last executing test programs: 1h5m25.960406311s ago: executing program 1 (id=2): mmap(&(0x7efffffff000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0x1000000)=nil, 0x1000000, 0x7, 0x32, 0xffffffffffffffff, 0x0) mmap(&(0x7f0001000000/0x1000)=nil, 0x1000, 0x0, 0x32, 0xffffffffffffffff, 0x0) 1m46.74394069s ago: executing program 2 (id=426): r0 = mmap$KVM_VCPU(&(0x7f0000007000/0x1000)=nil, 0x930, 0x1000002, 0x28031, 0xffffffffffffffff, 0x0) r1 = mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000003, 0x28031, 0xffffffffffffffff, 0x0) syz_kvm_add_vcpu(0x0, &(0x7f0000000000)={0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], 0x14c}, 0x0, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r1, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) syz_memcpy_off$KVM_EXIT_HYPERCALL(r0, 0x20, &(0x7f0000000240)="fb4149dd033be3ac2cc4a22332fdaa8de0418df24200000000a6ab8031d1dfd92f0000000001ffffffff9610fbff77521ce10d8f6b69d22627e700", 0x0, 0xffffffffffffffca) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8}) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f00000001c0)=ANY=[@ANYBLOB="01000000010000000000000008"]) ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1}) write$eventfd(r4, &(0x7f00000001c0)=0xffffff7f, 0xff25) 1m40.026761733s ago: executing program 0 (id=427): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000200)="fb014401ac2cc4a2c0a6000000faff00bfff02000000ffffff00000d00e6ffea000000002000", 0x0, 0xffffffffffffff98) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000040)=@x86={0x2e, 0x9, 0x2, 0x0, 0x2, 0x9e, 0x5, 0x0, 0x4, 0xc, 0x8, 0xf8, 0x0, 0x0, 0x9e, 0x1, 0x0, 0x1, 0x1, '\x00', 0xf, 0x200}) 1m19.580971739s ago: executing program 2 (id=428): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) ioctl$KVM_SET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee1, &(0x7f0000000240)=@attr_arm64={0x0, 0x0, 0x0, &(0x7f0000000080)}) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000200)="fb014401ac2cc4a2c0a6000000faff00bfffffffffffffffffffde00000000faffffff00000d00e6ffea000000002000", 0x0, 0xfffffffffffffe78) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000040)=@x86={0x2b, 0x9, 0x2, 0x0, 0x2, 0x9e, 0x5, 0x0, 0x4, 0xc, 0x8, 0xf8, 0x0, 0x0, 0x9e, 0x1, 0x0, 0x1, 0x1, '\x00', 0xf, 0x200}) 1m14.670960218s ago: executing program 0 (id=429): openat$kvm(0x0, 0x0, 0x0, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) eventfd2(0x38, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x6, 0x4f832, 0xffffffffffffffff, 0x0) r2 = syz_kvm_vgic_v3_setup(r1, 0x4, 0x100) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x1) ioctl$KVM_GET_DEVICE_ATTR(0xffffffffffffffff, 0x4018aee2, 0x0) ioctl$KVM_GET_DEVICE_ATTR(r2, 0x4018aee2, &(0x7f00000000c0)=@attr_other={0x0, 0x1, 0xc, &(0x7f0000000080)=0x101}) 1m1.748786092s ago: executing program 0 (id=430): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$arm64(r1, r2, &(0x7f0000e8a000/0x18000)=nil, &(0x7f0000000080)=[{0x0, 0x0, 0x18}], 0x1, 0x0, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x1, 0x100) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_IRQ_LINE(r1, 0x4008ae61, 0x0) ioctl$KVM_SET_ONE_REG(r2, 0x4010aeac, &(0x7f00000000c0)=@arm64_extra={0x603000000013c035, &(0x7f0000000000)=0x5}) 58.053291434s ago: executing program 2 (id=431): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r4, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000200)="fb014401ac2cc4a2c0a6000000faff00bfffffffffffffffffffde00000000faffffff00000d00e6ffea000000002000", 0x0, 