qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x115000)
[   80.454129][ T1114] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   80.457124][ T1114] ata1: failed to read log page 10h (errno=-5)
[   80.459838][ T1114] ata1.00: exception Emask 0x1 SAct 0xc000 SErr 0x0 action 0x0
[   80.462996][ T1114] ata1.00: irq_stat 0x40000000
[   80.465146][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   80.467666][ T1114] ata1.00: cmd 61/a8:70:36:a1:04/08:00:00:00:00/40 tag 14 ncq dma 1134592 ou
[   80.467666][ T1114]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   80.475253][ T1114] ata1.00: status: { DRDY }
[   80.477426][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   80.480212][ T1114] ata1.00: cmd 61/d0:78:de:a9:04/05:00:00:00:00/40 tag 15 ncq dma 761856 out
[   80.480212][ T1114]          res 50/00:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   80.486177][ T1114] ata1.00: status: { DRDY }
[   80.488252][ T1114] ata1.00: configured for UDMA/100
[   80.490368][ T1114] ata1: EH complete
qemu-system-x86_64: ahci: PRDT length for NCQ command (0x0) is smaller than the requested size (0x400000)
[   80.654370][ T1114] ata1.00: Read log 0x10 page 0x00 failed, Emask 0x1
[   80.657169][ T1114] ata1: failed to read log page 10h (errno=-5)
[   80.659771][ T1114] ata1.00: NCQ disabled due to excessive errors
[   80.662348][ T1114] ata1.00: exception Emask 0x1 SAct 0xe0 SErr 0x0 action 0x0
[   80.665943][ T1114] ata1.00: irq_stat 0x41000008
[   80.668500][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   80.671160][ T1114] ata1.00: cmd 61/00:28:36:81:05/20:00:00:00:00/40 tag 5 ncq dma 4194304 ou
[   80.671160][ T1114]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   80.681500][ T1114] ata1.00: status: { DRDY }
[   80.683550][ T1114] ata1.00: error: { ABRT }
[   80.685358][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   80.687399][ T1114] ata1.00: cmd 61/28:30:36:a1:05/1c:00:00:00:00/40 tag 6 ncq dma 3690496 ou
[   80.687399][ T1114]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   80.693363][ T1114] ata1.00: status: { DRDY }
[   80.694949][ T1114] ata1.00: error: { ABRT }
[   80.696442][ T1114] ata1.00: failed command: WRITE FPDMA QUEUED
[   80.698391][ T1114] ata1.00: cmd 61/60:38:5e:bd:05/00:00:00:00:00/40 tag 7 ncq dma 49152 out
[   80.698391][ T1114]          res 50/04:00:00:00:00/00:00:00:00:00/00 Emask 0x1 (device error)
[   80.703989][ T1114] ata1.00: status: { DRDY }
[   80.705455][ T1114] ata1.00: error: { ABRT }
[   80.708836][ T1114] ata1.00: configured for UDMA/100
[   80.711058][ T1114] ata1: EH complete
Warning: Permanently added '[localhost]:63893' (ED25519) to the list of known hosts.
[   80.903069][   T40] audit: type=1400 audit(1775542796.177:74): avc:  denied  { execute } for  pid=5924 comm="sh" name="syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[   80.910119][   T40] audit: type=1400 audit(1775542796.187:75): avc:  denied  { execute_no_trans } for  pid=5924 comm="sh" path="/syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2026/04/07 06:19:57 parsed 1 programs
[   82.291372][   T40] audit: type=1400 audit(1775542797.567:76): avc:  denied  { node_bind } for  pid=5924 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   84.526566][   T40] audit: type=1400 audit(1775542799.807:77): avc:  denied  { mounton } for  pid=5934 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   84.540065][ T5934] cgroup: Unknown subsys name 'net'
[   84.543305][   T40] audit: type=1400 audit(1775542799.817:78): avc:  denied  { mount } for  pid=5934 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   84.551068][   T40] audit: type=1400 audit(1775542799.827:79): avc:  denied  { unmount } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   84.786470][ T5934] cgroup: Unknown subsys name 'cpuset'
[   84.791159][ T5934] cgroup: Unknown subsys name 'rlimit'
[   85.004850][   T40] audit: type=1400 audit(1775542800.287:80): avc:  denied  { setattr } for  pid=5934 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   85.012628][   T40] audit: type=1400 audit(1775542800.287:81): avc:  denied  { create } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   85.019925][   T40] audit: type=1400 audit(1775542800.287:82): avc:  denied  { write } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   85.032304][   T40] audit: type=1400 audit(1775542800.287:83): avc:  denied  { read } for  pid=5934 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   85.059445][ T5940] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   85.977399][ T5934] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   86.955377][ T3248] cfg80211: failed to load regulatory.db
[   87.603503][   T40] kauditd_printk_skb: 6 callbacks suppressed
