Warning: Permanently added '[localhost]:5255' (ED25519) to the list of known hosts.
[ 60.550170][ T40] audit: type=1400 audit(1767614002.522:62): avc: denied { execute } for pid=5929 comm="sh" name="syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 60.558446][ T40] audit: type=1400 audit(1767614002.532:63): avc: denied { execute_no_trans } for pid=5929 comm="sh" path="/syz-execprog" dev="sda1" ino=2020 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
2026/01/05 11:53:24 parsed 1 programs
[ 62.084532][ T40] audit: type=1400 audit(1767614004.052:64): avc: denied { node_bind } for pid=5929 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 64.307639][ T40] audit: type=1400 audit(1767614006.282:65): avc: denied { mounton } for pid=5941 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 64.319187][ T40] audit: type=1400 audit(1767614006.292:66): avc: denied { mount } for pid=5941 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 64.329087][ T5941] cgroup: Unknown subsys name 'net'
[ 64.333795][ T40] audit: type=1400 audit(1767614006.302:67): avc: denied { unmount } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 64.489967][ T5941] cgroup: Unknown subsys name 'cpuset'
[ 64.496814][ T5941] cgroup: Unknown subsys name 'rlimit'
[ 64.657486][ T40] audit: type=1400 audit(1767614006.632:68): avc: denied { setattr } for pid=5941 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=849 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 64.675121][ T40] audit: type=1400 audit(1767614006.642:69): avc: denied { create } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 64.682791][ T40] audit: type=1400 audit(1767614006.642:70): avc: denied { write } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 64.693064][ T40] audit: type=1400 audit(1767614006.642:71): avc: denied { read } for pid=5941 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 64.752124][ T5944] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 65.641533][ T5941] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 67.420949][ T40] kauditd_printk_skb: 10 callbacks suppressed
[ 67.420964][ T40] audit: type=1400 audit(1767614009.392:82): avc: denied { execmem } for pid=5948 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 67.429889][ T40] audit: type=1400 audit(1767614009.402:83): avc: denied { read } for pid=5949 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 67.437310][ T40] audit: type=1400 audit(1767614009.402:84): avc: denied { open } for pid=5949 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 67.445686][ T40] audit: type=1400 audit(1767614009.402:85): avc: denied { mounton } for pid=5949 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 67.489869][ T40] audit: type=1400 audit(1767614009.462:86): avc: denied { mount } for pid=5949 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 67.497372][ T40] audit: type=1400 audit(1767614009.462:87): avc: denied { mounton } for pid=5949 comm="syz-executor" path="/syzkaller.kVkPlr/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1
[ 67.508349][ T40] audit: type=1400 audit(1767614009.462:88): avc: denied { mount } for pid=5949 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1
[ 67.517342][ T40] audit: type=1400 audit(1767614009.472:89): avc: denied { mounton } for pid=5949 comm="syz-executor" path="/syzkaller.kVkPlr/syz-tmp/newroot/sys/kernel/debug" dev="debugfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:debugfs_t tclass=dir permissive=1
[ 67.528842][ T40] audit: type=1400 audit(1767614009.472:90): avc: denied { mounton } for pid=5949 comm="syz-executor" path="/syzkaller.kVkPlr/syz-tmp/newroot/proc/sys/fs/binfmt_misc" dev="proc" ino=7220 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:sysctl_fs_t tclass=dir permissive=1
[ 67.540463][ T40] audit: type=1400 audit(1767614009.472:91): avc: denied { unmount } for pid=5949 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 67.553861][ T5949] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 69.317486][ T6001] chnl_net:caif_netlink_parms(): no params data found
[ 69.396013][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.399626][ T6001] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.402474][ T6001] bridge_slave_0: entered allmulticast mode
[ 69.405614][ T6001] bridge_slave_0: entered promiscuous mode
[ 69.409879][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.412253][ T6001] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.414508][ T6001] bridge_slave_1: entered allmulticast mode
[ 69.417720][ T6001] bridge_slave_1: entered promiscuous mode
[ 69.440287][ T6001] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.447449][ T6001] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.473215][ T6001] team0: Port device team_slave_0 added
[ 69.478409][ T6001] team0: Port device team_slave_1 added
[ 69.507274][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.509925][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 69.518401][ T6001] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.524582][ T6001] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.526955][ T6001] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 69.535361][ T6001] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.560775][ T6001] hsr_slave_0: entered promiscuous mode
[ 69.563804][ T6001] hsr_slave_1: entered promiscuous mode
[ 69.684178][ T6001] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 69.691573][ T6001] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 69.696517][ T6001] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 69.701440][ T6001] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 69.722918][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.725736][ T6001] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.728965][ T6001] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.731292][ T6001] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.768926][ T6001] 8021q: adding VLAN 0 to HW filter on device bond0
[ 69.784637][ T90] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.790308][ T90] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.802861][ T6001] 8021q: adding VLAN 0 to HW filter on device team0
[ 69.811587][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.814630][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 69.822883][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.825957][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 69.977741][ T6001] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 70.008020][ T6001] veth0_vlan: entered promiscuous mode
[ 70.013440][ T6001] veth1_vlan: entered promiscuous mode
[ 70.029736][ T6001] veth0_macvtap: entered promiscuous mode
[ 70.033835][ T6001] veth1_macvtap: entered promiscuous mode