0xfffffffffffffe78) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000040)=@x86={0x2e, 0x9, 0x2, 0x0, 0x2, 0x9e, 0x5, 0x0, 0x4, 0xc, 0x8, 0xf8, 0x0, 0x0, 0x9e, 0x1, 0x0, 0x1, 0x1, '\x00', 0xf, 0x200}) 35.399746543s ago: executing program 0 (id=432): munmap(&(0x7f0000f2a000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f0000e76000/0x12000)=nil, 0x12000) munmap(&(0x7f0000647000/0x1000)=nil, 0x1000) munmap(&(0x7f0000fde000/0x4000)=nil, 0x4000) mmap$KVM_VCPU(&(0x7f0000eb3000/0x1000)=nil, 0x930, 0x0, 0x20031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ece000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x43033, 0xffffffffffffffff, 0x0) 31.830782431s ago: executing program 2 (id=433): openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) mmap$KVM_VCPU(&(0x7f0000daf000/0x3000)=nil, 0x930, 0x3000007, 0x8a031, 0xffffffffffffffff, 0x0) munmap(&(0x7f0000ffb000/0x2000)=nil, 0x2000) munmap(&(0x7f000075a000/0xb000)=nil, 0xb000) munmap(&(0x7f0000c8f000/0x4000)=nil, 0x4000) munmap(&(0x7f0000d83000/0x4000)=nil, 0x4000) munmap(&(0x7f0000482000/0x2000)=nil, 0x2000) munmap(&(0x7f00004ff000/0x1000)=nil, 0x1000) munmap(&(0x7f0000d47000/0x2000)=nil, 0x2000) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f832, 0xffffffffffffffff, 0x0) 21.242494724s ago: executing program 0 (id=434): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000000000/0x14000)=nil, 0x930, 0x3000000, 0x5c1fd1b656592f1, 0xffffffffffffffff, 0x0) mmap$KVM_VCPU(&(0x7f0000027000/0x13000)=nil, 0x930, 0x3, 0x4102932, 0xffffffffffffffff, 0x0) openat$kvm(0x0, &(0x7f0000000000), 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r3 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r2, 0x0) syz_memcpy_off$KVM_EXIT_HYPERCALL(r3, 0x20, &(0x7f0000000080)="fb0149dd033be3ac2cc4a29ea6abf4e7454e37c4b85400005a9610fbff67521ce16f8f1f449a7a835673312b54ebb2aa76c869d22627e700", 0x0, 0x29) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1000001, 0x11, r2, 0x0) r4 = openat$kvm(0xffffff9c, &(0x7f0000000040), 0x1a17f2, 0x0) ioctl$KVM_CREATE_VM(r4, 0x5460, 0x0) 13.471121135s ago: executing program 2 (id=435): r0 = openat$kvm(0x0, &(0x7f0000000180), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x3000000, 0x4f831, 0xffffffffffffffff, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) mmap$KVM_VCPU(&(0x7f0000c00000/0x400000)=nil, 0x930, 0x0, 0x4f831, 0xffffffffffffffff, 0x0) openat$kvm(0x0, 0x0, 0x0, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x3) ioctl$KVM_ARM_VCPU_INIT(r2, 0x4020aeae, &(0x7f0000000000)={0x5, 0x18}) ioctl$KVM_ARM_VCPU_FINALIZE(r2, 0x4004aec2, &(0x7f0000000180)=0x4) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 2.52418599s ago: executing program 0 (id=436): r0 = openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = syz_kvm_setup_syzos_vm(r1, &(0x7f0000c00000/0x400000)=nil) r3 = syz_kvm_add_vcpu(r2, &(0x7f0000000080)={0x0, &(0x7f00000000c0)=[@its_setup={0x7, 0x28, {0x2, 0x2, 0x1}}], 0x28}, 0x0, 0x0) syz_kvm_vgic_v3_setup(r1, 0x3, 0xa0) ioctl$KVM_CREATE_DEVICE(r1, 0xc00caee0, &(0x7f0000000100)={0x8, 0xffffffffffffffff}) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000000)=@attr_arm64={0x0, 0x0, 0x4, &(0x7f0000000180)=0x8080000}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f0000000300)=@attr_arm64={0x0, 0x4, 0x1, 0x0}) (async, rerun: 64) ioctl$KVM_SET_DEVICE_ATTR(r4, 0x4018aee1, &(0x7f00000000c0)=@attr_arm64={0x0, 0x4, 0x2, 0x0}) 0s ago: executing program 2 (id=437): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x100, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0), 