last executing test programs: 1.529323532s ago: executing program 2 (id=1944): setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, &(0x7f0000003d40), 0x4) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) io_uring_setup(0x0, 0x0) io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x2, 0x0, 0x0) setsockopt$inet_mreq(r0, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x36, &(0x7f0000000180)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x23, 0x28, 0x0, 0x20, 0xfd, 0x2, 0x0, @empty, @multicast1=0xe0000300}, @timestamp_reply={0xe, 0x0, 0x0, 0x3, 0x6, 0x2, 0xd, 0x1}}}}}, 0x0) 1.528813192s ago: executing program 0 (id=1945): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, 0x0, 0xc000) r1 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb4, 0x13, 0x2, 0x0, 0x25dfdbfb, {{@in6=@private0, @in6=@empty, 0x0, 0x4, 0x0, 0x0, 0xa, 0x60, 0x80, 0x3b, 0x0, 0xee01}, {0x0, 0x4, 0x0, 0x0, 0x1, 0xfffffffffffffffd}, {0xfffffffffffffffe}, 0x9, 0x0, 0x0, 0x1, 0x2}}, 0xb4}, 0x1, 0x0, 0x0, 0x90}, 0x50) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000480)={0x0, 0x0, 0x0}, 0x0) sendmsg$inet6(0xffffffffffffffff, 0x0, 0x46830) r2 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0) sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x4048010) sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc0000000000000001"], 0xb8}}, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[@ANYRESDEC], 0x0, 0x0, 0x0, 0x0, 0x0, 0x71, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r3 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=ANY=[], 0x134}}, 0x0) socket$inet_sctp(0x2, 0x1, 0x84) r4 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r4, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x0, {{@in6=@private0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa, 0x40, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0xaa3, 0xfffffffffffffff8}, {0x0, 0x8}}}, 0xb8}}, 0x0) 1.460152536s ago: executing program 0 (id=1946): r0 = socket$netlink(0x10, 0x3, 0x0) socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) getpeername$packet(r1, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000040)=0x14) openat$ptmx(0xffffffffffffff9c, 0x0, 0x441, 0x0) syz_emit_vhci(&(0x7f0000001680)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_complete={{0xe, 0x5}, @hci_rp_le_read_resolv_list_size={{0x7}, {0x0, 0x5}}}}, 0x8) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r5 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000140), r5) sendmsg$NLBL_MGMT_C_ADDDEF(r5, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r6, @ANYBLOB="0100000300000000000004000000080002000500000006000b000a"], 0x24}}, 0x0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r4}, 0x10) r7 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="6000000002060500000000000000000000000000140007800800064020000000080013400000000005000100060000000900020073797a32000000000500040000000000050005000a00000011000300686173683a6970"], 0x60}}, 0x0) mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) sendmsg$NFT_BATCH(r7, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='mem_disconnect\x00', r8}, 0x10) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f00000004c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000004100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r9, 0x0, 0xe, 0x0, &(0x7f00000003c0)="131c8701feaa16bca4ac74ab821d", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x9}, 0x50) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace$setregs(0xf, 0x0, 0x1, &(0x7f0000001540)) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000001c0)=@newlink={0x50, 0x10, 0x503, 0xfffffffc, 0x0, {0x0, 0x0, 0x0, 0x0, 0x21111, 0x8a33}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @macsec={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_MACSEC_CIPHER_SUITE={0xc, 0x4, 0x80c20001000004}, @IFLA_MACSEC_WINDOW={0x8, 0x5, 0x3}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x50}, 0x1, 0x0, 0x0, 0x48890}, 0x0) 1.459819995s ago: executing program 2 (id=1947): openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = socket(0x400000000010, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) 1.407396296s ago: executing program 0 (id=1949): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2}) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r1) r2 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r3 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000340)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x3, 0x6361, 0x7, 0xffffffff, 0x3}}}}]}, 0x4c}}, 0x0) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000009c0)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@newqdisc={0x3c, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r6, {0x0, 0xd}, {0x6, 0xb}, {0xa, 0xb}}, [@qdisc_kind_options=@q_cake={{0x9}, {0xc, 0x2, [@TCA_CAKE_TARGET={0x8}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x2001c061}, 0x4008000) r7 = socket$packet(0x11, 0x2, 0x300) sendto$packet(r7, 0x0, 0x0, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r4, 0x1, 0xda, 0x6, @broadcast}, 0x14) 1.288181904s ago: executing program 2 (id=1950): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x6, 0x6, 0x3, 0x4, 0x20000000006, 0x8, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bc, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xb, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8080000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 1.287865647s ago: executing program 0 (id=1951): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x20000, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r0, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r1, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8080000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 1.248363577s ago: executing program 0 (id=1952): syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000000)={0x0, &(0x7f0000000100)=[@code={0xa, 0x63, {"400f01784f440f20c03501000000440f22c0420f01c9f3470f01bbf9000000f00fbb7d88672b3666baf80cb85c5a6c8eef66bafc0cb8412ee608ef460f07b9800000c00f3235001000000f3064450f005006"}}, @wrmsr={0x1e, 0x20, {0x27d, 0xfffffffffffffff8}}], 0x83}) r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000040)={{0x77359400}, {0x0, 0x989680}}, 0x0) timerfd_gettime(r0, &(0x7f0000000180)) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0}, 0x94) ioctl$PTP_PEROUT_REQUEST(0xffffffffffffffff, 0x40383d03, &(0x7f0000000240)={{0x81, 0x584}, {0x4, 0x4062}, 0x1, 0x4}) bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = socket$kcm(0x2d, 0x2, 0x0) ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x89e2, &(0x7f0000000340)={r1}) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94) r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000400)='netfs_rreq_ref\x00', r2, 0x0, 0x9}, 0x18) r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000640)={&(0x7f0000000600)='mctp_key_release\x00', r2, 0x0, 0x5}, 0x18) close(r4) r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18080000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r6 = gettid() syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x8, 0x0, 0xf48, 0x4}}}}}}, 0x0) syz_emit_ethernet(0x5e, &(0x7f0000001340)={@broadcast, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_redir={0x89, 0x0, 0x0, '\x00', @remote, @private1}}}}}}, 0x0) syz_emit_ethernet(0x46, &(0x7f0000000780)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "00cd04", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x5a}}}}}}, 0x0) rt_sigqueueinfo(r6, 0x5, &(0x7f0000000180)={0xf, 0x2, 0x5}) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff1000/0x2000)=nil, &(0x7f0000ff5000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68) capset(&(0x7f00000001c0)={0x19980330}, &(0x7f0000000080)={0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x5}) io_uring_setup(0x37cc, &(0x7f0000000040)={0x0, 0x2a11, 0x1c080, 0xa, 0x20002f7}) sendmsg$kcm(r4, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000580)="d8001c00180081064e81f782db44fd56170d12a0b9b545c7", 0x18}], 0x1}, 0x0) ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x89e3, &(0x7f0000000180)={r1, r5}) r7 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000380)=ANY=[@ANYBLOB="1801000000000000000000004b64ffec850000006d000000670000000501000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94) r8 = ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r8, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_CREATE_VCPU(r8, 0xae41, 0x0) 1.150966314s ago: executing program 2 (id=1954): r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1c1842, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, 0x0) r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) close(r1) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)) ioctl$SIOCSIFHWADDR(r1, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'}) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$unix(0x1, 0x2, 0x0) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd26, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x8, 0x4}}]}}]}, 0x48}}, 0x20040084) r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0) close(r5) socket$nl_generic(0x10, 0x3, 0x10) ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast}) r6 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) r8 = socket$packet(0x11, 0x3, 0x300) sendto$packet(r8, &(0x7f00000005c0)="ba", 0x1, 0x40, &(0x7f00000001c0)={0x11, 0x8100, r7, 0x1, 0xd8, 0x6, @multicast}, 0x14) 1.080143098s ago: executing program 0 (id=1956): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000002c0), 0x80, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0xf) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TCFLSH(r0, 0x400455c8, 0x0) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x5) ioctl$TIOCSTI(r0, 0x5412, 0x0) mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000140)=0x3) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000400)=0x7) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000200)=0xa) 939.101515ms ago: executing program 2 (id=1965): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0xc, 0xe, &(0x7f0000001700)=ANY=[@ANYBLOB="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"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000001c0), 0xfffffedf, 0x10, &(0x7f0000000040), 0x0, 0x0, 0xffffffffffffffff, 0xd}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000140)={r1, 0x0, 0x10, 0x0, &(0x7f0000002580)="f0b9547ee7affa9daabd309a75d387db", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50) sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@newlink={0x44, 0x10, 0x40d, 0x70bd2a, 0x0, {0x0, 0x0, 0x0, 0x0, 0x12214}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_MODE={0x5, 0x1, 0x6}, @IFLA_BOND_ARP_INTERVAL={0x8}]}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x400c0}, 0x0) 830.107858ms ago: executing program 3 (id=1968): r0 = socket$inet6(0xa, 0x80002, 0x88) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0) syz_emit_ethernet(0x83, 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000200)={0xa0000004}) 753.420291ms ago: executing program 3 (id=1969): openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = socket(0x400000000010, 0x3, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x2c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket$unix(0x1, 0x1, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', 0x0}) sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f00000008c0)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x2, 0x1}}}, 0x24}, 0x1, 0x0, 0x0, 0x400dc}, 0x0) 753.15333ms ago: executing program 1 (id=1970): madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe) r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000080)={0x19, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f00000000c0)={0x28, 0x7, r1, 0x0, &(0x7f0000ff9000/0x3000)=nil, 0x3000}) ioctl$IOMMU_TEST_OP_CREATE_ACCESS(r0, 0x3ba0, &(0x7f00000001c0)={0x48, 0x5, r1, 0x0, 0xffffffffffffffff, 0x1}) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_COPY(r0, 0x3b83, &(0x7f0000000100)={0x28, 0x0, r1, r3, 0x6, 0xfffffffffffffff9, 0x6}) ioctl$IOMMU_TEST_OP_ACCESS_PAGES(r0, 0x3ba0, &(0x7f0000000240)={0x48, 0x7, r2, 0x0, 0x0, 0x0, 0x0, 0x3, 0x20ffa000}) 752.91381ms ago: executing program 2 (id=1971): mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1cc) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7) r0 = getpid() sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6) r3 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={0x14, 0x0, 0x301, 0x70bd26, 0x25dfdbfc, {0x24}}, 0x14}}, 0x0) ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000440)=[0x0], 0x0, 0x0, 0x0, 0x1}) ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)=[0x0], &(0x7f0000000540), 0x0, 0x1, 0x0, 0x0, r4}) ioctl$DRM_IOCTL_MODE_SETPROPERTY(0xffffffffffffffff, 0xc01064ab, &(0x7f0000000e00)={0x1, r5, r4}) r6 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0) ioctl$DRM_IOCTL_SET_CLIENT_CAP(r6, 0x4010640d, &(0x7f0000000000)={0x3, 0x2}) ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r6, 0xc01064b5, &(0x7f0000000140)={&(0x7f0000000100)=[0x0], 0x1}) ioctl$DRM_IOCTL_MODE_GETPLANE(r6, 0xc02064b6, &(0x7f00000001c0)={r7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(r6, 0xc02064b9, &(0x7f0000000040)={&(0x7f0000000300)=[0x0, 0x0, 0x0], &(0x7f0000000040), 0x3, r8, 0xcccccccc}) 752.746251ms ago: executing program 1 (id=1972): ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x6, 0x6, 0x3, 0x4, 0x20000000006, 0x8, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bc, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xb, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8080000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 606.928104ms ago: executing program 3 (id=1973): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0) setsockopt$MRT_ADD_VIF(r0, 0x0, 0xca, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, @vifc_lcl_addr=@local, @dev}, 0x10) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r1, 0x0, 0x23, &(0x7f0000000000)={@multicast1=0xe0000300, @local}, 0x8) syz_emit_ethernet(0x3e, &(0x7f0000000040)={@local, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x20, 0xfc, 0x2, 0x0, @rand_addr=0x1c, @multicast1=0xe0000300}, @dest_unreach={0x3, 0x6, 0x0, 0x0, 0xfa, 0x9, {0x5, 0x4, 0x0, 0x3d, 0xfff6, 0x65, 0x5, 0x1, 0x1d, 0x3, @private=0xa010102, @local}}}}}}, 0x0) 606.565961ms ago: executing program 3 (id=1974): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[@ANYBLOB="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"], 0x14}}, 0x0) r1 = syz_init_net_socket$ax25(0x3, 0x5, 0x7) r2 = dup(0xffffffffffffffff) getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000600)=@generic={0x0, r2}, 0x18) setsockopt$CAN_RAW_RECV_OWN_MSGS(r2, 0x65, 0x4, &(0x7f0000000000)=0xd6, 0x4) ioctl$SIOCAX25OPTRT(r1, 0x89e7, &(0x7f0000000040)={@default, @bcast, 0x2, 0x20}) r3 = socket(0x2, 0x80805, 0x0) sendmmsg$inet(r3, &(0x7f00000001c0)=[{{&(0x7f0000000080)={0x2, 0x0, @private=0xa010100}, 0x10, &(0x7f0000000140)=[{&(0x7f00000000c0)='W', 0x1}], 0x1}, 0x20000000}, {{&(0x7f0000000180)={0x2, 0x0, @remote}, 0x10, 0x0}}], 0x2, 0x40400) 539.97191ms ago: executing program 3 (id=1975): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x0, 