[ 70.045144][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 70.053338][ T6001] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 70.062983][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.066101][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.070357][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.073528][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 70.175683][ T6025] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 70.179912][ T6025] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 70.182902][ T90] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.187777][ T6025] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 70.192996][ T6025] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 70.200847][ T6025] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 70.266205][ T90] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.353282][ T90] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.415047][ T90] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 70.590577][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.593955][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 70.616624][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 70.620157][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2026/01/05 11:53:33 executed programs: 0
[ 71.067306][ T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 71.071222][ T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 71.076641][ T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 71.081064][ T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 71.084326][ T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 71.235457][ T6046] chnl_net:caif_netlink_parms(): no params data found
[ 71.319046][ T6046] bridge0: port 1(bridge_slave_0) entered blocking state
[ 71.321666][ T6046] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.324083][ T6046] bridge_slave_0: entered allmulticast mode
[ 71.327143][ T6046] bridge_slave_0: entered promiscuous mode
[ 71.331171][ T6046] bridge0: port 2(bridge_slave_1) entered blocking state
[ 71.333754][ T6046] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.336601][ T6046] bridge_slave_1: entered allmulticast mode
[ 71.339620][ T6046] bridge_slave_1: entered promiscuous mode
[ 71.361001][ T6046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 71.367875][ T6046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 71.394460][ T6046] team0: Port device team_slave_0 added
[ 71.400088][ T6046] team0: Port device team_slave_1 added
[ 71.423344][ T6046] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 71.426307][ T6046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 71.435931][ T6046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 71.440578][ T6046] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 71.442870][ T6046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 71.451605][ T6046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 71.480638][ T6046] hsr_slave_0: entered promiscuous mode
[ 71.483710][ T6046] hsr_slave_1: entered promiscuous mode
[ 71.486564][ T6046] debugfs: 'hsr0' already exists in 'hsr'
[ 71.488753][ T6046] Cannot create hsr debugfs directory
[ 73.165999][ T64] Bluetooth: hci0: command tx timeout
[ 73.349986][ T90] bridge_slave_1: left allmulticast mode
[ 73.352814][ T90] bridge_slave_1: left promiscuous mode
[ 73.356117][ T90] bridge0: port 2(bridge_slave_1) entered disabled state
[ 73.363190][ T90] bridge_slave_0: left allmulticast mode
[ 73.367921][ T90] bridge_slave_0: left promiscuous mode
[ 73.370471][ T90] bridge0: port 1(bridge_slave_0) entered disabled state
[ 73.555241][ T90] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 73.560925][ T90] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 73.565465][ T90] bond0 (unregistering): Released all slaves
[ 73.663258][ T40] kauditd_printk_skb: 20 callbacks suppressed
[ 73.663280][ T40] audit: type=1400 audit(1767614015.632:112): avc: denied { create } for pid=6060 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.675052][ T40] audit: type=1400 audit(1767614015.632:113): avc: denied { write } for pid=6060 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth2.link" dev="tmpfs" ino=2054 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.683860][ T40] audit: type=1400 audit(1767614015.632:114): avc: denied { append } for pid=6060 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" dev="tmpfs" ino=2054 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 73.694594][ T90] hsr_slave_0: left promiscuous mode
[ 73.697540][ T90] hsr_slave_1: left promiscuous mode
[ 73.699890][ T90] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 73.702405][ T90] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 73.705718][ T90] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 73.708056][ T90] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 73.718089][ T90] veth1_macvtap: left promiscuous mode
[ 73.720075][ T90] veth0_macvtap: left promiscuous mode
[ 73.722332][ T90] veth1_vlan: left promiscuous mode
[ 73.724612][ T90] veth0_vlan: left promiscuous mode
[ 73.734154][ T40] audit: type=1400 audit(1767614015.702:115): avc: denied { unlink } for pid=6063 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2054 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 74.024388][ T90] team0 (unregistering): Port device team_slave_1 removed
[ 74.047317][ T90] team0 (unregistering): Port device team_slave_0 removed
[ 74.720038][ T6046] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 74.731533][ T6046] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 74.740277][ T6046] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 74.748012][ T6046] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 74.806254][ T6046] 8021q: adding VLAN 0 to HW filter on device bond0
[ 74.818982][ T6046] 8021q: adding VLAN 0 to HW filter on device team0
[ 74.827541][ T1143] bridge0: port 1(bridge_slave_0) entered blocking state
[ 74.830847][ T1143] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 74.839494][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 74.842553][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 75.160172][ T6046] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 75.199629][ T6046] veth0_vlan: entered promiscuous mode
[ 75.207752][ T6046] veth1_vlan: entered promiscuous mode
[ 75.249728][ T6046] veth0_macvtap: entered promiscuous mode
[ 75.254148][ T6046] veth1_macvtap: entered promiscuous mode
[ 75.255743][ T64] Bluetooth: hci0: command tx timeout
[ 75.266211][ T6046] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 75.276714][ T6046] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 75.286695][ T42] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.290484][ T42] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.296316][ T42] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.300300][ T42] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 75.380839][ T1143] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.383721][ T1143] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.414315][ T1143] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 75.418128][ T1143] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 75.466051][ T40] audit: type=1400 audit(1767614017.442:116): avc: denied { read } for pid=6095 comm="syz.0.17" name="card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 75.471441][ T6095] FAULT_INJECTION: forcing a failure.
