./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4148907897

<...>
Warning: Permanently added '10.128.0.81' (ED25519) to the list of known hosts.
execve("./syz-executor4148907897", ["./syz-executor4148907897"], 0x7fffc7103d10 /* 10 vars */) = 0
brk(NULL)                               = 0x5555572cc000
brk(0x5555572ccd00)                     = 0x5555572ccd00
arch_prctl(ARCH_SET_FS, 0x5555572cc380) = 0
set_tid_address(0x5555572cc650)         = 295
set_robust_list(0x5555572cc660, 24)     = 0
rseq(0x5555572ccca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor4148907897", 4096) = 28
getrandom("\xc1\x03\x34\x1b\x02\xe9\x99\x08", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x5555572ccd00
brk(0x5555572edd00)                     = 0x5555572edd00
brk(0x5555572ee000)                     = 0x5555572ee000
mprotect(0x7fe597bc7000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
[   21.208497][   T28] audit: type=1400 audit(1702886088.567:66): avc:  denied  { execmem } for  pid=295 comm="syz-executor414" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   21.211735][   T28] audit: type=1400 audit(1702886088.567:67): avc:  denied  { bpf } for  pid=295 comm="syz-executor414" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   21.215387][   T28] audit: type=1400 audit(1702886088.567:68): avc:  denied  { prog_load } for  pid=295 comm="syz-executor414" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   21.218046][   T28] audit: type=1400 audit(1702886088.567:69): avc:  denied  { perfmon } for  pid=295 comm="syz-executor414" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[   21.224380][  T295] ================================================================================
[   21.225599][  T295] UBSAN: shift-out-of-bounds in kernel/bpf/verifier.c:9205:63
[   21.226683][  T295] shift exponent 1073741824 is too large for 32-bit type 's32' (aka 'int')
[   21.227785][  T295] CPU: 0 PID: 295 Comm: syz-executor414 Not tainted 6.1.57-syzkaller-00058-gcee8ebf7c508 #0
[   21.232649][  T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   21.242722][  T295] Call Trace:
[   21.245859][  T295]  <TASK>
[   21.248613][  T295]  dump_stack_lvl+0x151/0x1b7
[   21.253214][  T295]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[   21.258507][  T295]  ? stack_trace_snprint+0xf0/0xf0
[   21.263457][  T295]  dump_stack+0x15/0x17
[   21.267448][  T295]  __ubsan_handle_shift_out_of_bounds+0x3e1/0x440
[   21.273785][  T295]  scalar32_min_max_arsh+0x622/0x6c0
[   21.278919][  T295]  ? adjust_reg_min_max_vals+0x7b6/0x6360
[   21.284461][  T295]  adjust_reg_min_max_vals+0x3d20/0x6360
[   21.289969][  T295]  ? zext_32_to_64+0x290/0x290
[   21.294529][  T295]  ? find_equal_scalars+0x1a0/0x7c0
[   21.299563][  T295]  ? check_reg_arg+0x436/0x840
[   21.304303][  T295]  do_check+0x8e35/0xdd60
[   21.308479][  T295]  ? init_func_state+0x3c0/0x3c0
[   21.313241][  T295]  ? memset+0x35/0x40
[   21.317058][  T295]  ? btf_check_subprog_arg_match+0x182/0x300
[   21.322870][  T295]  do_check_common+0x6ce/0xed0
[   21.327470][  T295]  bpf_check+0x673b/0x16560
[   21.331811][  T295]  ? stack_depot_save+0x13/0x20
[   21.336508][  T295]  ? __kasan_check_write+0x14/0x20
