[ 59.081848][ T38] audit: type=1400 audit(1645216977.174:73): avc: denied { transition } for pid=3562 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 59.149730][ T38] audit: type=1400 audit(1645216977.184:74): avc: denied { write } for pid=3562 comm="sh" path="pipe:[29099]" dev="pipefs" ino=29099 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1
Warning: Permanently added '[localhost]:62301' (ECDSA) to the list of known hosts.
[ 61.839013][ T38] audit: type=1400 audit(1645216979.924:75): avc: denied { execute } for pid=3592 comm="sh" name="syz-executor2366339549" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 61.871787][ T38] audit: type=1400 audit(1645216979.924:76): avc: denied { execute_no_trans } for pid=3592 comm="sh" path="/syz-executor2366339549" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:etc_runtime_t tclass=file permissive=1
[ 61.905840][ T38] audit: type=1400 audit(1645216979.954:77): avc: denied { execmem } for pid=3592 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 61.932143][ T38] audit: type=1400 audit(1645216979.954:78): avc: denied { mounton } for pid=3595 comm="syz-executor236" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 61.964481][ T38] audit: type=1400 audit(1645216979.954:79): avc: denied { mount } for pid=3595 comm="syz-executor236" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[ 61.993292][ T38] audit: type=1400 audit(1645216979.964:80): avc: denied { mounton } for pid=3595 comm="syz-executor236" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 61.995001][ T3595] chnl_net:caif_netlink_parms(): no params data found
[ 62.148845][ T3595] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.158529][ T3595] bridge0: port 1(bridge_slave_0) entered disabled state
[ 62.169382][ T3595] device bridge_slave_0 entered promiscuous mode
[ 62.181737][ T3595] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.203065][ T3595] bridge0: port 2(bridge_slave_1) entered disabled state
[ 62.224243][ T3595] device bridge_slave_1 entered promiscuous mode
[ 62.293174][ T3595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 62.308196][ T3595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 62.368083][ T3595] team0: Port device team_slave_0 added
[ 62.379600][ T3595] team0: Port device team_slave_1 added
[ 62.436237][ T3595] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 62.444986][ T3595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 62.473724][ T3595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 62.488341][ T3595] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 62.497003][ T3595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 62.529546][ T3595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 62.602564][ T3595] device hsr_slave_0 entered promiscuous mode
[ 62.611627][ T3595] device hsr_slave_1 entered promiscuous mode
[ 62.763428][ T3595] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 62.767019][ T38] audit: type=1400 audit(1645216980.854:81): avc: denied { create } for pid=3595 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 62.800348][ T38] audit: type=1400 audit(1645216980.854:82): avc: denied { write } for pid=3595 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 62.805488][ T3595] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 62.845255][ T3595] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 62.858503][ T3595] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 62.895026][ T3595] bridge0: port 2(bridge_slave_1) entered blocking state
[ 62.903925][ T3595] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 62.914331][ T3595] bridge0: port 1(bridge_slave_0) entered blocking state
[ 62.922374][ T3595] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 62.998863][ T3595] 8021q: adding VLAN 0 to HW filter on device bond0
[ 63.019698][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 63.033966][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 63.045664][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 63.059650][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 63.077667][ T3595] 8021q: adding VLAN 0 to HW filter on device team0
[ 63.094407][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 63.105518][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 63.119151][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 63.128170][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 63.152607][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 63.163224][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 63.174982][ T5] bridge0: port 2(bridge_slave_1) entered blocking state