0x1c0, 0x3c0, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0xfffffffffffffffe, 0x4, 0x10000, 0x100, 0x1004, 0x0, 0x8, 0x5, 0x5, 0x9, 0x9, 0x5, 0x2, 0x9, 0x8, 0x7, 0xc1, 0x3, 0x2, 0x2, 0x6, 0x9, 0x96, 0xf0, 0xffffffff00000000, 0x4, 0x4, 0x7, 0x23b, 0x3, 0x2, 0x888f, 0xffffffff, 0x8, 0x6, 0x6, 0x3, 0x4, 0x20000000006, 0x8, 0x9, 0x400, 0x3, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xea, 0x200000000000101, 0x5, 0x9, 0x66, 0x6, 0x7, 0x5, 0x1, 0x47bc, 0xd, 0x6, 0xbbdc, 0x80000000, 0xfffffffffffffc00, 0x2, 0xb, 0x2, 0xcdc, 0x7, 0x2, 0x3, 0x2, 0x5, 0x2, 0x6, 0x0, 0x3403, 0xab6, 0x0, 0x4, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x5, 0x61d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x2b, 0x8, 0x2293332f, 0x4, 0x5, 0x0, 0xd, 0x2, 0x80000001, 0x981, 0x2, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x9, 0xeb4, 0x3, 0xfffffffffffffffe, 0xb692, 0xcc, 0x8, 0x3]}) r0 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8080000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 536.546098ms ago: executing program 1 (id=1976): openat$kvm(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0) r0 = openat$kvm(0xffffff9c, &(0x7f00000001c0), 0x841, 0x0) openat$kvm(0x0, &(0x7f0000000040), 0x0, 0x0) ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]}) openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x20000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8080000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) 70.452489ms ago: executing program 1 (id=1977): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x20, 0xe8}]}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='htcp', 0x4) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f00000014c0)="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", 0x221}], 0x1}}, {{0x0, 0x0, &(0x7f0000000200)=[{&(0x7f00000001c0)="1306", 0x2}], 0x1}}, {{0x0, 0x0, &(0x7f0000000400)=[{&(0x7f0000001700)="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", 0x222}], 0x1}}], 0x3, 0x0) 70.067ms ago: executing program 1 (id=1978): socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4) connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10) bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, 0x0, &(0x7f0000001600), 0x1}, 0x38) r1 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, 0xc0}, &(0x7f00000002c0)=0x0, &(0x7f0000000640)=0x0) syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4) setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2f, 0x8, 0x0, 0x4}]}, 0x10) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_MADVISE={0x19, 0x7b, 0x0, 0x0, 0x0, &(0x7f0000011000/0x4000)=nil, 0x4000, 0xc}) io_uring_enter(r1, 0x47bc, 0x20, 0x0, 0x0, 0x0) 341.493ยตs ago: executing program 3 (id=1979): r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="5c000000020601080000000000000000000000001400078008000840000000000800174000000004050005000a000000050001000700000005000400000000000900020073513d31000000000d0003006c6973743a736574"], 0x5c}}, 0x0) ioctl$KVM_CAP_SPLIT_IRQCHIP(r1, 0x4068aea3, &(0x7f00000002c0)={0x79, 0x0, 0x756}) r3 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil) r4 = syz_kvm_add_vcpu$x86(r3, &(0x7f00000000c0)={0x0, &(0x7f0000000100)=[@enable_nested={0x12c, 0x18}], 0x18}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000000000)=0x4) ioctl$KVM_SET_MP_STATE(r4, 0x4004ae99, &(0x7f0000000240)=0x2) ioctl$KVM_GET_MP_STATE(r4, 0x8004ae98, &(0x7f0000000040)) 0s ago: executing program 1 (id=1980): r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = syz_init_net_socket$ax25(0x3, 0x2, 0x0) bind$ax25(r2, &(0x7f0000000100)={{0x3, @default, 0x1}, [@null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'}) r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2) ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000)) setsockopt$ax25_SO_BINDTODEVICE(r2, 0x101, 0x19, &(0x7f0000000240)=@bpq0, 0x10) ioctl$sock_netrom_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f0000000000)={0x0, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bpq0, 0x1, 'syz1\x00', @default, 0x1, 0x0, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @null, @bcast]}) setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d) ioctl$sock_netdev_private(r0, 0x8914, &(0x7f0000000000)) kernel console output (not intermixed with test programs): Warning: Permanently added '[localhost]:45031' (ED25519) to the list of known hosts. [ 46.520162][ T40] audit: type=1400 audit(1764576824.432:62): avc: denied { name_bind } for pid=5864 comm="sshd-session" src=30000 scontext=system_u:system_r:sshd_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 46.553940][ T40] audit: type=1400 audit(1764576824.462:63): avc: denied { write } for pid=5867 comm="sh" path="pipe:[755]" dev="pipefs" ino=755 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1 [ 46.570540][ T40] audit: type=1400 audit(1764576824.482:64): avc: denied { execute } for pid=5867 comm="sh" name="syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 46.579971][ T40] audit: type=1400 audit(1764576824.482:65): avc: denied { execute_no_trans } for pid=5867 comm="sh" path="/syz-executor" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1 [ 49.360832][ T40] audit: type=1400 audit(1764576827.272:66): avc: denied { mounton } for pid=5867 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2022 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 49.372120][ T40] audit: type=1400 audit(1764576827.292:67): avc: denied { mount } for pid=5867 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 49.374939][ T5867] cgroup: Unknown subsys name 'net' [ 49.387349][ T40] audit: type=1400 audit(1764576827.302:68): avc: denied { unmount } for pid=5867 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 49.547614][ T5867] cgroup: Unknown subsys name 'cpuset' [ 49.552320][ T5867] cgroup: Unknown subsys name 'rlimit' [ 49.685587][ T40] audit: type=1400 audit(1764576827.602:69): avc: denied { setattr } for pid=5867 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 49.695064][ T40] audit: type=1400 audit(1764576827.602:70): avc: denied { create } for pid=5867 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 49.702490][ T40] audit: type=1400 audit(1764576827.602:71): avc: denied { write } for pid=5867 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 49.711295][ T40] audit: type=1400 audit(1764576827.602:72): avc: denied { read } for pid=5867 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 49.721392][ T40] audit: type=1400 audit(1764576827.612:73): avc: denied { mounton } for pid=5867 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 49.732118][ T40] audit: type=1400 audit(1764576827.612:74): avc: denied { mount } for pid=5867 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 49.741990][ T40] audit: type=1400 audit(1764576827.622:75): avc: denied { read } for pid=5642 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 49.762726][ T5914] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). Setting up swapspace version 1, size = 127995904 bytes [ 50.496025][ T5867] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 54.058624][ T5930] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 54.062497][ T5938] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 54.069138][ T5940] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 54.071783][ T5940] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 54.074322][ T5940] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 54.077797][ T5940] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 54.080157][ T5940] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 54.081979][ T5933] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 54.085343][ T5933] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 54.087995][ T5933] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 54.089187][ T5936] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 54.090137][ T5943] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 54.090933][ T5933] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 54.091115][ T5943] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 54.092071][ T5943] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 54.092443][ T5943] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 54.094051][ T5936] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 54.107362][ T5936] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 54.110065][ T5936] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 54.112782][ T5936] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 54.357122][ T5935] chnl_net:caif_netlink_parms(): no params data found [ 54.439994][ T5928] chnl_net:caif_netlink_parms(): no params data found [ 54.532901][ T5935] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.536001][ T5935] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.539144][ T5935] bridge_slave_0: entered allmulticast mode [ 54.543117][ T5935] bridge_slave_0: entered promiscuous mode [ 54.549669][ T5935] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.552723][ T5935] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.555887][ T5935] bridge_slave_1: entered allmulticast mode [ 54.559758][ T5935] bridge_slave_1: entered promiscuous mode [ 54.564451][ T5937] chnl_net:caif_netlink_parms(): no params data found [ 54.605281][ T5935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.615465][ T5935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.629245][ T5928] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.632390][ T5928] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.636097][ T5928] bridge_slave_0: entered allmulticast mode [ 54.640229][ T5928] bridge_slave_0: entered promiscuous mode [ 54.651341][ T5928] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.653725][ T5928] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.656137][ T5928] bridge_slave_1: entered allmulticast mode [ 54.658890][ T5928] bridge_slave_1: entered promiscuous mode [ 54.666948][ T5932] chnl_net:caif_netlink_parms(): no params data found [ 54.708147][ T5935] team0: Port device team_slave_0 added [ 54.721349][ T5935] team0: Port device team_slave_1 added [ 54.741893][ T5928] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.785156][ T5928] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 54.788669][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 54.791073][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.800045][ T5935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 54.804342][ T5937] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.807023][ T5937] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.809858][ T5937] bridge_slave_0: entered allmulticast mode [ 54.812665][ T5937] bridge_slave_0: entered promiscuous mode [ 54.832390][ T5935] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 54.834764][ T5935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 54.842939][ T5935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 54.847504][ T5937] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.850029][ T5937] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.852392][ T5937] bridge_slave_1: entered allmulticast mode [ 54.855224][ T5937] bridge_slave_1: entered promiscuous mode [ 54.868378][ T5928] team0: Port device team_slave_0 added [ 54.876777][ T5928] team0: Port device team_slave_1 added [ 54.901503][ T5932] bridge0: port 1(bridge_slave_0) entered blocking state [ 54.904565][ T5932] bridge0: port 1(bridge_slave_0) entered disabled state [ 54.907457][ T5932] bridge_slave_0: entered allmulticast mode [ 54.910746][ T5932] bridge_slave_0: entered promiscuous mode [ 54.915520][ T5932] bridge0: port 2(bridge_slave_1) entered blocking state [ 54.918253][ T5932] bridge0: port 2(bridge_slave_1) entered disabled state [ 54.921090][ T5932] bridge_slave_1: entered allmulticast mode [ 54.924727][ T5932] bridge_slave_1: entered promiscuous mode [ 54.939498][ T5937] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 54.980758][ T5935] hsr_slave_0: entered promiscuous mode [ 54.983060][ T5935] hsr_slave_1: entered promiscuous mode [ 54.987778][ T5937] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.003395][ T5932] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 55.006405][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.008893][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.018289][ T5928] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.030460][ T5932] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 55.033858][ T5928] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.036382][ T5928] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.045039][ T5928] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.072642][ T5937] team0: Port device team_slave_0 added [ 55.097698][ T5937] team0: Port device team_slave_1 added [ 55.123877][ T5932] team0: Port device team_slave_0 added [ 55.136797][ T5932] team0: Port device team_slave_1 added [ 55.175261][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.178275][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.189023][ T5937] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.198702][ T5928] hsr_slave_0: entered promiscuous mode [ 55.202274][ T5928] hsr_slave_1: entered promiscuous mode [ 55.205700][ T5928] debugfs: 'hsr0' already exists in 'hsr' [ 55.208233][ T5928] Cannot create hsr debugfs directory [ 55.229318][ T5937] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.232354][ T5937] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.243828][ T5937] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.250220][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 55.253019][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.261803][ T5932] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 55.266964][ T5932] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 55.269347][ T5932] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 55.277992][ T5932] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 55.440680][ T5932] hsr_slave_0: entered promiscuous mode [ 55.442928][ T5932] hsr_slave_1: entered promiscuous mode [ 55.445211][ T5932] debugfs: 'hsr0' already exists in 'hsr' [ 55.446964][ T5932] Cannot create hsr debugfs directory [ 55.453879][ T5937] hsr_slave_0: entered promiscuous mode [ 55.457268][ T5937] hsr_slave_1: entered promiscuous mode [ 55.460215][ T5937] debugfs: 'hsr0' already exists in 'hsr' [ 55.462609][ T5937] Cannot create hsr debugfs directory [ 55.673624][ T5935] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 55.686003][ T5935] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 55.713847][ T5935] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 55.736661][ T5935] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 55.779325][ T5928] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 55.790616][ T5928] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 55.799249][ T5928] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 55.806288][ T5928] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 55.860334][ T5937] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 55.865589][ T5937] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 55.871043][ T5937] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 