[   21.341443][  T295]  ? __set_page_owner_handle+0x38a/0x3d0
[   21.346997][  T295]  ? page_ext_put+0x1c/0x30
[   21.351339][  T295]  ? __set_page_owner+0x53/0x70
[   21.356026][  T295]  ? post_alloc_hook+0x213/0x220
[   21.360872][  T295]  ? prep_new_page+0x1b/0x110
[   21.365311][  T295]  ? get_page_from_freelist+0x27ea/0x2870
[   21.370871][  T295]  ? unwind_get_return_address+0x4d/0x90
[   21.376336][  T295]  ? __kasan_check_write+0x14/0x20
[   21.381281][  T295]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   21.386583][  T295]  ? bpf_get_btf_vmlinux+0x60/0x60
[   21.391525][  T295]  ? is_bpf_text_address+0x172/0x190
[   21.396642][  T295]  ? is_module_text_address+0x280/0x360
[   21.402025][  T295]  ? stack_trace_save+0x1c0/0x1c0
[   21.406887][  T295]  ? kernel_text_address+0xa9/0xe0
[   21.411834][  T295]  ? __kernel_text_address+0xd/0x40
[   21.416865][  T295]  ? unwind_get_return_address+0x4d/0x90
[   21.422336][  T295]  ? __kasan_check_write+0x14/0x20
[   21.427283][  T295]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   21.432577][  T295]  ? _raw_spin_lock+0x1b0/0x1b0
[   21.437263][  T295]  ? stack_trace_save+0x113/0x1c0
[   21.442126][  T295]  ? stack_trace_snprint+0xf0/0xf0
[   21.447082][  T295]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[   21.452718][  T295]  ? __stack_depot_save+0x419/0x480
[   21.457745][  T295]  ? selinux_bpf_prog_alloc+0x51/0x140
[   21.463046][  T295]  ? kasan_set_track+0x60/0x70
[   21.467641][  T295]  ? kasan_set_track+0x4b/0x70
[   21.472244][  T295]  ? kasan_save_alloc_info+0x1f/0x30
[   21.477364][  T295]  ? __kasan_kmalloc+0x9c/0xb0
[   21.481965][  T295]  ? kmalloc_trace+0x44/0xa0
[   21.486387][  T295]  ? selinux_bpf_prog_alloc+0x51/0x140
[   21.491686][  T295]  ? security_bpf_prog_alloc+0x62/0x90
[   21.496977][  T295]  ? bpf_prog_load+0xa6a/0x1bf0
[   21.501665][  T295]  ? __sys_bpf+0x52c/0x7f0
[   21.506003][  T295]  ? __x64_sys_bpf+0x7c/0x90
[   21.510430][  T295]  ? do_syscall_64+0x3d/0xb0
[   21.514859][  T295]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   21.520773][  T295]  ? __kasan_check_write+0x14/0x20
[   21.525708][  T295]  ? _raw_spin_lock+0xa4/0x1b0
[   21.530313][  T295]  ? _raw_spin_trylock_bh+0x190/0x190
[   21.535517][  T295]  ? _raw_spin_unlock+0x4c/0x70
[   21.540206][  T295]  ? memset+0x35/0x40
[   21.544024][  T295]  ? bpf_obj_name_cpy+0x196/0x1e0
[   21.548882][  T295]  bpf_prog_load+0x1304/0x1bf0
[   21.553757][  T295]  ? map_freeze+0x3a0/0x3a0
[   21.558084][  T295]  ? selinux_bpf+0xcb/0x100
[   21.562420][  T295]  ? security_bpf+0x82/0xb0
[   21.566862][  T295]  __sys_bpf+0x52c/0x7f0
[   21.570925][  T295]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[   21.576137][  T295]  ? debug_smp_processor_id+0x17/0x20
[   21.581518][  T295]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   21.587417][  T295]  ? exit_to_user_mode_prepare+0x39/0xa0
[   21.592895][  T295]  __x64_sys_bpf+0x7c/0x90
[   21.597151][  T295]  do_syscall_64+0x3d/0xb0
[   21.601395][  T295]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   21.607122][  T295] RIP: 0033:0x7fe597b543e9