0x40480, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) r5 = mmap$KVM_VCPU(&(0x7f0000009000/0x1000)=nil, 0x930, 0x280000f, 0x11, r4, 0x0) ioctl$KVM_SET_GSI_ROUTING(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000240)=ANY=[@ANYBLOB="01000000000000000000000000000002"]) syz_memcpy_off$KVM_EXIT_HYPERCALL(r5, 0x20, &(0x7f0000000200)="fb014401ac2cc4a2c0a6000000faff00bfffffffffffffffffffde00000000faffffff00000d00e6ffea000000002000", 0x0, 0xfffffffffffffe78) mmap$KVM_VCPU(&(0x7f0000000000/0xa000)=nil, 0x930, 0x1, 0x11, r4, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1) ioctl$KVM_SET_VCPU_EVENTS(r6, 0x4040aea0, &(0x7f0000000040)=@x86={0x2e, 0x9, 0x2, 0x0, 0x2, 0x9e, 0x5, 0x0, 0x4, 0xc, 0x8, 0xf8, 0x0, 0x0, 0x9e, 0x1, 0x0, 0x1, 0x1, '\x00', 0xf, 0x200}) kernel console output (not intermixed with test programs): [ 563.701604][ T3135] eql: remember to turn off Van-Jacobson compression on your slave devices Warning: Permanently added '[localhost]:61350' (ED25519) to the list of known hosts. [ 819.719496][ T24] audit: type=1400 audit(818.700:73): avc: denied { name_bind } for pid=3290 comm="sshd" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 821.127787][ T24] audit: type=1400 audit(820.110:74): avc: denied { execute } for pid=3292 comm="sh" name="syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 821.170852][ T24] audit: type=1400 audit(820.140:75): avc: denied { execute_no_trans } for pid=3292 comm="sh" path="/syz-executor" dev="vda" ino=1735 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 857.905099][ T24] audit: type=1400 audit(856.880:76): avc: denied { mounton } for pid=3292 comm="syz-executor" path="/syzcgroup/unified" dev="vda" ino=1737 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 857.977537][ T24] audit: type=1400 audit(856.950:77): avc: denied { mount } for pid=3292 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 858.093913][ T3292] cgroup: Unknown subsys name 'net' [ 858.181396][ T24] audit: type=1400 audit(857.160:78): avc: denied { unmount } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 858.748709][ T3292] cgroup: Unknown subsys name 'cpuset' [ 858.871502][ T3292] cgroup: Unknown subsys name 'rlimit' [ 860.345407][ T24] audit: type=1400 audit(859.320:79): avc: denied { setattr } for pid=3292 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=701 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 860.384059][ T24] audit: type=1400 audit(859.360:80): avc: denied { create } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 860.424323][ T24] audit: type=1400 audit(859.390:81): avc: denied { write } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 860.427769][ T24] audit: type=1400 audit(859.400:82): avc: denied { module_request } for pid=3292 comm="syz-executor" kmod="net-pf-16-proto-16-family-nl802154" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 861.120710][ T24] audit: type=1400 audit(860.100:83): avc: denied { read } for pid=3292 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 861.208772][ T24] audit: type=1400 audit(860.190:84): avc: denied { mounton } for pid=3292 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 861.235806][ T24] audit: type=1400 audit(860.200:85): avc: denied { mount } for pid=3292 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 862.758843][ T3296] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 863.109492][ T24] kauditd_printk_skb: 2 callbacks suppressed [ 863.109802][ T24] audit: type=1400 audit(862.080:88): avc: denied { read } for pid=3292 