Warning: Permanently added '10.128.1.196' (ECDSA) to the list of known hosts. 2021/11/16 22:07:40 fuzzer started 2021/11/16 22:07:41 connecting to host at 10.128.0.163:38499 2021/11/16 22:07:41 checking machine... 2021/11/16 22:07:41 checking revisions... [ 20.930762][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!! 2021/11/16 22:07:41 testing simple program... [ 20.982471][ T23] audit: type=1400 audit(1637100461.090:73): avc: denied { getattr } for pid=362 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 21.001225][ T371] cgroup: Unknown subsys name 'net' [ 21.005902][ T23] audit: type=1400 audit(1637100461.090:74): avc: denied { read } for pid=362 comm="syz-fuzzer" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 21.031992][ T23] audit: type=1400 audit(1637100461.090:75): avc: denied { open } for pid=362 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 21.032251][ T371] cgroup: Unknown subsys name 'devices' [ 21.055189][ T23] audit: type=1400 audit(1637100461.090:76): avc: denied { read } for pid=362 comm="syz-fuzzer" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 21.083406][ T23] audit: type=1400 audit(1637100461.090:77): avc: denied { open } for pid=362 comm="syz-fuzzer" path="/dev/raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 21.106961][ T23] audit: type=1400 audit(1637100461.090:78): avc: denied { mounton } for pid=371 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 21.129871][ T23] audit: type=1400 audit(1637100461.090:79): avc: denied { mount } for pid=371 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 21.152177][ T23] audit: type=1400 audit(1637100461.130:80): avc: denied { unmount } for pid=371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 21.242533][ T371] cgroup: Unknown subsys name 'hugetlb' [ 21.248563][ T371] cgroup: Unknown subsys name 'rlimit' [ 21.401882][ T23] audit: type=1400 audit(1637100461.510:81): avc: denied { setattr } for pid=371 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 21.425356][ T23] audit: type=1400 audit(1637100461.540:82): avc: denied { execmem } for pid=372 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 21.497841][ T373] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.504919][ T373] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.512570][ T373] device bridge_slave_0 entered promiscuous mode [ 21.519569][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.526694][ T373] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.534036][ T373] device bridge_slave_1 entered promiscuous mode [ 21.564580][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.571755][ T373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 21.579002][ T373] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.586044][ T373] bridge0: port 1(bridge_slave_0) entered forwarding state [ 21.604261][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.611519][ T45] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.618764][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 21.626573][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 21.635914][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 21.644150][ T374] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.651325][ T374] bridge0: port 1(bridge_slave_0) entered forwarding state [ 21.671609][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 21.679932][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 21.687967][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 21.696464][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.703499][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 21.711245][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 21.719684][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 21.731373][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.745512][ T374] ================================================================================ [ 21.751484][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 21.754950][ T374] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2023:28 [ 21.772017][ T374] member access within address ffffc90000b371c0 with insufficient space [ 21.780531][ T374] for an object of type 'struct sk_buff' [ 21.786175][ T374] CPU: 1 PID: 374 Comm: kworker/1:2 Not tainted 5.10.79-syzkaller-01201-g87acf4924e1b #0 [ 21.796049][ T374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 21.806218][ T374] Workqueue: ipv6_addrconf addrconf_dad_work [ 21.812177][ T374] Call Trace: [ 21.815448][ T374] dump_stack_lvl+0x1e2/0x24b [ 21.820135][ T374] ? show_regs_print_info+0x18/0x18 [ 21.825309][ T374] ? wg_allowedips_lookup_dst+0x190/0x190 [ 21.830842][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 21.831050][ T374] dump_stack+0x15/0x1d [ 21.844284][ T374] ubsan_type_mismatch_common+0x1ed/0x3a0 [ 21.850103][ T374] ? __sanitizer_cov_trace_switch+0x74/0x90 [ 21.856147][ T374] __ubsan_handle_type_mismatch_v1+0x5b/0x70 [ 21.862224][ T374] wg_xmit+0x4a2/0xae0 [ 21.866274][ T374] ? wg_stop+0x140/0x140 [ 21.870574][ T374] ? __sanitizer_cov_trace_const_cmp2+0x19/0x20 [ 21.876852][ T374] netdev_start_xmit+0x8a/0x160 [ 21.881803][ T374] dev_hard_start_xmit+0x18d/0x2f0 [ 21.886899][ T374] __dev_queue_xmit+0xfbe/0x1bb0 [ 21.891823][ T374] ? dev_queue_xmit+0x20/0x20 [ 21.896478][ T374] ? __local_bh_enable_ip+0xa8/0x170 [ 21.901740][ T374] ? do_raw_spin_unlock+0x50/0x50 [ 21.906755][ T374] ? _local_bh_enable+0x30/0x30 [ 21.911675][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.917986][ T374] ? ndisc_constructor+0x690/0x8a0 [ 21.923242][ T374] ? _raw_write_unlock_bh+0x31/0x47 [ 21.929132][ T374] ? dev_hard_header+0xdb/0xf0 [ 21.934043][ T374] dev_queue_xmit+0x17/0x20 [ 21.938565][ T374] neigh_connected_output+0x288/0x2b0 [ 21.943922][ T374] ip6_finish_output2+0xde2/0x1440 [ 21.949015][ T374] ? __rcu_read_lock+0x50/0x50 [ 21.953757][ T374] ? __ip6_finish_output+0x520/0x520 [ 21.959017][ T374] ? dst_cow_metrics_generic+0x55/0x1d0 [ 21.964717][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.971043][ T374] ? ip6_skb_dst_mtu+0xaf/0x260 [ 21.975971][ T374] __ip6_finish_output+0x3e4/0x520 [ 21.980810][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 21.981062][ T374] ip6_finish_output+0x3f/0x220 [ 21.994716][ T374] ? ip6_output+0x1d3/0x4b0 [ 21.999391][ T374] ip6_output+0x1f8/0x4b0 [ 22.003697][ T374] ? asan.module_dtor+0x20/0x20 [ 22.008532][ T374] ? skb_dst+0x40/0x40 [ 22.012572][ T374] ? __rcu_read_lock+0x50/0x50 [ 22.017313][ T374] ? selinux_ipv6_forward+0x50/0x50 [ 22.022507][ T374] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 22.028468][ T374] ? nf_hook_slow+0x150/0x1b0 [ 22.033209][ T374] NF_HOOK+0xdd/0x280 [ 22.037168][ T374] ? addrconf_addr_solict_mult+0xe0/0xe0 [ 22.042862][ T374] ? NF_HOOK+0x280/0x280 [ 22.047237][ T374] ? __rcu_read_lock+0x50/0x50 [ 22.050861][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 22.052158][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 22.067452][ T374] ? ndisc_send_skb+0x547/0x9f0 [ 22.072748][ T374] ? memcpy+0x56/0x70 [ 22.076784][ T374] ndisc_send_skb+0x646/0x9f0 [ 22.081447][ T374] ? slab_post_alloc_hook+0x90/0xa0 [ 22.086633][ T374] ? ndisc_fill_addr_option+0x2f0/0x2f0 [ 22.092165][ T374] ? skb_set_owner_w+0x1a8/0x310 [ 22.097080][ T374] ? __sanitizer_cov_trace_cmp4+0x19/0x20 [ 22.102898][ T374] ? skb_put+0x11d/0x200 [ 22.107125][ T374] ndisc_send_rs+0x26c/0x360 [ 22.111697][ T374] addrconf_dad_completed+0x4f3/0x9f0 [ 22.117054][ T374] ? addrconf_dad_stop+0x430/0x430 [ 22.122229][ T374] addrconf_dad_work+0x9c1/0x1520 [ 22.127493][ T374] ? move_linked_works+0x118/0x130 [ 22.132586][ T374] ? ipv6_use_optimistic_addr+0x1d0/0x1d0 [ 22.138281][ T374] ? __kasan_check_write+0x14/0x20 [ 22.143502][ T374] process_one_work+0x3ca/0x660 [ 22.148791][ T374] worker_thread+0x709/0xa20 [ 22.153449][ T374] ? __kthread_parkme+0x11b/0x150 [ 22.158546][ T374] kthread+0x371/0x390 [ 22.162680][ T374] ? pr_cont_work+0x110/0x110 [ 22.167332][ T374] ? __list_add+0xc0/0xc0 [ 22.171655][ T374] ret_from_fork+0x1f/0x30 [ 22.176091][ T374] ================================================================================ [ 22.185643][ T374] ================================================================================ [ 22.195032][ T374] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:1916:2 [ 22.202780][ T374] member access within address ffffc90000b371c0 with insufficient space [ 22.211121][ T374] for an object of