syzkaller syzkaller login: [ 7.100415][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 11.590589][ T23] kauditd_printk_skb: 60 callbacks suppressed [ 11.590599][ T23] audit: type=1400 audit(1673942364.830:71): avc: denied { transition } for pid=289 comm="sshd" path="/bin/sh" dev="sda1" ino=73 scontext=system_u:system_r:initrc_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 11.595198][ T23] audit: type=1400 audit(1673942364.830:72): avc: denied { write } for pid=289 comm="sh" path="pipe:[1353]" dev="pipefs" ino=1353 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:initrc_t tclass=fifo_file permissive=1 [ 12.530316][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!! [ 13.560203][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!! Warning: Permanently added '10.128.1.105' (ECDSA) to the list of known hosts. 2023/01/17 08:04:54 ignoring optional flag "sandboxArg"="0" 2023/01/17 08:04:55 parsed 1 programs [ 341.794213][ T23] audit: type=1400 audit(1673942695.030:73): avc: denied { getattr } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 341.807290][ T371] cgroup: Unknown subsys name 'net' [ 341.817731][ T23] audit: type=1400 audit(1673942695.030:74): avc: denied { read } for pid=365 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 341.844250][ T23] audit: type=1400 audit(1673942695.030:75): avc: denied { open } for pid=365 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 341.844491][ T371] cgroup: Unknown subsys name 'devices' [ 341.867654][ T23] audit: type=1400 audit(1673942695.040:76): avc: denied { read } for pid=365 comm="syz-execprog" name="raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 341.896506][ T23] audit: type=1400 audit(1673942695.040:77): avc: denied { open } for pid=365 comm="syz-execprog" path="/dev/raw-gadget" dev="devtmpfs" ino=165 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 341.920035][ T23] audit: type=1400 audit(1673942695.040:78): avc: denied { mounton } for pid=371 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1137 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 341.942701][ T23] audit: type=1400 audit(1673942695.040:79): avc: denied { mount } for pid=371 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 341.964964][ T23] audit: type=1400 audit(1673942695.060:80): avc: denied { unmount } for pid=371 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 342.151834][ T371] cgroup: Unknown subsys name 'hugetlb' [ 342.157605][ T371] cgroup: Unknown subsys name 'rlimit' 2023/01/17 08:04:55 executed programs: 0 [ 342.401355][ T23] audit: type=1400 audit(1673942695.640:81): avc: denied { mounton } for pid=371 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 342.426279][ T23] audit: type=1400 audit(1673942695.640:82): avc: denied { mount } for pid=371 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 342.535490][ T379] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.542661][ T379] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.549919][ T379] device bridge_slave_0 entered promiscuous mode [ 342.557360][ T379] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.564555][ T379] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.571915][ T379] device bridge_slave_1 entered promiscuous mode [ 342.591028][ T378] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.598080][ T378] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.605495][ T378] device bridge_slave_0 entered promiscuous mode [ 342.630629][ T378] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.637664][ T378] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.645072][ T378] device bridge_slave_1 entered promiscuous mode [ 342.681999][ T386] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.689041][ T386] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.696538][ T386] device bridge_slave_0 entered promiscuous mode [ 342.721353][ T386] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.728422][ T386] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.735800][ T386] device bridge_slave_1 entered promiscuous mode [ 342.755478][ T385] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.762750][ T385] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.769979][ T385] device bridge_slave_0 entered promiscuous mode [ 342.776957][ T388] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.784060][ T388] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.791385][ T388] device bridge_slave_0 entered promiscuous mode [ 342.811300][ T385] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.818346][ T385] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.825919][ T385] device bridge_slave_1 entered promiscuous mode [ 342.832575][ T388] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.839573][ T388] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.847031][ T388] device bridge_slave_1 entered promiscuous mode [ 342.875250][ T389] bridge0: port 1(bridge_slave_0) entered blocking state [ 342.882333][ T389] bridge0: port 1(bridge_slave_0) entered disabled state [ 342.889589][ T389] device bridge_slave_0 entered promiscuous mode [ 342.896872][ T389] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.903986][ T389] bridge0: port 2(bridge_slave_1) entered disabled state [ 342.911469][ T389] device bridge_slave_1 entered promiscuous mode [ 342.983709][ T379] bridge0: port 2(bridge_slave_1) entered blocking state [ 342.990841][ T379] bridge0: port 2(bridge_slave_1) entered forwarding state [ 342.998070][ T379] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.005122][ T379] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.031096][ T378] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.038246][ T378] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.045489][ T378] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.052509][ T378] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.072923][ T386] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.079960][ T386] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.087224][ T386] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.094260][ T386] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.108053][ T389] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.115130][ T389] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.122390][ T389] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.129489][ T389] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.153433][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.162031][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.170617][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 343.177770][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 343.186137][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 343.193619][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 343.201300][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 343.208425][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 343.216123][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 343.223545][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.240270][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.247801][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.256054][ T400] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.263084][ T400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.270501][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.278776][ T400] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.285845][ T400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.312828][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.322047][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 