DUID 00:04:9b:41:e3:df:54:6f:ca:1f:62:a0:1b:7c:64:71:74:ce
forked to background, child pid 3177
[ 26.374381][ T3178] 8021q: adding VLAN 0 to HW filter on device bond0
[ 26.385122][ T3178] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK
syzkaller
Warning: Permanently added '10.128.10.0' (ECDSA) to the list of known hosts.
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
executing program
syzkaller login: [ 46.540597][ T3593] kernel profiling enabled (shift: 63)
executing program
executing program
executing program
executing program
[ 46.614360][ C1] ==================================================================
[ 46.622545][ C1] BUG: KASAN: stack-out-of-bounds in profile_pc+0xa4/0xe0
[ 46.629660][ C1] Read of size 8 at addr ffffc900028cf920 by task syz-executor419/3616
[ 46.637881][ C1]
[ 46.640203][ C1] CPU: 1 PID: 3616 Comm: syz-executor419 Not tainted 5.17.0-rc7-syzkaller-00020-gea4424be1688 #0
[ 46.650680][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 46.660715][ C1] Call Trace:
[ 46.663984][ C1]
[ 46.666814][ C1] dump_stack_lvl+0x1dc/0x2d8
[ 46.671480][ C1] ? show_regs_print_info+0x12/0x12
[ 46.676663][ C1] ? _printk+0xcf/0x118
[ 46.680812][ C1] ? wake_up_klogd+0xb2/0xf0
[ 46.685388][ C1] ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 46.691089][ C1] ? _raw_spin_lock_irqsave+0xdd/0x120
[ 46.696546][ C1] print_address_description+0x65/0x3a0
[ 46.702087][ C1] ? profile_pc+0xa4/0xe0
[ 46.706401][ C1] kasan_report+0x19a/0x1f0
[ 46.710891][ C1] ? profile_pc+0xa4/0xe0
[ 46.715207][ C1] ? _raw_spin_unlock_irqrestore+0xd4/0x130
[ 46.721085][ C1] profile_pc+0xa4/0xe0
[ 46.725228][ C1] profile_tick+0xcd/0x120
[ 46.729631][ C1] tick_sched_timer+0x287/0x420
[ 46.734471][ C1] __hrtimer_run_queues+0x4cb/0xa60
[ 46.739657][ C1] ? tick_setup_sched_timer+0x2c0/0x2c0
[ 46.745192][ C1] ? hrtimer_interrupt+0x1040/0x1040
[ 46.750462][ C1] ? ktime_get_update_offsets_now+0x449/0x460
[ 46.756518][ C1] hrtimer_interrupt+0x3b3/0x1040
[ 46.761545][ C1] ? irq_exit_rcu+0x20/0x20
[ 46.766041][ C1] __sysvec_apic_timer_interrupt+0xf9/0x270
[ 46.771924][ C1] sysvec_apic_timer_interrupt+0x8c/0xb0
[ 46.777544][ C1]
[ 46.780459][ C1]
[ 46.783377][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 46.789341][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd4/0x130
[ 46.795825][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 c2 49 b4 f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 27 f1 3c f7 65 8b 05 88 67 e4 75 85 c0 74 3f 48 c7 04 24 0e 36
[ 46.815412][ C1] RSP: 0018:ffffc900028cf920 EFLAGS: 00000206
[ 46.821461][ C1] RAX: e6b220d8bf598900 RBX: 1ffff92000519f28 RCX: ffffffff90bf5803
[ 46.829416][ C1] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000001
[ 46.837371][ C1] RBP: ffffc900028cf9b0 R08: ffffffff818c3ff0 R09: ffffed100f174c13
[ 46.845322][ C1] R10: ffffed100f174c13 R11: 0000000000000000 R12: dffffc0000000000
[ 46.853286][ C1] R13: 1ffff92000519f24 R14: ffffc900028cf940 R15: 0000000000000246
[ 46.861252][ C1] ? trace_hardirqs_on+0x30/0x80
[ 46.866183][ C1] ? _raw_spin_unlock+0x40/0x40
[ 46.871034][ C1] ? __wake_up_common+0x2aa/0x4e0
[ 46.876049][ C1] __wake_up_sync_key+0x124/0x1c0
[ 46.881063][ C1] ? __wake_up_locked_key_bookmark+0x20/0x20
[ 46.887041][ C1] pipe_write+0x11ff/0x1b10