type 'struct sk_buff' [ 22.217035][ T374] CPU: 1 PID: 374 Comm: kworker/1:2 Not tainted 5.10.79-syzkaller-01201-g87acf4924e1b #0 [ 22.227010][ T374] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 22.237152][ T374] Workqueue: ipv6_addrconf addrconf_dad_work [ 22.243255][ T374] Call Trace: [ 22.246543][ T374] dump_stack_lvl+0x1e2/0x24b [ 22.251331][ T374] ? show_regs_print_info+0x18/0x18 [ 22.256529][ T374] ? wg_allowedips_lookup_dst+0x190/0x190 [ 22.262321][ T374] dump_stack+0x15/0x1d [ 22.266624][ T374] ubsan_type_mismatch_common+0x1ed/0x3a0 [ 22.272545][ T374] __ubsan_handle_type_mismatch_v1+0x5b/0x70 [ 22.278633][ T374] wg_xmit+0x513/0xae0 [ 22.282692][ T374] ? wg_stop+0x140/0x140 [ 22.286918][ T374] ? __sanitizer_cov_trace_const_cmp2+0x19/0x20 [ 22.293348][ T374] netdev_start_xmit+0x8a/0x160 [ 22.298387][ T374] dev_hard_start_xmit+0x18d/0x2f0 [ 22.303571][ T374] __dev_queue_xmit+0xfbe/0x1bb0 [ 22.308620][ T374] ? dev_queue_xmit+0x20/0x20 [ 22.313287][ T374] ? __local_bh_enable_ip+0xa8/0x170 [ 22.318656][ T374] ? do_raw_spin_unlock+0x50/0x50 [ 22.323756][ T374] ? _local_bh_enable+0x30/0x30 [ 22.328608][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 22.334857][ T374] ? ndisc_constructor+0x690/0x8a0 [ 22.340139][ T374] ? _raw_write_unlock_bh+0x31/0x47 [ 22.345339][ T374] ? dev_hard_header+0xdb/0xf0 [ 22.350109][ T374] dev_queue_xmit+0x17/0x20 [ 22.354757][ T374] neigh_connected_output+0x288/0x2b0 [ 22.360125][ T374] ip6_finish_output2+0xde2/0x1440 [ 22.365434][ T374] ? __rcu_read_lock+0x50/0x50 [ 22.370316][ T374] ? __ip6_finish_output+0x520/0x520 [ 22.375606][ T374] ? dst_cow_metrics_generic+0x55/0x1d0 [ 22.381301][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 22.387538][ T374] ? ip6_skb_dst_mtu+0xaf/0x260 [ 22.392534][ T374] __ip6_finish_output+0x3e4/0x520 [ 22.397731][ T374] ip6_finish_output+0x3f/0x220 [ 22.402772][ T374] ? ip6_output+0x1d3/0x4b0 [ 22.407276][ T374] ip6_output+0x1f8/0x4b0 [ 22.411679][ T374] ? asan.module_dtor+0x20/0x20 [ 22.416507][ T374] ? skb_dst+0x40/0x40 [ 22.420552][ T374] ? __rcu_read_lock+0x50/0x50 [ 22.425299][ T374] ? selinux_ipv6_forward+0x50/0x50 [ 22.430485][ T374] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 22.436308][ T374] ? nf_hook_slow+0x150/0x1b0 [ 22.441076][ T374] NF_HOOK+0xdd/0x280 [ 22.445057][ T374] ? addrconf_addr_solict_mult+0xe0/0xe0 [ 22.450682][ T374] ? NF_HOOK+0x280/0x280 [ 22.455031][ T374] ? __rcu_read_lock+0x50/0x50 [ 22.459902][ T374] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 22.466131][ T374] ? ndisc_send_skb+0x547/0x9f0 [ 22.470966][ T374] ? memcpy+0x56/0x70 [ 22.474955][ T374] ndisc_send_skb+0x646/0x9f0 [ 22.479657][ T374] ? slab_post_alloc_hook+0x90/0xa0 [ 22.484906][ T374] ? ndisc_fill_addr_option+0x2f0/0x2f0 [ 22.490490][ T374] ? skb_set_owner_w+0x1a8/0x310 [ 22.495501][ T374] ? __sanitizer_cov_trace_cmp4+0x19/0x20 [ 22.501610][ T374] ? skb_put+0x11d/0x200 [ 22.505982][ T374] ndisc_send_rs+0x26c/0x360 [ 22.510659][ T374] addrconf_dad_completed+0x4f3/0x9f0 [ 22.516025][ T374] ? addrconf_dad_stop+0x430/0x430 [ 22.521396][ T374] addrconf_dad_work+0x9c1/0x1520 [ 22.526408][ T374] ? move_linked_works+0x118/0x130 [ 22.531607][ T374] ? ipv6_use_optimistic_addr+0x1d0/0x1d0 [ 22.537319][ T374] ? __kasan_check_write+0x14/0x20 [ 22.542412][ T374] process_one_work+0x3ca/0x660 [ 22.547249][ T374] worker_thread+0x709/0xa20 [ 22.552014][ T374] ? __kthread_parkme+0x11b/0x150 [ 22.557105][ T374] kthread+0x371/0x390 [ 22.561154][ T374] ? pr_cont_work+0x110/0x110 [ 22.565807][ T374] ? __list_add+0xc0/0xc0 [ 22.570152][ T374] ret_from_fork+0x1f/0x30 [ 22.574596][ T374] ================================================================================ [ 22.584642][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 22.594003][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 22.609794][ T373] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation 2021/11/16 22:07:42 building call list... [ 23.260948][ T177] device bridge_slave_1 left promiscuous mode [ 23.267528][ T177] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.275427][ T177] device bridge_slave_0 left promiscuous mode [ 23.282035][ T177] bridge0: port 1(bridge_slave_0) entered disabled state