55.877049][ T5937] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 55.935113][ T5935] 8021q: adding VLAN 0 to HW filter on device bond0 [ 55.948179][ T5932] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 55.952782][ T5932] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 55.957324][ T5932] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 55.963344][ T5932] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 55.988725][ T5935] 8021q: adding VLAN 0 to HW filter on device team0 [ 55.997170][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.999484][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.016512][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.019283][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.067440][ T5928] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.102569][ T5928] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.107822][ T5937] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.126140][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.128292][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.131409][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.133578][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.151757][ T5937] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.155370][ T5933] Bluetooth: hci3: command tx timeout [ 56.155376][ T5291] Bluetooth: hci2: command tx timeout [ 56.155383][ T5936] Bluetooth: hci1: command tx timeout [ 56.156948][ T40] kauditd_printk_skb: 13 callbacks suppressed [ 56.156958][ T40] audit: type=1400 audit(1764576834.072:89): avc: denied { sys_module } for pid=5935 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 56.163038][ T5932] 8021q: adding VLAN 0 to HW filter on device bond0 [ 56.164940][ T5933] Bluetooth: hci0: command tx timeout [ 56.180981][ T13] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.183039][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.191178][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.193241][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.201511][ T5932] 8021q: adding VLAN 0 to HW filter on device team0 [ 56.228711][ T89] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.231025][ T89] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.242052][ T89] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.244165][ T89] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.308903][ T5935] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.342705][ T5935] veth0_vlan: entered promiscuous mode [ 56.351402][ T5935] veth1_vlan: entered promiscuous mode [ 56.374344][ T5935] veth0_macvtap: entered promiscuous mode [ 56.383483][ T5935] veth1_macvtap: entered promiscuous mode [ 56.404077][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.412184][ T5928] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.421149][ T5935] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.437882][ T60] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.441715][ T60] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.455839][ T60] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.464634][ T60] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.483741][ T5937] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.501202][ T5932] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 56.520152][ T5928] veth0_vlan: entered promiscuous mode [ 56.536985][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.540331][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.563826][ T5928] veth1_vlan: entered promiscuous mode [ 56.568979][ T1147] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.572036][ T1147] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.581009][ T40] audit: type=1400 audit(1764576834.492:90): avc: denied { mount } for pid=5935 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 56.583387][ T5932] veth0_vlan: entered promiscuous mode [ 56.588016][ T40] audit: type=1400 audit(1764576834.492:91): avc: denied { mounton } for pid=5935 comm="syz-executor" path="/syzkaller.uUhfj8/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 56.597224][ T40] audit: type=1400 audit(1764576834.512:92): avc: denied { mount } for pid=5935 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 56.603900][ T40] audit: type=1400 audit(1764576834.512:93): avc: denied { mounton } for pid=5935 comm="syz-executor" path="/syzkaller.uUhfj8/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1 [ 56.604522][ T5937] veth0_vlan: entered promiscuous mode [ 56.612160][ T40] audit: type=1400 audit(1764576834.512:94): avc: denied { mounton } for pid=5935 comm="syz-executor" path="/syzkaller.uUhfj8/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=8430 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1 [ 56.616776][ T5932] veth1_vlan: entered promiscuous mode [ 56.622051][ T40] audit: type=1400 audit(1764576834.512:95): avc: denied { unmount } for pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 56.630143][ T40] audit: type=1400 audit(1764576834.512:96): avc: denied { mounton } for pid=5935 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=2837 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 56.630176][ T5928] veth0_macvtap: entered promiscuous mode [ 56.639207][ T40] audit: type=1400 audit(1764576834.512:97): avc: denied { mount } for pid=5935 comm="syz-executor" name="/" dev="gadgetfs" ino=8434 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nfs_t tclass=filesystem permissive=1 [ 56.642263][ T5935] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality. [ 56.646145][ T40] audit: type=1400 audit(1764576834.512:98): avc: denied { mount } for pid=5935 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 56.647462][ T5928] veth1_macvtap: entered promiscuous mode [ 56.661461][ T5937] veth1_vlan: entered promiscuous mode [ 56.675803][ T5932] veth0_macvtap: entered promiscuous mode [ 56.681315][ T5932] veth1_macvtap: entered promiscuous mode [ 56.687416][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.696318][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.703657][ T5928] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.711223][ T5932] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.715957][ T5937] veth0_macvtap: entered promiscuous mode [ 56.721401][ T60] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.728898][ T60] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.735448][ T46] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.742488][ T5937] veth1_macvtap: entered promiscuous mode [ 56.746806][ T46] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.757890][ T46] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.760785][ T46] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.763626][ T46] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.773842][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 56.780146][ T46] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.803066][ T5937] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 56.844462][ T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.847717][ T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.849152][ T1148] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.853430][ T1148] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.858608][ T6024] ======================================================= [ 56.858608][ T6024] WARNING: The mand mount option has been deprecated and [ 56.858608][ T6024] and is ignored by this kernel. Remove the mand [ 56.858608][ T6024] option from the mount to silence this warning. [ 56.858608][ T6024] ======================================================= [ 56.877494][ T1148] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.879664][ T6024] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 56.887830][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.891149][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.895667][ T1147] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 56.924553][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.927481][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.963191][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.967158][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 56.983045][ T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 56.988177][ T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.008578][ T6031] capability: warning: `syz.1.7' uses 32-bit capabilities (legacy support in use) [ 57.023788][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 57.026469][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 57.435739][ T6051] netlink: 4 bytes leftover after parsing attributes in process `syz.1.12'. [ 58.234593][ T5933] Bluetooth: hci1: command tx timeout [ 58.234798][ T5936] Bluetooth: hci3: command tx timeout [ 58.237834][ T5933] Bluetooth: hci2: command tx timeout [ 58.239439][ T5291] Bluetooth: hci0: command tx timeout [ 58.331038][ T6101] binder: 6099:6101 ioctl 4018620d 0 returned -22 [ 58.860733][ T6129] netlink: 4 bytes leftover after parsing attributes in process `syz.3.42'. [ 58.893416][ T6131] binder: 6130:6131 ioctl 4018620d 0 returned -22 [ 58.982483][ T6135] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 58.983855][ T6137] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 59.367990][ T6159] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 59.409727][ T6164] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 59.630324][ T6185] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 59.961714][ T6210] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 60.056593][ T6218] netlink: 4 bytes leftover after parsing attributes in process `syz.1.79'. [ 60.063524][ T6220] netlink: 568 bytes leftover after parsing attributes in process `syz.3.80'. [ 60.110091][ T6222] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 60.304511][ T6238] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 60.314533][ T5291] Bluetooth: hci0: command tx timeout [ 60.315543][ T5933] Bluetooth: hci1: command tx timeout [ 60.316326][ T5936] Bluetooth: hci3: command tx timeout [ 60.324508][ T5291] Bluetooth: hci2: command tx timeout [ 60.360411][ T6244] overlayfs: missing 'lowerdir' [ 60.377848][ T6236] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 60.404142][ T6248] netlink: 568 bytes leftover after parsing attributes in process `syz.2.91'. [ 60.419761][ T6250] netlink: 4 bytes leftover after parsing attributes in process `syz.3.90'. [ 60.644056][ T6257] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 60.736106][ T6265] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 60.746512][ T6271] overlayfs: missing 'lowerdir' [ 60.753398][ T6270] /dev/loop0: Can't open blockdev [ 60.787690][ T6277] netlink: 568 bytes leftover after parsing attributes in process `syz.1.103'. [ 60.788018][ T6273] netlink: 4 bytes leftover after parsing attributes in process `syz.3.101'. [ 60.871003][ T6275] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 61.166552][ T6306] netlink: 548 bytes leftover after parsing attributes in process `syz.0.115'. [ 61.208121][ T6308] netlink: 4 bytes leftover after parsing attributes in process `syz.0.117'. [ 61.317320][ T6318] binder: BINDER_SET_CONTEXT_MGR already set [ 61.319351][ T6318] binder: 6317:6318 ioctl 4018620d 200000000040 returned -16 [ 61.399711][ T40] kauditd_printk_skb: 45 callbacks suppressed [ 61.399726][ T40] audit: type=1400 audit(1764576839.312:144): avc: denied { bind } for pid=6323 comm="syz.1.123" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 61.509986][ T6337] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 61.545979][ T6343] binder: 6342:6343 ioctl c0306201 0 returned -14 [ 61.788352][ T6364] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 61.795435][ T6366] overlay: Unknown parameter '/owerdir' [ 61.830844][ T6372] binder: 6371:6372 ioctl c0306201 0 returned -14 [ 62.199111][ T6388] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 62.394877][ T6398] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 62.395260][ T5291] Bluetooth: hci1: command tx timeout [ 62.400167][ T5936] Bluetooth: hci2: command tx timeout [ 62.400224][ T5933] Bluetooth: hci0: command tx timeout [ 62.400345][ T64] Bluetooth: hci3: command tx timeout [ 62.511298][ T6404] __nla_validate_parse: 3 callbacks suppressed [ 62.511314][ T6404] netlink: 548 bytes leftover after parsing attributes in process `syz.2.152'. [ 62.679424][ T6412] netlink: 4 bytes leftover after parsing attributes in process `syz.2.155'. [ 62.786437][ T6414] debugfs: 'ttyS3' already exists in 'caif_serial' [ 62.823275][ T40] audit: type=1400 audit(1764576840.732:145): avc: denied { search } for pid=5642 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.838810][ T40] audit: type=1400 audit(1764576840.732:146): avc: denied { search } for pid=5642 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.849684][ T40] audit: type=1400 audit(1764576840.732:147): avc: denied { search } for pid=5642 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.860146][ T40] audit: type=1400 audit(1764576840.732:148): avc: denied { search } for pid=5642 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.869000][ T40] audit: type=1400 audit(1764576840.732:149): avc: denied { search } for pid=5642 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.877315][ T40] audit: type=1400 audit(1764576840.732:150): avc: denied { search } for pid=5642 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.917994][ T40] audit: type=1400 audit(1764576840.832:151): avc: denied { read open } for pid=6425 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.929116][ T40] audit: type=1400 audit(1764576840.832:152): avc: denied { getattr } for pid=6425 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1902 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.939813][ T40] audit: type=1400 audit(1764576840.842:153): avc: denied { add_name } for pid=6422 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 62.979389][ T6431] netlink: 548 bytes leftover after parsing attributes in process `syz.0.162'. [ 63.092517][ T6445] netlink: 4 bytes leftover after parsing attributes in process `syz.2.167'. [ 63.180101][ T6451] debugfs: 'ttyS3' already exists in 'caif_serial' [ 63.284978][ T6463] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 63.347524][ T6471] netlink: 540 bytes leftover after parsing attributes in process `syz.0.174'. [ 63.632336][ T6485] netlink: 4 bytes leftover after parsing attributes in process `syz.0.178'. [ 63.964473][ T6506] fuseblk: Bad value for 'fd' [ 64.009209][ T6510] overlayfs: failed to resolve '/=./file0': -2 [ 64.119428][ T6524] binder: 6522:6524 ioctl c0145608 0 returned -22 [ 64.179641][ T6513] netlink: 4 bytes leftover after parsing attributes in process `syz.3.187'. [ 64.194531][ T6531] debugfs: 'ttyS3' already exists in 'caif_serial' [ 64.199316][ T6533] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 64.284669][ T6542] overlayfs: failed to resolve '/=./file0': -2 [ 64.287882][ T6541] fuseblk: Bad value for 'fd' [ 64.405613][ T6554] binder: 6553:6554 ioctl c0145608 0 returned -22 [ 64.565432][ T6570] netlink: 4 bytes leftover after parsing attributes in process `syz.0.202'. [ 64.610208][ T6578] debugfs: 'ttyS3' already exists in 'caif_serial' [ 