[ 54.450020][ T37] audit: type=1400 audit(1640926159.141:159): avc: denied { create } for pid=5414 comm="syz-fuzzer" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_crypto_socket permissive=1 [ 54.470944][ T37] audit: type=1400 audit(1640926159.141:160): avc: denied { create } for pid=5414 comm="syz-fuzzer" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 59.177109][ T37] kauditd_printk_skb: 22 callbacks suppressed [ 59.177116][ T37] audit: type=1400 audit(1640926163.871:183): avc: denied { getattr } for pid=5689 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=1450 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.225249][ T37] audit: type=1400 audit(1640926163.921:184): avc: denied { read } for pid=5691 comm="sed" name="eth0.dhcp" dev="tmpfs" ino=1450 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.247424][ T37] audit: type=1400 audit(1640926163.921:185): avc: denied { open } for pid=5691 comm="sed" path="/run/dhcpcd/hook-state/resolv.conf/eth0.dhcp" dev="tmpfs" ino=1450 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.291618][ T37] audit: type=1400 audit(1640926163.981:186): avc: denied { create } for pid=5688 comm="dhcpcd-run-hook" name="resolv.conf.eth3.ipv4ll" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.316193][ T37] audit: type=1400 audit(1640926163.981:187): avc: denied { write } for pid=5688 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.eth3.ipv4ll" dev="tmpfs" ino=1526 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.343784][ T37] audit: type=1400 audit(1640926163.981:188): avc: denied { append } for pid=5688 comm="dhcpcd-run-hook" name="resolv.conf.eth3.ipv4ll" dev="tmpfs" ino=1526 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 59.368613][ T37] audit: type=1400 audit(1640926164.021:189): avc: denied { unlink } for pid=5699 comm="rm" name="resolv.conf.eth3.ipv4ll" dev="tmpfs" ino=1526 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 71.200066][ T5] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.7' (ECDSA) to the list of known hosts. [ 73.966194][ T37] audit: type=1400 audit(1640926178.661:190): avc: denied { bind } for pid=5879 comm="syz-executor575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 73.990830][ T37] audit: type=1400 audit(1640926178.661:191): avc: denied { write } for pid=5889 comm="syz-executor575" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 74.150262][ T5894] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 74.164854][ T5900] ------------[ cut here ]------------ [ 74.171185][ T5900] refcount_t: underflow; use-after-free. [ 74.178929][ T5900] WARNING: CPU: 0 PID: 5900 at lib/refcount.c:28 refcount_warn_saturate+0x12b/0x140 [ 74.191107][ T5900] Modules linked in: [ 74.197208][ T5898] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 74.206287][ T5900] CPU: 1 PID: 5900 Comm: syz-executor575 Not tainted 5.12.0-rc4-syzkaller #0 [ 74.223751][ T5900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 74.237196][ T5899] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512) [ 74.251073][ T5900] RIP: 0010:refcount_warn_saturate+0x12b/0x140 [ 74.262878][ T5900] Code: e5 87 04 0f 0b e9 53 ff ff ff 48 89 df e8 1d dc 29 fe e9 23 ff ff ff 48 c7 c7 c0 8e fd 88 c6 05 88 0f ca 08 01 e8 bc e5 87 04 <0f> 0b e9 2c ff ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 [ 74.324980][ T5900] RSP: 0018:ffffc90001867af8 EFLAGS: 00010286 [ 