[ 75.471441][ T6095] name failslab, interval 1, probability 0, space 0, times 1
[ 75.475669][ T40] audit: type=1400 audit(1767614017.442:117): avc: denied { open } for pid=6095 comm="syz.0.17" path="/dev/dri/card1" dev="devtmpfs" ino=636 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 75.479822][ T6095] CPU: 0 UID: 0 PID: 6095 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 75.479838][ T6095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.479845][ T6095] Call Trace:
[ 75.479851][ T6095]
[ 75.479858][ T6095] dump_stack_lvl+0x16c/0x1f0
[ 75.479878][ T6095] should_fail_ex+0x512/0x640
[ 75.479896][ T6095] ? __kmalloc_cache_node_noprof+0x62/0x830
[ 75.479911][ T6095] should_failslab+0xc2/0x120
[ 75.479926][ T6095] __kmalloc_cache_node_noprof+0x83/0x830
[ 75.479939][ T6095] ? lockdep_unlock+0x64/0xd0
[ 75.479956][ T6095] ? __lock_acquire+0x12c2/0x2890
[ 75.479968][ T6095] ? __get_vm_area_node+0x101/0x330
[ 75.479986][ T6095] ? __get_vm_area_node+0x101/0x330
[ 75.480000][ T6095] __get_vm_area_node+0x101/0x330
[ 75.480016][ T6095] __vmalloc_node_range_noprof+0x247/0x16b0
[ 75.480033][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.480049][ T6095] ? __pfx___might_resched+0x10/0x10
[ 75.480061][ T6095] ? rcu_is_watching+0x12/0xc0
[ 75.480071][ T6095] ? trace_contention_end+0xdd/0x110
[ 75.480084][ T6095] ? __mutex_lock+0x27b/0x1ca0
[ 75.480100][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.480115][ T6095] ? system_heap_vmap+0xad/0x5c0
[ 75.480132][ T6095] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 75.480155][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.480169][ T6095] __vmalloc_node_noprof+0xad/0xf0
[ 75.480185][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.480201][ T6095] system_heap_vmap+0x225/0x5c0
[ 75.480219][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 75.480234][ T6095] ? rcu_is_watching+0x12/0xc0
[ 75.480244][ T6095] ? trace_contention_end+0xdd/0x110
[ 75.480261][ T6095] dma_buf_vmap+0x2c1/0x480
[ 75.480275][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 75.480291][ T6095] ? __pfx_dma_buf_vmap+0x10/0x10
[ 75.480311][ T6095] drm_gem_shmem_vmap_locked+0x10f/0x7e0
[ 75.480327][ T6095] ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[ 75.480343][ T6095] ? __pfx_drm_gem_shmem_object_vmap+0x10/0x10
[ 75.480357][ T6095] drm_gem_vmap_locked+0xc8/0x1c0
[ 75.480370][ T6095] drm_gem_vmap+0x4a/0xa0
[ 75.480383][ T6095] drm_gem_fb_vmap+0xc7/0x4d0
[ 75.480403][ T6095] vkms_prepare_fb+0x87/0xb0
[ 75.480421][ T6095] drm_atomic_helper_prepare_planes+0x1ef/0xbb0
[ 75.480437][ T6095] ? __pfx_vkms_prepare_fb+0x10/0x10
[ 75.480461][ T6095] drm_atomic_helper_commit+0x191/0x380
[ 75.480479][ T6095] ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 75.480498][ T6095] drm_atomic_commit+0x234/0x300
[ 75.480515][ T6095] ? __pfx_drm_atomic_commit+0x10/0x10
[ 75.480531][ T6095] ? __pfx___drm_printfn_info+0x10/0x10
[ 75.480547][ T6095] ? drm_atomic_set_fb_for_plane+0x144/0x280
[ 75.480564][ T6095] ? drm_atomic_set_fb_for_plane+0x186/0x280
[ 75.480583][ T6095] drm_atomic_helper_update_plane+0x30b/0x400
[ 75.480603][ T6095] __setplane_atomic+0x25a/0x380
[ 75.480625][ T6095] drm_mode_cursor_universal+0x4a6/0xcb0
[ 75.480647][ T6095] ? __pfx_drm_mode_cursor_universal+0x10/0x10
[ 75.480669][ T6095] ? __pfx_drm_lease_held+0x10/0x10
[ 75.480686][ T6095] ? modeset_lock+0x114/0x6d0
[ 75.480703][ T6095] drm_mode_cursor_common+0x308/0x960
[ 75.480723][ T6095] ? __pfx_drm_mode_cursor_common+0x10/0x10
[ 75.480741][ T6095] ? avc_has_extended_perms+0x33a/0x1090
[ 75.480767][ T6095] ? __pfx_avc_has_extended_perms+0x10/0x10
[ 75.480787][ T6095] ? lockdep_hardirqs_on+0x7c/0x110
[ 75.480805][ T6095] drm_mode_cursor_ioctl+0xd1/0x110
[ 75.480823][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.480840][ T6095] ? find_held_lock+0x2b/0x80
[ 75.480859][ T6095] ? do_raw_spin_unlock+0x172/0x230
[ 75.480877][ T6095] drm_ioctl_kernel+0x1f4/0x3e0