64.616742][ T6581] netlink: 540 bytes leftover after parsing attributes in process `syz.0.206'. [ 64.702824][ T6589] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 64.945355][ T6616] binder_alloc: 6615: binder_alloc_buf, no vma [ 64.978194][ T6619] binder: 6618:6619 ioctl c0145608 0 returned -22 [ 65.008045][ T6623] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 65.013945][ T6621] debugfs: 'ttyS3' already exists in 'caif_serial' [ 65.266500][ T6651] binder_alloc: 6650: binder_alloc_buf, no vma [ 65.302677][ T6654] netlink: 64 bytes leftover after parsing attributes in process `syz.3.228'. [ 65.328806][ T6656] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 65.443822][ T6668] binder: 6666:6668 ioctl c0145608 0 returned -22 [ 65.496008][ T6676] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 65.544036][ T6679] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 65.746492][ T6701] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 65.760220][ T6706] binder: 6704:6706 ioctl c0145608 0 returned -22 [ 65.778697][ T6705] binder: BINDER_SET_CONTEXT_MGR already set [ 65.781167][ T6705] binder: 6703:6705 ioctl 4018620d 200000000040 returned -16 [ 66.099752][ T6740] binder: 6739:6740 ioctl c0145608 0 returned -22 [ 66.415476][ T6775] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 66.698740][ T6800] binder_alloc: 6798: binder_alloc_buf, no vma [ 67.403229][ T6840] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 67.666382][ T6859] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 67.749520][ T6873] binder: 6872:6873 ioctl 4018620d 0 returned -22 [ 67.893869][ T40] kauditd_printk_skb: 7 callbacks suppressed [ 67.893884][ T40] audit: type=1400 audit(1764576845.802:161): avc: denied { create } for pid=6893 comm="syz.3.319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 67.900331][ T6894] syz_tun: entered allmulticast mode [ 67.903977][ T40] audit: type=1400 audit(1764576845.812:162): avc: denied { setopt } for pid=6893 comm="syz.3.319" lport=2 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 67.916166][ T40] audit: type=1400 audit(1764576845.832:163): avc: denied { allowed } for pid=6893 comm="syz.3.319" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=io_uring permissive=1 [ 67.923731][ T6893] syz_tun: left allmulticast mode [ 67.942722][ T6898] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 68.052513][ T6909] binder: 6907:6909 ioctl 4018620d 0 returned -22 [ 68.262232][ T6921] __nla_validate_parse: 8 callbacks suppressed [ 68.262249][ T6921] netlink: 4 bytes leftover after parsing attributes in process `syz.0.328'. [ 68.273678][ T6937] syz_tun: entered allmulticast mode [ 68.279122][ T6936] syz_tun: left allmulticast mode [ 68.387163][ T6947] binder: 6946:6947 ioctl c0306201 0 returned -14 [ 68.740560][ T6968] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 68.755313][ T6971] binder: BINDER_SET_CONTEXT_MGR already set [ 68.757826][ T6971] binder: 6970:6971 ioctl 4018620d 2000000001c0 returned -16 [ 68.867261][ T6967] netlink: 4 bytes leftover after parsing attributes in process `syz.0.341'. [ 68.878518][ T6985] syz_tun: entered allmulticast mode [ 68.884788][ T6983] syz_tun: left allmulticast mode [ 68.986248][ T6996] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 69.235911][ T7010] netlink: 4 bytes leftover after parsing attributes in process `syz.0.358'. [ 69.899250][ T7033] syz_tun: entered allmulticast mode [ 69.905456][ T7032] syz_tun: left allmulticast mode [ 70.109061][ T7048] fuseblk: Bad value for 'fd' [ 70.164716][ T7044] netlink: 4 bytes leftover after parsing attributes in process `syz.3.370'. [ 70.222478][ T7058] syz_tun: entered allmulticast mode [ 70.231588][ T7057] syz_tun: left allmulticast mode [ 70.350724][ T7060] Zero length message leads to an empty skb [ 70.383573][ T7079] netlink: 4 bytes leftover after parsing attributes in process `syz.0.382'. [ 70.448912][ T7088] syz_tun: entered allmulticast mode [ 70.455742][ T7087] syz_tun: left allmulticast mode [ 70.501036][ T1147] Bluetooth: hci4: Frame reassembly failed (-84) [ 70.925454][ T7110] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 71.007173][ T7114] syz_tun: entered allmulticast mode [ 71.013399][ T7113] syz_tun: left allmulticast mode [ 71.058302][ T7116] netlink: 4 bytes leftover after parsing attributes in process `syz.1.397'. [ 71.128804][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 71.427507][ T7128] netlink: 504 bytes leftover after parsing attributes in process `syz.2.402'. [ 71.517336][ T7136] syz_tun: entered allmulticast mode [ 71.522859][ T7135] syz_tun: left allmulticast mode [ 71.555694][ T7138] syz_tun: entered allmulticast mode [ 71.560910][ T7137] syz_tun: left allmulticast mode [ 71.613955][ T7140] netlink: 4 bytes leftover after parsing attributes in process `syz.2.407'. [ 71.788627][ T7149] netlink: 504 bytes leftover after parsing attributes in process `syz.2.411'. [ 71.932079][ T7159] binder: BINDER_SET_CONTEXT_MGR already set [ 71.934284][ T7159] binder: 7157:7159 ioctl 4018620d 2000000001c0 returned -16 [ 71.963090][ T7163] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 72.007567][ T7167] netlink: 4 bytes leftover after parsing attributes in process `syz.3.418'. [ 72.028930][ T40] audit: type=1400 audit(1764576849.942:164): avc: denied { create } for pid=7170 comm="syz.2.419" anonclass=[io_uring] scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 72.037479][ T40] audit: type=1400 audit(1764576849.942:165): avc: denied { map } for pid=7170 comm="syz.2.419" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=20894 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 72.047818][ T40] audit: type=1400 audit(1764576849.942:166): avc: denied { read write } for pid=7170 comm="syz.2.419" path="anon_inode:[io_uring]" dev="anon_inodefs" ino=20894 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:sysadm_t tclass=anon_inode permissive=1 [ 72.179189][ T7190] syz_tun: entered allmulticast mode [ 72.183159][ T7189] syz_tun: left allmulticast mode [ 72.554567][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 72.554612][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 72.623193][ T7218] syz_tun: entered allmulticast mode [ 72.627500][ T7217] syz_tun: left allmulticast mode [ 72.654033][ T7221] syz_tun: entered allmulticast mode [ 72.661060][ T7219] syz_tun: left allmulticast mode [ 72.691016][ T7225] binder: 7223:7225 ioctl c0306201 0 returned -14 [ 72.735896][ T40] audit: type=1400 audit(1764576850.652:167): avc: denied { create } for pid=7227 comm="syz.0.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 72.742322][ T40] audit: type=1400 audit(1764576850.652:168): avc: denied { bind } for pid=7227 comm="syz.0.441" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 72.749455][ T40] audit: type=1400 audit(1764576850.652:169): avc: denied { name_bind } for pid=7227 comm="syz.0.441" src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=sctp_socket permissive=1 [ 72.756756][ T40] audit: type=1400 audit(1764576850.652:170): avc: denied { node_bind } for pid=7227 comm="syz.0.441" saddr=::1 src=20003 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=sctp_socket permissive=1 [ 72.795520][ T7232] syz_tun: entered allmulticast mode [ 72.801744][ T7231] syz_tun: left allmulticast mode [ 72.857757][ T1147] Bluetooth: hci4: Frame reassembly failed (-84) [ 73.067527][ T7243] syz_tun: entered allmulticast mode [ 73.074337][ T7242] syz_tun: left allmulticast mode [ 73.248098][ T7256] syz_tun: entered allmulticast mode [ 73.254132][ T7255] syz_tun: left allmulticast mode [ 73.267728][ T7258] __nla_validate_parse: 5 callbacks suppressed [ 73.267742][ T7258] netlink: 4 bytes leftover after parsing attributes in process `syz.2.455'. [ 73.282137][ T7260] netlink: 568 bytes leftover after parsing attributes in process `syz.3.456'. [ 73.390205][ T7267] syz_tun: entered allmulticast mode [ 73.395689][ T7266] syz_tun: left allmulticast mode [ 73.741006][ T7281] netlink: 568 bytes leftover after parsing attributes in process `syz.2.465'. [ 73.782186][ T7283] syz_tun: entered allmulticast mode [ 73.787768][ T7282] syz_tun: left allmulticast mode [ 73.841052][ T7285] netlink: 4 bytes leftover after parsing attributes in process `syz.2.467'. [ 73.949015][ T7294] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 74.049065][ T7301] binder: BINDER_SET_CONTEXT_MGR already set [ 74.051470][ T7301] binder: 7300:7301 ioctl 4018620d 2000000002c0 returned -16 [ 74.130748][ T7307] netlink: 568 bytes leftover after parsing attributes in process `syz.2.474'. [ 74.172452][ T7309] syz_tun: entered allmulticast mode [ 74.176334][ T7308] syz_tun: left allmulticast mode [ 74.213368][ T7317] netlink: 4 bytes leftover after parsing attributes in process `syz.2.478'. [ 74.351480][ T7326] syz_tun: entered allmulticast mode [ 74.356043][ T7325] syz_tun: left allmulticast mode [ 74.457552][ T7338] syz_tun: entered allmulticast mode [ 74.462165][ T7337] syz_tun: left allmulticast mode [ 74.489751][ T7340] iommufd_mock iommufd_mock0: Adding to iommu group 9 [ 74.654491][ T7355] syz_tun: entered allmulticast mode [ 74.660590][ T7354] syz_tun: left allmulticast mode [ 74.813799][ T7368] syz_tun: entered allmulticast mode [ 74.817835][ T7367] syz_tun: left allmulticast mode [ 74.874521][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 74.874644][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 75.031997][ T7388] syzkaller0: entered promiscuous mode [ 75.033810][ T7388] syzkaller0: entered allmulticast mode [ 75.102741][ T7392] syz_tun: entered allmulticast mode [ 75.108553][ T7391] syz_tun: left allmulticast mode [ 75.142990][ T7395] netlink: 4 bytes leftover after parsing attributes in process `syz.3.514'. [ 75.312908][ T7411] syz_tun: entered allmulticast mode [ 75.323486][ T7410] syz_tun: left allmulticast mode [ 75.343157][ T7413] syz_tun: entered allmulticast mode [ 75.349001][ T7412] syz_tun: left allmulticast mode [ 75.360033][ T7415] syzkaller0: entered promiscuous mode [ 75.362003][ T7415] syzkaller0: entered allmulticast mode [ 75.398310][ T7419] syz_tun: entered allmulticast mode [ 75.405426][ T7418] syz_tun: left allmulticast mode [ 75.456364][ T7425] netlink: 4 bytes leftover after parsing attributes in process `syz.1.529'. [ 75.569024][ T7436] syz_tun: entered allmulticast mode [ 75.580890][ T7435] syz_tun: left allmulticast mode [ 75.655412][ T7443] syz_tun: entered allmulticast mode [ 75.661388][ T7442] syz_tun: left allmulticast mode [ 75.714799][ T7445] binder: 7444:7445 ioctl 4018620d 0 returned -22 [ 75.845987][ T7452] syzkaller0: entered promiscuous mode [ 75.848684][ T7452] syzkaller0: entered allmulticast mode [ 76.378015][ T7478] syz_tun: entered allmulticast mode [ 76.382607][ T7477] syz_tun: left allmulticast mode [ 76.426031][ T7482] syz_tun: entered allmulticast mode [ 76.429384][ T7481] syzkaller0: entered promiscuous mode [ 76.431831][ T7481] syzkaller0: entered allmulticast mode [ 76.438933][ T7484] binder: 7483:7484 ioctl 4018620d 0 returned -22 [ 76.442751][ T7480] syz_tun: left allmulticast mode [ 76.530755][ T40] kauditd_printk_skb: 4 callbacks suppressed [ 76.530770][ T40] audit: type=1400 audit(1764576854.442:175): avc: denied { unmount } for pid=5935 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 76.636239][ T7501] netlink: 4 bytes leftover after parsing attributes in process `syz.2.559'. [ 76.723170][ T7509] syz_tun: entered allmulticast mode [ 76.728062][ T7508] syz_tun: left allmulticast mode [ 76.760857][ T7511] syz_tun: entered allmulticast mode [ 76.765640][ T7510] syz_tun: left allmulticast mode [ 76.778800][ T7515] binder: BINDER_SET_CONTEXT_MGR already set [ 76.781125][ T7515] binder: 7514:7515 ioctl 4018620d 2000000001c0 returned -16 [ 76.918432][ T7529] netlink: 4 bytes leftover after parsing attributes in process `syz.0.570'. [ 76.977499][ T7535] syz_tun: entered allmulticast mode [ 76.982123][ T7534] syz_tun: left allmulticast mode [ 77.022003][ T7538] syz_tun: entered allmulticast mode [ 77.022629][ T7539] binder: BINDER_SET_CONTEXT_MGR already set [ 77.026307][ T7539] binder: 7537:7539 ioctl 4018620d 2000000001c0 returned -16 [ 77.027910][ T7536] syz_tun: left allmulticast mode [ 77.299718][ T7560] syz_tun: entered allmulticast mode [ 77.304056][ T7559] syz_tun: left allmulticast mode [ 77.335337][ T7562] binder: BINDER_SET_CONTEXT_MGR already set [ 77.337943][ T7562] binder: 7561:7562 ioctl 4018620d 2000000001c0 returned -16 [ 77.373339][ T7566] syz_tun: entered allmulticast mode [ 77.377186][ T7565] syz_tun: left allmulticast mode [ 77.446434][ T40] audit: type=1400 audit(1764576855.362:176): avc: denied { create } for pid=7576 comm="syz.1.591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 77.458881][ T40] audit: type=1400 audit(1764576855.362:177): avc: denied { write } for pid=7576 comm="syz.1.591" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 77.468046][ T40] audit: type=1400 audit(1764576855.372:178): avc: denied { connect } for pid=7576 comm="syz.1.591" lport=60 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 77.476160][ T40] audit: type=1400 audit(1764576855.372:179): avc: denied { write } for pid=7576 comm="syz.1.591" path="socket:[20408]" dev="sockfs" ino=20408 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 77.601193][ T7592] syz_tun: entered allmulticast mode [ 77.609656][ T7591] syz_tun: left allmulticast mode [ 77.619159][ T7596] binder: 7595:7596 ioctl 4018620d 0 returned -22 [ 77.692951][ T7606] syz_tun: entered allmulticast mode [ 77.700802][ T7604] syz_tun: left allmulticast mode [ 77.783309][ T40] audit: type=1400 audit(1764576855.692:180): avc: denied { shutdown } for pid=7615 comm="syz.3.609" laddr=::1 lport=20003 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=sctp_socket permissive=1 [ 77.820831][ T7621] binder: 7620:7621 ioctl 4018620d 0 returned -22 [ 77.833795][ T7623] syz_tun: entered allmulticast mode [ 77.839992][ T7622] syz_tun: left allmulticast mode [ 77.982191][ T7635] syz_tun: entered allmulticast mode [ 77.987768][ T7634] syz_tun: left allmulticast mode [ 78.019879][ T7637] binder: 7636:7637 ioctl c0306201 0 returned -14 [ 78.257836][ T7650] binder: 7649:7650 ioctl 4018620d 0 returned -22 [ 78.449254][ T7659] __nla_validate_parse: 5 callbacks suppressed [ 78.449270][ T7659] netlink: 64 bytes leftover after parsing attributes in process `syz.0.626'. [ 78.481494][ T7661] syz_tun: entered allmulticast mode [ 78.487681][ T7660] syz_tun: left allmulticast mode [ 78.530821][ T7665] binder: 7664:7665 ioctl c0306201 0 returned -14 [ 78.604119][ T7671] syz_tun: entered allmulticast mode [ 78.609790][ T7670] netlink: 4 bytes leftover after parsing attributes in process `syz.3.632'. [ 78.613474][ T7670] netlink: 72 bytes leftover after parsing attributes in process `syz.3.632'. [ 78.618358][ T7669] syz_tun: left allmulticast mode [ 78.737304][ T7683] syzkaller0: entered promiscuous mode [ 78.740624][ T7683] syzkaller0: entered allmulticast mode [ 78.759827][ T7686] binder: BINDER_SET_CONTEXT_MGR already set [ 78.763228][ T7686] binder: 7684:7686 ioctl 4018620d 2000000002c0 returned -16 [ 78.876475][ T7694] syz_tun: entered allmulticast mode [ 78.882015][ T7693] syz_tun: left allmulticast