comm="syz-executor" name="swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 863.147017][ T24] audit: type=1400 audit(862.100:89): avc: denied { open } for pid=3292 comm="syz-executor" path="/swap-file" dev="vda" ino=1740 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 863.200425][ T3292] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 927.418418][ T24] audit: type=1400 audit(926.400:90): avc: denied { execmem } for pid=3297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 927.849385][ T24] audit: type=1400 audit(926.830:91): avc: denied { read } for pid=3299 comm="syz-executor" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 927.898922][ T24] audit: type=1400 audit(926.860:92): avc: denied { open } for pid=3299 comm="syz-executor" path="net:[4026531840]" dev="nsfs" ino=4026531840 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 928.001297][ T24] audit: type=1400 audit(926.980:93): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/" dev="vda" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 930.484270][ T24] audit: type=1400 audit(929.460:94): avc: denied { mount } for pid=3299 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 930.665208][ T24] audit: type=1400 audit(929.610:95): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/syzkaller.glo08Y/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 930.794104][ T24] audit: type=1400 audit(929.760:96): avc: denied { mount } for pid=3299 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 931.030552][ T24] audit: type=1400 audit(929.990:97): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/syzkaller.glo08Y/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 931.170762][ T24] audit: type=1400 audit(930.150:98): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/syzkaller.glo08Y/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=2880 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 931.590355][ T24] audit: type=1400 audit(930.570:99): avc: denied { unmount } for pid=3299 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 933.395574][ T24] kauditd_printk_skb: 2 callbacks suppressed [ 933.395879][ T24] audit: type=1400 audit(932.370:102): avc: denied { mounton } for pid=3299 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 933.464865][ T24] audit: type=1400 audit(932.410:103): avc: denied { mount } for pid=3299 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 934.870455][ T3299] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 937.805351][ T24] audit: type=1400 audit(936.780:104): avc: denied { read write } for pid=3299 comm="syz-executor" name="loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 937.855701][ T24] audit: type=1400 audit(936.810:105): avc: denied { open } for pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 937.964957][ T24] audit: type=1400 audit(936.860:106): avc: denied { ioctl } for pid=3299 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=637 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 943.625673][ T24] audit: type=1400 audit(942.600:107): avc: denied { create } for pid=3309 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=user_namespace permissive=1 [ 943.824546][ T24] audit: type=1400 audit(942.790:108): avc: denied { sys_admin } for pid=3309 comm="syz-executor" capability=21 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 946.581363][ T24] audit: type=1400 audit(945.560:109): avc: denied { mount } for pid=3305 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 948.419076][ T24] audit: type=1400 audit(947.400:110): avc: denied { sys_chroot } for pid=3310 comm="syz-executor" capability=18 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=cap_userns permissive=1 [ 1065.657869][ T24] audit: type=1400 audit(1064.640:111): avc: denied { sys_module } for pid=3319 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 1103.367127][ T3319] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1103.716166][ T3319] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1103.800837][ T3321] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 1104.377202][ T3321] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 1120.448640][ T3319] hsr_slave_0: entered promiscuous mode [ 1120.523323][ T3319] hsr_slave_1: entered promiscuous mode [ 1121.707184][ T3321] hsr_slave_0: entered promiscuous mode [ 1121.749315][ T3321] hsr_slave_1: entered promiscuous mode [ 1121.799111][ T3321] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 1121.815132][ T3321] Cannot create hsr debugfs directory [ 1129.368456][ T3319] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 1129.941587][ T3319] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 1130.227675][ T3319] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 1130.639037][ T3319] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 1133.540005][ T3321] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 1133.820367][ T3321] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 1134.049178][ T3321] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 1134.339008][ T3321] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 1162.230537][ T3319] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1165.680811][ T3321] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1260.718062][ T3319] veth0_vlan: entered promiscuous mode [ 1261.936454][ T3319] veth1_vlan: entered promiscuous mode [ 1265.259532][ T3321] veth0_vlan: entered promiscuous mode [ 1267.159150][ T3319] veth0_macvtap: entered promiscuous mode [ 1267.437010][ T3321] veth1_vlan: entered promiscuous mode [ 1268.415913][ T3319] veth1_macvtap: entered promiscuous mode [ 1272.985281][ T3319] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1272.989715][ T3319] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.044291][ T3319] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.046510][ T3319] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1273.506964][ T3321] veth0_macvtap: entered promiscuous mode [ 1274.651399][ T3321] veth1_macvtap: entered promiscuous mode [ 1280.077003][ T3321] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 1280.079317][ T3321] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 1280.081425][ T3321] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 1280.189029][ T3321] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 1294.343863][ T24] audit: type=1400 audit(1293.260:112): avc: denied { execute } for pid=3467 comm="syz.0.5" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=3895 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1 [ 1315.561029][ T24] audit: type=1400 audit(1314.540:113): avc: denied { read } for pid=3476 comm="syz.0.9" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1315.651645][ T24] audit: type=1400 audit(1314.590:114): avc: denied { open } for pid=3476 comm="syz.0.9" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1316.194698][ T24] audit: type=1400 audit(1315.170:115): avc: denied { ioctl } for pid=3476 comm="syz.0.9" path="/dev/kvm" dev="devtmpfs" ino=84 ioctlcmd=0xae03 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1403.795465][ T24] audit: type=1400 audit(1402.750:116): avc: denied { setattr } for pid=3510 comm="syz.2.24" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1505.134551][ T24] audit: type=1400 audit(1504.090:117): avc: denied { write } for pid=3552 comm="syz.2.40" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 1718.307472][ T24] audit: type=1400 audit(1717.240:118): avc: denied { append } for pid=3631 comm="syz.2.76" name="kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 2677.799013][ T24] audit: type=1400 audit(2676.760:119): avc: denied { map } for pid=4024 comm="syz.2.196" path="/dev/kvm" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 3527.475166][ T24] audit: type=1400 audit(3526.450:120): avc: denied { map } for pid=4362 comm="syz.0.297" path="pipe:[3000]" dev="pipefs" ino=3000 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=fifo_file permissive=1 [ 3861.738602][ T4501] kvm [4501]: Failed to find VMA for hva 0x21016000 [ 4043.768732][ T4577] kvm [4576]: Unsupported guest access at: eeef0000 [ 4043.768732][ T4577] { Op0( 2), Op1( 4), CRn(11), CRm(14), Op2( 0), func_read }, [ 4197.829024][ T4640] kvm [4640]: Failed to find VMA for hva 0x21016000 [ 4270.686889][ T24] audit: type=1400 audit(4269.650:121): avc: denied { ioctl } for pid=4668 comm="syz.2.378" path="net:[4026531840]" dev="nsfs" ino=4026531840 ioctlcmd=0x54c9 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 4811.825147][ T4905] kvm [4905]: Failed to find VMA for hva 0x21016000 [ 4866.416552][ T4926] Unable to handle kernel paging request at virtual address efff800000000001 [ 4866.566235][ T4926] KASAN: null-ptr-deref in range [0x0000000000000010-0x000000000000001f] [ 4866.568504][ T4926] Mem abort info: [ 4866.569984][ T4926] ESR = 0x0000000096000005 [ 4866.571440][ T4926] EC = 0x25: DABT (current EL), IL = 32 bits [ 4866.761542][ T4926] SET = 0, FnV = 0 [ 4866.823415][ T4926] EA = 0, S1PTW = 0 [ 4866.825085][ T4926] FSC = 0x05: level 1 translation fault [ 4866.826819][ T4926] Data abort info: [ 4866.828283][ T4926] ISV = 0, ISS = 0x00000005, ISS2 = 0x00000000 [ 4866.830058][ T4926] CM = 0, WnR = 0, TnD = 0, TagAccess = 0 [ 4866.831616][ T4926] GCS = 0, Overlay = 0, DirtyBit = 0, Xs = 0 [ 4867.097015][ T4926] swapper pgtable: 4k pages, 52-bit VAs, pgdp=0000000044c6b000 [ 4867.099232][ T4926] [efff800000000001] pgd=1000000049be5003, p4d=1000000049be6003, pud=0000000000000000 [ 4867.359080][ T4926] Internal error: Oops: 0000000096000005 [#1] PREEMPT SMP [ 4867.361183][ T4926] Modules linked in: [ 4867.363204][ T4926] CPU: 0 UID: 0 PID: 4926 Comm: syz.0.436 Not tainted 6.14.0-rc2-syzkaller-g29281a76709c #0 [ 4867.365414][ T4926] Hardware name: linux,dummy-virt (DT) [ 4867.367088][ T4926] pstate: 61402009 (nZCv daif +PAN -UAO -TCO +DIT -SSBS BTYPE=--) [ 4867.368951][ T4926] pc : __hwasan_check_x0_67043362+0x4/0x30 [ 4867.371490][ T4926] lr : vgic_its_save_tables_v0+0x25c/0x7e0 [ 4867.373034][ T4926] sp : ffff80008baa7bc0 [ 4867.374139][ T4926] x29: ffff80008baa7c30 x28: a8f0000011ad0000 x27: 0000000000000000 [ 4867.376502][ T4926] x26: 0000000000000000 x25: 57f000001a21b700 x24: 0000000000000000 [ 4867.378627][ T4926] x23: 26f00000196cc180 x22: 0000000000000000 x21: d4f000001a21b750 [ 4867.380801][ T4926] x20: d4f000001a21b750 x19: efff800000000000 x18: 0000000000000004 [ 4867.382901][ T4926] x17: 0000000000000000 x16: 0000000000000001 x15: 0000000000000000 [ 4867.385045][ T4926] x14: 00000000000206b6 x13: ffff800083bf0958 x12: 0000000000000028 [ 4867.387137][ T4926] x11: 