[ 46.891549][ C1] ? pipe_read+0x1350/0x1350
[ 46.896119][ C1] ? iov_iter_init+0x10b/0x220
[ 46.900867][ C1] ? fault_in_iov_iter_writeable+0x1d0/0x1d0
[ 46.906837][ C1] vfs_write+0xb11/0xe90
[ 46.911073][ C1] ? file_end_write+0x230/0x230
[ 46.915914][ C1] ? __context_tracking_exit+0x7a/0xd0
[ 46.921365][ C1] ? __fdget_pos+0x1d8/0x2f0
[ 46.925943][ C1] ksys_write+0x18f/0x2c0
[ 46.930258][ C1] ? print_irqtrace_events+0x220/0x220
[ 46.935709][ C1] ? __ia32_sys_read+0x80/0x80
[ 46.940455][ C1] ? lockdep_hardirqs_on+0x95/0x140
[ 46.945642][ C1] ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 46.951608][ C1] do_syscall_64+0x44/0xd0
[ 46.956009][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 46.961896][ C1] RIP: 0033:0x7ff4160d2273
[ 46.966299][ C1] Code: e8 5b 5d 41 5c 41 5d c3 89 ef 41 bd 01 00 00 00 e8 a2 00 00 00 eb e0 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 48 89 54 24 18
[ 46.985889][ C1] RSP: 002b:00007ffc8ef27328 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 46.994297][ C1] RAX: ffffffffffffffda RBX: 000000000000b5f6 RCX: 00007ff4160d2273
[ 47.002253][ C1] RDX: 0000000000000012 RSI: 00007ff41615303b RDI: 0000000000000001
[ 47.010218][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffc8ef26da0
[ 47.018171][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc8ef2733c
[ 47.026127][ C1] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 47.034094][ C1]
[ 47.037097][ C1]
[ 47.039421][ C1]
[ 47.041724][ C1] addr ffffc900028cf920 is located in stack of task syz-executor419/3616 at offset 0 in frame:
[ 47.052023][ C1] _raw_spin_unlock_irqrestore+0x0/0x130
[ 47.057639][ C1]
[ 47.059947][ C1] this frame has 1 object:
[ 47.064338][ C1] [32, 40) 'flags.i.i.i.i'
[ 47.064348][ C1]
[ 47.071125][ C1] Memory state around the buggy address:
[ 47.076735][ C1] ffffc900028cf800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 47.084790][ C1] ffffc900028cf880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 47.092863][ C1] >ffffc900028cf900: 00 00 00 00 f1 f1 f1 f1 00 f3 f3 f3 00 00 00 00
[ 47.100900][ C1] ^
[ 47.105990][ C1] ffffc900028cf980: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[ 47.114043][ C1] ffffc900028cfa00: 00 00 00 00 00 f3 f3 f3 f3 f3 f3 f3 00 00 00 00
[ 47.122085][ C1] ==================================================================
[ 47.130121][ C1] Disabling lock debugging due to kernel taint
[ 47.136248][ C1] Kernel panic - not syncing: panic_on_warn set ...
[ 47.142810][ C1] CPU: 1 PID: 3616 Comm: syz-executor419 Tainted: G B 5.17.0-rc7-syzkaller-00020-gea4424be1688 #0
[ 47.154678][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 47.164710][ C1] Call Trace:
[ 47.167970][ C1]
[ 47.170808][ C1] dump_stack_lvl+0x1dc/0x2d8
[ 47.175470][ C1] ? show_regs_print_info+0x12/0x12
[ 47.180651][ C1] ? log_buf_vmcoreinfo_setup+0x498/0x498
[ 47.186362][ C1] panic+0x2d6/0x810
[ 47.190246][ C1] ? nmi_panic+0x90/0x90
[ 47.194469][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130
[ 47.200342][ C1] ? print_memory_metadata+0xe0/0x140
[ 47.205695][ C1] ? profile_pc+0xa4/0xe0
[ 47.210004][ C1] end_report+0x83/0x90
[ 47.214137][ C1] kasan_report+0x1bf/0x1f0
[ 47.218619][ C1] ? profile_pc+0xa4/0xe0
[ 47.222928][ C1] ? _raw_spin_unlock_irqrestore+0xd4/0x130