[ 63.183919][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 63.195420][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 63.233953][ T3595] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 63.250232][ T3595] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 63.268256][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 63.279016][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 63.296287][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 63.311826][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 63.325073][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 63.337074][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 63.348788][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 63.360961][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 63.371057][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 63.381803][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 63.391863][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 63.417621][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 63.427906][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 63.449835][ T3595] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 63.671839][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 63.687800][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 63.717611][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 63.732454][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 63.745822][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 63.758119][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 63.772129][ T3595] device veth0_vlan entered promiscuous mode
[ 63.787632][ T3595] device veth1_vlan entered promiscuous mode
[ 63.818760][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 63.831594][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 63.841683][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 63.854026][ T3633] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 63.875103][ T3595] device veth0_macvtap entered promiscuous mode
[ 63.890900][ T3595] device veth1_macvtap entered promiscuous mode
[ 63.922720][ T3595] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 63.939030][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 63.955191][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 63.964554][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 63.974411][ T3086] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 63.992994][ T3595] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 64.012534][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 64.033470][ T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 64.054673][ T3595] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 64.069269][ T3595] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 64.085644][ T3595] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 64.098762][ T3595] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 64.183525][ T38] kauditd_printk_skb: 3 callbacks suppressed
executing program
[ 64.183543][ T38] audit: type=1400 audit(1645216982.274:86): avc: denied { mounton } for pid=3595 comm="syz-executor236" path="/dev/binderfs" dev="devtmpfs" ino=2381 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 64.224528][ T38] audit: type=1400 audit(1645216982.284:87): avc: denied { mount } for pid=3595 comm="syz-executor236" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 64.257869][ T38] audit: type=1400 audit(1645216982.284:88): avc: denied { read } for pid=3654 comm="syz-executor236" name="nullb0" dev="devtmpfs" ino=689 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 64.291040][ T38] audit: type=1400 audit(1645216982.284:89): avc: denied { open } for pid=3654 comm="syz-executor236" path="/dev/nullb0" dev="devtmpfs" ino=689 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1
[ 64.320571][ T38] audit: type=1400 audit(1645216982.294:90): avc: denied { create } for pid=3654 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[ 64.347167][ T38] audit: type=1400 audit(1645216982.294:91): avc: denied { create } for pid=3654 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 64.375368][ T38] audit: type=1400 audit(1645216982.294:92): avc: denied { bind } for pid=3654 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 64.401210][ T38] audit: type=1400 audit(1645216982.294:93): avc: denied { connect } for pid=3654 comm="syz-executor236" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[ 64.425136][ T38] audit: type=1400 audit(1645216982.294:94): avc: denied { write } for pid=3654 comm="syz-executor236" path="socket:[28257]" dev="sockfs" ino=28257 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
executing program
executing program
executing program
[ 65.004477][ C1] vcan0: j1939_xtp_rx_dat: no tx connection found
executing program
executing program
[ 65.414792][ C2] vcan0: j1939_xtp_rx_dat: no tx connection found
[ 65.625869][ C0] vcan0: j1939_xtp_rx_dat: no tx connection found
executing program
[ 65.765941][ C1] vcan0: j1939_tp_rxtimer: 0xffff888029102800: rx timeout, send abort
[ 65.777592][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880264f3000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.795792][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897ec00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.813765][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888024140800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.825814][ C0] vcan0: j1939_tp_rxtimer: 0xffff8880175ba400: rx timeout, send abort
[ 65.848961][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888017f4d400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.868513][ C1] vcan0: j1939_xtp_rx_dat_one: 0xffff888017dc4800: last 00