[ 75.480892][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.480911][ T6095] ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 75.480932][ T6095] drm_ioctl+0x5c9/0xc30
[ 75.480949][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.480968][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 75.480989][ T6095] ? selinux_file_ioctl+0x180/0x270
[ 75.481004][ T6095] ? selinux_file_ioctl+0xb4/0x270
[ 75.481019][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 75.481035][ T6095] __x64_sys_ioctl+0x18e/0x210
[ 75.481052][ T6095] do_syscall_64+0xcd/0xf80
[ 75.481068][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.481079][ T6095] RIP: 0033:0x7f954d98f7c9
[ 75.481090][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.481101][ T6095] RSP: 002b:00007ffd3f022da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 75.481112][ T6095] RAX: ffffffffffffffda RBX: 00007f954dbe5fa0 RCX: 00007f954d98f7c9
[ 75.481119][ T6095] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[ 75.481126][ T6095] RBP: 00007ffd3f022e00 R08: 0000000000000000 R09: 0000000000000000
[ 75.481132][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 75.481138][ T6095] R13: 00007f954dbe5fa0 R14: 00007f954dbe5fa0 R15: 0000000000000003
[ 75.481152][ T6095]
[ 75.481261][ T6095] syz.0.17: vmalloc error: size 264, vm_struct allocation failed, mode:0xcc0(GFP_KERNEL), nodemask=(null)
[ 75.494996][ T40] audit: type=1400 audit(1767614017.442:118): avc: denied { read write } for pid=6095 comm="syz.0.17" name="system" dev="devtmpfs" ino=712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 75.497903][ T6095] ,cpuset=
[ 75.498348][ T40] audit: type=1400 audit(1767614017.442:119): avc: denied { ioctl open } for pid=6095 comm="syz.0.17" path="/dev/dma_heap/system" dev="devtmpfs" ino=712 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 75.499438][ T6095] /
[ 75.501069][ T40] audit: type=1400 audit(1767614017.442:120): avc: denied { ioctl } for pid=6095 comm="syz.0.17" path="/dev/dri/card1" dev="devtmpfs" ino=636 ioctlcmd=0x642e scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dri_device_t tclass=chr_file permissive=1
[ 75.502584][ T6095] ,mems_allowed=0-1
[ 75.693562][ T6095] CPU: 2 UID: 0 PID: 6095 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 75.693594][ T6095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.693602][ T6095] Call Trace:
[ 75.693609][ T6095]
[ 75.693615][ T6095] dump_stack_lvl+0x16c/0x1f0
[ 75.693637][ T6095] warn_alloc+0x248/0x3a0
[ 75.693651][ T6095] ? __pfx_warn_alloc+0x10/0x10
[ 75.693661][ T6095] ? trace_kmalloc+0x2b/0xb0
[ 75.693676][ T6095] ? __get_vm_area_node+0x101/0x330
[ 75.693693][ T6095] ? __kasan_kmalloc+0x8a/0xb0
[ 75.693707][ T6095] ? __get_vm_area_node+0x208/0x330
[ 75.693731][ T6095] __vmalloc_node_range_noprof+0xbe0/0x16b0
[ 75.693747][ T6095] ? __pfx___might_resched+0x10/0x10
[ 75.693759][ T6095] ? rcu_is_watching+0x12/0xc0
[ 75.693779][ T6095] ? trace_contention_end+0xdd/0x110
[ 75.693800][ T6095] ? __mutex_lock+0x27b/0x1ca0
[ 75.693833][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.693860][ T6095] ? system_heap_vmap+0xad/0x5c0
[ 75.693878][ T6095] ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 75.693900][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.693915][ T6095] __vmalloc_node_noprof+0xad/0xf0
[ 75.693931][ T6095] ? system_heap_vmap+0x225/0x5c0
[ 75.693947][ T6095] system_heap_vmap+0x225/0x5c0
[ 75.693966][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 75.693981][ T6095] ? rcu_is_watching+0x12/0xc0
[ 75.693990][ T6095] ? trace_contention_end+0xdd/0x110
[ 75.694007][ T6095] dma_buf_vmap+0x2c1/0x480
[ 75.694022][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 75.694038][ T6095] ? __pfx_dma_buf_vmap+0x10/0x10
[ 75.694057][ T6095] drm_gem_shmem_vmap_locked+0x10f/0x7e0
[ 75.694078][ T6095] ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[ 75.694096][ T6095] ? __pfx_drm_gem_shmem_object_vmap+0x10/0x10
[ 75.694109][ T6095] drm_gem_vmap_locked+0xc8/0x1c0
[ 75.694124][ T6095] drm_gem_vmap+0x4a/0xa0