[   87.603523][   T40] audit: type=1400 audit(1775542802.887:90): avc:  denied  { execmem } for  pid=5945 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   87.611521][   T40] audit: type=1400 audit(1775542802.887:91): avc:  denied  { read } for  pid=5946 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   87.618621][   T40] audit: type=1400 audit(1775542802.887:92): avc:  denied  { open } for  pid=5946 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   87.626990][   T40] audit: type=1400 audit(1775542802.887:93): avc:  denied  { mounton } for  pid=5946 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   87.710611][   T40] audit: type=1400 audit(1775542802.987:94): avc:  denied  { module_request } for  pid=5946 comm="syz-executor" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   87.731623][ T5946] chnl_net:caif_netlink_parms(): no params data found
[   87.806871][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.810703][ T5946] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.814030][ T5946] bridge_slave_0: entered allmulticast mode
[   87.818321][ T5946] bridge_slave_0: entered promiscuous mode
[   87.824604][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.827692][ T5946] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.830336][ T5946] bridge_slave_1: entered allmulticast mode
[   87.833367][ T5946] bridge_slave_1: entered promiscuous mode
[   87.851660][ T5946] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.859189][ T5946] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.875829][ T5946] team0: Port device team_slave_0 added
[   87.879044][ T5946] team0: Port device team_slave_1 added
[   87.896567][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.898984][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.907611][ T5946] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.913767][ T5946] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.916554][ T5946] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.926974][ T5946] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.956457][ T5946] hsr_slave_0: entered promiscuous mode
[   87.958841][ T5946] hsr_slave_1: entered promiscuous mode
[   88.067685][ T5946] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   88.074864][ T5946] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.081356][ T5946] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.087233][ T5946] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.109922][ T5946] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.113089][ T5946] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.116044][ T5946] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.118345][ T5946] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.168600][ T5946] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.177352][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.180810][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.188435][ T5946] 8021q: adding VLAN 0 to HW filter on device team0
[   88.195746][   T73] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.198199][   T73] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.207807][   T73] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.210717][   T73] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.272586][   T40] audit: type=1400 audit(1775542803.547:95): avc:  denied  { sys_module } for  pid=5946 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   88.353849][ T5946] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.391407][ T5946] veth0_vlan: entered promiscuous mode
[   88.400333][ T5946] veth1_vlan: entered promiscuous mode
[   88.429015][ T5946] veth0_macvtap: entered promiscuous mode
[   88.436372][ T5946] veth1_macvtap: entered promiscuous mode
[   88.454643][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.463934][ T5946] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.475546][   T46] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.479117][   T46] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.481927][   T46] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.487836][   T46] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.512958][   T40] audit: type=1400 audit(1775542803.787:96): avc:  denied  { mount } for  pid=5946 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   88.522272][   T40] audit: type=1400 audit(1775542803.797:97): avc:  denied  { mounton } for  pid=5946 comm="syz-executor" path="/syzkaller.dYCGcB/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[   88.531344][   T40] audit: type=1400 audit(1775542803.797:98): avc:  denied  { mount } for  pid=5946 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[   88.540795][   T40] audit: type=1400 