[ 97.678833][ T24] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.110' (ED25519) to the list of known hosts. 2024/03/29 07:05:13 fuzzer started 2024/03/29 07:05:13 dialing manager at 10.128.0.169:30003 [ 100.923820][ T28] audit: type=1400 audit(1711695913.404:87): avc: denied { node_bind } for pid=5055 comm="syz-fuzzer" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 100.944838][ T28] audit: type=1400 audit(1711695913.404:88): avc: denied { name_bind } for pid=5055 comm="syz-fuzzer" src=6060 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unreserved_port_t tclass=tcp_socket permissive=1 [ 101.248045][ T28] audit: type=1400 audit(1711695913.734:89): avc: denied { mounton } for pid=5063 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1925 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 101.261869][ T5063] cgroup: Unknown subsys name 'net' [ 101.271049][ T28] audit: type=1400 audit(1711695913.734:90): avc: denied { mount } for pid=5063 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 101.298892][ T28] audit: type=1400 audit(1711695913.764:91): avc: denied { unmount } for pid=5063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 101.463705][ T5063] cgroup: Unknown subsys name 'rlimit' [ 101.593167][ T28] audit: type=1400 audit(1711695914.074:92): avc: denied { mounton } for pid=5063 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 101.622635][ T28] audit: type=1400 audit(1711695914.074:93): avc: denied { mount } for pid=5063 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 101.650721][ T28] audit: type=1400 audit(1711695914.074:94): avc: denied { setattr } for pid=5063 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=732 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 101.675061][ T28] audit: type=1400 audit(1711695914.074:95): avc: denied { create } for pid=5063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 101.703802][ T28] audit: type=1400 audit(1711695914.074:96): avc: denied { write } for pid=5063 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 101.794061][ T5064] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). 2024/03/29 07:05:16 syscalls: 3868 2024/03/29 07:05:16 code coverage: enabled 2024/03/29 07:05:16 comparison tracing: enabled 2024/03/29 07:05:16 extra coverage: enabled 2024/03/29 07:05:16 delay kcov mmap: enabled 2024/03/29 07:05:16 setuid sandbox: enabled 2024/03/29 07:05:16 namespace sandbox: enabled 2024/03/29 07:05:16 Android sandbox: enabled 2024/03/29 07:05:16 fault injection: enabled 2024/03/29 07:05:16 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/03/29 07:05:16 net packet injection: enabled 2024/03/29 07:05:16 net device setup: enabled 2024/03/29 07:05:16 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/03/29 07:05:16 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/03/29 07:05:16 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/03/29 07:05:16 USB emulation: enabled 2024/03/29 07:05:16 hci packet injection: enabled 2024/03/29 07:05:16 wifi device emulation: enabled 2024/03/29 07:05:16 802.15.4 emulation: enabled 2024/03/29 07:05:16 swap file: enabled [ 103.717701][ T5063] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/03/29 07:05:16 starting 5 executor processes [ 105.219611][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 105.228892][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 105.236675][ T5082] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 105.244388][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 105.255555][ T5082] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 105.263955][ T5082] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 105.264777][ T52] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 105.280210][ T52] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 105.288882][ T52] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 105.299459][ T52] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 105.310190][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 105.316244][ T5084] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 105.377103][ T52] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 105.377444][ T5078] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 105.396594][ T5078] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 105.399074][ T52] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 105.411289][ T5078] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 105.419180][ T52] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 105.428296][ T5078] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 105.436205][ T52] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 105.444461][ T52] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 105.452558][ T5078] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 105.452728][ T52] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 105.467817][ T5078] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 105.549545][ T4456] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 105.565217][ T4456] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 105.576638][ T4456] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 105.587074][ T4456] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 105.606718][ T4456] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 105.616351][ T4456] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 106.064117][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 106.064140][ T28] audit: type=1400 audit(1711695918.544:114): avc: denied { module_request } for pid=5075 comm="syz-executor.0" kmod="rtnl-link-nicvf" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 106.260066][ T5075] chnl_net:caif_netlink_parms(): no params data found [ 106.386479][ T5076] chnl_net:caif_netlink_parms(): no params data found [ 106.690224][ T5075] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.697957][ T5075] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.705465][ T5075] bridge_slave_0: entered allmulticast mode [ 106.714533][ T5075] bridge_slave_0: entered promiscuous mode [ 106.725665][ T5075] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.733099][ T5075] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.740383][ T5075] bridge_slave_1: entered allmulticast mode [ 106.748661][ T5075] bridge_slave_1: entered promiscuous mode [ 106.784739][ T5083] chnl_net:caif_netlink_parms(): no params data found [ 106.949403][ T5076] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.956949][ T5076] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.964192][ T5076] bridge_slave_0: entered allmulticast mode [ 106.972629][ T5076] bridge_slave_0: entered promiscuous mode [ 106.987143][ T5075] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.016547][ T5081] chnl_net:caif_netlink_parms(): no params data found [ 107.036608][ T5076] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.043886][ T5076] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.057776][ T5076] bridge_slave_1: entered allmulticast mode [ 107.070212][ T5076] bridge_slave_1: entered promiscuous mode [ 107.083360][ T5075] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.195817][ T5076] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.276144][ T5076] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.291850][ T5075] team0: Port device team_slave_0 added [ 107.308266][ T5087] chnl_net:caif_netlink_parms(): no params data found [ 107.357759][ T5078] Bluetooth: hci0: command tx timeout [ 107.397467][ T5075] team0: Port device team_slave_1 added [ 107.436114][ T5078] Bluetooth: hci1: command tx timeout [ 107.493560][ T5076] team0: Port device team_slave_0 added [ 107.505551][ T5076] team0: Port device team_slave_1 added [ 107.516240][ T5078] Bluetooth: hci3: command tx timeout [ 107.520187][ T4456] Bluetooth: hci2: command tx timeout [ 107.560619][ T5083] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.568118][ T5083] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.575405][ T5083] bridge_slave_0: entered allmulticast mode [ 107.584913][ T5083] bridge_slave_0: entered promiscuous mode [ 107.675920][ T4456] Bluetooth: hci4: command tx timeout [ 107.698158][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.705163][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.731733][ T5075] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.744695][ T5083] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.752545][ T5083] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.760786][ T5083] bridge_slave_1: entered allmulticast mode [ 107.769485][ T5083] bridge_slave_1: entered promiscuous mode [ 107.813264][ T5081] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.821241][ T5081] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.829317][ T5081] bridge_slave_0: entered allmulticast mode [ 107.837712][ T5081] bridge_slave_0: entered promiscuous mode [ 107.846925][ T5076] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.853930][ T5076] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.880349][ T5076] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.895993][ T5076] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.902995][ T5076] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.931324][ T5076] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.943600][ T5075] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.951555][ T5075] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.977770][ T5075] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.028767][ T5081] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.036226][ T5081] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.043493][ T5081] bridge_slave_1: entered allmulticast mode [ 108.051881][ T5081] bridge_slave_1: entered promiscuous mode [ 108.120640][ T5083] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.136878][ T5083] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.201117][ T5081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.241532][ T5076] hsr_slave_0: entered promiscuous mode [ 108.249192][ T5076] hsr_slave_1: entered promiscuous mode [ 108.317601][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.324978][ T5087] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.333151][ T5087] bridge_slave_0: entered allmulticast mode [ 108.343531][ T5087] bridge_slave_0: entered promiscuous mode [ 108.355561][ T5081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.402523][ T5075] hsr_slave_0: entered promiscuous mode [ 108.410443][ T5075] hsr_slave_1: entered promiscuous mode [ 108.417764][ T5075] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.425721][ T5075] Cannot create hsr debugfs directory [ 108.458218][ T5083] team0: Port device team_slave_0 added [ 108.464975][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.472953][ T5087] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.485138][ T5087] bridge_slave_1: entered allmulticast mode [ 108.493214][ T5087] bridge_slave_1: entered promiscuous mode [ 108.569845][ T5083] team0: Port device team_slave_1 added [ 108.637333][ T5081] team0: Port device team_slave_0 added [ 108.716363][ T5087] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.728770][ T5081] team0: Port device team_slave_1 added [ 108.794511][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.804483][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.831912][ T5083] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.845695][ T5083] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.853019][ T5083] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.884509][ T5083] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.899207][ T5087] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.940804][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.948238][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.974876][ T5081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 109.091330][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 109.098429][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.126077][ T5081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 109.166821][ T5087] team0: Port device team_slave_0 added [ 109.237425][ T5081] hsr_slave_0: entered promiscuous mode [ 109.244308][ T5081] hsr_slave_1: entered promiscuous mode [ 109.252546][ T5081] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 109.260271][ T5081] Cannot create hsr debugfs directory [ 109.271005][ T5087] team0: Port device team_slave_1 added [ 109.421116][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 109.428241][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.445505][ T4456] Bluetooth: hci0: command tx timeout [ 109.455203][ T5087] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 109.502724][ T5083] hsr_slave_0: entered promiscuous mode [ 109.509799][ T5083] hsr_slave_1: entered promiscuous mode [ 109.516786][ T4456] Bluetooth: hci1: command tx timeout [ 109.517362][ T5083] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 109.530123][ T5083] Cannot create hsr debugfs directory [ 109.569601][ T5087] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 109.577036][ T5087] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.596088][ T4456] Bluetooth: hci3: command tx timeout [ 109.603461][ T5087] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 109.608480][ T5078] Bluetooth: hci2: command tx timeout [ 109.756059][ T5078] Bluetooth: hci4: command tx timeout [ 109.863110][ T5087] hsr_slave_0: entered promiscuous mode [ 109.870319][ T5087] hsr_slave_1: entered promiscuous mode [ 109.879423][ T5087] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 109.888278][ T5087] Cannot create hsr debugfs directory [ 110.165410][ T5075] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 110.243335][ T5075] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 110.264127][ T5075] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 110.303503][ T5075] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 110.471208][ T5076] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 110.511764][ T5076] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 110.524522][ T5076] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 110.585063][ T5076] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 110.680744][ T5081] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 110.725346][ T5081] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 110.738344][ T5081] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 110.753926][ T5081] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 110.903924][ T5083] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 110.933844][ T5083] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 110.947163][ T5083] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 