74.342753][ T5900] RAX: 0000000000000000 RBX: ffff888146bb8018 RCX: 0000000000000000 [ 74.366956][ T5900] RDX: 0000000000000001 RSI: ffffffff88fdcb40 RDI: fffff5200030cf51 [ 74.389498][ T5900] RBP: 0000000000000003 R08: 0000000000000001 R09: ffff8880ba04c1a7 [ 74.408570][ T5900] R10: ffffed1017409834 R11: 0000000000000001 R12: 0000000000000000 [ 74.421068][ T5900] R13: ffff888146bb8018 R14: ffffffff8c3b1740 R15: ffff88803118d798 [ 74.435385][ T5900] FS: 0000000000000000(0000) GS:ffff8880ba100000(0000) knlGS:0000000000000000 [ 74.449848][ T5900] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 74.462088][ T5900] CR2: 00007ff333f8b158 CR3: 000000001db00000 CR4: 00000000003506e0 [ 74.482345][ T5900] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 74.499423][ T5900] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 74.520310][ T5900] Call Trace: [ 74.529638][ T5900] nfc_llcp_local_put+0x155/0x1a0 [ 74.543149][ T5900] ? skb_queue_purge+0xb/0x20 [ 74.552997][ T5900] llcp_sock_destruct+0x5b/0x110 [ 74.562424][ T5900] __sk_destruct+0x3f/0x730 [ 74.574520][ T5900] ? skb_queue_purge+0xb/0x20 [ 74.588637][ T5900] skb_release_head_state+0x71/0x1a0 [ 74.597156][ T5900] kfree_skb+0xac/0x2c0 [ 74.614654][ T5900] skb_queue_purge+0xb/0x20 [ 74.631010][ T5900] nfc_llcp_socket_release+0x2a/0x770 [ 74.650344][ T5900] local_cleanup+0x10/0xb0 [ 74.663100][ T5900] nfc_llcp_local_put+0x134/0x1a0 [ 74.683690][ T5900] llcp_sock_destruct+0x5b/0x110 [ 74.698836][ T5900] __sk_destruct+0x3f/0x730 [ 74.713290][ T5900] llcp_sock_release+0x2fd/0x4a0 [ 74.728175][ T5900] __sock_release+0xbb/0x270 [ 74.741824][ T5900] sock_close+0xf/0x20 [ 74.750590][ T5900] __fput+0x209/0x870 [ 74.764358][ T5900] ? _raw_spin_unlock_irq+0x1f/0x40 [ 74.776723][ T5900] task_work_run+0xc0/0x160 [ 74.795001][ T5900] do_exit+0xa26/0x2500 [ 74.805726][ T5900] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 74.824484][ T5900] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 74.842045][ T5900] ? mm_update_next_owner+0x6d0/0x6d0 [ 74.857154][ T5900] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 74.874843][ T5900] do_group_exit+0xe7/0x290 [ 74.893960][ T5900] __x64_sys_exit_group+0x35/0x40 [ 74.904275][ T5900] do_syscall_64+0x2d/0x70 [ 74.917971][ T5900] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 74.935841][ T5900] RIP: 0033:0x7ff333f34b09 [ 74.948157][ T5900] Code: Unable to access opcode bytes at RIP 0x7ff333f34adf. [ 74.956911][ T5900] RSP: 002b:00007ffe22b4b848 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 74.972921][ T5900] RAX: ffffffffffffffda RBX: 00007ff333fbf390 RCX: 00007ff333f34b09 [ 74.996107][ T5900] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 75.018613][ T5900] RBP: 0000000000000000 R08: ffffffffffffffb8 R09: 0000000000000001 [ 75.042066][ T5900] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff333fbf390 [ 75.057377][ T5900] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 75.066642][ T5900] Kernel panic - not syncing: panic_on_warn set ... [ 75.073419][ T5900] CPU: 0 PID: 5900 Comm: syz-executor575 Not tainted 5.12.0-rc4-syzkaller #0 [ 75.083243][ T5900] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 75.093921][ T5900] Call Trace: [ 75.097390][ T5900] dump_stack+0xa5/0xe6 [ 75.101728][ T5900] panic+0x256/0x4eb [ 75.106879][ T5900] ? __warn_printk+0xee/0xee [ 75.111652][ T5900] ? refcount_warn_saturate+0x12b/0x140 [ 75.117415][ T5900] __warn.cold+0x2b/0x35 [ 75.121753][ T5900] ? refcount_warn_saturate+0x12b/0x140 [ 75.127583][ T5900] report_bug+0x15a/0x1b0 [ 75.131968][ T5900] ? vprintk_emit+0x138/0x330 [ 75.138152][ T5900] handle_bug+0x3c/0x60 [ 75.142491][ T5900] exc_invalid_op+0x14/0x40 [ 75.147213][ T5900] asm_exc_invalid_op+0x12/0x20 [ 75.152171][ T5900] RIP: 0010:refcount_warn_saturate+0x12b/0x140 [ 75.159152][ T5900] Code: e5 87 04 0f 0b e9 53 ff ff ff 48 89 df e8 1d dc 29 fe e9 23 ff ff ff 48 c7 c7 c0 8e fd 88 c6 05 88 0f ca 08 01 e8 bc e5 87 04 <0f> 0b e9 2c ff ff ff 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 41 [ 75.180201][ T5900] RSP: 0018:ffffc90001867af8 EFLAGS: 00010286 [ 75.186580][ T5900] RAX: 0000000000000000 RBX: ffff888146bb8018 RCX: 0000000000000000 [ 75.195436][ T5900] RDX: 0000000000000001 RSI: ffffffff88fdcb40 RDI: fffff5200030cf51 [ 75.203503][ T5900] RBP: 0000000000000003 R08: 0000000000000001 R09: ffff8880ba04c1a7 [ 75.211994][ T5900] R10: ffffed1017409834 R11: 0000000000000001 R12: 0000000000000000 [ 75.219970][ T5900] R13: ffff888146bb8018 R14: ffffffff8c3b1740 R15: ffff88803118d798 [ 75.228118][ T5900] ? refcount_warn_saturate+0x12b/0x140 [ 75.233759][ T5900] nfc_llcp_local_put+0x155/0x1a0 [ 75.238797][ T5900] ? skb_queue_purge+0xb/0x20 [ 75.243660][ T5900] llcp_sock_destruct+0x5b/0x110 [ 75.248796][ T5900] __sk_destruct+0x3f/0x730 [ 75.253383][ T5900] ? skb_queue_purge+0xb/0x20 [ 75.258067][ T5900] skb_release_head_state+0x71/0x1a0 [ 75.263437][ T5900] kfree_skb+0xac/0x2c0 [ 75.267770][ T5900] skb_queue_purge+0xb/0x20 [ 75.272400][ T5900] nfc_llcp_socket_release+0x2a/0x770 [ 75.277864][ T5900] local_cleanup+0x10/0xb0 [ 75.282434][ T5900] nfc_llcp_local_put+0x134/0x1a0 [ 75.287605][ T5900] llcp_sock_destruct+0x5b/0x110 [ 75.292632][ T5900] __sk_destruct+0x3f/0x730 [ 75.297341][ T5900] llcp_sock_release+0x2fd/0x4a0 [ 75.302295][ T5900] __sock_release+0xbb/0x270 [ 75.306971][ T5900] sock_close+0xf/0x20 [ 75.311049][ T5900] __fput+0x209/0x870 [ 75.315036][ T5900] ? _raw_spin_unlock_irq+0x1f/0x40 [ 75.320322][ T5900] task_work_run+0xc0/0x160 [ 75.324915][ T5900] do_exit+0xa26/0x2500 [ 75.329165][ T5900] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 75.335369][ T5900] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 75.341525][ T5900] ? mm_update_next_owner+0x6d0/0x6d0 [ 75.346909][ T5900] ? asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 75.353063][ T5900] do_group_exit+0xe7/0x290 [ 75.357572][ T5900] __x64_sys_exit_group+0x35/0x40 [ 75.364508][ T5900] do_syscall_64+0x2d/0x70 [ 75.368943][ T5900] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 75.375361][ T5900] RIP: 0033:0x7ff333f34b09 [ 75.379867][ T5900] Code: Unable to access opcode bytes at RIP 0x7ff333f34adf. [ 75.387598][ T5900] RSP: 002b:00007ffe22b4b848 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 75.396530][ T5900] RAX: ffffffffffffffda RBX: 00007ff333fbf390 RCX: 00007ff333f34b09 [ 75.405097][ T5900] RDX: 000000000000003c RSI: 00000000000000e7 RDI: 0000000000000000 [ 75.414632][ T5900] RBP: 0000000000000000 R08: ffffffffffffffb8 R09: 0000000000000001 [ 75.422951][ T5900] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff333fbf390 [ 75.431096][ T5900] R13: 0000000000000001 R14: 0000000000000000 R15: 0000000000000001 [ 75.439891][ T5900] Kernel Offset: disabled [ 75.444466][ T5900] Rebooting in 86400 seconds..