[ 47.228820][ C1] profile_pc+0xa4/0xe0
[ 47.232956][ C1] profile_tick+0xcd/0x120
[ 47.237354][ C1] tick_sched_timer+0x287/0x420
[ 47.242203][ C1] __hrtimer_run_queues+0x4cb/0xa60
[ 47.247381][ C1] ? tick_setup_sched_timer+0x2c0/0x2c0
[ 47.252909][ C1] ? hrtimer_interrupt+0x1040/0x1040
[ 47.258211][ C1] ? ktime_get_update_offsets_now+0x449/0x460
[ 47.264272][ C1] hrtimer_interrupt+0x3b3/0x1040
[ 47.269291][ C1] ? irq_exit_rcu+0x20/0x20
[ 47.273777][ C1] __sysvec_apic_timer_interrupt+0xf9/0x270
[ 47.279657][ C1] sysvec_apic_timer_interrupt+0x8c/0xb0
[ 47.285274][ C1]
[ 47.288192][ C1]
[ 47.291105][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 47.297065][ C1] RIP: 0010:_raw_spin_unlock_irqrestore+0xd4/0x130
[ 47.303545][ C1] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 c2 49 b4 f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 27 f1 3c f7 65 8b 05 88 67 e4 75 85 c0 74 3f 48 c7 04 24 0e 36
[ 47.323388][ C1] RSP: 0018:ffffc900028cf920 EFLAGS: 00000206
[ 47.329436][ C1] RAX: e6b220d8bf598900 RBX: 1ffff92000519f28 RCX: ffffffff90bf5803
[ 47.337387][ C1] RDX: dffffc0000000000 RSI: 0000000000000001 RDI: 0000000000000001
[ 47.345336][ C1] RBP: ffffc900028cf9b0 R08: ffffffff818c3ff0 R09: ffffed100f174c13
[ 47.353288][ C1] R10: ffffed100f174c13 R11: 0000000000000000 R12: dffffc0000000000
[ 47.361237][ C1] R13: 1ffff92000519f24 R14: ffffc900028cf940 R15: 0000000000000246
[ 47.369191][ C1] ? trace_hardirqs_on+0x30/0x80
[ 47.374125][ C1] ? _raw_spin_unlock+0x40/0x40
[ 47.378966][ C1] ? __wake_up_common+0x2aa/0x4e0
[ 47.383978][ C1] __wake_up_sync_key+0x124/0x1c0
[ 47.388997][ C1] ? __wake_up_locked_key_bookmark+0x20/0x20
[ 47.394963][ C1] pipe_write+0x11ff/0x1b10
[ 47.399468][ C1] ? pipe_read+0x1350/0x1350
[ 47.404042][ C1] ? iov_iter_init+0x10b/0x220
[ 47.408800][ C1] ? fault_in_iov_iter_writeable+0x1d0/0x1d0
[ 47.414766][ C1] vfs_write+0xb11/0xe90
[ 47.418998][ C1] ? file_end_write+0x230/0x230
[ 47.423837][ C1] ? __context_tracking_exit+0x7a/0xd0
[ 47.429302][ C1] ? __fdget_pos+0x1d8/0x2f0
[ 47.433885][ C1] ksys_write+0x18f/0x2c0
[ 47.438203][ C1] ? print_irqtrace_events+0x220/0x220
[ 47.443646][ C1] ? __ia32_sys_read+0x80/0x80
[ 47.448387][ C1] ? lockdep_hardirqs_on+0x95/0x140
[ 47.453563][ C1] ? syscall_enter_from_user_mode+0x2e/0x1b0
[ 47.459536][ C1] do_syscall_64+0x44/0xd0
[ 47.463933][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 47.469807][ C1] RIP: 0033:0x7ff4160d2273
[ 47.474208][ C1] Code: e8 5b 5d 41 5c 41 5d c3 89 ef 41 bd 01 00 00 00 e8 a2 00 00 00 eb e0 64 8b 04 25 18 00 00 00 85 c0 75 14 b8 01 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 55 c3 0f 1f 40 00 48 83 ec 28 48 89 54 24 18
[ 47.493812][ C1] RSP: 002b:00007ffc8ef27328 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[ 47.502219][ C1] RAX: ffffffffffffffda RBX: 000000000000b5f6 RCX: 00007ff4160d2273
[ 47.510170][ C1] RDX: 0000000000000012 RSI: 00007ff41615303b RDI: 0000000000000001
[ 47.518123][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 00007ffc8ef26da0
[ 47.526071][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc8ef2733c
[ 47.534020][ C1] R13: 431bde82d7b634db R14: 0000000000000000 R15: 0000000000000000
[ 47.541977][ C1]
[ 47.545136][ C1] Kernel Offset: disabled
[ 47.549444][ C1] Rebooting in 86400 seconds..