[ 24.010669][ T9] bridge_slave_0: left allmulticast mode
[ 24.016556][ T9] bridge_slave_0: left promiscuous mode
[ 24.022722][ T9] bridge0: port 1(bridge_slave_0) entered disabled state
[ 24.031431][ T9] veth1_macvtap: left promiscuous mode
[ 24.036971][ T9] veth0_vlan: left promiscuous mode
[ 34.376265][ T28] kauditd_printk_skb: 70 callbacks suppressed
[ 34.376279][ T28] audit: type=1400 audit(1686729107.590:146): avc: denied { transition } for pid=313 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 34.404460][ T28] audit: type=1400 audit(1686729107.590:147): avc: denied { noatsecure } for pid=313 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 34.424340][ T28] audit: type=1400 audit(1686729107.590:148): avc: denied { rlimitinh } for pid=313 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 34.443842][ T28] audit: type=1400 audit(1686729107.590:149): avc: denied { siginh } for pid=313 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.141' (ECDSA) to the list of known hosts.
2023/06/14 07:51:54 ignoring optional flag "sandboxArg"="0"
2023/06/14 07:51:54 parsed 1 programs
2023/06/14 07:51:55 executed programs: 0
[ 41.782672][ T28] audit: type=1400 audit(1686729115.000:150): avc: denied { mounton } for pid=334 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 41.807040][ T338] ------------[ cut here ]------------
[ 41.808603][ T28] audit: type=1400 audit(1686729115.000:151): avc: denied { mount } for pid=334 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 41.814046][ T338] sysctl net/ipv4/ipfrag_low_thresh: data points to kernel global data: ipfrag_low_thresh_unused
[ 41.848596][ T338] WARNING: CPU: 1 PID: 338 at net/sysctl_net.c:156 register_net_sysctl+0x195/0x260
[ 41.858294][ T338] Modules linked in:
[ 41.862100][ T338] CPU: 1 PID: 338 Comm: syz-executor.0 Tainted: G W 6.4.0-rc1-syzkaller-00222-ga94fd40a18ae #0
[ 41.873979][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 41.884638][ T338] RIP: 0010:register_net_sysctl+0x195/0x260
[ 41.890444][ T338] Code: 00 49 89 c6 74 09 48 8b 7d a8 e8 e6 8a e4 fc 4d 8b 45 08 48 c7 c7 20 16 bc 85 48 8b 75 c8 48 89 da 48 8b 4d d0 e8 8b d2 6b fc <0f> 0b 43 0f b6 04 37 84 c0 75 61 41 80 65 14 6d 49 83 c4 40 4c 89
[ 41.909961][ T338] RSP: 0018:ffffc90002d5fa98 EFLAGS: 00010246
[ 41.916506][ T338] RAX: dfb198c204eca800 RBX: ffffffff85b594e0 RCX: ffff88810ec510c0
[ 41.925101][ T338] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 41.933053][ T338] RBP: ffffc90002d5faf0 R08: ffffffff81463c52 R09: fffff520005abef1
[ 41.941242][ T338] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88810eec6040
[ 41.949261][ T338] R13: ffff88810eec6040 R14: dffffc0000000000 R15: 1ffff11021dd8c0a
[ 41.957364][ T338] FS: 0000555556780400(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000
[ 41.966159][ T338] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 41.972935][ T338] CR2: 00007ff6d40d4620 CR3: 000000011eb40000 CR4: 00000000003506a0
[ 41.980783][ T338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 41.989295][ T338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 41.997970][ T338] Call Trace:
[ 42.001027][ T338]
[ 42.004448][ T338] ipv4_frags_init_net+0x206/0x2e0
[ 42.009389][ T338] ops_init+0x1cf/0x490
