="loop3" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  114.558676][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  114.562800][   T39] audit: type=1400 audit(1661448057.192:101): avc:  denied  { open } for  pid=3705 comm="syz-executor.3" path="/dev/loop3" dev="devtmpfs" ino=659 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  114.584304][   T39] audit: type=1400 audit(1661448057.192:102): avc:  denied  { ioctl } for  pid=3705 comm="syz-executor.3" path="/dev/loop3" dev="devtmpfs" ino=659 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[  114.585163][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  114.601463][   T39] audit: type=1400 audit(1661448057.242:103): avc:  denied  { mounton } for  pid=3770 comm="syz-executor.3" path="/syzkaller-testdir1450005005/syzkaller.WSLPxW/0/file0" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[  114.628381][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  114.636274][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  114.642468][ T3741] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  114.651810][ T3706] device veth0_macvtap entered promiscuous mode
[  114.681364][ T3706] device veth1_macvtap entered promiscuous mode
[  114.695335][ T3703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  114.709370][ T3703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.718493][ T3703] batman_adv: batadv0: Interface activated: batadv_slave_0
17:20:57 executing program 3:
syz_mount_image$ntfs3(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000040)={[{@sys_immutable}]})

[  114.744591][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  114.752124][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  114.758823][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  114.764490][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  114.776904][ T3703] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  114.784154][ T3703] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.791429][ T3703] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.800098][ T3703] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.806589][ T3703] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.812360][ T3703] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.818708][ T3703] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
17:20:57 executing program 3:
syz_mount_image$ntfs3(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000040)={[{@sys_immutable}]})

[  114.827521][ T3706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  114.834778][ T3706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.841349][ T3706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  114.848287][ T3706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.858763][ T3706] batman_adv: batadv0: Interface activated: batadv_slave_0
[  114.864964][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
17:20:57 executing program 3:
syz_mount_image$ntfs3(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x0, 0x0, &(0x7f0000000340), 0x0, &(0x7f0000000040)={[{@sys_immutable}]})

[  114.870443][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  114.880378][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  114.886892][   T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  114.905891][ T3706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  114.915257][ T3706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.924537][ T3706] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  114.931674][ T3706] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  114.946653][ T3706] batman_adv: batadv0: Interface activated: batadv_slave_1
17:20:57 executing program 3:
r0 = fsopen(&(0x7f0000000040)='btrfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)

[  114.985054][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  114.992211][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  114.999882][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  115.008102][ T3743] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  115.021733][ T3706] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.033203][ T3706] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.039705][ T3706] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.045952][ T3706] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.105111][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  115.111199][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  115.119821][ T3704] device veth0_vlan entered promiscuous mode
[  115.146809][   T39] audit: type=1400 audit(1661448057.792:104): avc:  denied  { read } for  pid=3784 comm="syz-executor.0" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  115.150783][ T3785] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  115.162511][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  115.162921][   T39] audit: type=1400 audit(1661448057.792:105): avc:  denied  { open } for  pid=3784 comm="syz-executor.0" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1
[  115.194058][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  115.207415][ T3704] device veth1_vlan entered promiscuous mode
[  115.210849][ T3787] ------------[ cut here ]------------