mode [ 78.949853][ T7700] netlink: 4 bytes leftover after parsing attributes in process `syz.2.647'. [ 78.953763][ T7700] netlink: 72 bytes leftover after parsing attributes in process `syz.2.647'. [ 78.987596][ T7703] syz_tun: entered allmulticast mode [ 78.991176][ T7701] syz_tun: left allmulticast mode [ 79.079417][ T7710] binder: BINDER_SET_CONTEXT_MGR already set [ 79.082218][ T7710] binder: 7709:7710 ioctl 4018620d 2000000002c0 returned -16 [ 79.111234][ T7714] syz_tun: entered allmulticast mode [ 79.117102][ T7713] syz_tun: left allmulticast mode [ 79.190832][ T7712] fuse: Bad value for 'fd' [ 79.196814][ T7721] syzkaller0: entered promiscuous mode [ 79.198754][ T7721] syzkaller0: entered allmulticast mode [ 79.258557][ T7723] syz_tun: entered allmulticast mode [ 79.261312][ T7722] syz_tun: left allmulticast mode [ 79.350346][ T7728] netlink: 4 bytes leftover after parsing attributes in process `syz.1.660'. [ 79.354153][ T7728] netlink: 72 bytes leftover after parsing attributes in process `syz.1.660'. [ 79.757637][ T7746] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 79.764120][ T40] audit: type=1400 audit(1764576857.672:181): avc: denied { bind } for pid=7742 comm="syz.2.667" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 79.770559][ T40] audit: type=1400 audit(1764576857.682:182): avc: denied { name_bind } for pid=7742 comm="syz.2.667" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 79.777658][ T40] audit: type=1400 audit(1764576857.682:183): avc: denied { node_bind } for pid=7742 comm="syz.2.667" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 79.784472][ T40] audit: type=1400 audit(1764576857.692:184): avc: denied { block_suspend } for pid=7742 comm="syz.2.667" capability=36 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 79.809335][ T5933] Bluetooth: latency 26624 > 499 [ 79.823306][ T7749] syz_tun: entered allmulticast mode [ 79.830130][ T7747] syz_tun: left allmulticast mode [ 79.833847][ T7750] netlink: 4 bytes leftover after parsing attributes in process `syz.2.670'. [ 79.837830][ T7750] netlink: 72 bytes leftover after parsing attributes in process `syz.2.670'. [ 79.870348][ T7752] binder: 7751:7752 ioctl c0306201 0 returned -14 [ 80.086966][ T7771] binder: 7770:7771 ioctl c0306201 0 returned -14 [ 80.119097][ T7775] syz_tun: entered allmulticast mode [ 80.121931][ T7773] syz_tun: left allmulticast mode [ 80.150189][ T7777] syz_tun: entered allmulticast mode [ 80.156217][ T7776] syz_tun: left allmulticast mode [ 80.162267][ T7768] fuse: Bad value for 'fd' [ 80.449567][ T7808] syz_tun: entered allmulticast mode [ 80.453515][ T7806] syz_tun: left allmulticast mode [ 80.881161][ T7837] syz_tun: entered allmulticast mode [ 80.884861][ T7836] syz_tun: left allmulticast mode [ 81.066939][ T5933] Bluetooth: latency 26624 > 499 [ 81.803453][ T7870] syz_tun: entered allmulticast mode [ 81.808523][ T7869] syz_tun: left allmulticast mode [ 81.834589][ T5933] Bluetooth: hci2: command tx timeout [ 81.891790][ T7877] syzkaller0: entered promiscuous mode [ 81.894127][ T7877] syzkaller0: entered allmulticast mode [ 82.202295][ T7903] syz_tun: entered allmulticast mode [ 82.207762][ T7902] syz_tun: left allmulticast mode [ 82.209839][ T7905] syz_tun: entered allmulticast mode [ 82.216121][ T7904] syz_tun: left allmulticast mode [ 82.280419][ T7910] netlink: 4 bytes leftover after parsing attributes in process `syz.2.735'. [ 82.309130][ T5933] Bluetooth: latency 26624 > 499 [ 82.323375][ T7912] syzkaller0: entered promiscuous mode [ 82.325931][ T7912] syzkaller0: entered allmulticast mode [ 82.443787][ T7918] syz_tun: entered allmulticast mode [ 82.448169][ T7917] syz_tun: left allmulticast mode [ 82.577674][ T7926] syz_tun: entered allmulticast mode [ 82.582478][ T7925] syz_tun: left allmulticast mode [ 82.749737][ T7939] syzkaller0: entered promiscuous mode [ 82.752183][ T7939] syzkaller0: entered allmulticast mode [ 82.764934][ T7941] binder: 7940:7941 ioctl 4018620d 0 returned -22 [ 82.877631][ T7953] syz_tun: entered allmulticast mode [ 82.883073][ T7952] syz_tun: left allmulticast mode [ 82.936575][ T7962] binder: 7961:7962 ioctl 4018620d 0 returned -22 [ 83.072440][ T7975] syzkaller0: entered promiscuous mode [ 83.074198][ T7975] syzkaller0: entered allmulticast mode [ 83.115732][ T7979] syz_tun: entered allmulticast mode [ 83.121130][ T7978] syz_tun: left allmulticast mode [ 83.124635][ T5933] Bluetooth: hci0: command tx timeout [ 83.135276][ T46] Bluetooth: hci4: Frame reassembly failed (-90) [ 83.138170][ T7983] Bluetooth: hci4: Frame reassembly failed (-84) [ 83.141337][ T46] Bluetooth: hci4: Frame reassembly failed (-84) [ 83.144225][ T7983] Bluetooth: hci4: Frame reassembly failed (-84) [ 83.350111][ T8011] syzkaller0: entered promiscuous mode [ 83.352002][ T8011] syzkaller0: entered allmulticast mode [ 83.381068][ T8013] syz_tun: entered allmulticast mode [ 83.386920][ T8012] syz_tun: left allmulticast mode [ 83.463216][ T5291] Bluetooth: latency 26624 > 499 [ 83.554212][ T8020] __nla_validate_parse: 2 callbacks suppressed [ 83.554232][ T8020] netlink: 72 bytes leftover after parsing attributes in process `syz.1.784'. [ 83.720020][ T8033] syz_tun: entered allmulticast mode [ 83.726111][ T8032] syz_tun: left allmulticast mode [ 83.796134][ T8037] syzkaller0: entered promiscuous mode [ 83.798352][ T8037] syzkaller0: entered allmulticast mode [ 84.256462][ T8045] netlink: 72 bytes leftover after parsing attributes in process `syz.2.794'. [ 84.367321][ T8055] binder: 8054:8055 ioctl c0306201 0 returned -14 [ 84.399797][ T8057] syz_tun: entered allmulticast mode [ 84.405582][ T8056] syz_tun: left allmulticast mode [ 84.436935][ T8059] syzkaller0: entered promiscuous mode [ 84.439389][ T8059] syzkaller0: entered allmulticast mode [ 84.537434][ T8065] netlink: 4 bytes leftover after parsing attributes in process `syz.2.802'. [ 84.597628][ T8067] netlink: 64 bytes leftover after parsing attributes in process `syz.3.803'. [ 84.703050][ T8078] syz_tun: entered allmulticast mode [ 84.708005][ T8076] syz_tun: left allmulticast mode [ 84.810297][ T8088] syz_tun: entered allmulticast mode [ 84.889665][ T8090] netlink: 64 bytes leftover after parsing attributes in process `syz.3.812'. [ 84.938038][ T8102] netlink: 4 bytes leftover after parsing attributes in process `syz.1.814'. [ 85.195780][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 85.199162][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 85.205400][ T5933] Bluetooth: hci0: command tx timeout [ 85.282684][ T8131] netlink: 64 bytes leftover after parsing attributes in process `syz.3.824'. [ 85.425726][ T8142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.830'. [ 85.461878][ T8145] syzkaller0: entered promiscuous mode [ 85.464203][ T8145] syzkaller0: entered allmulticast mode [ 85.514701][ T5933] Bluetooth: hci1: command tx timeout [ 85.648956][ T8157] netlink: 64 bytes leftover after parsing attributes in process `syz.3.834'. [ 85.851301][ T8165] syz_tun: entered allmulticast mode [ 85.924458][ T5933] Bluetooth: latency 26624 > 499 [ 85.925236][ T8172] syzkaller0: entered promiscuous mode [ 85.928634][ T8172] syzkaller0: entered allmulticast mode [ 86.284277][ T8190] netlink: 64 bytes leftover after parsing attributes in process `syz.1.846'. [ 86.476448][ T3340] cfg80211: failed to load regulatory.db [ 86.642330][ T8198] syz_tun: entered allmulticast mode [ 86.687688][ T8202] syzkaller0: entered promiscuous mode [ 86.690087][ T8202] syzkaller0: entered allmulticast mode [ 87.098755][ T8232] binder: 8231:8232 ioctl c0306201 0 returned -14 [ 87.826929][ T8272] syz_tun: entered allmulticast mode [ 87.930562][ T60] Bluetooth: hci4: Frame reassembly failed (-90) [ 87.933386][ T8282] Bluetooth: hci4: Frame reassembly failed (-84) [ 87.936219][ T8282] Bluetooth: hci4: Frame reassembly failed (-84) [ 87.994491][ T5291] Bluetooth: hci3: command tx timeout [ 89.992953][ T8359] syzkaller0: entered promiscuous mode [ 89.994691][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 89.995340][ T8359] syzkaller0: entered allmulticast mode [ 89.995373][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 90.283166][ T8381] syzkaller0: entered promiscuous mode [ 90.285579][ T8381] syzkaller0: entered allmulticast mode [ 91.407289][ T8459] syzkaller0: entered promiscuous mode [ 91.409750][ T8459] syzkaller0: entered allmulticast mode [ 91.606655][ T40] kauditd_printk_skb: 3 callbacks suppressed [ 91.606665][ T40] audit: type=1400 audit(1764576869.522:188): avc: denied { read } for pid=8475 comm="syz.2.965" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 91.616778][ T40] audit: type=1400 audit(1764576869.522:189): avc: denied { open } for pid=8475 comm="syz.2.965" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 91.625780][ T40] audit: type=1400 audit(1764576869.522:190): avc: denied { ioctl } for pid=8475 comm="syz.2.965" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x640d scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1 [ 91.803366][ T8490] syzkaller0: entered promiscuous mode [ 91.805921][ T8490] syzkaller0: entered allmulticast mode [ 91.867970][ T8494] __nla_validate_parse: 1 callbacks suppressed [ 91.867985][ T8494] netlink: 72 bytes leftover after parsing attributes in process `syz.2.974'. [ 92.237770][ T8531] netlink: 48 bytes leftover after parsing attributes in process `syz.3.990'. [ 92.301149][ T8539] syzkaller0: entered promiscuous mode [ 92.302992][ T8539] syzkaller0: entered allmulticast mode [ 92.510267][ T8557] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1000'. [ 92.635114][ T8572] syzkaller0: entered promiscuous mode [ 92.636933][ T8572] syzkaller0: entered allmulticast mode [ 92.797894][ T8578] Bluetooth: hci4: Frame reassembly failed (-90) [ 92.800706][ T1148] Bluetooth: hci4: Frame reassembly failed (-84) [ 93.247413][ T8600] syzkaller0: entered promiscuous mode [ 93.250374][ T8600] syzkaller0: entered allmulticast mode [ 93.449458][ T8603] syzkaller0: entered promiscuous mode [ 93.451835][ T8603] syzkaller0: entered allmulticast mode [ 94.060182][ T40] audit: type=1400 audit(1764576871.972:191): avc: denied { perfmon } for pid=8634 comm="syz.3.1039" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 94.524573][ T0] NOHZ tick-stop error: local softirq work is pending, handler #282!!! [ 94.701916][ T8650] syzkaller0: entered promiscuous mode [ 94.703788][ T8650] syzkaller0: entered allmulticast mode [ 94.874538][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 94.874605][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 95.141308][ T8674] syzkaller0: entered promiscuous mode [ 95.143072][ T8674] syzkaller0: entered allmulticast mode [ 95.173896][ T5933] Bluetooth: latency 26624 > 499 [ 95.883326][ T8706] syzkaller0: entered promiscuous mode [ 95.886125][ T8706] syzkaller0: entered allmulticast mode [ 95.995486][ T40] audit: type=1400 audit(1764576873.912:192): avc: denied { create } for pid=8707 comm="syz.3.1068" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_rdma_socket permissive=1 [ 96.107187][ T8717] syzkaller0: entered promiscuous mode [ 96.109525][ T8717] syzkaller0: entered allmulticast mode [ 96.245585][ T8730] syzkaller0: entered promiscuous mode [ 96.248004][ T8730] syzkaller0: entered allmulticast mode [ 96.280685][ T5933] Bluetooth: latency 26624 > 499 [ 96.408149][ T8741] syzkaller0: entered promiscuous mode [ 96.409976][ T8741] syzkaller0: entered allmulticast mode [ 96.504106][ T8749] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1089'. [ 96.517904][ T40] audit: type=1400 audit(1764576874.432:193): avc: denied { create } for pid=8742 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 96.525950][ T40] audit: type=1400 audit(1764576874.432:194): avc: denied { bind } for pid=8742 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 96.533586][ T40] audit: type=1400 audit(1764576874.432:195): avc: denied { append } for pid=8742 comm="syz.1.1086" name="001" dev="devtmpfs" ino=748 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usb_device_t tclass=chr_file permissive=1 [ 96.546280][ T8752] syzkaller0: entered promiscuous mode [ 96.548728][ T8752] syzkaller0: entered allmulticast mode [ 96.561113][ T8743] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 96.564455][ T8743] IPv6: NLM_F_CREATE should be set when creating new route [ 96.568517][ T40] audit: type=1400 audit(1764576874.482:196): avc: denied { setopt } for pid=8742 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=alg_socket permissive=1 [ 96.587240][ T40] audit: type=1400 audit(1764576874.502:197): avc: denied { bind } for pid=8742 comm="syz.1.1086" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 96.587728][ T8743] Bluetooth: MGMT ver 1.23 [ 96.848283][ T5933] Bluetooth: latency 26624 > 499 [ 97.126182][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.129419][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.132665][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.135864][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.139122][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.142332][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.145670][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.148945][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.152221][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 97.204168][ T5933] Bluetooth: hci0: command tx timeout [ 97.530935][ T8798] syzkaller0: entered promiscuous mode [ 97.532805][ T8798] syzkaller0: entered allmulticast mode [ 97.546398][ T8779] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 97.639843][ T8803] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1112'. [ 97.769564][ T8819] syzkaller0: entered promiscuous mode [ 97.771363][ T8819] syzkaller0: entered allmulticast mode [ 97.835183][ T8823] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1122'. [ 97.866572][ T8825] syzkaller0: entered promiscuous mode [ 97.868408][ T8825] syzkaller0: entered allmulticast mode [ 97.928328][ T1147] Bluetooth: hci4: Frame reassembly failed (-90) [ 97.931361][ T8828] Bluetooth: hci4: Frame reassembly failed (-84) [ 97.934482][ T8828] Bluetooth: hci4: Frame reassembly failed (-84) [ 98.065697][ T8837] syz.3.1127 uses obsolete (PF_INET,SOCK_PACKET) [ 98.070555][ T40] kauditd_printk_skb: 1 callbacks suppressed [ 98.070568][ T40] audit: type=1400 audit(1764576875.982:199): avc: denied { ioctl } for pid=8836 comm="syz.3.1127" path="socket:[28103]" dev="sockfs" ino=28103 ioctlcmd=0x8914 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 98.279546][ T8846] syzkaller0: entered promiscuous mode [ 98.281709][ T8846] syzkaller0: entered allmulticast mode [ 98.314641][ T5291] Bluetooth: hci2: command tx timeout [ 98.393960][ T8852] syzkaller0: entered promiscuous mode [ 98.396046][ T8852] syzkaller0: entered allmulticast mode [ 98.793777][ T8865] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1140'. [ 98.917001][ T8873] syzkaller0: entered promiscuous mode [ 98.918972][ T8873] syzkaller0: entered allmulticast mode [ 99.275616][ T5291] Bluetooth: hci0: command tx timeout [ 99.388783][ T8895] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1150'. [ 99.408167][ T8890] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 