[ 75.694136][ T6095] drm_gem_fb_vmap+0xc7/0x4d0
[ 75.694157][ T6095] vkms_prepare_fb+0x87/0xb0
[ 75.694176][ T6095] drm_atomic_helper_prepare_planes+0x1ef/0xbb0
[ 75.694194][ T6095] ? __pfx_vkms_prepare_fb+0x10/0x10
[ 75.694213][ T6095] drm_atomic_helper_commit+0x191/0x380
[ 75.694231][ T6095] ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 75.694249][ T6095] drm_atomic_commit+0x234/0x300
[ 75.694267][ T6095] ? __pfx_drm_atomic_commit+0x10/0x10
[ 75.694282][ T6095] ? __pfx___drm_printfn_info+0x10/0x10
[ 75.694298][ T6095] ? drm_atomic_set_fb_for_plane+0x144/0x280
[ 75.694320][ T6095] ? drm_atomic_set_fb_for_plane+0x186/0x280
[ 75.694339][ T6095] drm_atomic_helper_update_plane+0x30b/0x400
[ 75.694359][ T6095] __setplane_atomic+0x25a/0x380
[ 75.694379][ T6095] drm_mode_cursor_universal+0x4a6/0xcb0
[ 75.694401][ T6095] ? __pfx_drm_mode_cursor_universal+0x10/0x10
[ 75.694423][ T6095] ? __pfx_drm_lease_held+0x10/0x10
[ 75.694439][ T6095] ? modeset_lock+0x114/0x6d0
[ 75.694455][ T6095] drm_mode_cursor_common+0x308/0x960
[ 75.694475][ T6095] ? __pfx_drm_mode_cursor_common+0x10/0x10
[ 75.694492][ T6095] ? avc_has_extended_perms+0x33a/0x1090
[ 75.694519][ T6095] ? __pfx_avc_has_extended_perms+0x10/0x10
[ 75.694537][ T6095] ? lockdep_hardirqs_on+0x7c/0x110
[ 75.694558][ T6095] drm_mode_cursor_ioctl+0xd1/0x110
[ 75.694575][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.694592][ T6095] ? find_held_lock+0x2b/0x80
[ 75.694611][ T6095] ? do_raw_spin_unlock+0x172/0x230
[ 75.694632][ T6095] drm_ioctl_kernel+0x1f4/0x3e0
[ 75.694646][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.694664][ T6095] ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 75.694684][ T6095] drm_ioctl+0x5c9/0xc30
[ 75.694701][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 75.694719][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 75.694740][ T6095] ? selinux_file_ioctl+0x180/0x270
[ 75.694755][ T6095] ? selinux_file_ioctl+0xb4/0x270
[ 75.694793][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 75.694819][ T6095] __x64_sys_ioctl+0x18e/0x210
[ 75.694844][ T6095] do_syscall_64+0xcd/0xf80
[ 75.694860][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 75.694872][ T6095] RIP: 0033:0x7f954d98f7c9
[ 75.694883][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 75.694893][ T6095] RSP: 002b:00007ffd3f022da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 75.694904][ T6095] RAX: ffffffffffffffda RBX: 00007f954dbe5fa0 RCX: 00007f954d98f7c9
[ 75.694911][ T6095] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[ 75.694917][ T6095] RBP: 00007ffd3f022e00 R08: 0000000000000000 R09: 0000000000000000
[ 75.694923][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 75.694929][ T6095] R13: 00007f954dbe5fa0 R14: 00007f954dbe5fa0 R15: 0000000000000003
[ 75.694943][ T6095]
[ 75.866809][ T6095] Mem-Info:
[ 75.868138][ T6095] active_anon:36965 inactive_anon:0 isolated_anon:0
[ 75.868138][ T6095] active_file:303 inactive_file:52527 isolated_file:0
[ 75.868138][ T6095] unevictable:1768 dirty:135 writeback:0
[ 75.868138][ T6095] slab_reclaimable:12082 slab_unreclaimable:55090
[ 75.868138][ T6095] mapped:10258 shmem:2392 pagetables:891
[ 75.868138][ T6095] sec_pagetables:308 bounce:0
[ 75.868138][ T6095] kernel_misc_reclaimable:0
[ 75.868138][ T6095] free:503906 free_pcp:12939 free_cma:0
[ 75.882866][ T6095] Node 0 active_anon:147860kB inactive_anon:0kB active_file:1212kB inactive_file:209908kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:41032kB dirty:528kB writeback:0kB shmem:6032kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:11168kB pagetables:3368kB sec_pagetables:1232kB all_unreclaimable? no Balloon:0kB
[ 75.893461][ T6095] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:12kB writeback:0kB shmem:3536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:96kB pagetables:196kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 75.903668][ T6095] Node 0 DMA free:15360kB boost:0kB min:340kB low:424kB high:508kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 75.913217][ T6095] lowmem_reserve[]: 0 1235 1235 1235 1235