[ 42.013473][ T338] setup_net+0x34f/0xb60
[ 42.017461][ T338] ? copy_net_ns+0x5b0/0x5b0
[ 42.021904][ T338] ? __kasan_kmalloc+0x9d/0xb0
[ 42.026750][ T338] copy_net_ns+0x360/0x5b0
[ 42.031128][ T338] create_new_namespaces+0x416/0x670
[ 42.036279][ T338] unshare_nsproxy_namespaces+0x12a/0x180
[ 42.042034][ T338] ksys_unshare+0x546/0xa00
[ 42.046401][ T338] ? unshare_fd+0x240/0x240
[ 42.050791][ T338] ? debug_smp_processor_id+0x1b/0x20
[ 42.056651][ T338] ? fpregs_assert_state_consistent+0xba/0xf0
[ 42.062775][ T338] ? exit_to_user_mode_prepare+0x39/0xa0
[ 42.068433][ T338] __x64_sys_unshare+0x3c/0x50
[ 42.073162][ T338] do_syscall_64+0x41/0x90
[ 42.077457][ T338] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 42.083468][ T338] RIP: 0033:0x7ff6d348d667
[ 42.087811][ T338] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 42.108076][ T338] RSP: 002b:00007ffea3694ab8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 42.116289][ T338] RAX: ffffffffffffffda RBX: 00007ffea36950f8 RCX: 00007ff6d348d667
[ 42.124481][ T338] RDX: 00007ff6d34fa07f RSI: 0000000000000000 RDI: 0000000040000000
[ 42.132834][ T338] RBP: 00007ffea3694b98 R08: fefefefefefefeff R09: 00007ffea3694790
[ 42.141452][ T338] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000fffffff1
[ 42.149369][ T338] R13: 00007ffea3694b90 R14: 0000000000000000 R15: 0000000000000000
[ 42.157733][ T338]
[ 42.160844][ T338] ---[ end trace 0000000000000000 ]---
[ 42.167426][ T338] ------------[ cut here ]------------
[ 42.172965][ T338] sysctl net/ipv6/ip6frag_low_thresh: data points to kernel global data: ip6_frags_low_thresh_unused
[ 42.184251][ T338] WARNING: CPU: 0 PID: 338 at net/sysctl_net.c:156 register_net_sysctl+0x195/0x260
[ 42.194030][ T338] Modules linked in:
[ 42.198596][ T338] CPU: 0 PID: 338 Comm: syz-executor.0 Tainted: G W 6.4.0-rc1-syzkaller-00222-ga94fd40a18ae #0
[ 42.210676][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 42.220756][ T338] RIP: 0010:register_net_sysctl+0x195/0x260
[ 42.226633][ T338] Code: 00 49 89 c6 74 09 48 8b 7d a8 e8 e6 8a e4 fc 4d 8b 45 08 48 c7 c7 20 16 bc 85 48 8b 75 c8 48 89 da 48 8b 4d d0 e8 8b d2 6b fc <0f> 0b 43 0f b6 04 37 84 c0 75 61 41 80 65 14 6d 49 83 c4 40 4c 89
[ 42.246297][ T338] RSP: 0018:ffffc90002d5fa98 EFLAGS: 00010246
[ 42.252401][ T338] RAX: dfb198c204eca800 RBX: ffffffff85b7a580 RCX: ffff88810ec510c0
[ 42.260503][ T338] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 42.268325][ T338] RBP: ffffc90002d5faf0 R08: ffffffff81463c52 R09: fffff520005abead
[ 42.276157][ T338] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88810fe5ec40
[ 42.284223][ T338] R13: ffff88810fe5ec40 R14: dffffc0000000000 R15: 1ffff11021fcbd8a
[ 42.292289][ T338] FS: 0000555556780400(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 42.301575][ T338] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.308003][ T338] CR2: 000000c000ee0000 CR3: 000000011eb40000 CR4: 00000000003506b0
[ 42.315909][ T338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.324736][ T338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 42.332820][ T338] Call Trace:
[ 42.336083][ T338]
[ 42.339393][ T338] ipv6_frags_init_net+0x1bd/0x280
[ 42.344439][ T338] ops_init+0x1cf/0x490
[ 42.348634][ T338] setup_net+0x34f/0xb60