110.980136][ T5083] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 111.077741][ T5075] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.249254][ T5075] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.257338][ T5087] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 111.303775][ T5087] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 111.338570][ T5087] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 111.361413][ T5125] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.369058][ T5125] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.400251][ T5087] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 111.443441][ T5076] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.459534][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.466942][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.519597][ T5078] Bluetooth: hci0: command tx timeout [ 111.596979][ T5078] Bluetooth: hci1: command tx timeout [ 111.622933][ T5076] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.676928][ T4456] Bluetooth: hci3: command tx timeout [ 111.682495][ T5078] Bluetooth: hci2: command tx timeout [ 111.703606][ T5081] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.724891][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.732140][ T5126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.753526][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.761047][ T5126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.837005][ T5078] Bluetooth: hci4: command tx timeout [ 111.948312][ T5081] 8021q: adding VLAN 0 to HW filter on device team0 [ 112.009938][ T5127] bridge0: port 1(bridge_slave_0) entered blocking state [ 112.017254][ T5127] bridge0: port 1(bridge_slave_0) entered forwarding state [ 112.043019][ T5083] 8021q: adding VLAN 0 to HW filter on device bond0 [ 112.085825][ T5124] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.093044][ T5124] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.153335][ T5076] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 112.218698][ T28] audit: type=1400 audit(1711695924.694:115): avc: denied { sys_module } for pid=5075 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 112.309973][ T5083] 8021q: adding VLAN 0 to HW filter on device team0 [ 112.434568][ T44] bridge0: port 1(bridge_slave_0) entered blocking state [ 112.441931][ T44] bridge0: port 1(bridge_slave_0) entered forwarding state [ 112.461599][ T44] bridge0: port 2(bridge_slave_1) entered blocking state [ 112.469011][ T44] bridge0: port 2(bridge_slave_1) entered forwarding state [ 112.609593][ T5087] 8021q: adding VLAN 0 to HW filter on device bond0 [ 112.769578][ T5075] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.838377][ T5087] 8021q: adding VLAN 0 to HW filter on device team0 [ 112.910340][ T5076] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 112.941593][ T5124] bridge0: port 1(bridge_slave_0) entered blocking state [ 112.948980][ T5124] bridge0: port 1(bridge_slave_0) entered forwarding state [ 113.061671][ T5123] bridge0: port 2(bridge_slave_1) entered blocking state [ 113.069039][ T5123] bridge0: port 2(bridge_slave_1) entered forwarding state [ 113.164209][ T5075] veth0_vlan: entered promiscuous mode [ 113.270138][ T5075] veth1_vlan: entered promiscuous mode [ 113.361784][ T5081] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 113.441192][ T5076] veth0_vlan: entered promiscuous mode [ 113.504880][ T5083] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 113.543314][ T5076] veth1_vlan: entered promiscuous mode [ 113.597045][ T5078] Bluetooth: hci0: command tx timeout [ 113.670240][ T5075] veth0_macvtap: entered promiscuous mode [ 113.676266][ T5078] Bluetooth: hci1: command tx timeout [ 113.724172][ T5075] veth1_macvtap: entered promiscuous mode [ 113.757242][ T4456] Bluetooth: hci2: command tx timeout [ 113.762725][ T4456] Bluetooth: hci3: command tx timeout [ 113.860422][ T5076] veth0_macvtap: entered promiscuous mode [ 113.918766][ T4456] Bluetooth: hci4: command tx timeout [ 113.941496][ T5083] veth0_vlan: entered promiscuous mode [ 113.949905][ T5081] veth0_vlan: entered promiscuous mode [ 113.964805][ T5076] veth1_macvtap: entered promiscuous mode [ 113.979114][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.005276][ T5083] veth1_vlan: entered promiscuous mode [ 114.044122][ T5075] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.055173][ T5081] veth1_vlan: entered promiscuous mode [ 114.099159][ T5075] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.109540][ T5075] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.118522][ T5075] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.127511][ T5075] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.190020][ T5087] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 114.226575][ T5076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.241027][ T5076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.255506][ T5076] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.270403][ T5076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.281169][ T5076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.294001][ T5076] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 114.379648][ T5076] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.388539][ T5076] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.398622][ T5076] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.409368][ T5076] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 114.452518][ T5081] veth0_macvtap: entered promiscuous mode [ 114.495225][ T5081] veth1_macvtap: entered promiscuous mode [ 114.565453][ T5083] veth0_macvtap: entered promiscuous mode [ 114.694397][ T5083] veth1_macvtap: entered promiscuous mode [ 114.716238][ T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.742090][ T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.812229][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.823551][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.833561][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 114.844518][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 114.859887][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 114.951245][ T5123] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 114.968463][ T5123] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 114.972122][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 114.987908][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.001663][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.025124][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.038350][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 115.054219][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.066630][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.076749][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.087804][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.097814][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 115.108762][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.121973][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 115.173112][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.184300][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.195657][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.211765][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.221696][ T5083] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 115.232617][ T5083] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 115.245439][ T5083] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 115.258367][ T28] audit: type=1400 audit(1711695927.744:116): avc: denied { mounton } for pid=5075 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 115.286718][ T28] audit: type=1400 audit(1711695927.744:117): avc: denied { mount } for pid=5075 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 115.312476][ T5081] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.323926][ T5081] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.333081][ T5081] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.342031][ T5081] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.393595][ T5083] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.403745][ T5083] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.412600][ T5083] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.423042][ T5083] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 115.465971][ T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.473878][ T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:28 executing program 0: semctl$SEM_STAT_ANY(0x0, 0x3, 0x14, &(0x7f00000001c0)=""/33) [ 115.551207][ T5087] veth0_vlan: entered promiscuous mode [ 115.577335][ T28] audit: type=1400 audit(1711695928.054:118): avc: denied { read write } for pid=5075 comm="syz-executor.0" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 07:05:28 executing program 0: syz_emit_ethernet(0x36, &(0x7f0000000180)={@random="df027b14cf91", @empty, @val, {@ipv6}}, 0x0) [ 115.683773][ T28] audit: type=1400 audit(1711695928.064:119): avc: denied { open } for pid=5075 comm="syz-executor.0" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 115.758061][ T28] audit: type=1400 audit(1711695928.064:120): avc: denied { ioctl } for pid=5075 comm="syz-executor.0" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 115.803734][ T5127] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 115.812170][ T5087] veth1_vlan: entered promiscuous mode [ 115.843819][ T5127] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:28 executing program 0: r0 = socket(0x2, 0x3, 0x0) setsockopt$sock_int(r0, 0xffff, 0x20, &(0x7f0000000540), 0x4) 07:05:28 executing program 3: open(&(0x7f0000000080)='./bus\x00', 0x105042, 0x0) utime(0x0, 0x0) r0 = msgget$private(0x0, 0x0) msgrcv(r0, 0x0, 0x0, 0x0, 0x0) rt_sigreturn() r1 = socket$unix(0x1, 0x1, 0x0) bind$unix(0xffffffffffffffff, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) connect$unix(r1, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e) [ 116.105173][ T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.116701][ T28] audit: type=1400 audit(1711695928.584:121): avc: denied { create } for pid=5160 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 116.195921][ T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 116.301321][ T28] audit: type=1800 audit(1711695928.784:122): pid=5165 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1949 res=0 errno=0 [ 116.338123][ T5127] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.350224][ T5127] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:28 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001100)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setstatus(r0, 0x4, 0x0) 07:05:29 executing program 0: inotify_add_watch(0xffffffffffffffff, 0x0, 0x80000284) [ 116.644461][ T5122] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 116.671433][ T5122] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:29 executing program 0: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) connect(r0, 0x0, 0x0) 07:05:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg(r0, &(0x7f00000004c0), 0x5a, 0x0) [ 116.770575][ T5087] veth0_macvtap: entered promiscuous mode [ 116.901612][ T5087] veth1_macvtap: entered promiscuous mode [ 117.003054][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.029616][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:29 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) sendmsg$unix(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0), 0x3c}, 0x0) [ 117.220249][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 117.284004][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.318497][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 117.350104][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.386220][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 117.401237][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.411772][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 117.422810][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.444638][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_0 07:05:30 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) poll(&(0x7f0000000180)=[{r0, 0x40}], 0x1, 0x0) pipe2(&(0x7f0000000040)={0xffffffffffffffff}, 0x0) poll(&(0x7f0000000080)=[{r2}], 0x1, 0x200) sendmmsg(r1, &(0x7f00000004c0), 0x10, 0x0) [ 117.532997][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 117.573206][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.605934][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 117.621732][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.633745][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 117.649118][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.659618][ T5087] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 117.675084][ T5087] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 117.691544][ T5087] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.738989][ T5087] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.753607][ T5087] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.774379][ T5087] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.791419][ T5087] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 07:05:30 executing program 0: r0 = socket(0x2, 0x3, 0x0) setsockopt(r0, 0x0, 0x0, &(0x7f0000000000)="adbfdc296a2786ec336ad891d82633314979b323f04cfa7aea1fc0e12b4b93d108046e90b6884fc641be118c5f51b69816b8efb0a595e12f8d7e91007119e0a19418718d16d08ffc15364185c70c289d400b2ea44c306c50ca1a8673a9b40f32fdcf8f6781a2c9e0d2725e0b474bc97a3b1c93c4e2ded1417ad8cd9109a90bf209a2d5604ffeba29fb2d952c75958c054ebc37f1962fdaf359457410569f4a3f1c0f0bec3b357a1bbb07a30621cf14e2f1c0870a9adb26d8cf58dd41a3da3ce43a140d287c54ca29a51cfa1326e5376ebbde6eee42c916bbf4a0ac1f4c4a20169759813809b428eebd16740974709becedde77a26ff93f2bddaadc41e5e20f55d8265f145d31649a56c5d8c0d1642d0ab8a7a48b389b94abfa8d340064a9f7cb2693ffa72c20ea72e3932329869c5f1697d9792cfb1c9ecc7538f02b621c7a75cd107b393e80d722807f8b8fa6c48466ee845ca7be53236409b814678afeed538447406dd14ee1add470f4a3d5d67bc30458786cb2f6267126c01027dbf534e6a488147cdb11a552cebdb4020c0357b04b624ad2179024374fa5d3ce067b23a3a4c2282e5369fba6c52b66fb719d0be165987f30194f1a20f6fde44a109c9973836230ce6170fe6d8617be38dad8e9cb9344b44caf0408c5344621a10dc6caaec4693df98e29f5e69b4fc090fca30f125661c302b8f917c2c449e386c67906db9398671655d54f423bc7aa93d092ff77c10e30797439120bda272df409eae0baddc453e3c37acf7c087a5853a8924afcb2205972b9ef8543ded83512d4787a2251038f393308e03f693a13b45ab3537c0afa9b70282a486c40783391d11e543126caaec7cf454057cee24aed8dbd3037cd386a30b9cbc9cccd94521fef69a884c773e92ff501bc672f374d7079928e4a9e9439ba12bc4033d160bd251ceca5ecc9bdf060a3a78d3a6d902b9bdb2