audit(1775542803.797:99): avc:  denied  { mounton } for  pid=5946 comm="syz-executor" path="/syzkaller.dYCGcB/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[   88.555907][ T5946] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   88.684105][   T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.754343][   T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.826066][   T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.918115][   T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   89.501774][ T5997] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.505296][ T5997] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.508199][ T5997] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.511559][ T5997] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.516778][ T5997] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.675039][  T131] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.678043][  T131] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.698687][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.701364][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/04/07 06:20:06 executed programs: 0
[   90.861609][ T5997] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   90.864968][ T5997] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   90.868770][ T5997] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   90.872439][ T5997] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   90.877306][ T5997] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   90.995417][ T6040] chnl_net:caif_netlink_parms(): no params data found
[   91.065274][ T6040] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.068290][ T6040] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.070962][ T6040] bridge_slave_0: entered allmulticast mode
[   91.076306][ T6040] bridge_slave_0: entered promiscuous mode
[   91.081159][ T6040] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.083814][ T6040] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.086257][ T6040] bridge_slave_1: entered allmulticast mode
[   91.089078][ T6040] bridge_slave_1: entered promiscuous mode
[   91.110712][ T6040] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   91.116076][ T6040] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   91.133899][ T6040] team0: Port device team_slave_0 added
[   91.137775][ T6040] team0: Port device team_slave_1 added
[   91.154671][ T6040] batman_adv: batadv0: Adding interface: batadv_slave_0
[   91.156988][ T6040] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.165571][ T6040] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   91.170200][ T6040] batman_adv: batadv0: Adding interface: batadv_slave_1
[   91.173034][ T6040] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   91.181891][ T6040] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   91.208383][ T6040] hsr_slave_0: entered promiscuous mode
[   91.211011][ T6040] hsr_slave_1: entered promiscuous mode
[   91.213286][ T6040] debugfs: 'hsr0' already exists in 'hsr'
[   91.215240][ T6040] Cannot create hsr debugfs directory
[   91.870326][   T13] bridge_slave_1: left allmulticast mode
[   91.872260][   T13] bridge_slave_1: left promiscuous mode
[   91.875176][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.881703][   T13] bridge_slave_0: left allmulticast mode
[   91.884249][   T13] bridge_slave_0: left promiscuous mode
[   91.886164][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.028742][   T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   92.033950][   T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   92.037636][   T13] bond0 (unregistering): Released all slaves
[   92.217818][   T13] hsr_slave_0: left promiscuous mode
[   92.220781][   T13] hsr_slave_1: left promiscuous mode
[   92.224520][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   92.227674][   T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[   92.232019][   T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   92.236080][   T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[   92.247767][   T13] veth1_macvtap: left promiscuous mode
[   92.250311][   T13] veth0_macvtap: left promiscuous mode
[   92.252723][   T13] veth1_vlan: left promiscuous mode
[   92.255636][   T13] veth0_vlan: left promiscuous mode
[   92.363852][   T13] team0 (unregistering): Port device team_slave_1 removed
[   92.371955][   T13] team0 (unregistering): Port device team_slave_0 removed
[   92.724545][ T6040] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.732228][ T6040] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.739244][ T6040] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.744621][ T6040] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   92.787405][ T6040] 8021q: adding VLAN 0 to HW filter on device bond0