[ 42.352686][ T338] ? copy_net_ns+0x5b0/0x5b0
[ 42.357263][ T338] ? __kasan_kmalloc+0x9d/0xb0
[ 42.362055][ T338] copy_net_ns+0x360/0x5b0
[ 42.366296][ T338] create_new_namespaces+0x416/0x670
[ 42.371549][ T338] unshare_nsproxy_namespaces+0x12a/0x180
[ 42.377489][ T338] ksys_unshare+0x546/0xa00
[ 42.381938][ T338] ? unshare_fd+0x240/0x240
[ 42.386258][ T338] ? debug_smp_processor_id+0x1b/0x20
[ 42.391674][ T338] ? fpregs_assert_state_consistent+0xba/0xf0
[ 42.397538][ T338] ? exit_to_user_mode_prepare+0x39/0xa0
[ 42.403208][ T338] __x64_sys_unshare+0x3c/0x50
[ 42.407783][ T338] do_syscall_64+0x41/0x90
[ 42.412052][ T338] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 42.417761][ T338] RIP: 0033:0x7ff6d348d667
[ 42.422052][ T338] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 42.441977][ T338] RSP: 002b:00007ffea3694ab8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 42.450279][ T338] RAX: ffffffffffffffda RBX: 00007ffea36950f8 RCX: 00007ff6d348d667
[ 42.458145][ T338] RDX: 00007ff6d34fa07f RSI: 0000000000000000 RDI: 0000000040000000
[ 42.466011][ T338] RBP: 00007ffea3694b98 R08: fefefefefefefeff R09: 00007ffea3694790
[ 42.473886][ T338] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000fffffff1
[ 42.481962][ T338] R13: 00007ffea3694b90 R14: 0000000000000000 R15: 0000000000000000
[ 42.490422][ T338]
[ 42.493320][ T338] ---[ end trace 0000000000000000 ]---
[ 42.499331][ T338] ------------[ cut here ]------------
[ 42.505046][ T338] sysctl net/netfilter/nf_conntrack_frag6_low_thresh: data points to kernel global data: nf_conntrack_frag6_low_thresh_unused
[ 42.518482][ T338] WARNING: CPU: 0 PID: 338 at net/sysctl_net.c:156 register_net_sysctl+0x195/0x260
[ 42.527748][ T338] Modules linked in:
[ 42.531687][ T338] CPU: 0 PID: 338 Comm: syz-executor.0 Tainted: G W 6.4.0-rc1-syzkaller-00222-ga94fd40a18ae #0
[ 42.543185][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 42.553076][ T338] RIP: 0010:register_net_sysctl+0x195/0x260
[ 42.559047][ T338] Code: 00 49 89 c6 74 09 48 8b 7d a8 e8 e6 8a e4 fc 4d 8b 45 08 48 c7 c7 20 16 bc 85 48 8b 75 c8 48 89 da 48 8b 4d d0 e8 8b d2 6b fc <0f> 0b 43 0f b6 04 37 84 c0 75 61 41 80 65 14 6d 49 83 c4 40 4c 89
[ 42.579749][ T338] RSP: 0018:ffffc90002d5fa90 EFLAGS: 00010246
[ 42.585702][ T338] RAX: dfb198c204eca800 RBX: ffffffff85b802e0 RCX: ffff88810ec510c0
[ 42.593643][ T338] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 42.601428][ T338] RBP: ffffc90002d5fae8 R08: ffffffff81463c52 R09: fffff520005abeed
[ 42.609220][ T338] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881103e2c40
[ 42.617061][ T338] R13: ffff8881103e2c40 R14: dffffc0000000000 R15: 1ffff1102207c58a
[ 42.624950][ T338] FS: 0000555556780400(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 42.633751][ T338] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.640275][ T338] CR2: 000000c000ee0000 CR3: 000000011eb40000 CR4: 00000000003506b0
[ 42.648447][ T338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.656257][ T338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 42.664688][ T338] Call Trace:
[ 42.667789][ T338]
[ 42.670589][ T338] nf_ct_net_init+0x2d7/0x390
[ 42.675348][ T338] ops_init+0x1cf/0x490
[ 42.679813][ T338] setup_net+0x34f/0xb60
[ 42.684107][ T338] ? copy_net_ns+0x5b0/0x5b0
