./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1731794593

<...>
[   18.441960][   T23] audit: type=1400 audit(1737843168.070:61): avc:  denied  { transition } for  pid=289 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   18.447369][   T23] audit: type=1400 audit(1737843168.070:62): avc:  denied  { noatsecure } for  pid=289 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   18.450303][   T23] audit: type=1400 audit(1737843168.080:63): avc:  denied  { write } for  pid=289 comm="sh" path="pipe:[11333]" dev="pipefs" ino=11333 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   18.455064][   T23] audit: type=1400 audit(1737843168.080:64): avc:  denied  { rlimitinh } for  pid=289 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   18.458407][   T23] audit: type=1400 audit(1737843168.080:65): avc:  denied  { siginh } for  pid=289 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   20.647420][  T290] sshd (290) used greatest stack depth: 22360 bytes left
Warning: Permanently added '10.128.1.151' (ED25519) to the list of known hosts.
execve("./syz-executor1731794593", ["./syz-executor1731794593"], 0x7ffe904d44f0 /* 10 vars */) = 0
brk(NULL)                               = 0x55555ed7d000
brk(0x55555ed7dd00)                     = 0x55555ed7dd00
arch_prctl(ARCH_SET_FS, 0x55555ed7d380) = 0
set_tid_address(0x55555ed7d650)         = 359
set_robust_list(0x55555ed7d660, 24)     = 0
rseq(0x55555ed7dca0, 0x20, 0, 0x53053053) = -1 ENOSYS (Function not implemented)
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1731794593", 4096) = 28
getrandom("\xaa\x55\x30\x53\xa1\x8f\xac\x2b", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55555ed7dd00
brk(0x55555ed9ed00)                     = 0x55555ed9ed00
brk(0x55555ed9f000)                     = 0x55555ed9f000
mprotect(0x7fcb05c0a000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
write(1, "executing program\n", 18executing program
)     = 18
bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_SCHED_CLS, insn_cnt=14, insns=0x20000c00, license="syzkaller", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0, prog_name="", prog_ifindex=0, expected_attach_type=BPF_CGROUP_INET_INGRESS}, 72) = 3
[   29.055129][   T23] audit: type=1400 audit(1737843178.690:66): avc:  denied  { execmem } for  pid=359 comm="syz-executor173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   29.078433][   T23] audit: type=1400 audit(1737843178.710:67): avc:  denied  { prog_load } for  pid=359 comm="syz-executor173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   29.098513][   T23] audit: type=1400 audit(1737843178.730:68): avc:  denied  { prog_run } for  pid=359 comm="syz-executor173" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[   29.099491][  T359] kasan: CONFIG_KASAN_INLINE enabled
[   29.122644][  T359] kasan: GPF could be caused by NULL-ptr deref or user memory access
[   29.130610][  T359] general protection fault: 0000 [#1] PREEMPT SMP KASAN
[   29.137331][  T359] CPU: 1 PID: 359 Comm: syz-executor173 Not tainted 5.4.289-syzkaller-00025-g49530c73f82d #0
[   29.147411][  T359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   29.157378][  T359] RIP: 0010:bpf_skb_ancestor_cgroup_id+0x114/0x270
[   29.163648][  T359] Code: 02 00 00 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 5d c6 0a fe 48 8b 1b 48 8d bb 1c 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 2f 01 00 00 8b ab 1c 01 00 00 89 ef 44
[   29.183076][  T359] RSP: 0018:ffff8881ee6cf438 EFLAGS: 00010203
[   29.188976][  T359] RAX: 0000000000000023 RBX: 0000000000000000 RCX: 0000000000000000
[   29.196787][  T359] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000000011c
[   29.204599][  T359] RBP: 0000000000000080 R08: ffffffff83896e1a R09: ffff8881ee6cf760
[   29.212407][  T359] R10: 0000000000000000 R11: 00000000000000c3 R12: dffffc0000000000
[   29.220220][  T359] R13: fffffff93a4ba952 R14: 00000000000000c3 R15: ffff8881eed9f812
[   29.228033][  T359] FS:  000055555ed7d380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   29.236800][  T359] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.243218][  T359] CR2: 0000000020001000 CR3: 00000001dfc7b000 CR4: 00000000003406a0
[   29.251030][  T359] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   29.258838][  T359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   29.266649][  T359] Call Trace:
[   29.269834][  T359]  ? __die+0xb4/0x100
[   29.273600][  T359]  ? die+0x26/0x50