99.986396][ T8917] syzkaller0: entered promiscuous mode [ 99.988922][ T8917] syzkaller0: entered allmulticast mode [ 99.994532][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 100.000216][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 100.157164][ T8928] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1164'. [ 100.230074][ T8930] fuse: Bad value for 'fd' [ 100.277613][ T8932] syzkaller0: entered promiscuous mode [ 100.280075][ T8932] syzkaller0: entered allmulticast mode [ 100.394564][ T5933] Bluetooth: hci2: command tx timeout [ 101.117742][ T8975] fuse: Bad value for 'fd' [ 101.326112][ T40] audit: type=1400 audit(1764576879.242:200): avc: denied { read write } for pid=8982 comm="syz.1.1187" name="nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 101.328174][ T8983] loop6: detected capacity change from 0 to 2640 [ 101.333354][ T40] audit: type=1400 audit(1764576879.242:201): avc: denied { open } for pid=8982 comm="syz.1.1187" path="/dev/nullb0" dev="devtmpfs" ino=707 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 101.338307][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.344238][ T40] audit: type=1400 audit(1764576879.242:202): avc: denied { append } for pid=8982 comm="syz.1.1187" name="loop6" dev="devtmpfs" ino=664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 101.347650][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.358681][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.362096][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.365572][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.369011][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.372474][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.376385][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.379866][ T8983] ldm_validate_partition_table(): Disk read failed. [ 101.385614][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.391942][ T8983] Buffer I/O error on dev loop6, logical block 0, async page read [ 101.396670][ T8983] Dev loop6: unable to read RDB block 0 [ 101.400866][ T8983] loop6: unable to read partition table [ 101.403883][ T8983] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 101.769226][ T8999] syzkaller0: entered promiscuous mode [ 101.771092][ T8999] syzkaller0: entered allmulticast mode [ 102.330825][ T40] audit: type=1400 audit(1764576880.242:203): avc: denied { create } for pid=9031 comm="syz.0.1203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 102.339761][ T40] audit: type=1400 audit(1764576880.242:204): avc: denied { write } for pid=9031 comm="syz.0.1203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 102.346814][ T40] audit: type=1400 audit(1764576880.242:205): avc: denied { nlmsg_write } for pid=9031 comm="syz.0.1203" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 102.408711][ T9039] syzkaller0: entered promiscuous mode [ 102.411314][ T9039] syzkaller0: entered allmulticast mode [ 102.474553][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 102.474817][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 102.742234][ T9062] loop6: detected capacity change from 0 to 2640 [ 102.746532][ T5931] ldm_validate_partition_table(): Disk read failed. [ 102.748811][ T5931] Dev loop6: unable to read RDB block 0 [ 102.751396][ T5931] loop6: unable to read partition table [ 102.768602][ T226] Bluetooth: hci4: Frame reassembly failed (-90) [ 102.771495][ T9064] Bluetooth: hci4: Frame reassembly failed (-84) [ 102.774305][ T9064] Bluetooth: hci4: Frame reassembly failed (-84) [ 102.825357][ T9062] ldm_validate_partition_table(): Disk read failed. [ 102.828676][ T9062] Dev loop6: unable to read RDB block 0 [ 102.831606][ T9062] loop6: unable to read partition table [ 102.834065][ T9062] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 102.859287][ T9067] syzkaller0: entered promiscuous mode [ 102.861702][ T9067] syzkaller0: entered allmulticast mode [ 103.682673][ T5291] Bluetooth: latency 26624 > 499 [ 104.625911][ T9171] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 104.794478][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 104.794608][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 104.966827][ T5933] Bluetooth: latency 26624 > 499 [ 105.101810][ T9204] tmpfs: Unknown parameter 'mp' [ 105.365466][ T9210] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 105.723513][ T5291] Bluetooth: latency 26624 > 499 [ 105.754521][ T5291] Bluetooth: hci0: command tx timeout [ 105.801746][ T9239] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 105.817493][ T9239] syzkaller0: entered promiscuous mode [ 105.819973][ T9239] syzkaller0: entered allmulticast mode [ 106.567566][ T9252] syzkaller0: entered promiscuous mode [ 106.569951][ T9252] syzkaller0: entered allmulticast mode [ 106.826592][ T9260] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 106.829150][ T9260] IPv6: NLM_F_CREATE should be set when creating new route [ 106.924140][ T9278] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 106.936040][ T9278] syzkaller0: entered promiscuous mode [ 106.938142][ T9278] syzkaller0: entered allmulticast mode [ 107.044534][ T5291] Bluetooth: hci2: command tx timeout [ 107.675029][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 107.723655][ T9293] tmpfs: Bad value for 'mpol' [ 107.838756][ T9304] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 107.844537][ T5291] Bluetooth: hci0: command tx timeout [ 107.859251][ T9304] syzkaller0: entered promiscuous mode [ 107.861917][ T9304] syzkaller0: entered allmulticast mode [ 108.375076][ T9321] tmpfs: Bad value for 'mpol' [ 108.696216][ T9329] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 108.835521][ T9339] syzkaller0: entered promiscuous mode [ 108.839427][ T9339] syzkaller0: entered allmulticast mode [ 108.933801][ T9343] loop6: detected capacity change from 0 to 2640 [ 108.939667][ T5931] buffer_io_error: 48 callbacks suppressed [ 108.939681][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.945713][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.949382][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.952890][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.956406][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.959763][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.964022][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.967770][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.971020][ T5931] ldm_validate_partition_table(): Disk read failed. [ 108.973809][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.977647][ T5931] Buffer I/O error on dev loop6, logical block 0, async page read [ 108.981040][ T5931] Dev loop6: unable to read RDB block 0 [ 108.983660][ T5931] loop6: unable to read partition table [ 108.987063][ T9343] ldm_validate_partition_table(): Disk read failed. [ 108.990012][ T9343] Dev loop6: unable to read RDB block 0 [ 108.992725][ T9343] loop6: unable to read partition table [ 108.995697][ T9343] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 109.139837][ T9355] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 109.147316][ T9355] syzkaller0: entered promiscuous mode [ 109.149082][ T9355] syzkaller0: entered allmulticast mode [ 109.925327][ T5933] Bluetooth: hci4: command 0x1003 tx timeout [ 109.925342][ T5291] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 109.965413][ T9368] syzkaller0: entered promiscuous mode [ 109.967926][ T9368] syzkaller0: entered allmulticast mode [ 110.000179][ T9374] loop6: detected capacity change from 0 to 2640 [ 110.003236][ T9374] ldm_validate_partition_table(): Disk read failed. [ 110.005792][ T9374] Dev loop6: unable to read RDB block 0 [ 110.008395][ T9374] loop6: unable to read partition table [ 110.010859][ T9374] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 110.104967][ T9383] debugfs: 'ttyS3' already exists in 'caif_serial' [ 110.146258][ T40] audit: type=1400 audit(1764576888.062:206): avc: denied { read } for pid=5642 comm="dhcpcd" name="n116" dev="tmpfs" ino=4123 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.155966][ T40] audit: type=1400 audit(1764576888.062:207): avc: denied { open } for pid=5642 comm="dhcpcd" path="/run/udev/data/n116" dev="tmpfs" ino=4123 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.176524][ T40] audit: type=1400 audit(1764576888.062:208): avc: denied { getattr } for pid=5642 comm="dhcpcd" path="/run/udev/data/n116" dev="tmpfs" ino=4123 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.210829][ T9394] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 110.222807][ T9394] syzkaller0: entered promiscuous mode [ 110.229927][ T9394] syzkaller0: entered allmulticast mode [ 110.236556][ T40] audit: type=1400 audit(1764576888.142:209): avc: denied { create } for pid=9393 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.246183][ T40] audit: type=1400 audit(1764576888.152:210): avc: denied { write } for pid=9393 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.cfttyS3.link" dev="tmpfs" ino=4124 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.258332][ T40] audit: type=1400 audit(1764576888.152:211): avc: denied { append } for pid=9393 comm="dhcpcd-run-hook" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=4124 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 110.306669][ T40] audit: type=1400 audit(1764576888.222:212): avc: denied { unlink } for pid=9400 comm="rm" name="resolv.conf.cfttyS3.link" dev="tmpfs" ino=4124 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 111.040546][ T9415] loop6: detected capacity change from 0 to 2640 [ 111.045158][ T5931] ldm_validate_partition_table(): Disk read failed. [ 111.048405][ T5931] Dev loop6: unable to read RDB block 0 [ 111.051156][ T5931] loop6: unable to read partition table [ 111.061565][ T9415] ldm_validate_partition_table(): Disk read failed. [ 111.065370][ T9415] Dev loop6: unable to read RDB block 0 [ 111.068070][ T9415] loop6: unable to read partition table [ 111.070863][ T9415] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 111.119375][ T9417] syzkaller0: entered promiscuous mode [ 111.121736][ T9417] syzkaller0: entered allmulticast mode [ 111.451849][ T9444] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 111.463365][ T9448] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 111.470489][ T9448] syzkaller0: entered promiscuous mode [ 111.472399][ T9448] syzkaller0: entered allmulticast mode [ 111.946935][ T9463] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 112.154846][ T5933] Bluetooth: hci4: command 0x1003 tx timeout [ 112.157229][ T5291] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 112.388108][ T5291] Bluetooth: latency 26624 > 499 [ 112.477727][ T9494] debugfs: 'ttyS3' already exists in 'caif_serial' [ 112.493413][ T9496] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1384'. [ 112.702227][ T9517] loop6: detected capacity change from 0 to 2640 [ 112.706781][ T9517] ldm_validate_partition_table(): Disk read failed. [ 112.709960][ T9517] Dev loop6: unable to read RDB block 0 [ 112.712820][ T9517] loop6: unable to read partition table [ 112.716691][ T9517] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 112.743680][ T5340] ldm_validate_partition_table(): Disk read failed. [ 112.747465][ T5340] Dev loop6: unable to read RDB block 0 [ 112.750737][ T5340] loop6: unable to read partition table [ 112.774170][ T9525] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 112.812709][ T9533] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1396'. [ 113.090015][ T9551] netlink: 52 bytes leftover after parsing attributes in process `syz.2.1403'. [ 113.123034][ T9554] loop6: detected capacity change from 0 to 2640 [ 113.127181][ T5931] ldm_validate_partition_table(): Disk read failed. [ 113.129817][ T5931] Dev loop6: unable to read RDB block 0 [ 113.132752][ T5931] loop6: unable to read partition table [ 113.141193][ T9554] ldm_validate_partition_table(): Disk read failed. [ 113.145262][ T9554] Dev loop6: unable to read RDB block 0 [ 113.148048][ T9554] loop6: unable to read partition table [ 113.152753][ T9554] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 113.169533][ T9560] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1407'. [ 113.265558][ T9574] netlink: 52 bytes leftover after parsing attributes in process `syz.1.1414'. [ 113.440852][ T5291] Bluetooth: latency 26624 > 499 [ 113.806146][ T9606] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 113.809262][ T9606] IPv6: NLM_F_CREATE should be set when creating new route [ 114.174702][ T9640] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 114.189180][ T9640] syzkaller0: entered promiscuous mode [ 114.191711][ T9640] syzkaller0: entered allmulticast mode [ 114.395450][ T5291] Bluetooth: hci3: command tx timeout [ 114.530003][ T9662] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1451'. [ 114.567751][ T9662] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1451'. [ 114.628900][ T9662] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1451'. [ 115.308654][ T9696] syzkaller0: entered promiscuous mode [ 115.312461][ T9696] syzkaller0: entered allmulticast mode [ 115.346266][ T9690] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 115.348792][ T9690] IPv6: NLM_F_CREATE should be set when creating new route [ 115.514655][ T5291] Bluetooth: hci0: command tx timeout [ 115.543573][ T9707] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1466'. [ 115.551517][ T9707] netlink: 72 bytes leftover after parsing attributes in process `syz.0.1466'. [ 115.580877][ T9710] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue [ 115.588830][ T9710] syzkaller0: entered promiscuous mode [ 115.590790][ T9710] syzkaller0: entered allmulticast mode [ 116.381464][ T46] Bluetooth: hci5: Frame reassembly failed (-90) [ 116.575385][ T9754] syzkaller0: entered promiscuous mode [ 116.577232][ T9754] syzkaller0: entered allmulticast mode [ 116.865174][ T5936] Bluetooth: latency 26624 > 499 [ 116.911512][ T9777] syzkaller0: entered promiscuous mode [ 116.913921][ T9777] syzkaller0: entered allmulticast mode [ 117.182034][ T9800] loop6: detected capacity change from 0 to 2640 [ 117.185985][ T9800] buffer_io_error: 159 callbacks suppressed [ 117.185994][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.190543][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.193088][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.195912][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.198645][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.201200][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.203631][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.206694][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.209794][ T9800] ldm_validate_partition_table(): Disk read failed. [ 117.212254][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.215882][ T9800] Buffer I/O error on dev loop6, logical block 0, async page read [ 117.219324][ T9800] Dev loop6: unable to read RDB block 0 [ 117.221751][ T9800] loop6: unable to read partition table [ 117.224528][ T9800] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 117.240627][ T9803] syzkaller0: entered promiscuous mode [ 117.242878][ T9803] syzkaller0: entered allmulticast mode [ 117.495445][ T9807] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 117.497843][ T9807] IPv6: NLM_F_CREATE should be set when creating new route [ 117.548600][ T9814] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 117.800885][ T9827] loop6: detected capacity change from 0 to 2640 [ 117.803740][ T9827] ldm_validate_partition_table(): Disk read failed. [ 117.811095][ T9827] Dev loop6: unable to read RDB block 0 [ 117.813137][ T9827] loop6: unable to read partition table [ 117.816909][ T9827] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 117.914637][ T5936] Bluetooth: hci4: command 0x1003 tx timeout [ 117.914866][ T5291] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 118.220868][ T9839] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 118.394532][ T5933] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 118.395195][ T5291] Bluetooth: hci5: command 0x1003 tx timeout [ 118.441496][ T9852] loop6: detected capacity change from 0 to 2640 [ 118.446005][ T9852] ldm_validate_partition_table(): Disk read failed. [ 118.448692][ T9852] Dev loop6: unable to read RDB block 0 [ 118.450995][ T9852] loop6: unable to read partition table [ 118.452945][ T9852] loop_reread_partitions: partition scan of loop6 (3Ÿ พ‚ณ˜€) failed (rc=-5) [ 118.562606][ T9865] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 118.811343][ T9899] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 118.874464][ T5933] Bluetooth: hci2: command tx timeout [ 118.977178][ T9902] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 119.021353][ T9906] netlink: 540 bytes leftover after parsing attributes in process `syz.0.1554'. [ 119.416021][ T9933] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 119.759566][ T9992] netlink: 540 bytes leftover after parsing attributes in process `syz.1.1595'. [ 119.795610][ T9981] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 120.275397][T10034] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 121.698319][T10130] syzkaller0: entered promiscuous mode [ 121.703679][T10130] syzkaller0: entered allmulticast mode [ 121.757952][T10132] syzkaller0: entered promiscuous mode [ 121.759817][T10132] syzkaller0: entered allmulticast mode [ 121.872832][T10136] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1658'. [ 121.981018][ T5933] Bluetooth: min 6 > max 0 [ 122.014309][T10153] syzkaller0: entered promiscuous mode [ 122.017113][T10153] syzkaller0: entered allmulticast mode [ 122.030394][T10156] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1669'. [ 122.178396][ T5933] Bluetooth: to_multiplier 0 < 10 [ 122.197455][T10182] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1681'. [ 122.241457][T10193] syzkaller0: entered promiscuous mode [ 122.243328][T10193] syzkaller0: entered allmulticast mode [ 122.404890][T10215] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1696'. [ 122.430202][ T40] audit: type=1400 audit(1764576900.342:213): avc: denied { read } for pid=10211 comm="syz.2.1695" name="file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 122.438494][T10218] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+ [ 122.439842][ T40] audit: type=1400 audit(1764576900.342:214): avc: denied { open } for pid=10211 comm="syz.2.1695" path="/432/file0/file0" dev="fuse" ino=64 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 122.443528][T10218] block device autoloading is deprecated and will be removed. [ 122.461826][ T40] audit: type=1400 audit(1764576900.372:215): avc: denied { ioctl } for pid=10211 comm="syz.2.1695" path="/432/file0/file0" dev="fuse" ino=64 ioctlcmd=0x932 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=blk_file permissive=1 [ 122.461907][T10212] md: md2 stopped. [ 122.604555][ T5933] Bluetooth: to_multiplier 0 < 10 [ 122.968543][T10249] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 123.073006][T10264] syzkaller0: entered promiscuous mode [ 123.074990][T10264] syzkaller0: entered allmulticast mode [ 123.427095][T10293] syzkaller0: entered promiscuous mode [ 123.429671][T10293] syzkaller0: entered allmulticast mode [ 123.446818][T10281] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 123.994593][ T5933] Bluetooth: hci0: command tx timeout [ 124.370067][T10345] netlink: 48 bytes leftover after parsing attributes in process `syz.0.1753'. [ 124.634553][ T5291] Bluetooth: hci1: command tx timeout [ 124.746950][T10365] syzkaller0: entered promiscuous mode [ 124.749385][T10365] syzkaller0: entered allmulticast mode [ 124.923456][T10368] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 125.735932][T10404] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state. [ 125.760812][T10407] netlink: 568 bytes leftover after parsing attributes in process `syz.3.1780'. [ 125.811430][T10409] syzkaller0: entered promiscuous mode [ 125.813961][T10409] syzkaller0: entered allmulticast mode [ 126.013030][T10424] syzkaller0: entered promiscuous mode [ 126.015538][T10424] syzkaller0: entered allmulticast mode [ 126.074551][ T5291] Bluetooth: hci0: command tx timeout [ 126.128179][T10435] overlayfs: failed to create directory ./bus/work (errno: 13); mounting read-only [ 126.132790][T10435] overlayfs: fs on '.' does not support file handles, falling back to index=off,nfs_export=off. [ 126.138124][T10435] overlayfs: failed to get uuid (463/file0, err=-13); falling back to uuid=null. [ 126.379996][T10462] syzkaller0: entered promiscuous mode [ 126.382478][T10462] syzkaller0: entered allmulticast mode [ 126.474571][ T5291] Bluetooth: hci4: command 0x1003 tx timeout [ 126.474740][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 126.592446][T10472] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1806'. [ 126.625833][T10472] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 126.931312][T10522] netlink: 556 bytes leftover after parsing attributes in process `syz.3.1821'. [ 126.937666][T10523] syzkaller0: entered promiscuous mode [ 126.940483][T10523] syzkaller0: entered allmulticast mode [ 126.950683][ T40] audit: type=1400 audit(1764576904.862:216): avc: denied { create } for pid=10524 comm="syz.0.1822" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=kcm_socket permissive=1 [ 126.989753][ T40] audit: type=1400 audit(1764576904.902:217): avc: denied { read } for pid=10527 comm="syz.3.1824" name="nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 126.998273][ T40] audit: type=1400 audit(1764576904.902:218): avc: denied { open } for pid=10527 comm="syz.3.1824" path="/dev/nvram" dev="devtmpfs" ino=631 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nvram_device_t tclass=chr_file permissive=1 [ 127.020163][ T40] audit: type=1400 audit(1764576904.932:219): avc: denied { mount } for pid=10527 comm="syz.3.1824" name="/" dev="ramfs" ino=36820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ramfs_t tclass=filesystem permissive=1 [ 127.024959][T10529] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 127.027875][ T40] audit: type=1400 audit(1764576904.932:220): avc: denied { mounton } for pid=10527 comm="syz.3.1824" path="/file0" dev="ramfs" ino=36821 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:ramfs_t tclass=dir permissive=1 [ 127.030139][T10529] overlayfs: failed to set xattr on upper [ 127.030150][T10529] overlayfs: ...falling back to redirect_dir=nofollow. [ 127.030158][T10529] overlayfs: ...falling back to index=off. [ 127.030164][T10529] overlayfs: ...falling back to uuid=null. [ 127.048651][T10529] overlayfs: overlay with incompat feature 'volatile' cannot be mounted [ 127.057076][ T40] audit: type=1400 audit(1764576904.972:221): avc: denied { listen } for pid=10527 comm="syz.3.1824" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 127.140543][T10528] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1823'. [ 127.176084][T10528] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 127.311792][ T226] Bluetooth: hci4: Frame reassembly failed (-84) [ 127.389566][T10558] netlink: 556 bytes leftover after parsing attributes in process `syz.3.1833'. [ 128.062268][ T40] audit: type=1400 audit(1764576905.972:222): avc: denied { name_bind } for pid=10605 comm="syz.3.1850" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=udp_socket permissive=1 [ 128.486014][T10624] syzkaller0: entered promiscuous mode [ 128.488135][T10624] syzkaller0: entered allmulticast mode [ 128.761702][T10644] syzkaller0: entered promiscuous mode [ 128.763471][T10644] syzkaller0: entered allmulticast mode [ 129.252636][T10670] FAULT_INJECTION: forcing a failure. [ 129.252636][T10670] name failslab, interval 1, probability 0, space 0, times 1 [ 129.258321][T10670] CPU: 1 UID: 0 PID: 10670 Comm: syz.2.1874 Not tainted syzkaller #0 PREEMPT(full) [ 129.258345][T10670] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 129.258355][T10670] Call Trace: [ 129.258372][T10670] [ 129.258379][T10670] dump_stack_lvl+0x16c/0x1f0 [ 129.258419][T10670] should_fail_ex+0x512/0x640 [ 129.258444][T10670] ? fs_reclaim_acquire+0xae/0x150 [ 129.258465][T10670] should_failslab+0xc2/0x120 [ 129.258486][T10670] __kmalloc_noprof+0xdd/0x880 [ 129.258511][T10670] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.258536][T10670] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.258555][T10670] tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.258577][T10670] ? tomoyo_profile+0x47/0x60 [ 129.258601][T10670] tomoyo_path_number_perm+0x245/0x580 [ 129.258617][T10670] ? tomoyo_path_number_perm+0x237/0x580 [ 129.258635][T10670] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 129.258653][T10670] ? find_held_lock+0x2b/0x80 [ 129.258696][T10670] ? find_held_lock+0x2b/0x80 [ 129.258716][T10670] ? hook_file_ioctl_common+0x145/0x410 [ 129.258744][T10670] ? __fget_files+0x20e/0x3c0 [ 129.258766][T10670] security_file_ioctl+0x9b/0x240 [ 129.258786][T10670] __x64_sys_ioctl+0xb7/0x210 [ 129.258818][T10670] do_syscall_64+0xcd/0xfa0 [ 129.258837][T10670] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.258854][T10670] RIP: 0033:0x7fb43a58f7c9 [ 129.258868][T10670] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.258883][T10670] RSP: 002b:00007fb43b4c4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 129.258900][T10670] RAX: ffffffffffffffda RBX: 00007fb43a7e5fa0 RCX: 00007fb43a58f7c9 [ 129.258911][T10670] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 129.258920][T10670] RBP: 00007fb43b4c4090 R08: 0000000000000000 R09: 0000000000000000 [ 129.258930][T10670] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.258939][T10670] R13: 00007fb43a7e6038 R14: 00007fb43a7e5fa0 R15: 00007ffd1ad9f3c8 [ 129.258963][T10670] [ 129.258969][T10670] ERROR: Out of memory at tomoyo_realpath_from_path. [ 129.354676][ T5933] Bluetooth: hci4: Opcode 0x1003 failed: -110 [ 129.418593][T10673] syzkaller0: entered promiscuous mode [ 129.421023][T10673] syzkaller0: entered allmulticast mode [ 129.462612][T10675] syzkaller0: entered promiscuous mode [ 129.465091][T10675] syzkaller0: entered allmulticast mode [ 129.574848][ T40] audit: type=1400 audit(1764576907.492:223): avc: denied { read write } for pid=10678 comm="syz.2.1878" name="video2" dev="devtmpfs" ino=957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 129.584604][ T40] audit: type=1400 audit(1764576907.492:224): avc: denied { open } for pid=10678 comm="syz.2.1878" path="/dev/video2" dev="devtmpfs" ino=957 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:v4l_device_t tclass=chr_file permissive=1 [ 129.595653][ T40] audit: type=1400 audit(1764576907.492:225): avc: denied { read write } for pid=10678 comm="syz.2.1878" name="rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 129.608202][ T40] audit: type=1400 audit(1764576907.492:226): avc: denied { open } for pid=10678 comm="syz.2.1878" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 129.618959][ T40] audit: type=1400 audit(1764576907.492:227): avc: denied { read write } for pid=10678 comm="syz.2.1878" name="uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 129.628751][ T40] audit: type=1400 audit(1764576907.492:228): avc: denied { open } for pid=10678 comm="syz.2.1878" path="/dev/uhid" dev="devtmpfs" ino=1296 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 129.636350][ T40] audit: type=1400 audit(1764576907.492:229): avc: denied { ioctl } for pid=10678 comm="syz.2.1878" path="/dev/infiniband/rdma_cm" dev="devtmpfs" ino=1294 ioctlcmd=0x5664 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:infiniband_device_t tclass=chr_file permissive=1 [ 129.835278][T10694] FAULT_INJECTION: forcing a failure. [ 129.835278][T10694] name failslab, interval 1, probability 0, space 0, times 0 [ 129.839377][T10694] CPU: 0 UID: 0 PID: 10694 Comm: syz.1.1884 Not tainted syzkaller #0 PREEMPT(full) [ 129.839400][T10694] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 129.839410][T10694] Call Trace: [ 129.839417][T10694] [ 129.839424][T10694] dump_stack_lvl+0x16c/0x1f0 [ 129.839445][T10694] should_fail_ex+0x512/0x640 [ 129.839473][T10694] ? fs_reclaim_acquire+0xae/0x150 [ 129.839495][T10694] should_failslab+0xc2/0x120 [ 129.839517][T10694] __kmalloc_noprof+0xdd/0x880 [ 129.839542][T10694] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.839568][T10694] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.839588][T10694] tomoyo_realpath_from_path+0xc2/0x6e0 [ 129.839610][T10694] ? tomoyo_profile+0x47/0x60 [ 129.839641][T10694] tomoyo_path_number_perm+0x245/0x580 [ 129.839657][T10694] ? tomoyo_path_number_perm+0x237/0x580 [ 129.839693][T10694] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 129.839711][T10694] ? find_held_lock+0x2b/0x80 [ 129.839754][T10694] ? find_held_lock+0x2b/0x80 [ 129.839775][T10694] ? hook_file_ioctl_common+0x145/0x410 [ 129.839804][T10694] ? __fget_files+0x20e/0x3c0 [ 129.839849][T10694] security_file_ioctl+0x9b/0x240 [ 129.839870][T10694] __x64_sys_ioctl+0xb7/0x210 [ 129.839896][T10694] do_syscall_64+0xcd/0xfa0 [ 129.839915][T10694] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 129.839934][T10694] RIP: 0033:0x7fa60c18f7c9 [ 129.839948][T10694] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 129.839964][T10694] RSP: 002b:00007fa60a3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 129.839981][T10694] RAX: ffffffffffffffda RBX: 00007fa60c3e5fa0 RCX: 00007fa60c18f7c9 [ 129.839992][T10694] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 129.840002][T10694] RBP: 00007fa60a3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 129.840012][T10694] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 129.840021][T10694] R13: 00007fa60c3e6038 R14: 00007fa60c3e5fa0 R15: 00007ffc6dd01f58 [ 129.840045][T10694] [ 129.840390][T10694] ERROR: Out of memory at tomoyo_realpath_from_path. [ 129.842892][T10699] syzkaller0: entered promiscuous mode [ 129.854256][T10694] kvm: MONITOR instruction emulated as NOP! [ 129.857719][T10699] syzkaller0: entered allmulticast mode [ 130.118427][T10721] netlink: 540 bytes leftover after parsing attributes in process `syz.1.1892'. [ 130.217244][T10735] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 130.232430][T10729] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2142054965 (4284109930 ns) > initial count (2850433972 ns). Using initial count to start timer. [ 130.239973][T10729] FAULT_INJECTION: forcing a failure. [ 130.239973][T10729] name