[ 65.868607][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888017dc4800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.878523][ C1] vcan0: j1939_xtp_rx_dat_one: 0xffff888017dc4800: last 00
[ 65.895896][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888019c9b800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 65.904703][ C1] vcan0: j1939_xtp_rx_dat_one: 0xffff8880197ed000: last 00
[ 65.934156][ C1] vcan0: j1939_xtp_rx_dat_one: 0xffff888018f8c000: last 15
[ 65.950524][ C1] vcan0: j1939_xtp_rx_dat_one: 0xffff8880197ed000: last 15
[ 65.967362][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880197ed000: 0x00000: (5) Maximal retransmit request limit reached
[ 65.981213][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888016279000: 0x00000: (5) Maximal retransmit request limit reached
[ 65.995333][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88801c3e9000: 0x00000: (5) Maximal retransmit request limit reached
[ 66.010049][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff8880186b4000: 0x00000: (5) Maximal retransmit request limit reached
[ 66.024585][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897e400: 0x00000: (5) Maximal retransmit request limit reached
[ 66.039049][ C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897e000: 0x00000: (5) Maximal retransmit request limit reached
[ 66.044512][ C0] vcan0: j1939_tp_rxtimer: 0xffff88801926f800: rx timeout, send abort
[ 66.066228][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897fc00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 66.086553][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897f800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 66.106492][ C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88801bb1e800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 66.174436][ C2] vcan0: j1939_tp_rxtimer: 0xffff888018c02000: rx timeout, send abort
[ 66.190612][ C2] vcan0: j1939_xtp_rx_abort_one: 0xffff88802897f000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 66.217943][ C2] vcan0: j1939_xtp_rx_abort_one: 0xffff888028981c00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[ 66.246078][ C2] ------------[ cut here ]------------
[ 66.253440][ C2] WARNING: CPU: 2 PID: 26 at net/can/j1939/transport.c:1090 j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.269407][ C2] Modules linked in:
[ 66.277207][ C1] vcan0: j1939_tp_rxtimer: 0xffff888029102800: abort rx timeout. Force session deactivation
[ 66.291758][ C2] CPU: 2 PID: 26 Comm: ksoftirqd/2 Not tainted 5.17.0-rc4-syzkaller-00162-g9195e5e0adbb #0
[ 66.318636][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 66.331563][ C2] RIP: 0010:j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.341351][ C2] Code: 03 38 d0 7c 0c 84 d2 74 08 4c 89 ef e8 26 1f 74 f8 8b 5d 28 bf 01 00 00 00 89 de e8 67 22 2d f8 83 fb 01 77 07 e8 bd 20 2d f8 <0f> 0b e8 b6 20 2d f8 48 89 ef e8 6e 68 de fe 4c 89 e7 89 c3 e8 04
[ 66.368119][ C2] RSP: 0018:ffffc900007579b0 EFLAGS: 00010246
[ 66.377224][ C2] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000100
[ 66.388142][ C2] RDX: ffff888011a701c0 RSI: ffffffff894af263 RDI: 0000000000000003
[ 66.399455][ C2] RBP: ffff888028981c00 R08: 0000000000000001 R09: ffff888028981c2b
[ 66.409550][ C2] R10: ffffffff894af259 R11: 0000000000000000 R12: ffff888026ed1070
[ 66.419209][ C2] R13: ffff888028981c28 R14: ffff888028ae3018 R15: ffffffff8ac2edc0
[ 66.429304][ C2] FS: 0000000000000000(0000) GS:ffff88802cc00000(0000) knlGS:0000000000000000
[ 66.440316][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 66.448277][ C2] CR2: 00007f83a6c1a37a CR3: 000000001d15c000 CR4: 0000000000150ee0
[ 66.455665][ C3] vcan0: j1939_tp_rxtimer: 0xffff88801c759c00: rx timeout, send abort
[ 66.458940][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 66.479428][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 66.489672][ C2] Call Trace:
[ 66.493747][ C2]
[ 66.497293][ C2] j1939_xtp_rx_abort_one.cold+0x20b/0x33c
[ 66.504405][ C2] j1939_tp_recv+0xb3d/0xcb0
[ 66.510123][ C2] j1939_can_recv+0x6ff/0x9a0
[ 66.515880][ C2] ? j1939_netdev_notify+0x1d0/0x1d0
[ 66.522481][ C2] ? j1939_netdev_notify+0x1d0/0x1d0
[ 66.528968][ C2] can_rcv_filter+0x5d4/0x8d0
[ 66.536254][ C2] can_receive+0x31d/0x580
[ 66.542837][ C2] can_rcv+0x120/0x1c0
[ 66.548593][ C2] ? can_receive+0x580/0x580
[ 66.555289][ C2] __netif_receive_skb_one_core+0x114/0x180
[ 66.565187][ C2] ? __netif_receive_skb_core+0x3850/0x3850
[ 66.573128][ C2] ? do_raw_spin_lock+0x120/0x2b0
[ 66.579354][ C2] ? rwlock_bug.part.0+0x90/0x90
[ 66.586180][ C2] __netif_receive_skb+0x24/0x1b0
[ 66.593275][ C2] process_backlog+0x2a5/0x6c0
[ 66.599001][ C2] __napi_poll+0xb3/0x6e0
[ 66.605030][ C2] net_rx_action+0x801/0xb40
[ 66.611452][ C2] ? napi_threaded_poll+0x520/0x520
[ 66.617916][ C2] ? sched_clock_cpu+0x15/0x1f0
[ 66.624271][ C2] __do_softirq+0x29b/0x9c2
[ 66.629506][ C2] ? __irq_exit_rcu+0x180/0x180
[ 66.635548][ C2] run_ksoftirqd+0x2d/0x60
[ 66.640702][ C2] smpboot_thread_fn+0x645/0x9c0
[ 66.646678][ C2] ? smpboot_register_percpu_thread+0x370/0x370
[ 66.654409][ C2] kthread+0x2e9/0x3a0
[ 66.659487][ C2] ? kthread_complete_and_exit+0x40/0x40
[ 66.666402][ C2] ret_from_fork+0x1f/0x30
[ 66.671998][ C2]
[ 66.675909][ C2] Kernel panic - not syncing: panic_on_warn set ...