f1863afd366755fbfb9c5c04b9e0fb081d008b0f5ff00d3e32fec9354082c95d916d58f172713ad33b1784654a8c8e2e5cbf26d69a5034a6a2e03f2ca72963699cc196bfc5ad429681c4f2c0f60162f47e22b21624eff373215d3ca684f0556da5bf79b1ba202f17cae1f9a19094d6e0c763a8ccf37adce3e63b728d43b53d941599c984cb395acda36c31db49aa59dc8a8e15533586326e1de425952e1a9826f646700c8a6ff327333bde9467cf8966a092ca2690ef8a18cc59f31183805f6fe280cd8ca55e76263f13ae402e3ae96858956cbcddf9751a43ead60f1bed8bc4e803f5d419fe54b93ce32a02063b08df3075b5b19ce773ae9dec0b25def64eaa05293712665afb4c60c97f281f8b699c8839dabef4037c4416d8d36b5ef74e52b45d5612962b1f7f95455ada47ce422c9bfbb5ea494022452858036fa57b5cb39961755b83bbd936fa17da9c69879115a3d70db942bad3d250ee27a920ad2b43a2848c4a192684e52530cd0aeb25fa1f04edf5acbe90472f0e935375951e32657d70a7e401be6b1d60497fe4976481aa4ef1d05d64641bea2c1d113dd449648acdbff431935115d3ea4a38c3dd8a823884af80068dffcd582b56f8593da4d8a95e1ca3bd3e38331b3989fc75e0c42f0d7b906d12cad196231e0f9b53d568c40e0813c77243f9987d6e71c86950493513771d143ed7bd3ed2bd3386db3d4be63e0701256f689f6a283551f39e6eec1823ed2785e20ed34f5f51edb793c6e8674c90050d51520f9038e0d3b2288d5dedd8daf0d484a5857b3b361848dfa14f676b0145e4f985ea6be658557e0f42073a1712660d44619df6521a90e0ed56273a82abdec4342098a6df7ebcf2d18a2bb548443d93dc3a1654b7d3ee661d9db4839b8c6def681de963724693089e02133c9f24a457324436651e0daf76270e0ade2e6bd5b1a60aa70a9dbf1ede074f474dd2bd8fd6191186d4372126e0bdb422f827e80e614a36bd07883a250888ee1485901cf6d997280b1c2946bc07402b2e6834973525284c15af498f4fdae4fe2f355e8c2d770d088667a6619416e683f8603b69f729aeaedad4721e9bd7ee9ac6b286c0c137b65ee2b836723863772ece5c0ab4baa43b3074f98e63002de5deb040bfd20cb1eb5ad719d413b6d2de160922d5dcd0d4ee82fa3eb81e601a4f1aaa1e97e0c6f781d0f998f9d2638b4d0590a13f404978639f6cea571b89c90078bfb3c2bc768db8479cdcbdb8521841d8c87e6995aa4039f75985ea0d3ec8addbdfe12f97424828b8403e9bda4a02ae095ec6d5f09a0feafe2d7d5f25d84bdfbe9f2071f5699ef450de895b8bd6c80eb47a9af06739c9ef3fa66bf967ee31dbe3be41fd15ddab1fda7dec162b8d9a9da72089f310c4eadb5593288c62c6909eb4bcc8a7367782899c680fdb56a07dbf2e62b9f30e805f0a6e1e5a51f09a57e4710630f4eae9fdb79e6c230fd906e51583637010a3747e65fe81fdf1b07eae544b4dcbc7ab21cd6f0cd6a8178e0e53f34e92be58d3a97ef5d4e3547855ec1033175b1c99f2f10facabc1dcfbfb953b579af0e825a9062650214b21ce5bd5f1fa391dc49e56c62b8746eebc3c44d32d9fe8dffc53c7c9c7efb7e7d5bd817a7a95afb6a1596a7a2ef5bf7284cc02460e69fd334ae2657c3bce03142686f1485954b54365d93c0dee7178e47f87f006c591f6f921cc50b9adbf8cf7be08087eb8522a69b2ef2e0b160405945e4fe7ddfbcf906759de5af545b9094df022b9242bacb0e3bfbea777f73f11baa1262bd8edae9982db247ce81d8d309705cefa34a7ccf66c357782e499708132458b78e1581c17692e19034c242464a5f45d24d19fd33a09038d077d1ba6711aab44bdc7bec972a38262fcc05a0984bc10276768e3522273e13a764aa67", 0x801) [ 118.129123][ T5184] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.155517][ T5184] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:30 executing program 3: mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70) r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000240)={@cgroup=r1, r0, 0x2, 0x0, 0x4000}, 0x10) 07:05:30 executing program 1: bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000002c40)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000000c0)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'veth1_to_batadv\x00', 0x0}) setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4) setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f0000000140)=0x4000, 0x4) bind$xdp(r1, &(0x7f00000001c0)={0x2c, 0x0, r3, 0xfffffffe}, 0x10) 07:05:30 executing program 2: r0 = socket$inet6(0xa, 0x1, 0x0) r1 = dup2(r0, r0) ioctl$sock_inet6_SIOCDELRT(r1, 0x890c, &(0x7f0000000100)={@remote, @private1={0xfc, 0x0}, @mcast1, 0x0, 0x40}) [ 118.358013][ T28] audit: type=1400 audit(1711695930.834:123): avc: denied { prog_load } for pid=5186 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 118.422143][ T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 118.448326][ T28] audit: type=1400 audit(1711695930.834:124): avc: denied { bpf } for pid=5186 comm="syz-executor.3" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 118.458176][ T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 07:05:31 executing program 3: r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x1, 0x7, 0x10001, 0x9}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008800000b704000000000000850000002300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700"/20, @ANYRES32, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0) 07:05:31 executing program 2: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x14, 0xcb23c9c9931e99e9, 0x0, 0x7, {{@in6=@private0, @in6=@private0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}}}, 0xb8}}, 0x0) [ 118.552054][ T28] audit: type=1400 audit(1711695930.834:125): avc: denied { perfmon } for pid=5186 comm="syz-executor.3" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 07:05:31 executing program 1: r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000740), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="050000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08000d0004000000080026009e0900000800a0000000000008002700020001000c00700004000700040005000a0018"], 0x60}}, 0x0) [ 118.717441][ T28] audit: type=1400 audit(1711695930.884:126): avc: denied { prog_run } for pid=5187 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 07:05:31 executing program 4: socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) sendmsg$unix(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0xa, &(0x7f0000000280)}, 0x0) sendmmsg(r0, &(0x7f00000004c0), 0x10, 0x0) 07:05:31 executing program 0: syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000200)={[{@noblock_validity}, {@resgid={'resgid', 0x3d, 0xee00}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x80007f}}, {@noload}, {@nobarrier}, {@nodiscard}]}, 0x0, 0x472, &(0x7f0000000940)="$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") setxattr$system_posix_acl(&(0x7f0000000000)='./file0\x00', &(0x7f0000000100)='system.posix_acl_access\x00', &(0x7f0000000300), 0x24, 0x0) [ 118.865352][ T5202] netlink: 104 bytes leftover after parsing attributes in process `syz-executor.2'. [ 118.887233][ T28] audit: type=1400 audit(1711695930.894:127): avc: denied { create } for pid=5187 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 [ 118.974367][ T28] audit: type=1400 audit(1711695930.894:128): avc: denied { setopt } for pid=5187 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 07:05:31 executing program 3: syz_emit_ethernet(0x76, &(0x7f0000000440)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x40, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x0, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @local, [@srh={0x3a}, @dstopts]}}}}}}}, 0x0) 07:05:31 executing program 2: r0 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd) r1 = add_key$keyring(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe) r2 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x0}, 0x0, 0x0, r1) r3 = add_key$fscrypt_v1(&(0x7f0000000180), &(0x7f00000001c0)={'fscrypt:', @desc1}, &(0x7f0000000200)={0x0, "0617f2aba0cd561891dbfa19b31e4d6ac27ba2005e10e7372ff3044fc51fc86ca66eb51928b887302d35c4a04a336f94365c9e1b97300a7efba60e5b45b7538d"}, 0x48, r2) keyctl$KEYCTL_MOVE(0x1e, r3, r2, r0, 0x0) [ 119.061870][ T5203] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'. [ 