[  115.220452][ T3787] WARNING: CPU: 0 PID: 3787 at kernel/cpu.c:347 lockdep_assert_cpus_held+0xbd/0xe0
[  115.227907][ T3787] Modules linked in:
[  115.233551][ T3787] CPU: 0 PID: 3787 Comm: kvm-nx-lpage-re Not tainted 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0
[  115.235553][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  115.242305][ T3787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  115.249402][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  115.255744][ T3787] RIP: 0010:lockdep_assert_cpus_held+0xbd/0xe0
[  115.266743][ T3787] Code: e8 88 11 34 00 be ff ff ff ff 48 c7 c7 70 39 e3 8b e8 b7 14 38 08 31 ff 89 c3 89 c6 e8 2c 0e 34 00 85 db 75 d5 e8 63 11 34 00 <0f> 0b eb cc 48 c7 c7 04 c4 dd 8d e8 93 b7 7f 00 e9 62 ff ff ff 48
[  115.267598][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  115.280573][ T3787] RSP: 0018:ffffc90003257c28 EFLAGS: 00010293
[  115.280658][ T3787] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  115.280674][ T3787] RDX: ffff88806860a200 RSI: ffffffff814728bd RDI: 0000000000000005
[  115.280691][ T3787] RBP: ffff88801f710000 R08: 0000000000000005 R09: 0000000000000000
[  115.280707][ T3787] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003257de0
[  115.280745][ T3787] R13: ffffffff8bfd96e0 R14: 1ffff9200064af8c R15: ffffc90003257e04
[  115.280765][ T3787] FS:  0000000000000000(0000) GS:ffff88802c800000(0000) knlGS:0000000000000000
[  115.280820][ T3787] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  115.280837][ T3787] CR2: 0000000020000240 CR3: 000000001a748000 CR4: 0000000000152ef0
[  115.280850][ T3787] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  115.280862][ T3787] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  115.280875][ T3787] Call Trace:
[  115.280881][ T3787]  <TASK>
[  115.280889][ T3787]  cpuset_attach+0x92/0x520
[  115.281090][ T3787]  ? guarantee_online_cpus+0x4d0/0x4d0
[  115.281110][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.281374][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.281392][ T3787]  cgroup_migrate_execute+0xbc7/0x1220
[  115.281431][ T3787]  cgroup_attach_task+0x416/0x7c0
[  115.281453][ T3787]  ? cgroup_migrate+0x1f0/0x1f0
[  115.281475][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.281493][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.281512][ T3787]  cgroup_attach_task_all+0xde/0x140
[  115.281531][ T3787]  kvm_vm_worker_thread+0xdd/0x5a0
[  115.281598][ T3787]  ? kvm_mmu_pte_write+0xdc0/0xdc0
[  115.281677][ T3787]  ? __bpf_trace_kvm_unmap_hva_range+0xe0/0xe0
[  115.288925][ T3384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  115.292824][ T3787]  kthread+0x2e4/0x3a0
[  115.302117][ T3704] device veth0_macvtap entered promiscuous mode
[  115.303195][ T3787]  ? kthread_complete_and_exit+0x40/0x40
[  115.325910][ T3704] device veth1_macvtap entered promiscuous mode
[  115.327124][ T3787]  ret_from_fork+0x1f/0x30
[  115.348901][ T3704] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  115.351273][ T3787]  </TASK>
[  115.353693][   T38] Bluetooth: hci0: command 0x040f tx timeout
[  115.357124][ T3787] Kernel panic - not syncing: panic_on_warn set ...
[  115.357133][ T3787] CPU: 0 PID: 3787 Comm: kvm-nx-lpage-re Not tainted 6.0.0-rc2-syzkaller-00054-gc40e8341e3b3 #0
[  115.357148][ T3787] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  115.357155][ T3787] Call Trace:
[  115.357159][ T3787]  <TASK>
[  115.357164][ T3787]  dump_stack_lvl+0xcd/0x134
[  115.357325][ T3787]  panic+0x2c8/0x627
[  115.357373][ T3787]  ? panic_print_sys_info.part.0+0x10b/0x10b
[  115.357389][ T3787]  ? __warn.cold+0x248/0x2c4
[  115.357402][ T3787]  ? lockdep_assert_cpus_held+0xbd/0xe0
[  115.357420][ T3787]  __warn.cold+0x259/0x2c4
[  115.357434][ T3787]  ? lockdep_assert_cpus_held+0xbd/0xe0
[  115.357449][ T3787]  report_bug+0x1bc/0x210
[  115.357566][ T3787]  handle_bug+0x3c/0x60
[  115.357615][ T3787]  exc_invalid_op+0x14/0x40
[  115.357629][ T3787]  asm_exc_invalid_op+0x16/0x20
[  115.357675][ T3787] RIP: 0010:lockdep_assert_cpus_held+0xbd/0xe0
[  115.357692][ T3787] Code: e8 88 11 34 00 be ff ff ff ff 48 c7 c7 70 39 e3 8b e8 b7 14 38 08 31 ff 89 c3 89 c6 e8 2c 0e 34 00 85 db 75 d5 e8 63 11 34 00 <0f> 0b eb cc 48 c7 c7 04 c4 dd 8d e8 93 b7 7f 00 e9 62 ff ff ff 48
[  115.357710][ T3787] RSP: 0018:ffffc90003257c28 EFLAGS: 00010293
[  115.357722][ T3787] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  115.357730][ T3787] RDX: ffff88806860a200 RSI: ffffffff814728bd RDI: 0000000000000005
[  115.357739][ T3787] RBP: ffff88801f710000 R08: 0000000000000005 R09: 0000000000000000
[  115.357747][ T3787] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003257de0
[  115.357754][ T3787] R13: ffffffff8bfd96e0 R14: 1ffff9200064af8c R15: ffffc90003257e04
[  115.357764][ T3787]  ? lockdep_assert_cpus_held+0xbd/0xe0
[  115.357780][ T3787]  ? lockdep_assert_cpus_held+0xbd/0xe0
[  115.357795][ T3787]  cpuset_attach+0x92/0x520
[  115.357809][ T3787]  ? guarantee_online_cpus+0x4d0/0x4d0
[  115.357822][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.357834][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.357846][ T3787]  cgroup_migrate_execute+0xbc7/0x1220