0000000000000000 x10: 0000000000002000 x9 : efff800000000000 [ 4867.389411][ T4926] x8 : 0000000020000000 x7 : ffff800080117c44 x6 : 0000000000000000 [ 4867.391591][ T4926] x5 : 0000000000000000 x4 : a8f0000011ad0b40 x3 : 99ff80008b82e3d0 [ 4867.393646][ T4926] x2 : ffff800080117cc0 x1 : 0000000000000001 x0 : 0000000000000010 [ 4867.395983][ T4926] Call trace: [ 4867.397143][ T4926] __hwasan_check_x0_67043362+0x4/0x30 (P) [ 4867.399127][ T4926] vgic_its_set_attr+0x394/0x554 [ 4867.400795][ T4926] kvm_device_ioctl_attr+0x16c/0x1d8 [ 4867.402148][ T4926] kvm_device_ioctl+0x154/0x1b0 [ 4867.403617][ T4926] __arm64_sys_ioctl+0x108/0x188 [ 4867.404996][ T4926] invoke_syscall+0x78/0x1b8 [ 4867.406289][ T4926] el0_svc_common+0xe8/0x1b0 [ 4867.407664][ T4926] do_el0_svc+0x40/0x50 [ 4867.408940][ T4926] el0_svc+0x54/0x14c [ 4867.410236][ T4926] el0t_64_sync_handler+0x84/0x108 [ 4867.411747][ T4926] el0t_64_sync+0x198/0x19c [ 4867.413714][ T4926] Code: a90efbfd d2800401 143bbfb5 9344dc10 (38706930) [ 4867.416017][ T4926] ---[ end trace 0000000000000000 ]--- [ 4867.418069][ T4926] Kernel panic - not syncing: Oops: Fatal exception [ 4867.420900][ T4926] Kernel Offset: disabled [ 4867.422057][ T4926] CPU features: 0x000,000000d0,00bef2f8,837ffe1f [ 4867.423581][ T4926] Memory Limit: none [ 4867.425272][ T4926] Rebooting in 86400 seconds.. VM DIAGNOSIS: 12:18:45 Registers: info registers vcpu 0 CPU#0 PC=ffff800080264f68 X00=fff0000072ffe500 X01=ffff800084642bd1 X02=a8f0000011ad0a88 X03=a8f0000011ad0a88 X04=a8f0000011ad0b90 X05=0000000000000001 X06=0000000000000000 X07=ffff80008031c5a8 X08=00000000000000c0 X09=efff800000000000 X10=0000000000ff0100 X11=ffff8000855289b0 X12=00000000cf4f4cfa X13=0000000000000028 X14=a8f0000011ad0b58 X15=a8f0000011ad0a90 X16=00000000000000ff X17=0000000000000000 X18=0000000000000002 X19=efff800000000000 X20=a8f0000011ad0008 X21=0000000000000000 X22=ffff80008031c5a8 X23=fff0000073001f98 X24=0000000000000000 X25=0000000000000001 X26=0000000000000000 X27=ffff800084c65500 X28=00000000000000c0 X29=ffff800080007d20 X30=ffff800080264f50 SP=ffff800080007cc0 PSTATE=604020c9 -ZC- EL2h SVCR=00000000 -- BTYPE=0 FPCR=00000000 FPSR=00000000 P00=0000 P01=0000 P02=0000 P03=0000 P04=0000 P05=0000 P06=0000 P07=0000 P08=0000 P09=0000 P10=0000 P11=0000 P12=0000 P13=0000 P14=0000 P15=0000 FFR=0000 Z00=0000000000000000:0000000000000000 Z01=0000ffffe8319b00:922703aaa2ce1f00 Z02=0000ffffe8319ae0:ffffff80ffffffd8 Z03=0000ffffe8319b90:0000ffffe8319b90 Z04=0000ffffe8319b90:0000ffff865362c8 Z05=0000ffffe8319b60:0000ffffe8319b90 Z06=6edc4d3a2914b135:d8e9c869e2695c88 Z07=b20fae707afde253:388e9c6c4fa85ca0 Z08=0000000000000000:0000000000000000 Z09=0000000000000000:0000000000000000 Z10=0000000000000000:0000000000000000 Z11=0000000000000000:0000000000000000 Z12=0000000000000000:0000000000000000 Z13=0000000000000000:0000000000000000 Z14=0000000000000000:0000000000000000 Z15=0000000000000000:0000000000000000 Z16=0000ffffe8319db0:0000ffffe8319db0 Z17=ffffff80ffffffd0:0000ffffe8319d80 Z18=0000000000000000:0000000000000000 Z19=0000000000000000:0000000000000000 Z20=0000000000000000:0000000000000000 Z21=0000000000000000:0000000000000000 Z22=0000000000000000:0000000000000000 Z23=0000000000000000:0000000000000000 Z24=0000000000000000:0000000000000000 Z25=0000000000000000:0000000000000000 Z26=0000000000000000:0000000000000000 Z27=0000000000000000:0000000000000000 Z28=0000000000000000:0000000000000000 Z29=0000000000000000:0000000000000000 Z30=0000000000000000:0000000000000000 Z31=0000000000000000:0000000000000000