[ 75.915096][ T6095] Node 0 DMA32 free:397680kB boost:0kB min:27548kB low:34432kB high:41316kB reserved_highatomic:0KB free_highatomic:0KB active_anon:147860kB inactive_anon:0kB active_file:1212kB inactive_file:209908kB unevictable:3536kB writepending:528kB zspages:0kB present:2080628kB managed:1265188kB mlocked:0kB bounce:0kB free_pcp:36772kB local_pcp:9112kB free_cma:0kB
[ 75.925897][ T6095] lowmem_reserve[]: 0 0 0 0 0
[ 75.927866][ T6095] Node 1 Normal free:1602584kB boost:0kB min:39692kB low:49612kB high:59532kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:3536kB writepending:12kB zspages:0kB present:2097152kB managed:1781884kB mlocked:0kB bounce:0kB free_pcp:14944kB local_pcp:3472kB free_cma:0kB
[ 75.938730][ T6095] lowmem_reserve[]: 0 0 0 0 0
[ 75.940390][ T6095] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 75.944529][ T6095] Node 0 DMA32: 1986*4kB (UME) 553*8kB (UM) 50*16kB (UME) 199*32kB (UME) 209*64kB (UME) 45*128kB (UME) 21*256kB (UME) 13*512kB (UM) 13*1024kB (UME) 11*2048kB (UM) 76*4096kB (UM) = 397840kB
[ 75.950637][ T6095] Node 1 Normal: 86*4kB (UME) 18*8kB (UE) 18*16kB (UME) 15*32kB (UME) 17*64kB (UME) 10*128kB (UME) 2*256kB (U) 4*512kB (ME) 3*1024kB (UE) 2*2048kB (UM) 388*4096kB (M) = 1602600kB
[ 75.956687][ T6095] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 75.960067][ T6095] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 75.963181][ T6095] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 75.966309][ T6095] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 75.969338][ T6095] 55217 total pagecache pages
[ 75.971111][ T6095] 0 pages in swap cache
[ 75.972680][ T6095] Free swap = 124996kB
[ 75.974094][ T6095] Total swap = 124996kB
[ 75.976047][ T6095] 1048443 pages RAM
[ 75.977329][ T6095] 0 pages HighMem/MovableOnly
[ 75.979214][ T6095] 282835 pages reserved
[ 75.980756][ T6095] 0 pages cma reserved
[ 75.982336][ T6095] ------------[ cut here ]------------
[ 75.984097][ T6095] WARNING: drivers/dma-buf/dma-buf.c:1528 at dma_buf_vmap+0x41b/0x480, CPU#3: syz.0.17/6095
[ 75.987317][ T6095] Modules linked in:
[ 75.988704][ T6095] CPU: 3 UID: 0 PID: 6095 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 75.991771][ T6095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 75.995860][ T6095] RIP: 0010:dma_buf_vmap+0x41b/0x480
[ 75.997664][ T6095] Code: fc e9 94 fd ff ff 48 8b 3c 24 e8 70 52 20 fc e9 26 ff ff ff e8 26 7c b6 fb 90 0f 0b e8 1e 7c b6 fb 90 0f 0b e8 16 7c b6 fb 90 <0f> 0b 90 e9 25 fe ff ff 4c 89 f7 e8 85 51 20 fc e9 82 fd ff ff e8
[ 76.003865][ T6095] RSP: 0018:ffffc900038b7420 EFLAGS: 00010293
[ 76.005841][ T6095] RAX: 0000000000000000 RBX: ffff888031d26c00 RCX: ffffffff86086b4d
[ 76.008270][ T6095] RDX: ffff88802837c980 RSI: ffffffff86086c9a RDI: 0000000000000005
[ 76.010810][ T6095] RBP: ffffc900038b74c8 R08: 0000000000000005 R09: 0000000000000000
[ 76.013328][ T6095] R10: 00000000fffffff4 R11: 0000000000000000 R12: ffff888031d274d0
[ 76.016106][ T6095] R13: 1ffff92000716e88 R14: ffff888031d26c30 R15: 00000000fffffff4
[ 76.018827][ T6095] FS: 000055555601a500(0000) GS:ffff8880d6bf5000(0000) knlGS:0000000000000000
[ 76.021798][ T6095] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 76.023776][ T6095] CR2: 00007f0e52af5e9c CR3: 000000002ba82000 CR4: 0000000000352ef0
[ 76.026326][ T6095] Call Trace:
[ 76.027377][ T6095]
[ 76.028311][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 76.030002][ T6095] ? __pfx_dma_buf_vmap+0x10/0x10
[ 76.031616][ T6095] drm_gem_shmem_vmap_locked+0x10f/0x7e0
[ 76.033374][ T6095] ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[ 76.035513][ T6095] ? __pfx_drm_gem_shmem_object_vmap+0x10/0x10
[ 76.037534][ T6095] drm_gem_vmap_locked+0xc8/0x1c0
[ 76.039098][ T6095] drm_gem_vmap+0x4a/0xa0
[ 76.040457][ T6095] drm_gem_fb_vmap+0xc7/0x4d0
[ 76.041964][ T6095] vkms_prepare_fb+0x87/0xb0
[ 76.043290][ T6095] drm_atomic_helper_prepare_planes+0x1ef/0xbb0