119.139043][ T28] audit: type=1400 audit(1711695930.924:129): avc: denied { bind } for pid=5187 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=xdp_socket permissive=1 07:05:31 executing program 1: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4) bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000040)='bic\x00', 0x4) sendmmsg$inet(r0, &(0x7f0000004f00)=[{{0x0, 0x0, &(0x7f0000000580)=[{&(0x7f0000001a80)="61a24c4da21bf28206254e2edd80ada4055aab987b9c48abfb5e5b29d5317c714c0d7fb0d9f40118417cbaecd9efc39b6fb4d3708fbf9d2bd86d1971520dc3099fd78911023274df157e170f627f4dc8db4a5311274bb94ec4b86889e6141ceea7ef65a08064ee1071a266774002d76a863b65cbf74ef63eaef718f6aa687921917263a001e14e9098c04ba494fbe6d6cf37b798294213977f3959749737cb6dae69d4142617", 0xa6}, {&(0x7f0000003200)="90ab9703ab40c779ee00ba88c0ec7049bd01064a06456ba2261a1d06cee0102be8d50d9f72b4966ce10cf605a5465c8b68d54e3b1a1ef6bdbf864957a072303d33040eaa7733c9888fb3df9a0e6a94b9858fef826b90dd261085887e6fc074c535831f3aaf8f460f3f1959a7315febad9189339c832fe54e08e7069b450ad487c28b4b0e47c5734cd61317ee67a19d74c5a5f6efbecd3062498743d48c230a4639e781", 0xa3}], 0x2}}], 0x1, 0x20004091) sendmmsg$inet(r0, &(0x7f0000001dc0)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000180)="432601c774ae7862bcebf285f2a836f93e4f76bdf03bce47b5d70068e686f8e7e479e3db37ef813e0bd0f33c367d8f236cb14f70f7d8cae81c7811727f1b8d20179571ec7fe74e6007e74bebfd33dc25a981b3b2bad2010d8f5e68461c758c08728a5e9a6d84254a6d02cfbc7e0c8cfc125127d051815bc5cfeb65d854f41259a92987f836a7672afd5047a2aed7aa21d8788aedfc6d374b", 0x98}, {&(0x7f0000000240)="da35252ec307", 0x6}, {&(0x7f00000002c0)="8c215ad2f709179c8dc17b4d6de382fb3471594dabb5dae3274f10d319827d028bff677377290e", 0x27}], 0x3}}, {{0x0, 0x0, &(0x7f0000000940)=[{&(0x7f00000007c0)="c5ff835bbb1470c42cc2b6208f6861470c103098b55a66f7c436859a10e5f92331e32d7ecc8687a648675cce4f97f700e7f15bd475ca2c2e27019a6e6c8c39550861248aff73110f765637", 0x4b}, {&(0x7f0000000840)="46ece743ace352a9ba62b24f30ab0001000000000000399b8e970c2300000000000000", 0x23}], 0x2}}, {{0x0, 0x0, &(0x7f0000000680)=[{0x0}, {0x0}], 0x2}}], 0x3, 0x0) 07:05:31 executing program 4: r0 = socket$inet_sctp(0x2, 0x1, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x105, 0x0, 0x0) sendmsg$inet_sctp(r0, &(0x7f0000003b40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x38}, 0x0) [ 119.236645][ T28] audit: type=1400 audit(1711695931.254:130): avc: denied { map_create } for pid=5197 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 119.293158][ T5208] loop0: detected capacity change from 0 to 512 [ 119.326916][ T28] audit: type=1400 audit(1711695931.324:131): avc: denied { create } for pid=5199 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 119.352229][ T5208] ======================================================= [ 119.352229][ T5208] WARNING: The mand mount option has been deprecated and [ 119.352229][ T5208] and is ignored by this kernel. Remove the mand [ 119.352229][ T5208] option from the mount to silence this warning. [ 119.352229][ T5208] ======================================================= 07:05:31 executing program 3: link(&(0x7f00000002c0)='./file0\x00', 0x0) 07:05:31 executing program 2: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0) r1 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r1, 0x107, 0x12, 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201}) r2 = socket$kcm(0x2, 0xa, 0x2) ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local}) write$tun(r0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0000080023000200088b2f01000046d3fdf1"], 0xfdef) [ 119.453576][ T28] audit: type=1400 audit(1711695931.324:132): avc: denied { map_read map_write } for pid=5197 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 07:05:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0) write$binfmt_script(r2, &(0x7f0000000080)=ANY=[@ANYRES32, @ANYRESDEC, @ANYRESHEX, @ANYBLOB="1035"], 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r2, 0x0) dup(r1) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x3, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil}) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text64={0x40, 0x0}], 0xffff, 0x0, 0x0, 0x0) syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text16={0x10, 0x0}], 0x1, 0x0, 0x0, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000}) ioctl$KVM_NMI(0xffffffffffffffff, 0xae9a) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) openat(0xffffffffffffffff, &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0) [ 119.671474][ T5208] EXT4-fs error (device loop0): ext4_read_inode_bitmap:139: comm syz-executor.0: Invalid inode bitmap blk 4 in block_group 0 [ 119.683659][ T5223] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details. 07:05:32 executing program 1: r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x12, 0x6, 0x8, 0x5}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000001c0)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) ioctl$TUNSETOFFLOAD(r2, 0x40086607, 0x20001412) [ 119.738628][ T5208] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. 07:05:32 executing program 3: r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a00000095"], &(0x7f0000000280)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='percpu_alloc_percpu\x00', r0}, 0x10) r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f0000000180)='syzkaller\x00'}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000100)='percpu_alloc_percpu\x00', r1}, 0x10) bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000640)=@bpf_ext={0x1c, 0x3, &(0x7f0000000480)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, r1}, 0x90) 07:05:32 executing program 0: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = memfd_create(&(0x7f0000000300)='+\x8b\x8a\x16\x11O\xdd\xdfk(F\x99\xdf\x92\xd5>oJ\x02u\x9b\xafa\xac\x06\x9c&\xf5\xe3j\xfa\tcqM\xb8R\x86\xd9\xd2.\x9f\x12\xed\x10\f\xbd\x1a|\x8a\xbb\xda\xcfY\x98gU@\xf2M\xc0\xb5\xdf\x9a\x8d\xdb,n\xae\x0eT\x80\x8c\xfd\xd7\xb0\x94\x82t\x96\rKx\xc5\x9b\x8c\x87\x96\x8bc\xbc\xee\xcc\x9f\xe3F\x99V4\x8e;M\xa9\x823\xe3\xb3mG\x8f\xdb\xed\x1b\x05\xec\xfc\xd1\xb5\xfd\xec@\xdeU\xdd\xa4\xc1\xe4L)\x8e\xe5\x91\x8e\xd4\x89\xef\x95T\x05G\xac\xb8\xc1: )mh\xc7\xf1?\xbb\x13;\xad\x95\xd70\xb6\x0e\x7f\x84r\x0e\xbf\xc5\xf6\xd4\xdd\t\x14\x18\xf7\xefi\x93\x03\xd2\xf2\bK\"\xd2\xb5\xaa\xb8\xc8\xe0\xac\x99\xe8su\xcd\xc3E\x12\xd7\xdd\x96!\x16Tu\xe3\xf0\x84#R\xd9\xe3~Wj\xb0r\x87\'\xea\a\xcfOeK\x9daW\xf4\x87@\x9c\xf3\xf1K\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x91\xe6\xdb\xc2\xa5h\'\xdfIn\x97\x0263~\xeb\xbe(i\n\xc2k4\x7f\x12\xa9e`SOs\x8c\xb4\xe7FeQ\xc6$\x92j_U\xfa\b\xea\xb0bYkW\xc0\x05\aC{\xcc\x03T\x17\xa5Sk\x87P\xc2\x97D\xb2\xfa\x1b\x9fe\xf4\x10\x1a\xad\x92\xce\x88\x1b\xbc\xe14\x19\xaa\xd3\r\xf4\xa2\xc3\x9e=\xa0 \xe6j\xe5\x85\xf8\x97\x03\x15\xaa\x920\xdcrI\xd8\b\xfb\xc7\xe7xX\x00>d\xbb\xa71\xad\x9a\xfb\xe6\x13\x87\x93\\\xe5W-\xfc\xfd\xb8O\xb9j\xb8\xf2\x9dx\xb2\x86\xad\x92', 0x3) write$binfmt_elf64(r1, &(0x7f00000004c0)=ANY=[], 0x78) sendfile(r0, r1, &(0x7f00000001c0), 0x0) fcntl$addseals(r1, 0x409, 0x8) lseek(r1, 0x0, 0x3) close(r1) [ 119.851293][ T5224] syz-executor.2 uses obsolete (PF_INET,SOCK_PACKET) [ 119.958351][ T5075] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 119.970152][ T5222] ------------[ cut here ]------------ [ 119.970702][ T5229] [ 119.970713][ T5229] ================================ [ 119.970730][ T5229] WARNING: inconsistent lock state [ 119.970738][ T5229] 6.8.0-syzkaller-08951-gfe46a7dd189e #0 Not tainted [ 119.970756][ T5229] -------------------------------- [ 119.970764][ T5229] inconsistent {IN-HARDIRQ-W} -> {HARDIRQ-ON-W} usage. [ 119.970779][ T5229] syz-executor.1/5229 [HC0[0]:SC0[0]:HE0:SE1] takes: [ 119.970814][ T5229] ffff8880b943e698 (&rq->__lock){?.