[ 42.688511][ T338] ? __kasan_kmalloc+0x9d/0xb0
[ 42.693428][ T338] copy_net_ns+0x360/0x5b0
[ 42.697628][ T338] create_new_namespaces+0x416/0x670
[ 42.703224][ T338] unshare_nsproxy_namespaces+0x12a/0x180
[ 42.709880][ T338] ksys_unshare+0x546/0xa00
[ 42.714543][ T338] ? unshare_fd+0x240/0x240
[ 42.719113][ T338] ? debug_smp_processor_id+0x1b/0x20
[ 42.724730][ T338] ? fpregs_assert_state_consistent+0xba/0xf0
[ 42.730857][ T338] ? exit_to_user_mode_prepare+0x39/0xa0
[ 42.736432][ T338] __x64_sys_unshare+0x3c/0x50
[ 42.741420][ T338] do_syscall_64+0x41/0x90
[ 42.745820][ T338] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 42.751930][ T338] RIP: 0033:0x7ff6d348d667
[ 42.756246][ T338] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 42.777566][ T338] RSP: 002b:00007ffea3694ab8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 42.785889][ T338] RAX: ffffffffffffffda RBX: 00007ffea36950f8 RCX: 00007ff6d348d667
[ 42.793876][ T338] RDX: 00007ff6d34fa07f RSI: 0000000000000000 RDI: 0000000040000000
[ 42.801690][ T338] RBP: 00007ffea3694b98 R08: fefefefefefefeff R09: 00007ffea3694790
[ 42.809550][ T338] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000fffffff1
[ 42.817776][ T338] R13: 00007ffea3694b90 R14: 0000000000000000 R15: 0000000000000000
[ 42.825544][ T338]
[ 42.828385][ T338] ---[ end trace 0000000000000000 ]---
[ 42.833966][ T338] ------------[ cut here ]------------
[ 42.839521][ T338] sysctl net/ieee802154/6lowpan/6lowpanfrag_low_thresh: data points to kernel global data: lowpanfrag_low_thresh_unuesd
[ 42.852114][ T338] WARNING: CPU: 0 PID: 338 at net/sysctl_net.c:156 register_net_sysctl+0x195/0x260
[ 42.861863][ T338] Modules linked in:
[ 42.865573][ T338] CPU: 0 PID: 338 Comm: syz-executor.0 Tainted: G W 6.4.0-rc1-syzkaller-00222-ga94fd40a18ae #0
[ 42.877586][ T338] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 42.887650][ T338] RIP: 0010:register_net_sysctl+0x195/0x260
[ 42.893380][ T338] Code: 00 49 89 c6 74 09 48 8b 7d a8 e8 e6 8a e4 fc 4d 8b 45 08 48 c7 c7 20 16 bc 85 48 8b 75 c8 48 89 da 48 8b 4d d0 e8 8b d2 6b fc <0f> 0b 43 0f b6 04 37 84 c0 75 61 41 80 65 14 6d 49 83 c4 40 4c 89
[ 42.915319][ T338] RSP: 0018:ffffc90002d5fa98 EFLAGS: 00010246
[ 42.921767][ T338] RAX: dfb198c204eca800 RBX: ffffffff85bbfc00 RCX: ffff88810ec510c0
[ 42.929827][ T338] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 42.937596][ T338] RBP: ffffc90002d5faf0 R08: ffffffff81463c52 R09: fffff520005abead
[ 42.945658][ T338] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881103e2240
[ 42.953709][ T338] R13: ffff8881103e2240 R14: dffffc0000000000 R15: 1ffff1102207c44a
[ 42.961666][ T338] FS: 0000555556780400(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 42.970627][ T338] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.977012][ T338] CR2: 000000c000ee0000 CR3: 000000011eb40000 CR4: 00000000003506b0
[ 42.984980][ T338] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.993396][ T338] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 43.001163][ T338] Call Trace:
[ 43.004444][ T338]
[ 43.007393][ T338] lowpan_frags_init_net+0x219/0x2d0
[ 43.012568][ T338] ops_init+0x1cf/0x490
[ 43.017369][ T338] setup_net+0x34f/0xb60
[ 43.021562][ T338] ? copy_net_ns+0x5b0/0x5b0