[   29.277158][  T359]  ? do_general_protection+0x266/0x3c0
[   29.282467][  T359]  ? stack_trace_save+0x1c0/0x1c0
[   29.287311][  T359]  ? do_trap+0x340/0x340
[   29.291398][  T359]  ? is_bpf_text_address+0x24c/0x260
[   29.296511][  T359]  ? stack_trace_save+0x1c0/0x1c0
[   29.301381][  T359]  ? __kernel_text_address+0x94/0x100
[   29.306601][  T359]  ? general_protection+0x28/0x30
[   29.311444][  T359]  ? bpf_skb_ancestor_cgroup_id+0xda/0x270
[   29.317085][  T359]  ? bpf_skb_ancestor_cgroup_id+0x114/0x270
[   29.322813][  T359]  ? bpf_skb_ancestor_cgroup_id+0xda/0x270
[   29.328476][  T359]  ? stack_depot_save+0x417/0x480
[   29.333346][  T359]  ? __kasan_kmalloc+0x1d9/0x210
[   29.338086][  T359]  ? __kasan_kmalloc+0x171/0x210
[   29.342977][  T359]  ? kmem_cache_alloc+0xd9/0x250
[   29.347749][  T359]  ? build_skb+0x26/0x440
[   29.351912][  T359]  ? bpf_prog_test_run_skb+0x302/0xf00
[   29.357201][  T359]  ? __se_sys_bpf+0x2e37/0xbcb0
[   29.361890][  T359]  ? do_syscall_64+0xca/0x1c0
[   29.366397][  T359]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   29.372327][  T359]  ? ktime_get+0xf9/0x130
[   29.376468][  T359]  ? bpf_test_run+0x2ae/0x6c0
[   29.380987][  T359]  ? bpf_ctx_init+0x1a0/0x1a0
[   29.385493][  T359]  ? build_skb+0x259/0x440
[   29.389747][  T359]  ? bpf_prog_test_run_skb+0x73c/0xf00
[   29.395040][  T359]  ? __bpf_trace_bpf_test_finish+0x20/0x20
[   29.400685][  T359]  ? __bpf_prog_get+0x287/0x310
[   29.405368][  T359]  ? __bpf_trace_bpf_test_finish+0x20/0x20
[   29.411008][  T359]  ? __se_sys_bpf+0x2e37/0xbcb0
[   29.415713][  T359]  ? check_preemption_disabled+0x9f/0x320
[   29.421252][  T359]  ? debug_smp_processor_id+0x20/0x20
[   29.426458][  T359]  ? check_preemption_disabled+0x9f/0x320
[   29.432033][  T359]  ? check_preemption_disabled+0x9f/0x320
[   29.437581][  T359]  ? debug_smp_processor_id+0x20/0x20
[   29.442791][  T359]  ? debug_smp_processor_id+0x20/0x20
[   29.447994][  T359]  ? __x64_sys_bpf+0x80/0x80
[   29.452432][  T359]  ? switch_mm_irqs_off+0x6b5/0xab0
[   29.457462][  T359]  ? _raw_spin_unlock_irq+0x4a/0x60
[   29.462487][  T359]  ? finish_task_switch+0x130/0x590
[   29.467513][  T359]  ? __schedule+0xb0d/0x1320
[   29.471940][  T359]  ? _raw_spin_lock_irq+0xa5/0x1b0
[   29.476888][  T359]  ? _raw_spin_lock_irqsave+0x210/0x210
[   29.482272][  T359]  ? cgroup_update_frozen+0x157/0xab0
[   29.487470][  T359]  ? cgroup_update_frozen+0x157/0xab0
[   29.492681][  T359]  ? cgroup_leave_frozen+0x13c/0x290
[   29.497816][  T359]  ? ptrace_stop+0x6ee/0xa30
[   29.502229][  T359]  ? _raw_spin_unlock_irq+0x4a/0x60
[   29.507257][  T359]  ? ptrace_notify+0x24c/0x350
[   29.511860][  T359]  ? do_notify_parent+0xa10/0xa10
[   29.516724][  T359]  ? check_preemption_disabled+0x153/0x320
[   29.522480][  T359]  ? syscall_trace_enter+0x650/0x940
[   29.527595][  T359]  ? do_syscall_64+0xca/0x1c0
[   29.532105][  T359]  ? entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   29.538000][  T359] Modules linked in:
[   29.541812][  T359] ---[ end trace f00ce0c001a96e48 ]---
[   29.547072][  T359] RIP: 0010:bpf_skb_ancestor_cgroup_id+0x114/0x270
[   29.553400][  T359] Code: 02 00 00 48 89 d8 48 c1 e8 03 42 80 3c 20 00 74 08 48 89 df e8 5d c6 0a fe 48 8b 1b 48 8d bb 1c 01 00 00 48 89 f8 48 c1 e8 03 <42> 0f b6 04 20 84 c0 0f 85 2f 01 00 00 8b ab 1c 01 00 00 89 ef 44
[   29.572839][  T359] RSP: 0018:ffff8881ee6cf438 EFLAGS: 00010203
[   29.578712][  T359] RAX: 0000000000000023 RBX: 0000000000000000 RCX: 0000000000000000
[   29.586548][  T359] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 000000000000011c
[   29.594365][  T359] RBP: 0000000000000080 R08: ffffffff83896e1a R09: ffff8881ee6cf760
[   29.602232][  T359] R10: 0000000000000000 R11: 00000000000000c3 R12: dffffc0000000000
[   29.610070][  T359] R13: fffffff93a4ba952 R14: 00000000000000c3 R15: ffff8881eed9f812
[   29.617901][  T359] FS:  000055555ed7d380(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   29.626670][  T359] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.633078][  T359] CR2: 0000000020001000 CR3: 00000001dfc7b000 CR4: 00000000003406a0
[   29.640856][  T359] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   29.648698][  T359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   29.656508][  T359] Kernel panic - not syncing: Fatal exception
[   29.662698][  T359] Kernel Offset: disabled
[   29.666820][  T359] Rebooting in 86400 seconds..