[  115.357863][ T3787]  cgroup_attach_task+0x416/0x7c0
[  115.357877][ T3787]  ? cgroup_migrate+0x1f0/0x1f0
[  115.357901][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.357914][ T3787]  ? _raw_spin_unlock_irq+0x1f/0x40
[  115.357927][ T3787]  cgroup_attach_task_all+0xde/0x140
[  115.357939][ T3787]  kvm_vm_worker_thread+0xdd/0x5a0
[  115.357955][ T3787]  ? kvm_mmu_pte_write+0xdc0/0xdc0
[  115.357967][ T3787]  ? __bpf_trace_kvm_unmap_hva_range+0xe0/0xe0
[  115.357982][ T3787]  kthread+0x2e4/0x3a0
[  115.357995][ T3787]  ? kthread_complete_and_exit+0x40/0x40
[  115.358008][ T3787]  ret_from_fork+0x1f/0x30
[  115.358023][ T3787]  </TASK>
[  115.361442][ T3787] Kernel Offset: disabled
[  115.585095][ T3787] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:20:58  Registers:
info registers vcpu 0
RAX=0000000000000065 RBX=00000000000003f8 RCX=0000000000000000 RDX=00000000000003f8
RSI=ffffffff846141b1 RDI=ffffffff914810c0 RBP=ffffffff91481080 RSP=ffffc90003257580
R8 =0000000000000001 R9 =000000000000001f R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=0000000000000065 R14=ffffffff84614150 R15=0000000000000000
RIP=ffffffff846141db RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c800000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000240 CR3=000000001cb32000 CR4=00152ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=78652e29646e616d6d6f632a282e6370 XMM03=00000000000000000000000000000000
XMM04=e7af14e8ebc73d0c7ad38a9a306b5a4c XMM05=b9107705cb189d1ca5fdc555226e6e29
XMM06=65449ef2e8b09f875f6b7131bff08fc7 XMM07=e513a4f7be5633457c076d282bd0c803
XMM08=15e2b6728e15f7c07f0ce9ec74cc38fa XMM09=5ae2ceb46d71d976d87ae185fd90cf16
XMM10=1a295a6cf481cf4b85d2e92318218cc0 XMM11=58cbad1d52270c915b2cefed61fc1908
XMM12=53d3ceaabe19677928ea211ac77ddce7 XMM13=45535f474c412474706f6b636f737465
XMM14=2c3731317830202c30722859454b5f54 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000005d683 RBX=ffff888012530000 RCX=ffffffff897f4825 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc9000067fe00
R8 =0000000000000001 R9 =ffff88802c934c4b R10=ffffed1005926989 R11=0000000000000001
R12=ffffed10024a6000 R13=0000000000000001 R14=ffffffff8dddf3d0 R15=0000000000000000
RIP=ffffffff89824e5b RFL=00000242 [---Z---] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802c900000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000048000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=00007f54d6170524 CR3=000000001ef45000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=00ff000000000000000000000000ff00 XMM03=72656b2074612037383733203a444950
XMM04=00000000000000000000000000000000 XMM05=ffffffffffffffffffffffffffffffff
XMM06=00000000000000000000000000000000 XMM07=652d7a7973223d6d6d6f632034383733
XMM08=2500656c6f736e6f632f7665642f000a XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=0000000000000000 RBX=ffff888069ee1200 RCX=0000000000000000 RDX=ffff8880436200c0
RSI=dffffc0000000000 RDI=ffff888069ee1250 RBP=0000000000000000 RSP=ffffc90002f76ee8
R8 =0000000000000000 R9 =0000000000000000 R10=0000000000000000 R11=0000000000000000
R12=0000000000000000 R13=ffff888069ede1b8 R14=0000000000000003 R15=00000000000000ff
RIP=ffffffff87f15b65 RFL=00000a02 [-O-----] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000555556a4e400 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000008f000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000555556466708 CR3=0000000063b09000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=3ea90e39afd01832d5f3e603ee224c0e XMM01=ce56507f4bf1d7beb4914d0950505ae9
XMM02=3c065535560ad2f7001dc1710aea768f XMM03=adb7ebb5237e7b0037714afeccd9a5c7
XMM04=000000000000000000000000003fa287 XMM05=0000000000000000aaaa0000a2f78605
XMM06=000000000000000000000000aaaa0000 XMM07=aaaa0000a2f78605003fa287a1c4725f
XMM08=30000000340000002e000000be000000 XMM09=00000000000000000000000000000000
XMM10=ccbc946663ee137e3115379337189978 XMM11=531971d25c6eabd4ac955058236d2917
XMM12=0d0c0f0e09080b0a0504070601000302 XMM13=0c0f0e0d080b0a090407060500030201
XMM14=000000000000000000000000000034c0 XMM15=00000000000000000000000000000040
info registers vcpu 3
RAX=000000000000ccc7 RBX=0000000000000000 RCX=ffffffff897f4825 RDX=0000000000000000
RSI=0000000000000000 RDI=0000000000000000 RBP=ffffffff897eeb42 RSP=ffffc90003037f30
R8 =0000000000000001 R9 =ffff88802cb34c4b R10=ffffed1005966989 R11=0000000000000001
R12=ffffc90003037f58 R13=0000000000000000 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff897f3aa1 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 00007f1655bbf840 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000d6000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000170 CR3=00000000648d0000 CR4=00152ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=000000000000ff000000000000ff0000
XMM02=ffff000000000000ffff000000000000 XMM03=00000000000000000000000000000000
XMM04=ffff0000ff0000000000000000000000 XMM05=ffff000000000000ffff000000000000
XMM06=ffff0000ff0000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=000055837c505326000055837c614490 XMM09=00000000000000000000000000000000
XMM10=20202000002020202020202020202020 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000