343.329757][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.338047][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.345911][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.354249][ T400] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.361286][ T400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.368585][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.377402][ T400] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.384434][ T400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.392055][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.399903][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.422609][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 343.442887][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.450497][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 343.459730][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.468037][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.475073][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.482896][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.491092][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.498124][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.541585][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 343.549940][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.557857][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 343.566637][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 343.575308][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 343.585364][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 343.593783][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 343.613881][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 343.622116][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.629962][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.638141][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.640665][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 343.647969][ T400] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.666971][ T400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.674664][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.682894][ T400] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.689891][ T400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.697304][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 343.704784][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 343.713081][ T400] bridge0: port 1(bridge_slave_0) entered blocking state [ 343.720264][ T400] bridge0: port 1(bridge_slave_0) entered forwarding state [ 343.727751][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 343.736208][ T400] bridge0: port 2(bridge_slave_1) entered blocking state [ 343.743265][ T400] bridge0: port 2(bridge_slave_1) entered forwarding state [ 343.750777][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.758647][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.767245][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.775195][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 343.783141][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.791137][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 343.799340][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 343.807774][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 343.815668][ T400] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 343.832567][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 343.841567][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 343.849375][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 343.857338][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 343.865703][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 343.874082][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 343.882494][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 343.890800][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 343.898834][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 343.914811][ T378] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 343.941134][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 343.949395][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 343.959589][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 343.967946][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 343.976449][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 343.984705][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 343.993124][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 344.001595][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 344.009930][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 344.017914][ T410] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 344.055999][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 344.066969][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 344.076343][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 344.085729][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 344.096009][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 344.104568][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 344.113009][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 344.121507][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 344.130086][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 344.139079][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 344.147298][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 344.155505][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 344.164004][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 344.172650][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 344.181244][ T372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 344.205370][ T411] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 344.218500][ T411] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 344.227318][ T411] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 344.240582][ T411] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2023/01/17 08:05:00 executed programs: 93 panic: runtime error: floating point error [signal SIGFPE: floating-point exception code=0x80 addr=0x0 pc=0x6edf8d] goroutine 8 [running]: github.com/google/syzkaller/prog.(*PointerArg).Size(0xcbf538) /syzkaller/gopath/src/github.com/google/syzkaller/prog/prog.go:152 +0x8d github.com/google/syzkaller/prog.foreachArgImpl({0xcbf4f8, 0xc000085a80}, 0xc00064cd40, 0xc00005fb38) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:152 +0x6be github.com/google/syzkaller/prog.foreachArgImpl({0xcbf538, 0xc0007f6210}, 0xc00064cd40, 0xc00005fb38) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:168 +0x337 github.com/google/syzkaller/prog.ForeachArg(0xc00048eb90, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:127 +0x105 github.com/google/syzkaller/prog.(*Prog).FallbackSignal(0xc0007f0c80, {0xc000644a80, 0x9, 0x7f2847683000}) /syzkaller/gopath/src/github.com/google/syzkaller/prog/analysis.go:249 +0x294 github.com/google/syzkaller/pkg/ipc.addFallbackSignal(0xc00052e070, 0xc00056f0e0) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:322 +0x85 github.com/google/syzkaller/pkg/ipc.(*Env).Exec(0xc000078120, 0x1000000000000, 0xc0007f0c80) /syzkaller/gopath/src/github.com/google/syzkaller/pkg/ipc/ipc.go:296 +0x392 main.(*Context).execute(0xc00052e000, 0x3, 0x0, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:172 +0x151 main.(*Context).run(0xc00052e000, 0x0) /syzkaller/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:157 +0xed main.main.func3() /syzkaller/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:120 +0x5c created by main.main /syzkaller/gopath/src/github.com/google/syzkaller/tools/syz-execprog/execprog.go:118 +0x61c