[ 66.683939][ C2] CPU: 2 PID: 26 Comm: ksoftirqd/2 Not tainted 5.17.0-rc4-syzkaller-00162-g9195e5e0adbb #0
[ 66.696365][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[ 66.707531][ C2] Call Trace:
[ 66.711615][ C2]
[ 66.715222][ C2] dump_stack_lvl+0xcd/0x134
[ 66.720765][ C2] panic+0x2b0/0x6dd
[ 66.726254][ C2] ? __warn_printk+0xf3/0xf3
[ 66.731838][ C2] ? __warn.cold+0x1d1/0x2cf
[ 66.737336][ C2] ? j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.745318][ C2] __warn.cold+0x1ec/0x2cf
[ 66.750675][ C2] ? j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.758947][ C2] report_bug+0x1bd/0x210
[ 66.764744][ C2] handle_bug+0x3c/0x60
[ 66.770069][ C2] exc_invalid_op+0x14/0x40
[ 66.775796][ C2] asm_exc_invalid_op+0x12/0x20
[ 66.781983][ C2] RIP: 0010:j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.791027][ C2] Code: 03 38 d0 7c 0c 84 d2 74 08 4c 89 ef e8 26 1f 74 f8 8b 5d 28 bf 01 00 00 00 89 de e8 67 22 2d f8 83 fb 01 77 07 e8 bd 20 2d f8 <0f> 0b e8 b6 20 2d f8 48 89 ef e8 6e 68 de fe 4c 89 e7 89 c3 e8 04
[ 66.816271][ C2] RSP: 0018:ffffc900007579b0 EFLAGS: 00010246
[ 66.823879][ C2] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000100
[ 66.834358][ C2] RDX: ffff888011a701c0 RSI: ffffffff894af263 RDI: 0000000000000003
[ 66.843982][ C2] RBP: ffff888028981c00 R08: 0000000000000001 R09: ffff888028981c2b
[ 66.854076][ C2] R10: ffffffff894af259 R11: 0000000000000000 R12: ffff888026ed1070
[ 66.863810][ C2] R13: ffff888028981c28 R14: ffff888028ae3018 R15: ffffffff8ac2edc0
[ 66.873465][ C2] ? j1939_session_deactivate_activate_next+0x8b/0xd3
[ 66.881606][ C2] ? j1939_session_deactivate_activate_next+0x95/0xd3
[ 66.891103][ C2] j1939_xtp_rx_abort_one.cold+0x20b/0x33c
[ 66.898105][ C2] j1939_tp_recv+0xb3d/0xcb0
[ 66.903600][ C2] j1939_can_recv+0x6ff/0x9a0
[ 66.909743][ C2] ? j1939_netdev_notify+0x1d0/0x1d0
[ 66.917879][ C2] ? j1939_netdev_notify+0x1d0/0x1d0
[ 66.926341][ C2] can_rcv_filter+0x5d4/0x8d0
[ 66.932240][ C2] can_receive+0x31d/0x580
[ 66.938048][ C2] can_rcv+0x120/0x1c0
[ 66.943081][ C2] ? can_receive+0x580/0x580
[ 66.948845][ C2] __netif_receive_skb_one_core+0x114/0x180
[ 66.956028][ C2] ? __netif_receive_skb_core+0x3850/0x3850
[ 66.963331][ C2] ? do_raw_spin_lock+0x120/0x2b0
[ 66.969457][ C2] ? rwlock_bug.part.0+0x90/0x90
[ 66.975560][ C2] __netif_receive_skb+0x24/0x1b0
[ 66.981651][ C2] process_backlog+0x2a5/0x6c0
[ 66.987626][ C2] __napi_poll+0xb3/0x6e0
[ 66.993004][ C2] net_rx_action+0x801/0xb40
[ 66.998554][ C2] ? napi_threaded_poll+0x520/0x520
[ 67.005031][ C2] ? sched_clock_cpu+0x15/0x1f0
[ 67.010999][ C2] __do_softirq+0x29b/0x9c2
[ 67.016558][ C2] ? __irq_exit_rcu+0x180/0x180
[ 67.022787][ C2] run_ksoftirqd+0x2d/0x60
[ 67.028239][ C2] smpboot_thread_fn+0x645/0x9c0
[ 67.034167][ C2] ? smpboot_register_percpu_thread+0x370/0x370
[ 67.042810][ C2] kthread+0x2e9/0x3a0
[ 67.047886][ C2] ? kthread_complete_and_exit+0x40/0x40
[ 67.054803][ C2] ret_from_fork+0x1f/0x30
[ 67.060742][ C2]
[ 67.067076][ C2] Kernel Offset: disabled
[ 67.072582][ C2] Rebooting in 86400 seconds..
