[ 18.503369][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 18.512006][ T420] device veth1_macvtap entered promiscuous mode [ 18.520390][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 18.532438][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 19.114128][ T43] device bridge_slave_1 left promiscuous mode [ 19.120176][ T43] bridge0: port 2(bridge_slave_1) entered disabled state [ 19.127539][ T43] device bridge_slave_0 left promiscuous mode [ 19.133432][ T43] bridge0: port 1(bridge_slave_0) entered disabled state [ 19.141271][ T43] device veth1_macvtap left promiscuous mode [ 19.147386][ T43] device veth0_vlan left promiscuous mode Warning: Permanently added '10.128.1.156' (ECDSA) to the list of known hosts. 2022/12/12 06:20:56 ignoring optional flag "sandboxArg"="0" 2022/12/12 06:20:56 parsed 1 programs 2022/12/12 06:20:56 executed programs: 0 [ 36.285977][ T28] kauditd_printk_skb: 64 callbacks suppressed [ 36.285985][ T28] audit: type=1400 audit(1670826056.640:136): avc: denied { mounton } for pid=465 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 36.316843][ T28] audit: type=1400 audit(1670826056.650:137): avc: denied { mount } for pid=465 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 36.353499][ T468] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.360569][ T468] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.367950][ T468] device bridge_slave_0 entered promiscuous mode [ 36.374794][ T468] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.382138][ T468] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.389628][ T468] device bridge_slave_1 entered promiscuous mode [ 36.422084][ T468] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.429181][ T468] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.436219][ T468] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.443105][ T468] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.458518][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.465714][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.472906][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.480360][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.489669][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.498467][ T19] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.506074][ T19] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.514144][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.522347][ T19] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.529732][ T19] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.540310][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.554536][ T468] device veth0_vlan entered promiscuous mode [ 36.563375][ T468] device veth1_macvtap entered promiscuous mode [ 36.570202][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.578972][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.587528][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.595029][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.602250][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.610670][ T19] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.623204][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.631730][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.643707][ T28] audit: type=1400 audit(1670826056.990:138): avc: denied { mount } for pid=468 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 41.003862][ T425] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] PREEMPT SMP KASAN [ 41.015648][ T425] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 41.024077][ T425] CPU: 0 PID: 425 Comm: kworker/0:3 Not tainted 6.1.0-syzkaller-00167-g830b3c68c1fb #0 [ 41.033631][ T425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 41.043531][ T425] Workqueue: wg-crypt-wg1 wg_packet_tx_worker [ 41.049419][ T425] RIP: 0010:em_cmp_match+0x4e/0x5f0 [ 41.054452][ T425] Code: 61 fd 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 90 2e a8 fd 4c 8b 33 49 8d 5e 0a 48 89 d8 48 c1 e8 03 <42> 8a 04 38 84 c0 0f 85 0f 04 00 00 0f b7 1b 48 89 5d d0 c1 eb 08 [ 41.074250][ T425] RSP: 0018:ffffc90002b4efd8 EFLAGS: 00010202 [ 41.080418][ T425] RAX: 0000000000000001 RBX: 000000000000000a RCX: ffff888111354300 [ 41.088314][ T425] RDX: 0000000000000000 RSI: ffff8881179e6180 RDI: ffff88811c1cda00 [ 41.096411][ T425] RBP: ffffc90002b4f010 R08: ffffffff8412cc95 R09: ffffc90002b4f0a0 [ 41.104776][ T425] R10: fffff52000569e24 R11: 1ffff92000569e14 R12: ffffffff86b3c190 [ 41.112585][ T425] R13: ffff88811c1cda00 R14: 0000000000000000 R15: dffffc0000000000 [ 41.120492][ T425] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 41.129369][ T425] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.135765][ T425] CR2: 00007ffc1d558af8 CR3: 0000000122a09000 CR4: 00000000003506b0 [ 41.143686][ T425] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.151491][ T425] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.159500][ T425] Call Trace: [ 41.162624][ T425] [ 41.165396][ T425] __tcf_em_tree_match+0x194/0x720 [ 41.170553][ T425] ? tcf_em_tree_dump+0xac0/0xac0 [ 41.175553][ T425] ? unwind_next_frame+0x3b0/0x6b0 [ 41.180517][ T425] basic_classify+0xd8/0x250 [ 41.185096][ T425] tcf_classify+0x191/0x480 [ 41.189451][ T425] prio_enqueue+0x1d3/0x6a0 [ 41.193783][ T425] ? tbf_dump_class+0xe0/0xe0 [ 41.198380][ T425] __dev_xmit_skb+0x361/0x1460 [ 41.202978][ T425] ? __dev_queue_xmit+0x2210/0x2210 [ 41.208068][ T425] ? stack_trace_save+0x12d/0x1f0 [ 41.213009][ T425] ? netdev_core_pick_tx+0xc9/0x320 [ 41.218126][ T425] __dev_queue_xmit+0x9f1/0x2210 [ 41.222899][ T425] ? netdev_core_pick_tx+0x320/0x320 [ 41.228277][ T425] ? selinux_ip_postroute+0x2d4/0x13d0 [ 41.233678][ T425] ? local_bh_enable+0x1f/0x30 [ 41.238363][ T425] ? selinux_nf_unregister+0x30/0x30 [ 41.243670][ T425] ? ip_neigh_gw4+0x2ad/0x350 [ 41.248470][ T425] ? ip_finish_output2+0xf80/0xf80 [ 41.255233][ T425] ? ip_finish_output2+0x90e/0xf80 [ 41.260186][ T425] ? memcpy+0x56/0x70 [ 41.264000][ T425] ip_finish_output2+0xbe7/0xf80 [ 41.268773][ T425] ? ip_fragment+0x210/0x210 [ 41.273565][ T425] ? iptable_mangle_hook+0x196/0x4e0 [ 41.278677][ T425] ? ip_skb_dst_mtu+0x48e/0x640 [ 41.283442][ T425] __ip_finish_output+0x163/0x370 [ 41.288303][ T425] ip_finish_output+0x280/0x2a0 [ 41.293079][ T425] ? ip_output+0x1d0/0x410 [ 41.297866][ T425] ip_output+0x1e9/0x410 [ 41.301940][ T425] ? ip_finish_output+0x2a0/0x2a0 [ 41.307058][ T425] ? ip_mc_finish_output+0x4b0/0x4b0 [ 41.312368][ T425] ? __xfrm_sk_clone_policy+0xa90/0xa90 [ 41.317994][ T425] ip_local_out+0x92/0xb0 [ 41.322359][ T425] iptunnel_xmit+0x4d2/0x8b0 [ 41.326950][ T425] udp_tunnel_xmit_skb+0x1b6/0x2c0 [ 41.332050][ T425] send4+0x7b3/0xd20 [ 41.335734][ T425] ? wg_socket_send_skb_to_peer+0x1d0/0x1d0 [ 41.341456][ T425] ? del_timer+0x184/0x490 [ 41.345707][ T425] ? lock_timer_base+0x280/0x280 [ 41.350566][ T425] wg_socket_send_skb_to_peer+0xd5/0x1d0 [ 41.356124][ T425] wg_packet_tx_worker+0x202/0x560 [ 41.361078][ T425] process_one_work+0x6cb/0xc00 [ 41.365944][ T425] worker_thread+0xb3c/0x1390 [ 41.370709][ T425] kthread+0x26b/0x300 [ 41.374696][ T425] ? worker_clr_flags+0x1a0/0x1a0 [ 41.379669][ T425] ? kthread_blkcg+0xd0/0xd0 [ 41.384185][ T425] ret_from_fork+0x1f/0x30 [ 41.388604][ T425] [ 41.391573][ T425] Modules linked in: [ 41.395366][ T425] ---[ end trace 0000000000000000 ]--- [ 41.400877][ T425] RIP: 0010:em_cmp_match+0x4e/0x5f0 [ 41.405931][ T425] Code: 61 fd 48 83 c3 08 48 89 d8 48 c1 e8 03 42 80 3c 38 00 74 08 48 89 df e8 90 2e a8 fd 4c 8b 33 49 8d 5e 0a 48 89 d8 48 c1 e8 03 <42> 8a 04 38 84 c0 0f 85 0f 04 00 00 0f b7 1b 48 89 5d d0 c1 eb 08 [ 41.426423][ T425] RSP: 0018:ffffc90002b4efd8 EFLAGS: 00010202 [ 41.432385][ T425] RAX: 0000000000000001 RBX: 000000000000000a RCX: ffff888111354300 [ 41.441056][ T425] RDX: 0000000000000000 RSI: ffff8881179e6180 RDI: ffff88811c1cda00 [ 41.449454][ T425] RBP: ffffc90002b4f010 R08: ffffffff8412cc95 R09: ffffc90002b4f0a0 [ 41.457718][ T425] R10: fffff52000569e24 R11: 1ffff92000569e14 R12: ffffffff86b3c190 [ 41.465856][ T425] R13: ffff88811c1cda00 R14: 0000000000000000 R15: dffffc0000000000 [ 41.473662][ T425] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 41.482608][ T425] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.489343][ T425] CR2: 00007ffc1d558af8 CR3: 0000000122a09000 CR4: 00000000003506b0 [ 41.497158][ T425] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.504999][ T425] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.512836][ T425] Kernel panic - not syncing: Fatal exception in interrupt [ 41.520257][ T425] Kernel Offset: disabled [ 41.524483][ T425] Rebooting in 86400 seconds..