[   92.795204][ T6040] 8021q: adding VLAN 0 to HW filter on device team0
[   92.804876][  T131] bridge0: port 1(bridge_slave_0) entered blocking state
[   92.807585][  T131] bridge0: port 1(bridge_slave_0) entered forwarding state
[   92.811350][  T131] bridge0: port 2(bridge_slave_1) entered blocking state
[   92.814585][  T131] bridge0: port 2(bridge_slave_1) entered forwarding state
[   92.929816][ T6040] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.957449][ T6040] veth0_vlan: entered promiscuous mode
[   92.962548][ T6040] veth1_vlan: entered promiscuous mode
[   92.967071][ T5997] Bluetooth: hci0: command tx timeout
[   92.976601][ T6040] veth0_macvtap: entered promiscuous mode
[   92.981440][ T6040] veth1_macvtap: entered promiscuous mode
[   92.990174][ T6040] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.997078][ T6040] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.004015][   T73] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.008858][   T73] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.011823][   T73] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.015499][   T73] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.058326][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.061188][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.075862][  T131] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.078773][  T131] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.119853][   T40] kauditd_printk_skb: 20 callbacks suppressed
[   93.119874][   T40] audit: type=1400 audit(1775542808.397:120): avc:  denied  { read write } for  pid=6082 comm="syz.0.17" name="udmabuf" dev="devtmpfs" ino=713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.121640][ T6082] ------------[ cut here ]------------
[   93.122572][   T40] audit: type=1400 audit(1775542808.397:121): avc:  denied  { open } for  pid=6082 comm="syz.0.17" path="/dev/udmabuf" dev="devtmpfs" ino=713 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.131335][ T6082] ((d_inode(path->dentry))->i_flags & (1 << 19)) && !(path->mnt->mnt_sb->s_iflags & 0x00000002)
[   93.131348][ T6082] WARNING: fs/exec.c:118 at path_noexec+0x1cf/0x230, CPU#2: syz.0.17/6082
[   93.131382][ T6082] Modules linked in:
[   93.134067][   T40] audit: type=1400 audit(1775542808.397:122): avc:  denied  { ioctl } for  pid=6082 comm="syz.0.17" path="/dev/udmabuf" dev="devtmpfs" ino=713 ioctlcmd=0x7542 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   93.141516][ T6082] CPU: 2 UID: 0 PID: 6082 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   93.161862][ T6082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   93.165278][ T6082] RIP: 0010:path_noexec+0x1cf/0x230
[   93.167157][ T6082] Code: 58 31 ff 83 e3 02 48 89 de 48 d1 eb e8 fa d2 7d ff 83 e3 01 e8 12 d8 7d ff 89 d8 5b 5d 41 5c e9 87 5c 09 09 e8 02 d8 7d ff 90 <0f> 0b 90 e9 46 ff ff ff e8 04 68 ea ff e9 a3 fe ff ff e8 fa 67 ea
[   93.173712][ T6082] RSP: 0018:ffffc90005857bd8 EFLAGS: 00010293
[   93.175785][ T6082] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff828b1ea4
[   93.178510][ T6082] RDX: ffff88801bf68000 RSI: ffffffff828b1f5e RDI: ffff88801bf68000
[   93.181223][ T6082] RBP: ffff8880224a51a0 R08: 0000000000000007 R09: 0000000000000000
[   93.184017][ T6082] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000080000
[   93.186693][ T6082] R13: 0000000000000001 R14: ffff8880131fe3c8 R15: 0000000000000000
[   93.189823][ T6082] FS:  0000555586e7b500(0000) GS:ffff8880d6539000(0000) knlGS:0000000000000000
[   93.193947][ T6082] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   93.196067][ T6082] CR2: 0000001b2e363fff CR3: 0000000057aa6000 CR4: 0000000000352ef0
[   93.198842][ T6082] Call Trace:
[   93.199963][ T6082]  <TASK>
[   93.200922][ T6082]  do_mmap+0x857/0x12f0
[   93.202563][ T6082]  ? __pfx_do_mmap+0x10/0x10
[   93.204283][ T6082]  ? __pfx_down_write_killable+0x10/0x10
[   93.206278][ T6082]  vm_mmap_pgoff+0x29e/0x470
[   93.207920][ T6082]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   93.209746][ T6082]  ? __fget_files+0x215/0x3d0
[   93.211279][ T6082]  ? __fget_files+0x21f/0x3d0
[   93.212780][ T6082]  ksys_mmap_pgoff+0x3c8/0x650
[   93.214414][ T6082]  ? __x64_sys_futex+0x34f/0x4d0
[   93.216309][ T6082]  ? __x64_sys_futex+0x358/0x4d0
[   93.218109][ T6082]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[   93.220278][ T6082]  ? __pfx___x64_sys_futex+0x10/0x10
[   93.223060][ T6082]  ? selinux_file_ioctl+0xb4/0x290
[   93.225459][ T6082]  __x64_sys_mmap+0x125/0x190
[   93.227094][ T6082]  do_syscall_64+0x106/0xf80
[   93.228587][ T6082]  ? clear_bhb_loop+0x40/0x90