VM DIAGNOSIS:
20:43:04 Registers:
info registers vcpu 0
RAX=000000000007c064 RBX=0000000000000000 RCX=1ffffffff20040c6 RDX=0000000000000000
RSI=0000000000000301 RDI=0000000000000000 RBP=ffff888026ed1070 RSP=ffffc9000062f858
R8 =0000000000000001 R9 =ffffffff8ffc6a2f R10=0000000000000001 R11=0000000000000000
R12=0000000000000000 R13=ffffed1004dda20e R14=0000000000000001 R15=ffff88802ca3ab00
RIP=ffffffff813425b8 RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00005593562a14a0 CR3=000000001d15c000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000001000000010000001a00000000
XMM02=00000000000000ff00000000000000ff XMM03=000000000000ff00000000000000ff00
XMM04=00000000ff00000000ff0000ff000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=000000000002dccf RBX=ffff888011924180 RCX=ffffffff894dce21 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000001 RSP=ffffc9000065fdf8
R8 =0000000000000001 R9 =ffff88802cb3acd3 R10=ffffed100596759a R11=0000000000000000
R12=ffffed1002324830 R13=0000000000000001 R14=ffffffff8d93cf90 R15=0000000000000000
RIP=ffffffff8950994b RFL=00000206 [-----P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000004a000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000048000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000000020000040 CR3=000000001d15c000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000001000000010000001a00000000
XMM02=00000000000000ff00000000000000ff XMM03=000000000000ff00000000000000ff00
XMM04=00000000ff00000000ff0000ff000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8443211c RDI=ffffffff907ec2e0 RBP=ffffffff907ec2a0 RSP=ffffc90000757338
R8 =000000000000002a R9 =0000000000000000 R10=ffffffff8443210d R11=000000000000001f
R12=0000000000000000 R13=fffffbfff20fd8a7 R14=fffffbfff20fd85e R15=dffffc0000000000
RIP=ffffffff84432142 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000091000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe000008f000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f83a6c1a37a CR3=000000001d15c000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000001000000010000001a00000000
XMM02=00000000000000ff00000000000000ff XMM03=000000000000ff00000000000000ff00
XMM04=00000000ff00000000ff0000ff000000 XMM05=0000000000000000000000000000ff00
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=000000000002d86b RBX=ffff88801192a200 RCX=ffffffff894dce21 RDX=0000000000000000
RSI=0000000000000001 RDI=0000000000000000 RBP=0000000000000003 RSP=ffffc9000067fdf8
R8 =0000000000000001 R9 =ffff88802cd3acd3 R10=ffffed10059a759a R11=0000000000000000
R12=ffffed1002325440 R13=0000000000000003 R14=ffffffff8d93cf90 R15=0000000000000000
RIP=ffffffff8950994b RFL=00000202 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000d8000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe00000d6000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=00007f83a6c0b860 CR3=00000000213cf000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a0a XMM01=00000000000000000000000000000000
XMM02=00000000000000000000000000000000 XMM03=6176697463615f657461766974636165
XMM04=746176697463615f6574617669746361 XMM05=20303930313a632e74726f70736e6172
XMM06=7461203632203a4449502032203a5550 XMM07=20205b5d3034343335322e3636202020
XMM08=656c75646f4d205d3243202020205b5d XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000