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 119.970925][ T5229] {IN-HARDIRQ-W} state was registered at: [ 119.970937][ T5229] lock_acquire+0x1b1/0x540 [ 119.976416][ T5222] WARNING: CPU: 1 PID: 5222 at kernel/softirq.c:362 __local_bh_enable_ip+0xc3/0x120 [ 119.978755][ T5229] _raw_spin_lock_nested+0x31/0x40 [ 119.983863][ T5222] Modules linked in: [ 119.988967][ T5229] raw_spin_rq_lock_nested+0x29/0x130 [ 119.995632][ T5222] CPU: 1 PID: 5222 Comm: syz-executor.4 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 120.000737][ T5229] scheduler_tick+0xa2/0x650 [ 120.007574][ T5222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 120.014238][ T5229] update_process_times+0x199/0x220 [ 120.023681][ T5222] RIP: 0010:__local_bh_enable_ip+0xc3/0x120 [ 120.029496][ T5229] tick_periodic+0x7e/0x230 [ 120.034082][ T5222] Code: 00 e8 81 6c 0b 00 e8 4c 69 42 00 fb 65 8b 05 cc 34 b2 7e 85 c0 74 52 5b 5d c3 cc cc cc cc 65 8b 05 4e e9 b0 7e 85 c0 75 9e 90 <0f> 0b 90 eb 98 e8 73 67 42 00 eb 99 48 89 ef e8 f9 df 19 00 eb a2 [ 120.043445][ T5229] tick_handle_periodic+0x45/0x120 [ 120.048643][ T5222] RSP: 0018:ffffc90003b9f600 EFLAGS: 00010046 [ 120.052525][ T5229] timer_interrupt+0x4e/0x80 [ 120.057976][ T5222] [ 120.057985][ T5222] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 1ffffffff1f3d467 [ 120.067942][ T5229] __handle_irq_event_percpu+0x22c/0x750 [ 120.072608][ T5222] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff88cb2754 [ 120.082661][ T5229] handle_irq_event+0xab/0x1e0 [ 120.087953][ T5222] RBP: ffffffff88cb2754 R08: 0000000000000000 R09: ffffed1005ba2c1c [ 120.093852][ T5229] handle_level_irq+0x25d/0x6f0 [ 120.098462][ T5222] R10: ffff88802dd160e3 R11: 0000000000000002 R12: fffffffffffffffe [ 120.118161][ T5229] __common_interrupt+0xe1/0x250 [ 120.123394][ T5222] R13: ffff88802dd160e0 R14: ffff88802dd160d8 R15: 0000000023700e53 [ 120.129453][ T5229] common_interrupt+0xab/0xd0 [ 120.134124][ T5222] FS: 000055557d147480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000 [ 120.136448][ T5229] asm_common_interrupt+0x26/0x40 [ 120.144423][ T5222] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 120.150147][ T5229] _raw_spin_unlock_irqrestore+0x31/0x80 [ 120.158395][ T5222] CR2: 0000000020000180 CR3: 0000000023d68000 CR4: 00000000003526f0 [ 120.163244][ T5229] __setup_irq+0x1069/0x1e80 [ 120.171222][ T5222] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 120.176149][ T5229] request_threaded_irq+0x2b4/0x3e0 [ 120.184115][ T5222] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 120.189144][ T5229] hpet_time_init+0x5b/0x90 [ 120.197113][ T5222] Call Trace: [ 120.197127][ T5222] [ 120.201867][ T5229] x86_late_time_init+0x51/0xc0 [ 120.210795][ T5222] ? show_regs+0x8c/0xa0 [ 120.215902][ T5229] start_kernel+0x317/0x490 [ 120.222480][ T5222] ? __warn+0xe5/0x390 [ 120.228190][ T5229] x86_64_start_reservations+0x18/0x30 [ 120.236159][ T5222] ? __local_bh_enable_ip+0xc3/0x120 [ 120.240832][ T5229] x86_64_start_kernel+0xb2/0xc0 [ 120.248974][ T5222] ? report_bug+0x3c0/0x580 [ 120.254248][ T5229] common_startup_64+0x13e/0x148 [ 120.262220][ T5222] ? handle_bug+0x3d/0x70 [ 120.266796][ T5229] irq event stamp: 410 [ 120.270071][ T5222] ? exc_invalid_op+0x17/0x50 [ 120.273090][ T5229] hardirqs last enabled at (407): [] do_syscall_64+0x91/0x260 [ 120.278036][ T5222] ? asm_exc_invalid_op+0x1a/0x20 [ 120.282296][ T5229] hardirqs last disabled at (408): [] __schedule+0x2644/0x5c70 [ 120.286889][ T5222] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.290950][ T5229] softirqs last enabled at (410): [] sock_hash_delete_elem+0x1f4/0x260 [ 120.296488][ T5222] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.301757][ T5229] softirqs last disabled at (409): [] sock_hash_delete_elem+0xcb/0x260 [ 120.306775][ T5222] ? __local_bh_enable_ip+0xc3/0x120 [ 120.311270][ T5229] [ 120.311270][ T5229] other info that might help us debug this: [ 120.311284][ T5229] Possible unsafe locking scenario: [ 120.311284][ T5229] [ 120.316311][ T5222] sock_hash_delete_elem+0x1f4/0x260 [ 120.320658][ T5229] CPU0 [ 120.320673][ T5229] ---- [ 120.324753][ T5222] ? __pfx_bpf_map_delete_elem+0x10/0x10 [ 120.329435][ T5229] lock(&rq->__lock [ 120.338581][ T5222] ___bpf_prog_run+0x3e51/0xae80 [ 120.343605][ T5229] ); [ 120.352715][ T5222] __bpf_prog_run32+0xc1/0x100 [ 120.358191][ T5229] [ 120.358203][ T5229] lock(&rq->__lock [ 120.368092][ T5222] ? __pfx___bpf_prog_run32+0x10/0x10 [ 120.373539][ T5229] ); [ 120.373549][ T5229] [ 120.373549][ T5229] *** DEADLOCK *** [ 120.373549][ T5229] [ 120.383353][ T5222] ? __pfx_lock_acquire+0x10/0x10 [ 120.388628][ T5229] 2 locks held by syz-executor.1/5229: [ 120.396693][ T5222] ? __pfx___cant_migrate+0x10/0x10 [ 120.404161][ T5229] #0: ffff8880b943e698 [ 120.409446][ T5222] bpf_trace_run4+0x176/0x460 [ 120.412735][ T5229] (&rq->__lock [ 120.416033][ T5222] ? __pfx_bpf_trace_run4+0x10/0x10 [ 120.421662][ T5229] ){?.-.}-{2:2} [ 120.425563][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.430578][ T5229] , at: raw_spin_rq_lock_nested+0x29/0x130 [ 120.433076][ T5222] ? kvm_sched_clock_read+0x11/0x20 [ 120.437855][ T5229] #1: ffffffff8d7b08e0 [ 120.441393][ T5222] __bpf_trace_sched_switch+0x13e/0x190 [ 120.445458][ T5229] (rcu_read_lock [ 120.450822][ T5222] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 120.453313][ T5229] ){....}-{1:2} [ 120.461457][ T5222] ? psi_task_switch+0x20c/0x900 [ 120.466470][ T5229] , at: bpf_trace_run4+0x107/0x460 [ 120.471934][ T5222] __schedule+0x2266/0x5c70 [ 120.477132][ T5229] [ 120.477132][ T5229] stack backtrace: [ 120.477146][ T5229] CPU: 0 PID: 5229 Comm: syz-executor.1 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 120.481283][ T5222] ? sched_clock_cpu+0x6d/0x4d0 [ 120.485947][ T5229] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 120.489401][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.494596][ T5229] Call Trace: [ 120.498060][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.502837][ T5229] [ 120.508632][ T5222] ? __pfx___schedule+0x10/0x10 [ 120.513823][ T5229] dump_stack_lvl+0x116/0x1f0 [ 120.517970][ T5222] ? find_held_lock+0x2d/0x110 [ 120.523595][ T5229] mark_lock+0x923/0xc60 [ 120.527217][ T5222] ? try_to_wake_up+0x5d7/0x13e0 [ 120.533278][ T5229] ? __pfx_mark_lock+0x10/0x10 [ 120.536735][ T5222] ? preempt_schedule_thunk+0x1a/0x30 [ 120.541680][ T5229] ? __local_bh_enable_ip+0xc3/0x120 [ 120.546785][ T5222] preempt_schedule_common+0x44/0xc0 [ 120.551279][ T5229] ? disable_trace_on_warning+0x19/0x70 [ 120.557164][ T5222] preempt_schedule_thunk+0x1a/0x30 [ 120.567300][ T5229] ? report_bug+0xf4/0x580 [ 120.572146][ T5222] try_to_wake_up+0xc08/0x13e0 [ 120.582221][ T5229] ? handle_bug+0x3d/0x70 [ 120.586980][ T5222] ? __pfx_try_to_wake_up+0x10/0x10 [ 120.590257][ T5229] ? exc_invalid_op+0x17/0x50 [ 120.595023][ T5222] ? __pfx_lock_release+0x10/0x10 [ 120.597979][ T5229] mark_held_locks+0x9f/0xe0 [ 120.602837][ T5222] ? plist_check_head+0x9e/0x140 [ 120.607523][ T5229] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.612279][ T5222] wake_up_q+0x91/0x140 [ 120.616514][ T5229] lockdep_hardirqs_on_prepare+0x137/0x420 [ 120.621451][ T5222] ? do_raw_spin_unlock+0x172/0x230 [ 120.626209][ T5229] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.631613][ T5222] futex_wake+0x43e/0x4e0 [ 120.636888][ T5229] trace_hardirqs_on+0x36/0x40 [ 120.642166][ T5222] ? __pfx_futex_wake+0x10/0x10 [ 120.647704][ T5229] __local_bh_enable_ip+0xa4/0x120 [ 120.652902][ T5222] do_futex+0x1e5/0x350 [ 120.657305][ T5229] sock_hash_delete_elem+0x1f4/0x260 [ 120.662059][ T5222] ? __pfx_do_futex+0x10/0x10 [ 120.666378][ T5229] ? __pfx_bpf_map_delete_elem+0x10/0x10 [ 120.671562][ T5222] ? count_memcg_event_mm.part.0+0x135/0x340 [ 120.676230][ T5229] ___bpf_prog_run+0x3e51/0xae80 [ 120.681242][ T5222] ? __might_fault+0xe3/0x190 [ 120.685831][ T5229] __bpf_prog_run32+0xc1/0x100 [ 120.690757][ T5222] __x64_sys_futex+0x1e1/0x4c0 [ 120.696207][ T5229] ? __pfx___bpf_prog_run32+0x10/0x10 [ 120.700353][ T5222] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.706158][ T5229] ? __pfx_lock_acquire+0x10/0x10 [ 120.711437][ T5222] do_syscall_64+0xd2/0x260 [ 120.716886][ T5229] ? __pfx___cant_migrate+0x10/0x10 [ 120.721208][ T5222] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 120.726046][ T5229] bpf_trace_run4+0x176/0x460 [ 120.730912][ T5222] RIP: 0033:0x7f666b87dda9 [ 120.736013][ T5229] ? __pfx_bpf_trace_run4+0x10/0x10 [ 120.740158][ T5222] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 120.745444][ T5229] ? kvm_sched_clock_read+0x11/0x20 [ 120.750114][ T5222] RSP: 002b:00007ffe4be38458 EFLAGS: 00000246 [ 120.755736][ T5229] __bpf_trace_sched_switch+0x13e/0x190 [ 120.761703][ T5222] ORIG_RAX: 00000000000000ca [ 120.766630][ T5229] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 120.771293][ T5222] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f666b87dda9 [ 120.776049][ T5229] ? psi_task_switch+0x2d9/0x900 [ 120.780796][ T5222] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f666b9abf88 [ 120.786161][ T5229] __schedule+0x2266/0x5c70 [ 120.791438][ T5222] RBP: 0000000000000048 R08: 00007f666b9abf8c R09: 00007f666b9ac05c [ 120.796452][ T5229] ? __pfx___lock_acquire+0x10/0x10 [ 120.800941][ T5222] R10: 00007f666b400548 R11: 0000000000000246 R12: 00007f666b9abf80 [ 120.806130][ T5229] ? __pfx_lock_acquire+0x10/0x10 [ 120.812012][ T5222] R13: 0000000000000623 R14: 0000000000000000 R15: 00007f666b9abf80 [ 120.816684][ T5229] ? __print_lock_name+0x1a0/0x260 [ 120.821126][ T5222] [ 120.826307][ T5229] ? __pfx___schedule+0x10/0x10 [ 120.845908][ T5222] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 120.845926][ T5222] CPU: 1 PID: 5222 Comm: syz-executor.4 Not tainted 6.8.0-syzkaller-08951-gfe46a7dd189e #0 [ 120.845964][ T5222] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 120.845984][ T5222] Call Trace: [ 120.845998][ T5222] [ 120.846010][ T5222] dump_stack_lvl+0x3d/0x1f0 [ 120.846055][ T5222] panic+0x6f5/0x7a0 [ 120.846107][ T5222] ? __pfx_panic+0x10/0x10 [ 120.846156][ T5222] ? show_trace_log_lvl+0x363/0x500 [ 120.846214][ T5222] ? check_panic_on_warn+0x1f/0xb0 [ 120.846267][ T5222] ? __local_bh_enable_ip+0xc3/0x120 [ 120.846308][ T5222] check_panic_on_warn+0xab/0xb0 [ 120.846362][ T5222] __warn+0xf1/0x390 [ 120.846391][ T5222] ? __local_bh_enable_ip+0xc3/0x120 [ 120.846432][ T5222] report_bug+0x3c0/0x580 [ 120.846470][ T5222] handle_bug+0x3d/0x70 [ 120.846499][ T5222] exc_invalid_op+0x17/0x50 [ 120.846532][ T5222] asm_exc_invalid_op+0x1a/0x20 [ 120.846582][ T5222] RIP: 0010:__local_bh_enable_ip+0xc3/0x120 [ 120.846627][ T5222] Code: 00 e8 81 6c 0b 00 e8 4c 69 42 00 fb 65 8b 05 cc 34 b2 7e 85 c0 74 52 5b 5d c3 cc cc cc cc 65 8b 05 4e e9 b0 7e 85 c0 75 9e 90 <0f> 0b 90 eb 98 e8 73 67 42 00 eb 99 48 89 ef e8 f9 df 19 00 eb a2 [ 120.846659][ T5222] RSP: 0018:ffffc90003b9f600 EFLAGS: 00010046 [ 120.846692][ T5222] RAX: 0000000000000000 RBX: 0000000000000201 RCX: 1ffffffff1f3d467 [ 120.846715][ T5222] RDX: 0000000000000000 RSI: 0000000000000201 RDI: ffffffff88cb2754 [ 120.846736][ T5222] RBP: ffffffff88cb2754 R08: 0000000000000000 R09: ffffed1005ba2c1c [ 120.846759][ T5222] R10: ffff88802dd160e3 R11: 0000000000000002 R12: fffffffffffffffe [ 120.846782][ T5222] R13: ffff88802dd160e0 R14: ffff88802dd160d8 R15: 0000000023700e53 [ 120.846806][ T5222] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.846851][ T5222] ? sock_hash_delete_elem+0x1f4/0x260 [ 120.846897][ T5222] sock_hash_delete_elem+0x1f4/0x260 [ 120.846940][ T5222] ? __pfx_bpf_map_delete_elem+0x10/0x10 [ 120.846980][ T5222] ___bpf_prog_run+0x3e51/0xae80 [ 120.847037][ T5222] __bpf_prog_run32+0xc1/0x100 [ 120.847074][ T5222] ? __pfx___bpf_prog_run32+0x10/0x10 [ 120.847113][ T5222] ? __pfx_lock_acquire+0x10/0x10 [ 120.847166][ T5222] ? __pfx___cant_migrate+0x10/0x10 [ 120.847205][ T5222] bpf_trace_run4+0x176/0x460 [ 120.847240][ T5222] ? __pfx_bpf_trace_run4+0x10/0x10 [ 120.847275][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.847326][ T5222] ? kvm_sched_clock_read+0x11/0x20 [ 120.847374][ T5222] __bpf_trace_sched_switch+0x13e/0x190 [ 120.847411][ T5222] ? __pfx___bpf_trace_sched_switch+0x10/0x10 [ 120.847450][ T5222] ? psi_task_switch+0x20c/0x900 [ 120.847497][ T5222] __schedule+0x2266/0x5c70 [ 120.847537][ T5222] ? sched_clock_cpu+0x6d/0x4d0 [ 120.847587][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.847639][ T5222] ? rcu_is_watching+0x12/0xc0 [ 120.847695][ T5222] ? __pfx___schedule+0x10/0x10 [ 120.847735][ T5222] ? find_held_lock+0x2d/0x110 [ 120.847775][ T5222] ? try_to_wake_up+0x5d7/0x13e0 [ 120.847814][ T5222] ? preempt_schedule_thunk+0x1a/0x30 [ 120.847848][ T5222] preempt_schedule_common+0x44/0xc0 [ 120.847892][ T5222] preempt_schedule_thunk+0x1a/0x30 [ 120.847929][ T5222] try_to_wake_up+0xc08/0x13e0 [ 120.847969][ T5222] ? __pfx_try_to_wake_up+0x10/0x10 [ 120.848007][ T5222] ? __pfx_lock_release+0x10/0x10 [ 120.848057][ T5222] ? plist_check_head+0x9e/0x140 [ 120.848095][ T5222] wake_up_q+0x91/0x140 [ 120.848132][ T5222] ? do_raw_spin_unlock+0x172/0x230 [ 120.848168][ T5222] futex_wake+0x43e/0x4e0 [ 120.848217][ T5222] ? __pfx_futex_wake+0x10/0x10 [ 120.848270][ T5222] do_futex+0x1e5/0x350 [ 120.848311][ T5222] ? __pfx_do_futex+0x10/0x10 [ 120.848351][ T5222] ? count_memcg_event_mm.part.0+0x135/0x340 [ 120.848392][ T5222] ? __might_fault+0xe3/0x190 [ 120.848428][ T5222] __x64_sys_futex+0x1e1/0x4c0 [ 120.848472][ T5222] ? __pfx___x64_sys_futex+0x10/0x10 [ 120.848519][ T5222] do_syscall_64+0xd2/0x260 [ 120.848571][ T5222] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 120.848623][ T5222] RIP: 0033:0x7f666b87dda9 [ 120.848646][ T5222] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 120.848684][ T5222] RSP: 002b:00007ffe4be38458 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 120.848716][ T5222] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f666b87dda9 [ 120.848738][ T5222] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f666b9abf88 [ 120.848761][ T5222] RBP: 0000000000000048 R08: 00007f666b9abf8c R09: 00007f666b9ac05c [ 120.848784][ T5222] R10: 00007f666b400548 R11: 0000000000000246 R12: 00007f666b9abf80 [ 120.848808][ T5222] R13: 0000000000000623 R14: 0000000000000000 R15: 00007f666b9abf80 [ 120.848836][ T5222] [ 120.851464][ T5222] Kernel Offset: disabled [ 121.403881][ T5222] Rebooting in 86400 seconds..