[   93.230105][ T6082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.231975][ T6082] RIP: 0033:0x7f668e99c819
[   93.233505][ T6082] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   93.240326][ T6082] RSP: 002b:00007ffe1775a928 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   93.243526][ T6082] RAX: ffffffffffffffda RBX: 00007f668ec15fa0 RCX: 00007f668e99c819
[   93.246312][ T6082] RDX: 0000000003000007 RSI: 0000000000003000 RDI: 0000200000000000
[   93.248786][ T6082] RBP: 00007f668ea32c91 R08: 0000000000000005 R09: 0000000000000000
[   93.251301][ T6082] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[   93.254142][ T6082] R13: 00007f668ec15fac R14: 00007f668ec15fa0 R15: 00007f668ec15fa0
[   93.256898][ T6082]  </TASK>
[   93.258245][ T6082] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   93.260907][ T6082] CPU: 2 UID: 0 PID: 6082 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   93.264042][ T6082] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2 04/01/2014
[   93.267318][ T6082] Call Trace:
[   93.268439][ T6082]  <TASK>
[   93.269485][ T6082]  dump_stack_lvl+0x100/0x190
[   93.271173][ T6082]  vpanic+0x552/0x970
[   93.272640][ T6082]  ? __pfx_vpanic+0x10/0x10
[   93.274218][ T6082]  panic+0xd1/0xe0
[   93.275449][ T6082]  ? __pfx_panic+0x10/0x10
[   93.276877][ T6082]  ? check_panic_on_warn+0x1f/0x90
[   93.278649][ T6082]  check_panic_on_warn.cold+0x19/0x34
[   93.280550][ T6082]  ? path_noexec+0x1cf/0x230
[   93.282371][ T6082]  __warn.cold+0x191/0x348
[   93.283967][ T6082]  __report_bug+0x296/0x3d0
[   93.285587][ T6082]  ? path_noexec+0x1cf/0x230
[   93.287165][ T6082]  ? __pfx___report_bug+0x10/0x10
[   93.288804][ T6082]  ? arch_get_unmapped_area_topdown+0x559/0xa50
[   93.290855][ T6082]  ? avc_has_perm_noaudit+0x11e/0x3b0
[   93.292744][ T6082]  ? path_noexec+0x1cf/0x230
[   93.294297][ T6082]  report_bug+0xb2/0x220
[   93.295764][ T6082]  ? path_noexec+0x1cf/0x230
[   93.297350][ T6082]  handle_bug+0x16a/0x2a0
[   93.298857][ T6082]  exc_invalid_op+0x17/0x50
[   93.300403][ T6082]  asm_exc_invalid_op+0x1a/0x20
[   93.301950][ T6082] RIP: 0010:path_noexec+0x1cf/0x230
[   93.303635][ T6082] Code: 58 31 ff 83 e3 02 48 89 de 48 d1 eb e8 fa d2 7d ff 83 e3 01 e8 12 d8 7d ff 89 d8 5b 5d 41 5c e9 87 5c 09 09 e8 02 d8 7d ff 90 <0f> 0b 90 e9 46 ff ff ff e8 04 68 ea ff e9 a3 fe ff ff e8 fa 67 ea
[   93.310028][ T6082] RSP: 0018:ffffc90005857bd8 EFLAGS: 00010293
[   93.312096][ T6082] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffffffff828b1ea4
[   93.314831][ T6082] RDX: ffff88801bf68000 RSI: ffffffff828b1f5e RDI: ffff88801bf68000
[   93.317487][ T6082] RBP: ffff8880224a51a0 R08: 0000000000000007 R09: 0000000000000000
[   93.320342][ T6082] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000080000
[   93.323049][ T6082] R13: 0000000000000001 R14: ffff8880131fe3c8 R15: 0000000000000000
[   93.325898][ T6082]  ? path_noexec+0x114/0x230
[   93.327478][ T6082]  ? path_noexec+0x1ce/0x230
[   93.328973][ T6082]  ? path_noexec+0x1ce/0x230
[   93.330498][ T6082]  do_mmap+0x857/0x12f0
[   93.331826][ T6082]  ? __pfx_do_mmap+0x10/0x10
[   93.333371][ T6082]  ? __pfx_down_write_killable+0x10/0x10
[   93.335482][ T6082]  vm_mmap_pgoff+0x29e/0x470
[   93.337141][ T6082]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[   93.338771][ T6082]  ? __fget_files+0x215/0x3d0
[   93.340288][ T6082]  ? __fget_files+0x21f/0x3d0
[   93.341901][ T6082]  ksys_mmap_pgoff+0x3c8/0x650
[   93.343510][ T6082]  ? __x64_sys_futex+0x34f/0x4d0
[   93.345216][ T6082]  ? __x64_sys_futex+0x358/0x4d0
[   93.347001][ T6082]  ? __pfx_ksys_mmap_pgoff+0x10/0x10
[   93.348775][ T6082]  ? __pfx___x64_sys_futex+0x10/0x10
[   93.350496][ T6082]  ? selinux_file_ioctl+0xb4/0x290
[   93.352126][ T6082]  __x64_sys_mmap+0x125/0x190
[   93.353614][ T6082]  do_syscall_64+0x106/0xf80
[   93.355162][ T6082]  ? clear_bhb_loop+0x40/0x90
[   93.356771][ T6082]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   93.358989][ T6082] RIP: 0033:0x7f668e99c819
[   93.360779][ T6082] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   93.367050][ T6082] RSP: 002b:00007ffe1775a928 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[   93.369692][ T6082] RAX: ffffffffffffffda RBX: 00007f668ec15fa0 RCX: 00007f668e99c819
[   93.372184][ T6082] RDX: 0000000003000007 RSI: 0000000000003000 RDI: 0000200000000000
[   93.374706][ T6082] RBP: 00007f668ea32c91 R08: 0000000000000005 R09: 0000000000000000
[   93.377517][ T6082] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[   93.380339][ T6082] R13: 00007f668ec15fac R14: 00007f668ec15fa0 R15: 00007f668ec15fa0
[   93.382784][ T6082]  </TASK>
[   93.384597][ T6082] Kernel Offset: disabled
[   93.386029][ T6082] Rebooting in 86400 seconds..