[ 43.026136][ T338] ? __kasan_kmalloc+0x9d/0xb0
[ 43.030844][ T338] copy_net_ns+0x360/0x5b0
[ 43.035081][ T338] create_new_namespaces+0x416/0x670
[ 43.040306][ T338] unshare_nsproxy_namespaces+0x12a/0x180
[ 43.045950][ T338] ksys_unshare+0x546/0xa00
[ 43.050575][ T338] ? unshare_fd+0x240/0x240
[ 43.054872][ T338] ? debug_smp_processor_id+0x1b/0x20
[ 43.060189][ T338] ? fpregs_assert_state_consistent+0xba/0xf0
[ 43.066257][ T338] ? exit_to_user_mode_prepare+0x39/0xa0
[ 43.071747][ T338] __x64_sys_unshare+0x3c/0x50
[ 43.076498][ T338] do_syscall_64+0x41/0x90
[ 43.080783][ T338] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 43.086475][ T338] RIP: 0033:0x7ff6d348d667
[ 43.090880][ T338] Code: 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 10 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 43.110562][ T338] RSP: 002b:00007ffea3694ab8 EFLAGS: 00000206 ORIG_RAX: 0000000000000110
[ 43.119079][ T338] RAX: ffffffffffffffda RBX: 00007ffea36950f8 RCX: 00007ff6d348d667
[ 43.126932][ T338] RDX: 00007ff6d34fa07f RSI: 0000000000000000 RDI: 0000000040000000
[ 43.134974][ T338] RBP: 00007ffea3694b98 R08: fefefefefefefeff R09: 00007ffea3694790
[ 43.142880][ T338] R10: 0000000000000000 R11: 0000000000000206 R12: 00000000fffffff1
[ 43.150941][ T338] R13: 00007ffea3694b90 R14: 0000000000000000 R15: 0000000000000000
[ 43.158806][ T338]
[ 43.161698][ T338] ---[ end trace 0000000000000000 ]---
[ 43.187887][ T338] bridge0: port 1(bridge_slave_0) entered blocking state
[ 43.195033][ T338] bridge0: port 1(bridge_slave_0) entered disabled state
[ 43.202192][ T338] bridge_slave_0: entered allmulticast mode
[ 43.208659][ T338] bridge_slave_0: entered promiscuous mode
[ 43.215421][ T338] bridge0: port 2(bridge_slave_1) entered blocking state
[ 43.222639][ T338] bridge0: port 2(bridge_slave_1) entered disabled state
[ 43.229502][ T338] bridge_slave_1: entered allmulticast mode
[ 43.235711][ T338] bridge_slave_1: entered promiscuous mode
[ 43.267421][ T28] audit: type=1400 audit(1686729116.480:152): avc: denied { write } for pid=338 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 43.289165][ T28] audit: type=1400 audit(1686729116.510:153): avc: denied { read } for pid=338 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 43.293658][ T338] bridge0: port 2(bridge_slave_1) entered blocking state
[ 43.317051][ T338] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 43.325255][ T338] bridge0: port 1(bridge_slave_0) entered blocking state
[ 43.332749][ T338] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 43.348852][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 43.356160][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 43.363624][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 43.371017][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 43.379497][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 43.387689][ T53] bridge0: port 1(bridge_slave_0) entered blocking state
[ 43.394631][ T53] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 43.410988][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 43.419689][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 43.427769][ T53] bridge0: port 2(bridge_slave_1) entered blocking state
