Warning: Permanently added '10.128.1.83' (ECDSA) to the list of known hosts. 2021/11/19 11:01:20 fuzzer started 2021/11/19 11:01:20 connecting to host at 10.128.0.163:45447 2021/11/19 11:01:20 checking machine... 2021/11/19 11:01:20 checking revisions... 2021/11/19 11:01:20 testing simple program... [ 20.580574][ T23] audit: type=1400 audit(1637319680.830:73): avc: denied { getattr } for pid=362 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 20.599600][ T371] cgroup: Unknown subsys name 'net' [ 20.604050][ T23] audit: type=1400 audit(1637319680.830:74): avc: denied { read } for pid=362 comm="syz-fuzzer" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 20.630229][ T23] audit: type=1400 audit(1637319680.830:75): avc: denied { open } for pid=362 comm="syz-fuzzer" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 20.630517][ T371] cgroup: Unknown subsys name 'devices' [ 20.653651][ T23] audit: type=1400 audit(1637319680.830:76): avc: denied { read } for pid=362 comm="syz-fuzzer" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 20.681872][ T23] audit: type=1400 audit(1637319680.830:77): avc: denied { open } for pid=362 comm="syz-fuzzer" path="/dev/raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 20.705143][ T23] audit: type=1400 audit(1637319680.830:78): avc: denied { mounton } for pid=371 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1136 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 20.727962][ T23] audit: type=1400 audit(1637319680.830:79): avc: denied { mount } for pid=371 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 20.750290][ T23] audit: type=1400 audit(1637319680.870:80): avc: denied { unmount } for pid=371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 20.846662][ T371] cgroup: Unknown subsys name 'hugetlb' [ 20.852389][ T371] cgroup: Unknown subsys name 'rlimit' [ 20.947160][ T23] audit: type=1400 audit(1637319681.200:81): avc: denied { setattr } for pid=371 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 20.970693][ T23] audit: type=1400 audit(1637319681.220:82): avc: denied { execmem } for pid=372 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 21.044350][ T373] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.051463][ T373] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.059019][ T373] device bridge_slave_0 entered promiscuous mode [ 21.065997][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.073004][ T373] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.080414][ T373] device bridge_slave_1 entered promiscuous mode [ 21.111152][ T373] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.118194][ T373] bridge0: port 2(bridge_slave_1) entered forwarding state [ 21.125509][ T373] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.132631][ T373] bridge0: port 1(bridge_slave_0) entered forwarding state [ 21.149733][ T74] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.157053][ T74] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.164284][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 21.172113][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 21.180998][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 21.189089][ T374] bridge0: port 1(bridge_slave_0) entered blocking state [ 21.196112][ T374] bridge0: port 1(bridge_slave_0) entered forwarding state [ 21.215990][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 21.224343][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 21.232367][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 21.241415][ T74] bridge0: port 2(bridge_slave_1) entered blocking state [ 21.248442][ T74] bridge0: port 2(bridge_slave_1) entered forwarding state [ 21.255743][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 21.263573][ T74] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 21.279001][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.287564][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.296496][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 21.304640][ T74] ================================================================================ [ 21.313922][ T74] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:2023:28 [ 21.321726][ T74] member access within address ffffc900002cf1c0 with insufficient space [ 21.330046][ T74] for an object of type 'struct sk_buff' [ 21.335695][ T74] CPU: 0 PID: 74 Comm: kworker/0:1 Not tainted 5.10.79-syzkaller-01226-g706ebf15a1f9 #0 [ 21.345401][ T74] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 21.355631][ T74] Workqueue: ipv6_addrconf addrconf_dad_work [ 21.361582][ T74] Call Trace: [ 21.364848][ T74] dump_stack_lvl+0x1e2/0x24b [ 21.369495][ T74] ? show_regs_print_info+0x18/0x18 [ 21.374669][ T74] ? wg_allowedips_lookup_dst+0x190/0x190 [ 21.380361][ T74] dump_stack+0x15/0x1d [ 21.384490][ T74] ubsan_type_mismatch_common+0x1ed/0x3a0 [ 21.390185][ T74] ? __sanitizer_cov_trace_switch+0x74/0x90 [ 21.396049][ T74] __ubsan_handle_type_mismatch_v1+0x5b/0x70 [ 21.402002][ T74] wg_xmit+0x4a2/0xae0 [ 21.406216][ T74] ? wg_stop+0x140/0x140 [ 21.410436][ T74] ? __sanitizer_cov_trace_const_cmp2+0x19/0x20 [ 21.416648][ T74] netdev_start_xmit+0x8a/0x160 [ 21.421480][ T74] dev_hard_start_xmit+0x18d/0x2f0 [ 21.426563][ T74] __dev_queue_xmit+0xfbe/0x1bb0 [ 21.431473][ T74] ? dev_queue_xmit+0x20/0x20 [ 21.436136][ T74] ? __local_bh_enable_ip+0xa8/0x170 [ 21.441402][ T74] ? do_raw_spin_unlock+0x50/0x50 [ 21.446400][ T74] ? _local_bh_enable+0x30/0x30 [ 21.451219][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.457518][ T74] ? ndisc_constructor+0x690/0x8a0 [ 21.462604][ T74] ? _raw_write_unlock_bh+0x31/0x47 [ 21.467772][ T74] ? dev_hard_header+0xdb/0xf0 [ 21.472519][ T74] dev_queue_xmit+0x17/0x20 [ 21.476991][ T74] neigh_connected_output+0x288/0x2b0 [ 21.482335][ T74] ip6_finish_output2+0xde2/0x1440 [ 21.487418][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.492867][ T74] ? __ip6_finish_output+0x520/0x520 [ 21.498303][ T74] ? dst_cow_metrics_generic+0x55/0x1d0 [ 21.503823][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.510036][ T74] ? ip6_skb_dst_mtu+0xaf/0x260 [ 21.514859][ T74] __ip6_finish_output+0x3e4/0x520 [ 21.519943][ T74] ip6_finish_output+0x3f/0x220 [ 21.524777][ T74] ? ip6_output+0x1d3/0x4b0 [ 21.529252][ T74] ip6_output+0x1f8/0x4b0 [ 21.533554][ T74] ? asan.module_dtor+0x20/0x20 [ 21.538375][ T74] ? skb_dst+0x40/0x40 [ 21.542417][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.547167][ T74] ? selinux_ipv6_forward+0x50/0x50 [ 21.552336][ T74] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 21.558049][ T74] ? nf_hook_slow+0x150/0x1b0 [ 21.562712][ T74] NF_HOOK+0xdd/0x280 [ 21.566691][ T74] ? addrconf_addr_solict_mult+0xe0/0xe0 [ 21.572322][ T74] ? NF_HOOK+0x280/0x280 [ 21.576563][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.581312][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.587537][ T74] ? ndisc_send_skb+0x547/0x9f0 [ 21.592373][ T74] ? memcpy+0x56/0x70 [ 21.596331][ T74] ndisc_send_skb+0x646/0x9f0 [ 21.600983][ T74] ? slab_post_alloc_hook+0x90/0xa0 [ 21.606326][ T74] ? ndisc_fill_addr_option+0x2f0/0x2f0 [ 21.611843][ T74] ? skb_set_owner_w+0x1a8/0x310 [ 21.616751][ T74] ? __sanitizer_cov_trace_cmp4+0x19/0x20 [ 21.622444][ T74] ? skb_put+0x11d/0x200 [ 21.626659][ T74] ndisc_send_rs+0x26c/0x360 [ 21.631236][ T74] addrconf_dad_completed+0x4f3/0x9f0 [ 21.636589][ T74] ? addrconf_dad_stop+0x430/0x430 [ 21.641671][ T74] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 21.647363][ T74] addrconf_dad_work+0x9c1/0x1520 [ 21.652358][ T74] ? ipv6_use_optimistic_addr+0x1d0/0x1d0 [ 21.658065][ T74] ? __kasan_check_write+0x14/0x20 [ 21.663161][ T74] process_one_work+0x3ca/0x660 [ 21.667983][ T74] worker_thread+0x709/0xa20 [ 21.672563][ T74] ? __kthread_parkme+0x11b/0x150 [ 21.677563][ T74] kthread+0x371/0x390 [ 21.681614][ T74] ? pr_cont_work+0x110/0x110 [ 21.686271][ T74] ? __list_add+0xc0/0xc0 [ 21.690580][ T74] ret_from_fork+0x1f/0x30 [ 21.695030][ T74] ================================================================================ [ 21.704324][ T74] ================================================================================ [ 21.713616][ T74] UBSAN: object-size-mismatch in ./include/linux/skbuff.h:1916:2 [ 21.721331][ T74] member access