failslab, interval 1, probability 0, space 0, times 0 [ 130.245941][T10729] CPU: 0 UID: 0 PID: 10729 Comm: syz.0.1896 Not tainted syzkaller #0 PREEMPT(full) [ 130.245956][T10729] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 130.245962][T10729] Call Trace: [ 130.245966][T10729] [ 130.245970][T10729] dump_stack_lvl+0x16c/0x1f0 [ 130.245983][T10729] should_fail_ex+0x512/0x640 [ 130.245996][T10729] ? fs_reclaim_acquire+0xae/0x150 [ 130.246009][T10729] should_failslab+0xc2/0x120 [ 130.246022][T10729] __kmalloc_noprof+0xdd/0x880 [ 130.246037][T10729] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.246053][T10729] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.246064][T10729] tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.246077][T10729] ? tomoyo_profile+0x47/0x60 [ 130.246092][T10729] tomoyo_path_number_perm+0x245/0x580 [ 130.246107][T10729] ? tomoyo_path_number_perm+0x237/0x580 [ 130.246118][T10729] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 130.246128][T10729] ? find_held_lock+0x2b/0x80 [ 130.246152][T10729] ? find_held_lock+0x2b/0x80 [ 130.246165][T10729] ? hook_file_ioctl_common+0x145/0x410 [ 130.246182][T10729] ? __fget_files+0x20e/0x3c0 [ 130.246195][T10729] security_file_ioctl+0x9b/0x240 [ 130.246208][T10729] __x64_sys_ioctl+0xb7/0x210 [ 130.246223][T10729] do_syscall_64+0xcd/0xfa0 [ 130.246234][T10729] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.246245][T10729] RIP: 0033:0x7f492d38f7c9 [ 130.246254][T10729] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.246265][T10729] RSP: 002b:00007f492e206038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 130.246275][T10729] RAX: ffffffffffffffda RBX: 00007f492d5e5fa0 RCX: 00007f492d38f7c9 [ 130.246282][T10729] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 130.246287][T10729] RBP: 00007f492e206090 R08: 0000000000000000 R09: 0000000000000000 [ 130.246293][T10729] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 130.246299][T10729] R13: 00007f492d5e6038 R14: 00007f492d5e5fa0 R15: 00007ffdab31eec8 [ 130.246312][T10729] [ 130.246317][T10729] ERROR: Out of memory at tomoyo_realpath_from_path. [ 130.321068][ T40] audit: type=1400 audit(1764576908.232:230): avc: denied { add_name } for pid=10747 comm="syz.3.1901" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 130.321697][T10748] o2cb: This node has not been configured. [ 130.321727][T10748] o2cb: Cluster check failed. Fix errors before retrying. [ 130.321747][T10748] (syz.3.1901,10748,3):user_dlm_register:674 ERROR: status = -22 [ 130.321769][T10748] (syz.3.1901,10748,3):dlmfs_mkdir:437 ERROR: Error -22 could not register domain "file0" [ 130.323186][T10748] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1901'. [ 130.328823][ T40] audit: type=1400 audit(1764576908.232:231): avc: denied { create } for pid=10747 comm="syz.3.1901" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 130.333065][T10748] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1901'. [ 130.433975][T10762] netlink: 540 bytes leftover after parsing attributes in process `syz.1.1906'. [ 130.588180][T10775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1911'. [ 130.591157][T10775] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1911'. [ 130.610612][T10771] capability: warning: `syz.0.1910' uses deprecated v2 capabilities in a way that may be insecure [ 130.678898][T10790] netlink: 540 bytes leftover after parsing attributes in process `syz.1.1917'. [ 130.799495][T10807] mkiss: ax0: crc mode is auto. [ 130.810065][T10807] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 130.893972][T10811] FAULT_INJECTION: forcing a failure. [ 130.893972][T10811] name failslab, interval 1, probability 0, space 0, times 0 [ 130.898687][T10811] CPU: 2 UID: 0 PID: 10811 Comm: syz.1.1924 Not tainted syzkaller #0 PREEMPT(full) [ 130.898703][T10811] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 130.898709][T10811] Call Trace: [ 130.898713][T10811] [ 130.898717][T10811] dump_stack_lvl+0x16c/0x1f0 [ 130.898732][T10811] should_fail_ex+0x512/0x640 [ 130.898746][T10811] ? fs_reclaim_acquire+0xae/0x150 [ 130.898759][T10811] should_failslab+0xc2/0x120 [ 130.898772][T10811] __kmalloc_noprof+0xdd/0x880 [ 130.898787][T10811] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.898802][T10811] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.898814][T10811] tomoyo_realpath_from_path+0xc2/0x6e0 [ 130.898829][T10811] ? tomoyo_profile+0x47/0x60 [ 130.898844][T10811] tomoyo_path_number_perm+0x245/0x580 [ 130.898854][T10811] ? tomoyo_path_number_perm+0x237/0x580 [ 130.898865][T10811] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 130.898876][T10811] ? find_held_lock+0x2b/0x80 [ 130.898901][T10811] ? find_held_lock+0x2b/0x80 [ 130.898913][T10811] ? hook_file_ioctl_common+0x145/0x410 [ 130.898930][T10811] ? __fget_files+0x20e/0x3c0 [ 130.898943][T10811] security_file_ioctl+0x9b/0x240 [ 130.898956][T10811] __x64_sys_ioctl+0xb7/0x210 [ 130.898972][T10811] do_syscall_64+0xcd/0xfa0 [ 130.898983][T10811] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 130.898994][T10811] RIP: 0033:0x7fa60c18f7c9 [ 130.899002][T10811] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 130.899012][T10811] RSP: 002b:00007fa60a3f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 130.899022][T10811] RAX: ffffffffffffffda RBX: 00007fa60c3e5fa0 RCX: 00007fa60c18f7c9 [ 130.899029][T10811] RDX: 0000200000000300 RSI: 000000004008ae89 RDI: 0000000000000005 [ 130.899035][T10811] RBP: 00007fa60a3f6090 R08: 0000000000000000 R09: 0000000000000000 [ 130.899041][T10811] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 130.899047][T10811] R13: 00007fa60c3e6038 R14: 00007fa60c3e5fa0 R15: 00007ffc6dd01f58 [ 130.899060][T10811] [ 130.899064][T10811] ERROR: Out of memory at tomoyo_realpath_from_path. [ 130.991189][T10822] syzkaller0: entered promiscuous mode [ 130.993473][T10822] syzkaller0: entered allmulticast mode [ 131.218294][T10844] FAULT_INJECTION: forcing a failure. [ 131.218294][T10844] name failslab, interval 1, probability 0, space 0, times 0 [ 131.222474][T10844] CPU: 3 UID: 0 PID: 10844 Comm: syz.3.1934 Not tainted syzkaller #0 PREEMPT(full) [ 131.222489][T10844] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 131.222495][T10844] Call Trace: [ 131.222499][T10844] [ 131.222503][T10844] dump_stack_lvl+0x16c/0x1f0 [ 131.222517][T10844] should_fail_ex+0x512/0x640 [ 131.222531][T10844] ? fs_reclaim_acquire+0xae/0x150 [ 131.222545][T10844] should_failslab+0xc2/0x120 [ 131.222558][T10844] __kmalloc_noprof+0xdd/0x880 [ 131.222573][T10844] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 131.222589][T10844] ? tomoyo_realpath_from_path+0xc2/0x6e0 [ 131.222601][T10844] tomoyo_realpath_from_path+0xc2/0x6e0 [ 131.222614][T10844] ? tomoyo_profile+0x47/0x60 [ 131.222629][T10844] tomoyo_path_number_perm+0x245/0x580 [ 131.222639][T10844] ? tomoyo_path_number_perm+0x237/0x580 [ 131.222650][T10844] ? __pfx_tomoyo_path_number_perm+0x10/0x10 [ 131.222661][T10844] ? find_held_lock+0x2b/0x80 [ 131.222685][T10844] ? find_held_lock+0x2b/0x80 [ 131.222697][T10844] ? hook_file_ioctl_common+0x145/0x410 [ 131.222714][T10844] ? __fget_files+0x20e/0x3c0 [ 131.222728][T10844] security_file_ioctl+0x9b/0x240 [ 131.222741][T10844] __x64_sys_ioctl+0xb7/0x210 [ 131.222757][T10844] do_syscall_64+0xcd/0xfa0 [ 131.222768][T10844] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 131.222779][T10844] RIP: 0033:0x7f5846f8f7c9 [ 131.222788][T10844] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 131.222798][T10844] RSP: 002b:00007f5847e4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 131.222808][T10844] RAX: ffffffffffffffda RBX: 00007f58471e5fa0 RCX: 00007f5846f8f7c9 [ 131.222815][T10844] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 131.222821][T10844] RBP: 00007f5847e4a090 R08: 0000000000000000 R09: 0000000000000000 [ 131.222827][T10844] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 131.222832][T10844] R13: 00007f58471e6038 R14: 00007f58471e5fa0 R15: 00007ffcf6156f18 [ 131.222850][T10844] [ 131.222855][T10844] ERROR: Out of memory at tomoyo_realpath_from_path. [ 131.493707][T10853] ecryptfs_validate_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 131.498752][T10853] Error validating options; rc = [-22] [ 131.520491][T10853] netlink: 'syz.3.1937': attribute type 21 has an invalid length. [ 131.524016][T10853] IPv6: NLM_F_CREATE should be specified when creating new route [ 131.827907][T10879] syzkaller0: entered promiscuous mode [ 131.829684][T10879] syzkaller0: entered allmulticast mode [ 132.334150][T10925] bond1: option arp_interval: mode dependency failed, not supported in mode balance-alb(6) [ 132.342194][T10925] bond1 (unregistering): Released all slaves [ 132.558272][ T1420] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.265980][T10971] ------------[ cut here ]------------ [ 133.267755][T10971] WARNING: CPU: 0 PID: 10971 at arch/x86/kvm/lapic.c:3483 kvm_apic_accept_events+0x444/0x4c0 [ 133.270988][T10971] Modules linked in: [ 133.272557][T10971] CPU: 0 UID: 0 PID: 10971 Comm: syz.3.1979 Not tainted syzkaller #0 PREEMPT(full) [ 133.275849][T10971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 133.279290][T10971] RIP: 0010:kvm_apic_accept_events+0x444/0x4c0 [ 133.281280][T10971] Code: 34 03 00 00 02 00 00 00 e9 ae fd ff ff 4c 89 ef e8 b1 af de 00 e9 33 fc ff ff e8 77 af de 00 e9 17 fd ff ff e8 ed 0b 76 00 90 <0f> 0b 90 e9 24 fd ff ff e8 8f af de 00 e9 de fb ff ff e8 55 af de [ 133.287489][T10971] RSP: 0018:ffffc900265ffc38 EFLAGS: 00010283 [ 133.289434][T10971] RAX: 00000000000006ec RBX: 0000000000000002 RCX: ffffc90007994000 [ 133.291846][T10971] RDX: 0000000000080000 RSI: ffffffff8146dbf3 RDI: 0000000000000005 [ 133.294588][T10971] RBP: ffff88803a53c800 R08: 0000000000000005 R09: 0000000000000002 [ 133.297126][T10971] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000001 [ 133.299721][T10971] R13: ffff88803a53c8e0 R14: ffff88803b6bd2b0 R15: 0000000000000001 [ 133.302269][T10971] FS: 00007f5847e4a6c0(0000) GS:ffff8880d6a05000(0000) knlGS:0000000000000000 [ 133.305415][T10971] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 133.307537][T10971] CR2: 0000000000000000 CR3: 000000005604d000 CR4: 0000000000352ef0 [ 133.310146][T10971] Call Trace: [ 133.311475][T10971] [ 133.312497][T10971] kvm_arch_vcpu_ioctl_get_mpstate+0x103/0x450 [ 133.314919][T10971] kvm_vcpu_ioctl+0x7b8/0x1690 [ 133.316494][T10971] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 133.318254][T10971] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 133.320205][T10971] ? do_vfs_ioctl+0x128/0x14f0 [ 133.321725][T10971] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 133.323349][T10971] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 133.325779][T10971] ? hook_file_ioctl_common+0x145/0x410 [ 133.327606][T10971] ? selinux_file_ioctl+0x180/0x270 [ 133.329432][T10971] ? selinux_file_ioctl+0xb4/0x270 [ 133.331107][T10971] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 133.333559][T10971] __x64_sys_ioctl+0x18e/0x210 [ 133.336109][T10971] do_syscall_64+0xcd/0xfa0 [ 133.337955][T10971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.340317][T10971] RIP: 0033:0x7f5846f8f7c9 [ 133.342146][T10971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.350295][T10971] RSP: 002b:00007f5847e4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.353998][T10971] RAX: ffffffffffffffda RBX: 00007f58471e5fa0 RCX: 00007f5846f8f7c9 [ 133.357889][T10971] RDX: 0000200000000040 RSI: 000000008004ae98 RDI: 0000000000000006 [ 133.361284][T10971] RBP: 00007f5847013f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.365048][T10971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.368402][T10971] R13: 00007f58471e6038 R14: 00007f58471e5fa0 R15: 00007ffcf6156f18 [ 133.371847][T10971] [ 133.373247][T10971] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 133.376369][T10971] CPU: 0 UID: 0 PID: 10971 Comm: syz.3.1979 Not tainted syzkaller #0 PREEMPT(full) [ 133.380323][T10971] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 133.384723][T10971] Call Trace: [ 133.386019][T10971] [ 133.387162][T10971] dump_stack_lvl+0x3d/0x1f0 [ 133.388930][T10971] vpanic+0x640/0x6f0 [ 133.390480][T10971] ? kvm_apic_accept_events+0x444/0x4c0 [ 133.392633][T10971] panic+0xca/0xd0 [ 133.394083][T10971] ? __pfx_panic+0x10/0x10 [ 133.395814][T10971] check_panic_on_warn+0xab/0xb0 [ 133.397449][T10971] __warn+0xf6/0x3c0 [ 133.398712][T10971] ? kvm_apic_accept_events+0x444/0x4c0 [ 133.400683][T10971] report_bug+0x3c3/0x580 [ 133.402303][T10971] ? kvm_apic_accept_events+0x444/0x4c0 [ 133.404124][T10971] handle_bug+0x184/0x210 [ 133.405549][T10971] exc_invalid_op+0x17/0x50 [ 133.407019][T10971] asm_exc_invalid_op+0x1a/0x20 [ 133.408592][T10971] RIP: 0010:kvm_apic_accept_events+0x444/0x4c0 [ 133.410616][T10971] Code: 34 03 00 00 02 00 00 00 e9 ae fd ff ff 4c 89 ef e8 b1 af de 00 e9 33 fc ff ff e8 77 af de 00 e9 17 fd ff ff e8 ed 0b 76 00 90 <0f> 0b 90 e9 24 fd ff ff e8 8f af de 00 e9 de fb ff ff e8 55 af de [ 133.416640][T10971] RSP: 0018:ffffc900265ffc38 EFLAGS: 00010283 [ 133.418592][T10971] RAX: 00000000000006ec RBX: 0000000000000002 RCX: ffffc90007994000 [ 133.421138][T10971] RDX: 0000000000080000 RSI: ffffffff8146dbf3 RDI: 0000000000000005 [ 133.423667][T10971] RBP: ffff88803a53c800 R08: 0000000000000005 R09: 0000000000000002 [ 133.426304][T10971] R10: 0000000000000002 R11: 0000000000000001 R12: 0000000000000001 [ 133.428883][T10971] R13: ffff88803a53c8e0 R14: ffff88803b6bd2b0 R15: 0000000000000001 [ 133.431457][T10971] ? kvm_apic_accept_events+0x443/0x4c0 [ 133.433366][T10971] ? kvm_apic_accept_events+0x443/0x4c0 [ 133.435151][T10971] kvm_arch_vcpu_ioctl_get_mpstate+0x103/0x450 [ 133.437158][T10971] kvm_vcpu_ioctl+0x7b8/0x1690 [ 133.438724][T10971] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 133.440433][T10971] ? __sanitizer_cov_trace_switch+0x54/0x90 [ 133.442339][T10971] ? do_vfs_ioctl+0x128/0x14f0 [ 133.444147][T10971] ? __pfx_do_vfs_ioctl+0x10/0x10 [ 133.445829][T10971] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 133.448132][T10971] ? hook_file_ioctl_common+0x145/0x410 [ 133.449941][T10971] ? selinux_file_ioctl+0x180/0x270 [ 133.451847][T10971] ? selinux_file_ioctl+0xb4/0x270 [ 133.453546][T10971] ? __pfx_kvm_vcpu_ioctl+0x10/0x10 [ 133.455272][T10971] __x64_sys_ioctl+0x18e/0x210 [ 133.456868][T10971] do_syscall_64+0xcd/0xfa0 [ 133.458374][T10971] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 133.460314][T10971] RIP: 0033:0x7f5846f8f7c9 [ 133.461794][T10971] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 133.467975][T10971] RSP: 002b:00007f5847e4a038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 133.470698][T10971] RAX: ffffffffffffffda RBX: 00007f58471e5fa0 RCX: 00007f5846f8f7c9 [ 133.473301][T10971] RDX: 0000200000000040 RSI: 000000008004ae98 RDI: 0000000000000006 [ 133.475888][T10971] RBP: 00007f5847013f91 R08: 0000000000000000 R09: 0000000000000000 [ 133.478449][T10971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 133.481012][T10971] R13: 00007f58471e6038 R14: 00007f58471e5fa0 R15: 00007ffcf6156f18 [ 133.483554][T10971] [ 133.485481][T10971] Kernel Offset: disabled [ 133.486879][T10971] Rebooting in 86400 seconds..