[ 43.434612][ T53] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 43.441976][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 43.450025][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 43.459636][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 43.467675][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 43.475373][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 43.483237][ T338] veth0_vlan: entered promiscuous mode
[ 43.493052][ T338] veth1_macvtap: entered promiscuous mode
[ 43.500484][ T290] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 43.509397][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 43.520370][ T53] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 43.532373][ T28] audit: type=1400 audit(1686729116.750:154): avc: denied { mounton } for pid=338 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=360 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 43.562413][ T345] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 43.573235][ T28] audit: type=1400 audit(1686729116.790:155): avc: denied { write } for pid=344 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 43.594100][ T28] audit: type=1400 audit(1686729116.790:156): avc: denied { nlmsg_write } for pid=344 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 43.600421][ T348] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 43.615091][ C1] ==================================================================
[ 43.632379][ C1] BUG: KASAN: stack-out-of-bounds in __xfrm_dst_hash+0x38d/0x460
[ 43.640200][ C1] Read of size 4 at addr ffffc900001b0aa0 by task kauditd/28
[ 43.648202][ C1]
[ 43.650988][ C1] CPU: 1 PID: 28 Comm: kauditd Tainted: G W 6.4.0-rc1-syzkaller-00222-ga94fd40a18ae #0
[ 43.662478][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/25/2023
[ 43.673333][ C1] Call Trace:
[ 43.676442][ C1]
[ 43.679221][ C1] dump_stack_lvl+0x155/0x1c0
[ 43.684005][ C1] ? nf_tcp_handle_invalid+0x400/0x400
[ 43.689479][ C1] ? _printk+0xd5/0x120
[ 43.693549][ C1] ? __virt_addr_valid+0xc7/0x300
[ 43.698500][ C1] print_report+0x15d/0x540
[ 43.702858][ C1] ? __virt_addr_valid+0xc7/0x300
[ 43.707959][ C1] ? kasan_addr_to_slab+0x11/0x80
[ 43.713077][ C1] kasan_report+0x16d/0x1a0
[ 43.717858][ C1] ? __xfrm_dst_hash+0x38d/0x460
[ 43.722627][ C1] __asan_report_load4_noabort+0x18/0x20
[ 43.728613][ C1] __xfrm_dst_hash+0x38d/0x460
[ 43.733303][ C1] xfrm_state_find+0x2e2/0x4040
[ 43.738712][ C1] ? xfrm_sad_getinfo+0x180/0x180
[ 43.743569][ C1] ? xfrm4_get_saddr+0x171/0x260
[ 43.748432][ C1] ? xfrm4_dst_lookup+0x250/0x250
[ 43.753561][ C1] ? xfrm_pol_bin_obj+0x1e0/0x1e0
[ 43.758494][ C1] ? rhashtable_lookup+0x49d/0x530
[ 43.763446][ C1] xfrm_resolve_and_create_bundle+0x66c/0x2a90
[ 43.769545][ C1] ? __xfrm_policy_inexact_prune_bin+0x9f0/0x9f0
[ 43.775860][ C1] ? xfrm_sk_policy_lookup+0x5b0/0x5b0
[ 43.781241][ C1] ? xfrm_policy_lookup+0xfe4/0x1050
[ 43.786367][ C1] xfrm_lookup_with_ifid+0x73f/0x2030
[ 43.791662][ C1] ? __xfrm_sk_clone_policy+0x930/0x930
[ 43.797043][ C1] ? ip_route_output_key_hash_rcu+0x135a/0x1fb0
[ 43.803135][ C1] xfrm_lookup_route+0x3f/0x170
[ 43.807979][ C1] ip_route_output_flow+0x219/0x340
[ 43.813247][ C1] ? ipv4_sk_update_pmtu+0x20b0/0x20b0
[ 43.818493][ C1] ? make_kuid+0x204/0x700
