Warning: Permanently added '[localhost]:60059' (ED25519) to the list of known hosts. 2023/09/19 16:12:59 ignoring optional flag "sandboxArg"="0" 2023/09/19 16:12:59 parsed 1 programs [ 71.758221][ T37] kauditd_printk_skb: 30 callbacks suppressed [ 71.758235][ T37] audit: type=1400 audit(1695139979.446:206): avc: denied { getattr } for pid=5321 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 71.772327][ T37] audit: type=1400 audit(1695139979.446:207): avc: denied { read } for pid=5321 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 71.782177][ T37] audit: type=1400 audit(1695139979.446:208): avc: denied { open } for pid=5321 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 71.801182][ T37] audit: type=1400 audit(1695139979.496:209): avc: denied { mounton } for pid=5329 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 71.812364][ T37] audit: type=1400 audit(1695139979.496:210): avc: denied { mount } for pid=5329 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 71.822644][ T37] audit: type=1400 audit(1695139979.506:211): avc: denied { read write } for pid=5329 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 71.834448][ T37] audit: type=1400 audit(1695139979.506:212): avc: denied { open } for pid=5329 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 71.864106][ T37] audit: type=1400 audit(1695139979.556:213): avc: denied { unlink } for pid=5329 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 72.319256][ T37] audit: type=1400 audit(1695139980.006:214): avc: denied { relabelto } for pid=5347 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 73.438758][ T5329] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2023/09/19 16:13:01 executed programs: 0 [ 73.486628][ T61] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 73.490501][ T61] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 73.493722][ T61] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 73.497840][ T61] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 73.501693][ T61] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 73.504943][ T61] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 73.512746][ T37] audit: type=1400 audit(1695139981.206:215): avc: denied { mounton } for pid=5374 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 73.665127][ T5374] chnl_net:caif_netlink_parms(): no params data found [ 73.773185][ T5374] bridge0: port 1(bridge_slave_0) entered blocking state [ 73.775821][ T5374] bridge0: port 1(bridge_slave_0) entered disabled state [ 73.778460][ T5374] bridge_slave_0: entered allmulticast mode [ 73.781576][ T5374] bridge_slave_0: entered promiscuous mode [ 73.785660][ T5374] bridge0: port 2(bridge_slave_1) entered blocking state [ 73.788212][ T5374] bridge0: port 2(bridge_slave_1) entered disabled state [ 73.791354][ T5374] bridge_slave_1: entered allmulticast mode [ 73.794948][ T5374] bridge_slave_1: entered promiscuous mode [ 73.838715][ T5374] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 73.844607][ T5374] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 73.889854][ T5374] team0: Port device team_slave_0 added [ 73.894741][ T5374] team0: Port device team_slave_1 added [ 73.945646][ T5374] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 73.948697][ T5374] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.957931][ T5374] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 73.963593][ T5374] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 73.966161][ T5374] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 73.976169][ T5374] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 74.032382][ T5374] hsr_slave_0: entered promiscuous mode [ 74.035355][ T5374] hsr_slave_1: entered promiscuous mode [ 74.553595][ T5374] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 74.560904][ T5374] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 74.565986][ T5374] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 74.571360][ T5374] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 74.595099][ T5374] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.598615][ T5374] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.602407][ T5374] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.605471][ T5374] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.653297][ T5374] 8021q: adding VLAN 0 to HW filter on device bond0 [ 74.661933][ T5173] bridge0: port 1(bridge_slave_0) entered disabled state [ 74.665319][ T5173] bridge0: port 2(bridge_slave_1) entered disabled state [ 74.677739][ T5374] 8021q: adding VLAN 0 to HW filter on device team0 [ 74.693786][ T32] bridge0: port 1(bridge_slave_0) entered blocking state [ 74.696869][ T32] bridge0: port 1(bridge_slave_0) entered forwarding state [ 74.700817][ T32] bridge0: port 2(bridge_slave_1) entered blocking state [ 74.704031][ T32] bridge0: port 2(bridge_slave_1) entered forwarding state [ 74.830364][ T5374] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 74.874442][ T5374] veth0_vlan: entered promiscuous mode [ 74.880798][ T5374] veth1_vlan: entered promiscuous mode [ 74.902110][ T5374] veth0_macvtap: entered promiscuous mode [ 74.906571][ T5374] veth1_macvtap: entered promiscuous mode [ 74.919883][ T5374] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 74.928378][ T5374] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 74.938747][ T5374] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.942791][ T5374] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.946044][ T5374] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.949324][ T5374] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 74.989594][ T7] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 74.993304][ T7] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.027591][ T27] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 75.031949][ T27] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 75.350112][ T1260] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 75.540630][ T4597] Bluetooth: hci0: command 0x0409 tx timeout [ 75.680483][ T1260] usb 5-1: too many configurations: 186, using maximum allowed: 8 [ 76.630383][ T1260] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 76.634723][ T1260] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 76.638484][ T1260] usb 5-1: Product: syz [ 76.641438][ T1260] usb 5-1: Manufacturer: syz [ 76.643675][ T1260] usb 5-1: SerialNumber: syz [ 76.683134][ T1260] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 77.340207][ T4945] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 77.630691][ T4597] Bluetooth: hci0: command 0x041b tx timeout [ 77.754527][ C2] divide error: 0000 [#1] PREEMPT SMP KASAN [ 77.756750][ C2] CPU: 2 PID: 21 Comm: ksoftirqd/2 Not tainted 6.6.0-rc2-syzkaller-g2cf0f7156238 #0 [ 77.762161][ C2] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 77.766767][ C2] RIP: 0010:ath9k_htc_swba+0x1be/0xc70 [ 77.769267][ C2] Code: 00 48 8b 13 0f b7 c9 bb 01 00 00 00 4d 8d bd b0 03 00 00 4c 89 ff 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c3 e8 d2 79 53 04 48 63 c3 48 83 f8 [ 77.778037][ C2] RSP: 0018:ffffc90000a1fc18 EFLAGS: 00010246 [ 77.780844][ C2] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 77.784402][ C2] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff88802ee137f0 [ 77.787981][ C2] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 77.791545][ C2] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 77.795073][ C2] R13: ffff88802ee13440 R14: 0000000000000210 R15: ffff88802ee137f0 [ 77.798659][ C2] FS: 0000000000000000(0000) GS:ffff88806b800000(0000) knlGS:0000000000000000 [ 77.802690][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.805641][ C2] CR2: 00007ffd38453098 CR3: 00000000295b2000 CR4: 0000000000350ee0 [ 77.809241][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.812820][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.816345][ C2] Call Trace: [ 77.817857][ C2] [ 77.819243][ C2] ? show_regs+0x8f/0xa0 [ 77.821195][ C2] ? die+0x36/0xa0 [ 77.822936][ C2] ? do_trap+0x22b/0x420 [ 77.824906][ C2] ? ath9k_htc_swba+0x1be/0xc70 [ 77.827118][ C2] ? ath9k_htc_swba+0x1be/0xc70 [ 77.829372][ C2] ? do_error_trap+0xf4/0x230 [ 77.831595][ C2] ? ath9k_htc_swba+0x1be/0xc70 [ 77.833793][ C2] ? exc_divide_error+0x38/0x50 [ 77.836023][ C2] ? ath9k_htc_swba+0x1be/0xc70 [ 77.838215][ C2] ? asm_exc_divide_error+0x1a/0x20 [ 77.840526][ C2] ? ath9k_htc_swba+0x1be/0xc70 [ 77.842738][ C2] ? ath9k_htc_swba+0x105/0xc70 [ 77.844993][ C2] ? ath9k_wmi_event_tasklet+0x181/0x460 [ 77.847563][ C2] ? reacquire_held_locks+0x4b0/0x4b0 [ 77.849988][ C2] ? ath9k_htc_beaconep+0x20/0x20 [ 77.852332][ C2] ? _raw_spin_unlock_irqrestore+0x4e/0x70 [ 77.854976][ C2] ath9k_wmi_event_tasklet+0x34e/0x460 [ 77.857461][ C2] tasklet_action_common.constprop.0+0x242/0x3d0 [ 77.860299][ C2] __do_softirq+0x218/0x965 [ 77.862362][ C2] ? __lock_text_end+0x5/0x5 [ 77.864464][ C2] ? run_ksoftirqd+0x54/0x60 [ 77.866576][ C2] ? _local_bh_enable+0xa0/0xa0 [ 77.868844][ C2] ? smpboot_thread_fn+0x59b/0xa00 [ 77.871159][ C2] run_ksoftirqd+0x31/0x60 [ 77.873206][ C2] smpboot_thread_fn+0x660/0xa00 [ 77.875441][ C2] ? __kthread_parkme+0x14b/0x220 [ 77.877650][ C2] ? sort_range+0x30/0x30 [ 77.879544][ C2] kthread+0x33c/0x440 [ 77.881400][ C2] ? _raw_spin_unlock_irq+0x23/0x50 [ 77.883770][ C2] ? kthread_complete_and_exit+0x40/0x40 [ 77.886304][ C2] ret_from_fork+0x45/0x80 [ 77.888391][ C2] ? kthread_complete_and_exit+0x40/0x40 [ 77.890957][ C2] ret_from_fork_asm+0x11/0x20 [ 77.893191][ C2] [ 77.894628][ C2] Modules linked in: [ 77.896564][ C2] ---[ end trace 0000000000000000 ]--- [ 77.898992][ C2] RIP: 0010:ath9k_htc_swba+0x1be/0xc70 [ 77.901746][ C2] Code: 00 48 8b 13 0f b7 c9 bb 01 00 00 00 4d 8d bd b0 03 00 00 4c 89 ff 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c3 e8 d2 79 53 04 48 63 c3 48 83 f8 [ 77.910846][ C2] RSP: 0018:ffffc90000a1fc18 EFLAGS: 00010246 [ 77.913710][ C2] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 77.917411][ C2] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff88802ee137f0 [ 77.921216][ C2] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 77.924967][ C2] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 77.928720][ C2] R13: ffff88802ee13440 R14: 0000000000000210 R15: ffff88802ee137f0 [ 77.932544][ C2] FS: 0000000000000000(0000) GS:ffff88806b800000(0000) knlGS:0000000000000000 [ 77.936770][ C2] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 77.939896][ C2] CR2: 00007ffd38453098 CR3: 00000000295b2000 CR4: 0000000000350ee0 [ 77.943684][ C2] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 77.947378][ C2] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 77.951210][ C2] Kernel panic - not syncing: Fatal exception in interrupt [ 77.955407][ C2] Kernel Offset: disabled [ 77.957435][ C2] Rebooting in 86400 seconds..