[ 76.045340][ T6095] ? __pfx_vkms_prepare_fb+0x10/0x10
[ 76.047097][ T6095] drm_atomic_helper_commit+0x191/0x380
[ 76.049010][ T6095] ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 76.051085][ T6095] drm_atomic_commit+0x234/0x300
[ 76.052923][ T6095] ? __pfx_drm_atomic_commit+0x10/0x10
[ 76.055186][ T6095] ? __pfx___drm_printfn_info+0x10/0x10
[ 76.057162][ T6095] ? drm_atomic_set_fb_for_plane+0x144/0x280
[ 76.059406][ T6095] ? drm_atomic_set_fb_for_plane+0x186/0x280
[ 76.061855][ T6095] drm_atomic_helper_update_plane+0x30b/0x400
[ 76.064201][ T6095] __setplane_atomic+0x25a/0x380
[ 76.066209][ T6095] drm_mode_cursor_universal+0x4a6/0xcb0
[ 76.068320][ T6095] ? __pfx_drm_mode_cursor_universal+0x10/0x10
[ 76.070224][ T6095] ? __pfx_drm_lease_held+0x10/0x10
[ 76.071893][ T6095] ? modeset_lock+0x114/0x6d0
[ 76.073408][ T6095] drm_mode_cursor_common+0x308/0x960
[ 76.075279][ T6095] ? __pfx_drm_mode_cursor_common+0x10/0x10
[ 76.077257][ T6095] ? avc_has_extended_perms+0x33a/0x1090
[ 76.079065][ T6095] ? __pfx_avc_has_extended_perms+0x10/0x10
[ 76.081056][ T6095] ? lockdep_hardirqs_on+0x7c/0x110
[ 76.082757][ T6095] drm_mode_cursor_ioctl+0xd1/0x110
[ 76.084332][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.086295][ T6095] ? find_held_lock+0x2b/0x80
[ 76.087801][ T6095] ? do_raw_spin_unlock+0x172/0x230
[ 76.089393][ T6095] drm_ioctl_kernel+0x1f4/0x3e0
[ 76.090944][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.092945][ T6095] ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 76.094938][ T6095] drm_ioctl+0x5c9/0xc30
[ 76.096521][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.098736][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 76.100550][ T6095] ? selinux_file_ioctl+0x180/0x270
[ 76.102355][ T6095] ? selinux_file_ioctl+0xb4/0x270
[ 76.104198][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 76.105987][ T6095] __x64_sys_ioctl+0x18e/0x210
[ 76.107935][ T6095] do_syscall_64+0xcd/0xf80
[ 76.109758][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.111904][ T6095] RIP: 0033:0x7f954d98f7c9
[ 76.113376][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 76.119849][ T6095] RSP: 002b:00007ffd3f022da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 76.123202][ T6095] RAX: ffffffffffffffda RBX: 00007f954dbe5fa0 RCX: 00007f954d98f7c9
[ 76.127172][ T6095] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[ 76.130766][ T6095] RBP: 00007ffd3f022e00 R08: 0000000000000000 R09: 0000000000000000
[ 76.134113][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 76.137911][ T6095] R13: 00007f954dbe5fa0 R14: 00007f954dbe5fa0 R15: 0000000000000003
[ 76.141727][ T6095]
[ 76.143426][ T6095] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 76.146760][ T6095] CPU: 3 UID: 0 PID: 6095 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 76.150659][ T6095] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 76.154776][ T6095] Call Trace:
[ 76.155994][ T6095]
[ 76.156948][ T6095] dump_stack_lvl+0x3d/0x1f0
[ 76.158965][ T6095] vpanic+0x640/0x6f0
[ 76.160719][ T6095] ? dma_buf_vmap+0x41b/0x480
[ 76.163069][ T6095] panic+0xca/0xd0
[ 76.164856][ T6095] ? __pfx_panic+0x10/0x10
[ 76.166957][ T6095] ? check_panic_on_warn+0x1f/0xb0
[ 76.169151][ T6095] check_panic_on_warn+0xab/0xb0
[ 76.171241][ T6095] __warn+0x108/0x3c0
[ 76.172870][ T6095] __report_bug+0x2a0/0x520
[ 76.174617][ T6095] ? dma_buf_vmap+0x41b/0x480
[ 76.176356][ T6095] ? __pfx___report_bug+0x10/0x10
[ 76.178288][ T6095] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 76.180313][ T6095] ? __vmalloc_node_noprof+0xad/0xf0
[ 76.182084][ T6095] ? dma_buf_vmap+0x41b/0x480
[ 76.183665][ T6095] report_bug+0xb2/0x220
[ 76.185184][ T6095] ? dma_buf_vmap+0x41b/0x480
[ 76.186802][ T6095] handle_bug+0x127/0x260
[ 76.188324][ T6095] exc_invalid_op+0x17/0x50
[ 76.189806][ T6095] asm_exc_invalid_op+0x1a/0x20
[ 76.191404][ T6095] RIP: 0010:dma_buf_vmap+0x41b/0x480