within address ffffc900002cf1c0 with insufficient space [ 21.729669][ T74] for an object of type 'struct sk_buff' [ 21.735311][ T74] CPU: 0 PID: 74 Comm: kworker/0:1 Not tainted 5.10.79-syzkaller-01226-g706ebf15a1f9 #0 [ 21.744994][ T74] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 21.755038][ T74] Workqueue: ipv6_addrconf addrconf_dad_work [ 21.761049][ T74] Call Trace: [ 21.764319][ T74] dump_stack_lvl+0x1e2/0x24b [ 21.768975][ T74] ? show_regs_print_info+0x18/0x18 [ 21.774155][ T74] ? wg_allowedips_lookup_dst+0x190/0x190 [ 21.779846][ T74] dump_stack+0x15/0x1d [ 21.783973][ T74] ubsan_type_mismatch_common+0x1ed/0x3a0 [ 21.789673][ T74] __ubsan_handle_type_mismatch_v1+0x5b/0x70 [ 21.795795][ T74] wg_xmit+0x513/0xae0 [ 21.799959][ T74] ? wg_stop+0x140/0x140 [ 21.804204][ T74] ? __sanitizer_cov_trace_const_cmp2+0x19/0x20 [ 21.810417][ T74] netdev_start_xmit+0x8a/0x160 [ 21.815242][ T74] dev_hard_start_xmit+0x18d/0x2f0 [ 21.820326][ T74] __dev_queue_xmit+0xfbe/0x1bb0 [ 21.825235][ T74] ? dev_queue_xmit+0x20/0x20 [ 21.829884][ T74] ? __local_bh_enable_ip+0xa8/0x170 [ 21.835143][ T74] ? do_raw_spin_unlock+0x50/0x50 [ 21.840144][ T74] ? _local_bh_enable+0x30/0x30 [ 21.844967][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.851179][ T74] ? ndisc_constructor+0x690/0x8a0 [ 21.856449][ T74] ? _raw_write_unlock_bh+0x31/0x47 [ 21.861706][ T74] ? dev_hard_header+0xdb/0xf0 [ 21.866439][ T74] dev_queue_xmit+0x17/0x20 [ 21.870917][ T74] neigh_connected_output+0x288/0x2b0 [ 21.876261][ T74] ip6_finish_output2+0xde2/0x1440 [ 21.881346][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.886080][ T74] ? __ip6_finish_output+0x520/0x520 [ 21.891334][ T74] ? dst_cow_metrics_generic+0x55/0x1d0 [ 21.896852][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.903061][ T74] ? ip6_skb_dst_mtu+0xaf/0x260 [ 21.907883][ T74] __ip6_finish_output+0x3e4/0x520 [ 21.912967][ T74] ip6_finish_output+0x3f/0x220 [ 21.917787][ T74] ? ip6_output+0x1d3/0x4b0 [ 21.922265][ T74] ip6_output+0x1f8/0x4b0 [ 21.926580][ T74] ? asan.module_dtor+0x20/0x20 [ 21.931400][ T74] ? skb_dst+0x40/0x40 [ 21.935453][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.940187][ T74] ? selinux_ipv6_forward+0x50/0x50 [ 21.945358][ T74] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 21.951046][ T74] ? nf_hook_slow+0x150/0x1b0 [ 21.955693][ T74] NF_HOOK+0xdd/0x280 [ 21.959652][ T74] ? addrconf_addr_solict_mult+0xe0/0xe0 [ 21.965252][ T74] ? NF_HOOK+0x280/0x280 [ 21.969466][ T74] ? __rcu_read_lock+0x50/0x50 [ 21.974201][ T74] ? __sanitizer_cov_trace_const_cmp4+0x19/0x20 [ 21.980413][ T74] ? ndisc_send_skb+0x547/0x9f0 [ 21.985248][ T74] ? memcpy+0x56/0x70 [ 21.989202][ T74] ndisc_send_skb+0x646/0x9f0 [ 21.993847][ T74] ? slab_post_alloc_hook+0x90/0xa0 [ 21.999030][ T74] ? ndisc_fill_addr_option+0x2f0/0x2f0 [ 22.004546][ T74] ? skb_set_owner_w+0x1a8/0x310 [ 22.009453][ T74] ? __sanitizer_cov_trace_cmp4+0x19/0x20 [ 22.015144][ T74] ? skb_put+0x11d/0x200 [ 22.019370][ T74] ndisc_send_rs+0x26c/0x360 [ 22.023942][ T74] addrconf_dad_completed+0x4f3/0x9f0 [ 22.029286][ T74] ? addrconf_dad_stop+0x430/0x430 [ 22.034367][ T74] ? __sanitizer_cov_trace_cmp8+0x18/0x20 [ 22.040055][ T74] addrconf_dad_work+0x9c1/0x1520 [ 22.045058][ T74] ? ipv6_use_optimistic_addr+0x1d0/0x1d0 [ 22.050755][ T74] ? __kasan_check_write+0x14/0x20 [ 22.055849][ T74] process_one_work+0x3ca/0x660 [ 22.060672][ T74] worker_thread+0x709/0xa20 2021/11/19 11:01:22 building call list... [ 22.065237][ T74] ? __kthread_parkme+0x11b/0x150 [ 22.070235][ T74] kthread+0x371/0x390 [ 22.074293][ T74] ? pr_cont_work+0x110/0x110 [ 22.078943][ T74] ? __list_add+0xc0/0xc0 [ 22.083244][ T74] ret_from_fork+0x1f/0x30 [ 22.087691][ T74] ================================================================================ [ 22.104483][ T373] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 22.665319][ T177] device bridge_slave_1 left promiscuous mode [ 22.671455][ T177] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.679236][ T177] device bridge_slave_0 left promiscuous mode [ 22.685490][ T177] bridge0: port 1(bridge_slave_0) entered disabled state