[   21.611760][  T295] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   21.631693][  T295] RSP: 002b:00007fff70e91208 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   21.639988][  T295] RAX: ffffffffffffffda RBX: 00007fff70e913e8 RCX: 00007fe597b543e9
[   21.647859][  T295] RDX: 0000000000000048 RSI: 00000000200054c0 RDI: 0000000000000005
[   21.655680][  T295] RBP: 00007fe597bc7610 R08: 0000000000000000 R09: 0000000000000000
[   21.663488][  T295] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001
[   21.671293][  T295] R13: 00007fff70e913d8 R14: 0000000000000001 R15: 0000000000000001
[   21.679199][  T295]  </TASK>
[   21.682138][  T295] ================================================================================
[   21.691627][  T295] ================================================================================
[   21.700711][  T295] UBSAN: shift-out-of-bounds in kernel/bpf/verifier.c:9206:63
[   21.708025][  T295] shift exponent 1073741824 is too large for 32-bit type 's32' (aka 'int')
[   21.716569][  T295] CPU: 0 PID: 295 Comm: syz-executor414 Not tainted 6.1.57-syzkaller-00058-gcee8ebf7c508 #0
[   21.726428][  T295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023
[   21.736321][  T295] Call Trace:
[   21.739446][  T295]  <TASK>
[   21.742227][  T295]  dump_stack_lvl+0x151/0x1b7
[   21.746737][  T295]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[   21.752033][  T295]  ? stack_trace_snprint+0xf0/0xf0
[   21.756980][  T295]  dump_stack+0x15/0x17
[   21.760968][  T295]  __ubsan_handle_shift_out_of_bounds+0x3e1/0x440
[   21.767257][  T295]  scalar32_min_max_arsh+0x676/0x6c0
[   21.772349][  T295]  ? adjust_reg_min_max_vals+0x7b6/0x6360
[   21.777895][  T295]  adjust_reg_min_max_vals+0x3d20/0x6360
[   21.783368][  T295]  ? zext_32_to_64+0x290/0x290
[   21.787963][  T295]  ? find_equal_scalars+0x1a0/0x7c0
[   21.793001][  T295]  ? check_reg_arg+0x436/0x840
[   21.797598][  T295]  do_check+0x8e35/0xdd60
[   21.801769][  T295]  ? init_func_state+0x3c0/0x3c0
[   21.806537][  T295]  ? memset+0x35/0x40
[   21.810354][  T295]  ? btf_check_subprog_arg_match+0x182/0x300
[   21.816181][  T295]  do_check_common+0x6ce/0xed0
[   21.820862][  T295]  bpf_check+0x673b/0x16560
[   21.825199][  T295]  ? stack_depot_save+0x13/0x20
[   21.829885][  T295]  ? __kasan_check_write+0x14/0x20
[   21.834834][  T295]  ? __set_page_owner_handle+0x38a/0x3d0
[   21.840298][  T295]  ? page_ext_put+0x1c/0x30
[   21.844654][  T295]  ? __set_page_owner+0x53/0x70
[   21.849337][  T295]  ? post_alloc_hook+0x213/0x220
[   21.854121][  T295]  ? prep_new_page+0x1b/0x110
[   21.858622][  T295]  ? get_page_from_freelist+0x27ea/0x2870
[   21.864174][  T295]  ? unwind_get_return_address+0x4d/0x90
[   21.869640][  T295]  ? __kasan_check_write+0x14/0x20
[   21.874584][  T295]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   21.879879][  T295]  ? bpf_get_btf_vmlinux+0x60/0x60
[   21.884837][  T295]  ? is_bpf_text_address+0x172/0x190
[   21.889963][  T295]  ? is_module_text_address+0x280/0x360
[   21.895336][  T295]  ? stack_trace_save+0x1c0/0x1c0
[   21.900198][  T295]  ? kernel_text_address+0xa9/0xe0
[   21.905150][  T295]  ? __kernel_text_address+0xd/0x40
[   21.910386][  T295]  ? unwind_get_return_address+0x4d/0x90