[ 76.193302][ T6095] Code: fc e9 94 fd ff ff 48 8b 3c 24 e8 70 52 20 fc e9 26 ff ff ff e8 26 7c b6 fb 90 0f 0b e8 1e 7c b6 fb 90 0f 0b e8 16 7c b6 fb 90 <0f> 0b 90 e9 25 fe ff ff 4c 89 f7 e8 85 51 20 fc e9 82 fd ff ff e8
[ 76.200600][ T6095] RSP: 0018:ffffc900038b7420 EFLAGS: 00010293
[ 76.202735][ T6095] RAX: 0000000000000000 RBX: ffff888031d26c00 RCX: ffffffff86086b4d
[ 76.205335][ T6095] RDX: ffff88802837c980 RSI: ffffffff86086c9a RDI: 0000000000000005
[ 76.207934][ T6095] RBP: ffffc900038b74c8 R08: 0000000000000005 R09: 0000000000000000
[ 76.210484][ T6095] R10: 00000000fffffff4 R11: 0000000000000000 R12: ffff888031d274d0
[ 76.213079][ T6095] R13: 1ffff92000716e88 R14: ffff888031d26c30 R15: 00000000fffffff4
[ 76.215697][ T6095] ? dma_buf_vmap+0x2cd/0x480
[ 76.217560][ T6095] ? dma_buf_vmap+0x41a/0x480
[ 76.219281][ T6095] ? __pfx_system_heap_vmap+0x10/0x10
[ 76.221382][ T6095] ? __pfx_dma_buf_vmap+0x10/0x10
[ 76.223120][ T6095] drm_gem_shmem_vmap_locked+0x10f/0x7e0
[ 76.225378][ T6095] ? __pfx_drm_gem_shmem_vmap_locked+0x10/0x10
[ 76.227428][ T6095] ? __pfx_drm_gem_shmem_object_vmap+0x10/0x10
[ 76.229651][ T6095] drm_gem_vmap_locked+0xc8/0x1c0
[ 76.231394][ T6095] drm_gem_vmap+0x4a/0xa0
[ 76.232843][ T6095] drm_gem_fb_vmap+0xc7/0x4d0
[ 76.234463][ T6095] vkms_prepare_fb+0x87/0xb0
[ 76.236229][ T6095] drm_atomic_helper_prepare_planes+0x1ef/0xbb0
[ 76.238487][ T6095] ? __pfx_vkms_prepare_fb+0x10/0x10
[ 76.240359][ T6095] drm_atomic_helper_commit+0x191/0x380
[ 76.242214][ T6095] ? __pfx_drm_atomic_helper_commit+0x10/0x10
[ 76.244211][ T6095] drm_atomic_commit+0x234/0x300
[ 76.245835][ T6095] ? __pfx_drm_atomic_commit+0x10/0x10
[ 76.247884][ T6095] ? __pfx___drm_printfn_info+0x10/0x10
[ 76.249752][ T6095] ? drm_atomic_set_fb_for_plane+0x144/0x280
[ 76.252197][ T6095] ? drm_atomic_set_fb_for_plane+0x186/0x280
[ 76.254705][ T6095] drm_atomic_helper_update_plane+0x30b/0x400
[ 76.257037][ T6095] __setplane_atomic+0x25a/0x380
[ 76.258714][ T6095] drm_mode_cursor_universal+0x4a6/0xcb0
[ 76.260510][ T6095] ? __pfx_drm_mode_cursor_universal+0x10/0x10
[ 76.262425][ T6095] ? __pfx_drm_lease_held+0x10/0x10
[ 76.264069][ T6095] ? modeset_lock+0x114/0x6d0
[ 76.265576][ T6095] drm_mode_cursor_common+0x308/0x960
[ 76.267351][ T6095] ? __pfx_drm_mode_cursor_common+0x10/0x10
[ 76.269220][ T6095] ? avc_has_extended_perms+0x33a/0x1090
[ 76.271016][ T6095] ? __pfx_avc_has_extended_perms+0x10/0x10
[ 76.272937][ T6095] ? lockdep_hardirqs_on+0x7c/0x110
[ 76.274592][ T6095] drm_mode_cursor_ioctl+0xd1/0x110
[ 76.276367][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.278370][ T6095] ? find_held_lock+0x2b/0x80
[ 76.280052][ T6095] ? do_raw_spin_unlock+0x172/0x230
[ 76.281841][ T6095] drm_ioctl_kernel+0x1f4/0x3e0
[ 76.283486][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.285455][ T6095] ? __pfx_drm_ioctl_kernel+0x10/0x10
[ 76.287247][ T6095] drm_ioctl+0x5c9/0xc30
[ 76.288617][ T6095] ? __pfx_drm_mode_cursor_ioctl+0x10/0x10
[ 76.290451][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 76.292004][ T6095] ? selinux_file_ioctl+0x180/0x270
[ 76.293648][ T6095] ? selinux_file_ioctl+0xb4/0x270
[ 76.295266][ T6095] ? __pfx_drm_ioctl+0x10/0x10
[ 76.296858][ T6095] __x64_sys_ioctl+0x18e/0x210
[ 76.298535][ T6095] do_syscall_64+0xcd/0xf80
[ 76.300164][ T6095] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 76.302238][ T6095] RIP: 0033:0x7f954d98f7c9
[ 76.303852][ T6095] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 76.309827][ T6095] RSP: 002b:00007ffd3f022da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 76.312481][ T6095] RAX: ffffffffffffffda RBX: 00007f954dbe5fa0 RCX: 00007f954d98f7c9
[ 76.314949][ T6095] RDX: 0000200000000280 RSI: 00000000c01c64a3 RDI: 0000000000000003
[ 76.317371][ T6095] RBP: 00007ffd3f022e00 R08: 0000000000000000 R09: 0000000000000000
[ 76.319795][ T6095] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[ 76.322266][ T6095] R13: 00007f954dbe5fa0 R14: 00007f954dbe5fa0 R15: 0000000000000003
[ 76.324837][ T6095]
[ 76.326695][ T6095] Kernel Offset: disabled
[ 76.328024][ T6095] Rebooting in 86400 seconds..