Warning: Permanently added '10.128.0.20' (ED25519) to the list of known hosts. 2025/07/30 10:37:41 ignoring optional flag "sandboxArg"="0" 2025/07/30 10:37:42 parsed 1 programs [ 54.178733][ T36] audit: type=1400 audit(1753871864.260:106): avc: denied { unlink } for pid=402 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 54.303453][ T402] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 55.848907][ T439] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.856045][ T439] bridge0: port 1(bridge_slave_0) entered disabled state [ 55.863124][ T439] bridge_slave_0: entered allmulticast mode [ 55.869563][ T439] bridge_slave_0: entered promiscuous mode [ 55.894235][ T439] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.901326][ T439] bridge0: port 2(bridge_slave_1) entered disabled state [ 55.908466][ T439] bridge_slave_1: entered allmulticast mode [ 55.914714][ T439] bridge_slave_1: entered promiscuous mode [ 55.969855][ T439] bridge0: port 2(bridge_slave_1) entered blocking state [ 55.976940][ T439] bridge0: port 2(bridge_slave_1) entered forwarding state [ 55.984208][ T439] bridge0: port 1(bridge_slave_0) entered blocking state [ 55.991284][ T439] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.014819][ T13] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.022339][ T13] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.031751][ T308] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.038836][ T308] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.048278][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.055367][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.079936][ T439] veth0_vlan: entered promiscuous mode [ 56.090106][ T439] veth1_macvtap: entered promiscuous mode [ 56.133428][ T36] audit: type=1400 audit(1753871866.210:107): avc: denied { create } for pid=453 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 56.156787][ T308] bridge_slave_1: left allmulticast mode [ 56.162479][ T308] bridge_slave_1: left promiscuous mode [ 56.169113][ T308] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.177079][ T308] bridge_slave_0: left allmulticast mode [ 56.182726][ T308] bridge_slave_0: left promiscuous mode [ 56.188512][ T308] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.358171][ T308] veth1_macvtap: left promiscuous mode [ 56.363744][ T308] veth0_vlan: left promiscuous mode [ 56.480403][ T36] audit: type=1401 audit(1753871866.560:108): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" 2025/07/30 10:37:46 executed programs: 0 [ 56.770352][ T469] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.777590][ T469] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.784696][ T469] bridge_slave_0: entered allmulticast mode [ 56.791213][ T469] bridge_slave_0: entered promiscuous mode [ 56.800801][ T469] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.807882][ T469] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.815087][ T469] bridge_slave_1: entered allmulticast mode [ 56.821364][ T469] bridge_slave_1: entered promiscuous mode [ 56.877141][ T469] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.884197][ T469] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.891531][ T469] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.898621][ T469] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.919092][ T332] bridge0: port 1(bridge_slave_0) entered disabled state [ 56.927065][ T332] bridge0: port 2(bridge_slave_1) entered disabled state [ 56.942020][ T332] bridge0: port 1(bridge_slave_0) entered blocking state [ 56.949099][ T332] bridge0: port 1(bridge_slave_0) entered forwarding state [ 56.958506][ T13] bridge0: port 2(bridge_slave_1) entered blocking state [ 56.965621][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state [ 56.992676][ T469] veth0_vlan: entered promiscuous mode [ 57.003986][ T469] veth1_macvtap: entered promiscuous mode [ 57.033393][ T36] audit: type=1400 audit(1753871867.110:109): avc: denied { read } for pid=479 comm="syz.2.16" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 57.035991][ T480] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. [ 57.055948][ T36] audit: type=1400 audit(1753871867.110:110): avc: denied { open } for pid=479 comm="syz.2.16" path="/dev/kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 57.096307][ T36] audit: type=1400 audit(1753871867.110:111): avc: denied { ioctl } for pid=479 comm="syz.2.16" path="/dev/kvm" dev="devtmpfs" ino=13 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 57.196242][ T483] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 57.237930][ T36] audit: type=1400 audit(1753871867.320:112): avc: denied { write } for pid=482 comm="syz.2.17" name="kvm" dev="devtmpfs" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 57.257898][ T483] ------------[ cut here ]------------ [ 57.265812][ T483] WARNING: CPU: 1 PID: 483 at arch/x86/kvm/../../../virt/kvm/kvm_main.c:3574 kvm_read_guest_offset_cached+0x26d/0x2a0 [ 57.278214][ T483] Modules linked in: [ 57.282151][ T483] CPU: 1 UID: 0 PID: 483 Comm: syz.2.17 Not tainted 6.12.38-syzkaller-08807-ge24b0a3d324b #0 e058927039b79ed7f25e35848f23e4fac3ab8389 [ 57.295957][ T483] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 57.306110][ T483] RIP: 0010:kvm_read_guest_offset_cached+0x26d/0x2a0 [ 57.312979][ T483] Code: bb f2 ff ff ff 0f 44 d8 31 ff e8 3e ca 71 00 89 d8 48 83 c4 28 5b 41 5c 41 5d 41 5e 41 5f 5d e9 09 e5 74 04 cc e8 43 c5 71 00 <0f> 0b b8 ea ff ff ff eb de 4c 8b 75 c0 4c 03 75 d0 e8 2d c5 71 00 [ 57.332836][ T483] RSP: 0018:ffffc90000f2f3a0 EFLAGS: 00010293 [ 57.338962][ T483] RAX: ffffffff8114075d RBX: 0000000000000004 RCX: ffff88811d6ccc00 [ 57.346994][ T483] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000008 [ 57.355024][ T483] RBP: ffffc90000f2f3f0 R08: 0000000000000004 R09: 1ffff11023ac5007 [ 57.363015][ T483] R10: dffffc0000000000 R11: ffffed1023ac5008 R12: ffff88811d629128 [ 57.371076][ T483] R13: 0000000000000000 R14: ffffc9000078c4a8 R15: 0000000000000008 [ 57.379124][ T483] FS: 00007f64ac3106c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 57.388098][ T483] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 57.394700][ T483] CR2: 0000000000000000 CR3: 000000011d200000 CR4: 00000000003526b0 [ 57.402736][ T483] Call Trace: [ 57.406073][ T483] [ 57.409026][ T483] kvm_arch_can_dequeue_async_page_present+0x142/0x300 [ 57.416014][ T483] ? __cfi_kvm_arch_can_dequeue_async_page_present+0x10/0x10 [ 57.423423][ T483] ? kvm_vcpu_has_events+0x49/0x630 [ 57.428689][ T483] kvm_check_async_pf_completion+0xf9/0x3d0 [ 57.434621][ T483] vcpu_run+0x2eab/0x7260 [ 57.439043][ T483] ? signal_pending+0xc0/0xc0 [ 57.443764][ T483] ? __kasan_check_write+0x18/0x20 [ 57.448952][ T483] ? xfd_validate_state+0x68/0x150 [ 57.454182][ T483] ? fpu_swap_kvm_fpstate+0x93/0x5f0 [ 57.459535][ T483] ? __kasan_check_write+0x18/0x20 [ 57.464677][ T483] ? fpregs_mark_activate+0x69/0x160 [ 57.470036][ T483] ? fpu_swap_kvm_fpstate+0x44d/0x5f0 [ 57.475598][ T483] kvm_arch_vcpu_ioctl_run+0x101a/0x1aa0 [ 57.481304][ T483] ? __cfi___futex_queue+0x10/0x10 [ 57.486483][ T483] ? futex_wait_setup+0x1bc/0x260 [ 57.491628][ T483] ? __cfi_kvm_arch_vcpu_ioctl_run+0x10/0x10 [ 57.497678][ T483] ? futex_unqueue+0x136/0x160 [ 57.502493][ T483] ? __futex_wait+0x218/0x2a0 [ 57.507224][ T483] ? ioctl_has_perm+0x1aa/0x4d0 [ 57.512097][ T483] ? __asan_memcpy+0x5a/0x80 [ 57.516777][ T483] ? ioctl_has_perm+0x3e0/0x4d0 [ 57.521666][ T483] ? has_cap_mac_admin+0xd0/0xd0 [ 57.526642][ T483] ? __kasan_check_write+0x18/0x20 [ 57.531784][ T483] ? mutex_lock_killable+0x92/0x1c0 [ 57.537023][ T483] ? __cfi_mutex_lock_killable+0x10/0x10 [ 57.542687][ T483] ? futex_wait+0x29a/0x7a0 [ 57.547256][ T483] kvm_vcpu_ioctl+0x96f/0xee0 [ 57.551975][ T483] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 57.557228][ T483] ? madvise_walk_vmas+0x27a/0x2e0 [ 57.562394][ T483] ? do_futex+0x309/0x500 [ 57.566773][ T483] ? __cfi_do_futex+0x10/0x10 [ 57.571492][ T483] ? __kasan_check_write+0x18/0x20 [ 57.576688][ T483] ? up_read+0x26/0x1d0 [ 57.580877][ T483] ? __fget_files+0x2c5/0x340 [ 57.585606][ T483] ? bpf_lsm_file_ioctl+0xd/0x20 [ 57.590583][ T483] ? security_file_ioctl+0x34/0xd0 [ 57.595764][ T483] ? __cfi_kvm_vcpu_ioctl+0x10/0x10 [ 57.601006][ T483] __se_sys_ioctl+0x135/0x1b0 [ 57.605729][ T483] __x64_sys_ioctl+0x7f/0xa0 [ 57.610430][ T483] x64_sys_call+0x1878/0x2ee0 [ 57.615252][ T483] do_syscall_64+0x58/0xf0 [ 57.619718][ T483] ? clear_bhb_loop+0x50/0xa0 [ 57.624409][ T483] entry_SYSCALL_64_after_hwframe+0x76/0x7e [ 57.630466][ T483] RIP: 0033:0x7f64ab58e929 [ 57.634965][ T483] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 57.654761][ T483] RSP: 002b:00007f64ac310038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 57.663254][ T483] RAX: ffffffffffffffda RBX: 00007f64ab7b5fa0 RCX: 00007f64ab58e929 [ 57.671434][ T483] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000005 [ 57.679514][ T483] RBP: 00007f64ab610b39 R08: 0000000000000000 R09: 0000000000000000 [ 57.687551][ T483] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 57.695580][ T483] R13: 0000000000000000 R14: 00007f64ab7b5fa0 R15: 00007ffe78d08b88 [ 57.703670][ T483] [ 57.706728][ T483] ---[ end trace 0000000000000000 ]--- [ 58.076722][ T486] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 58.982060][ T489] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 59.855873][ T492] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 60.785861][ T496] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 60.965984][ T500] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. 2025/07/30 10:37:51 executed programs: 9 [ 61.845849][ T503] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 62.735868][ T506] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 63.555804][ T509] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 64.465696][ T512] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 65.365906][ T515] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. [ 66.225896][ T518] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer. 2025/07/30 10:37:57 executed programs: 15 [ 67.145830][ T521] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=2249738109 (287966477952 ns) > initial count (248453880064 ns). Using initial count to start timer.