[   21.915852][  T295]  ? __kasan_check_write+0x14/0x20
[   21.920792][  T295]  ? _raw_spin_lock_irqsave+0xf9/0x210
[   21.926235][  T295]  ? _raw_spin_lock+0x1b0/0x1b0
[   21.930951][  T295]  ? stack_trace_save+0x113/0x1c0
[   21.935808][  T295]  ? stack_trace_snprint+0xf0/0xf0
[   21.940768][  T295]  ? _raw_spin_unlock_irqrestore+0x5b/0x80
[   21.946503][  T295]  ? __stack_depot_save+0x419/0x480
[   21.951671][  T295]  ? selinux_bpf_prog_alloc+0x51/0x140
[   21.956961][  T295]  ? kasan_set_track+0x60/0x70
[   21.961558][  T295]  ? kasan_set_track+0x4b/0x70
[   21.966157][  T295]  ? kasan_save_alloc_info+0x1f/0x30
[   21.971315][  T295]  ? __kasan_kmalloc+0x9c/0xb0
[   21.975877][  T295]  ? kmalloc_trace+0x44/0xa0
[   21.980329][  T295]  ? selinux_bpf_prog_alloc+0x51/0x140
[   21.985599][  T295]  ? security_bpf_prog_alloc+0x62/0x90
[   21.990895][  T295]  ? bpf_prog_load+0xa6a/0x1bf0
[   21.995581][  T295]  ? __sys_bpf+0x52c/0x7f0
[   21.999842][  T295]  ? __x64_sys_bpf+0x7c/0x90
[   22.004346][  T295]  ? do_syscall_64+0x3d/0xb0
[   22.008771][  T295]  ? entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   22.014679][  T295]  ? __kasan_check_write+0x14/0x20
[   22.019708][  T295]  ? _raw_spin_lock+0xa4/0x1b0
[   22.024409][  T295]  ? _raw_spin_trylock_bh+0x190/0x190
[   22.029603][  T295]  ? _raw_spin_unlock+0x4c/0x70
[   22.034299][  T295]  ? memset+0x35/0x40
[   22.038112][  T295]  ? bpf_obj_name_cpy+0x196/0x1e0
[   22.042983][  T295]  bpf_prog_load+0x1304/0x1bf0
[   22.047578][  T295]  ? map_freeze+0x3a0/0x3a0
[   22.051931][  T295]  ? selinux_bpf+0xcb/0x100
[   22.056257][  T295]  ? security_bpf+0x82/0xb0
[   22.060605][  T295]  __sys_bpf+0x52c/0x7f0
[   22.064673][  T295]  ? bpf_link_show_fdinfo+0x2d0/0x2d0
[   22.069885][  T295]  ? debug_smp_processor_id+0x17/0x20
[   22.075094][  T295]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   22.081090][  T295]  ? exit_to_user_mode_prepare+0x39/0xa0
[   22.086548][  T295]  __x64_sys_bpf+0x7c/0x90
[   22.090807][  T295]  do_syscall_64+0x3d/0xb0
[   22.095059][  T295]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   22.100777][  T295] RIP: 0033:0x7fe597b543e9
[   22.105159][  T295] Code: 48 83 c4 28 c3 e8 37 17 00 00 0f 1f 80 00 00 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   22.126345][  T295] RSP: 002b:00007fff70e91208 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   22.134637][  T295] RAX: ffffffffffffffda RBX: 00007fff70e913e8 RCX: 00007fe597b543e9
[   22.142565][  T295] RDX: 0000000000000048 RSI: 00000000200054c0 RDI: 0000000000000005
[   22.150582][  T295] RBP: 00007fe597bc7610 R08: 0000000000000000 R09: 0000000000000000
bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_KPROBE, insn_cnt=22, insns=0x20000140, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
exit_group(0)                           = ?
[   22.158391][  T295] R10: 00000000ffffffff R11: 0000000000000246 R12: 0000000000000001
[   22.166200][  T295] R13: 00007fff70e913d8 R14: 0000000000000001 R15: 0000000000000001
[   22.174192][  T295]  </TASK>
[   22.177269][  T295] ================================================================================
+++ exited with 0 +++
[