[ 43.823448][ C1] ? __put_user_ns+0x60/0x60
[ 43.827926][ C1] ? sched_group_set_idle+0x5f0/0x6e0
[ 43.833283][ C1] igmpv3_newpack+0x3cb/0x1040
[ 43.838046][ C1] ? check_preempt_wakeup+0x99/0xc00
[ 43.843329][ C1] ? igmpv3_sendpack+0x190/0x190
[ 43.848537][ C1] ? _raw_spin_unlock_irqrestore+0x5f/0x80
[ 43.854545][ C1] ? try_to_wake_up+0x815/0x1280
[ 43.859555][ C1] add_grhead+0x84/0x330
[ 43.863607][ C1] add_grec+0x12c8/0x15c0
[ 43.868120][ C1] ? _raw_spin_lock_bh+0xa8/0x1b0
[ 43.872986][ C1] ? igmpv3_send_report+0x450/0x450
[ 43.878294][ C1] ? __queue_work+0xaaf/0xe60
[ 43.883420][ C1] igmp_ifc_timer_expire+0x833/0xf40
[ 43.888625][ C1] ? __kasan_check_write+0x18/0x20
[ 43.894330][ C1] ? _raw_spin_lock+0xa8/0x1b0
[ 43.898927][ C1] ? _raw_spin_trylock_bh+0x1a0/0x1a0
[ 43.904181][ C1] ? igmp_gq_timer_expire+0xd0/0xd0
[ 43.909518][ C1] call_timer_fn+0x3b/0x2e0
[ 43.914054][ C1] ? igmp_gq_timer_expire+0xd0/0xd0
[ 43.919426][ C1] __run_timers+0x739/0xa30
[ 43.924110][ C1] ? enqueue_timer+0x480/0x480
[ 43.928891][ C1] ? sched_clock+0xd/0x10
[ 43.933066][ C1] ? sched_clock_cpu+0x76/0x490
[ 43.937924][ C1] run_timer_softirq+0x6d/0xf0
[ 43.942515][ C1] __do_softirq+0x193/0x57c
[ 43.947050][ C1] __irq_exit_rcu+0xbb/0x170
[ 43.952161][ C1] irq_exit_rcu+0xd/0x10
[ 43.956332][ C1] sysvec_apic_timer_interrupt+0x9e/0xc0
[ 43.962106][ C1]
[ 43.964972][ C1]
[ 43.968008][ C1] asm_sysvec_apic_timer_interrupt+0x1f/0x30
[ 43.974368][ C1] RIP: 0010:console_flush_all+0x739/0xb90
[ 43.980968][ C1] Code: f6 48 81 e6 00 02 00 00 31 ff e8 f2 c5 1a 00 49 81 e6 00 02 00 00 75 07 e8 84 c1 1a 00 eb 06 e8 7d c1 1a 00 fb 4c 8b 74 24 58 <48> 8b 44 24 70 42 0f b6 04 38 84 c0 48 8b 7c 24 30 0f 85 fd 01 00
[ 44.000840][ C1] RSP: 0018:ffffc900001df840 EFLAGS: 00000293
[ 44.007630][ C1] RAX: ffffffff815a5ed3 RBX: 0000000000000001 RCX: ffff8881089ad3c0
[ 44.016161][ C1] RDX: 0000000000000000 RSI: 0000000000000200 RDI: 0000000000000000
[ 44.024209][ C1] RBP: ffffc900001df9d0 R08: ffffffff815a5ebe R09: 0000000000000003
[ 44.032540][ C1] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffffffff862d80d8
[ 44.041480][ C1] R13: ffffffff862d8080 R14: ffffffff862d80d8 R15: dffffc0000000000
[ 44.050012][ C1] ? console_flush_all+0x71e/0xb90
[ 44.055372][ C1] ? console_flush_all+0x733/0xb90
[ 44.060856][ C1] ? is_console_locked+0x20/0x20
[ 44.065712][ C1] ? _raw_spin_lock_irqsave+0xfd/0x220
[ 44.071178][ C1] ? kasan_set_track+0x61/0x70
[ 44.076127][ C1] ? kasan_save_free_info+0x2f/0x50
[ 44.081167][ C1] ? ____kasan_slab_free+0x131/0x180
[ 44.086367][ C1] ? __kasan_slab_free+0x15/0x20
[ 44.091162][ C1] console_unlock+0x1bc/0x3b0
[ 44.095659][ C1] ? vprintk_emit+0x440/0x440
[ 44.100253][ C1] ? __printk_safe_exit+0xd/0x20
[ 44.105032][ C1] ? console_trylock+0x194/0x200
[ 44.109911][ C1] ? resume_console+0x50/0x50
[ 44.114406][ C1] vprintk_emit+0x145/0x440
[ 44.118914][ C1] ? printk_sprint+0x400/0x400
[ 44.123539][ C1] ? __kasan_check_write+0x18/0x20
[ 44.128553][ C1] ? _raw_spin_trylock+0xd1/0x1b0
[ 44.133425][ C1] ? __sched_text_end+0x9/0x9
[ 44.137923][ C1] vprintk_default+0x2a/0x30
[ 44.142368][ C1] vprintk+0x8a/0x90
[ 44.146169][ C1] _printk+0xd5/0x120
[ 44.150413][ C1] ? kauditd_hold_skb+0xf5/0x210
[ 44.155167][ C1] ? panic+0x670/0x670
[ 44.159076][ C1] kauditd_hold_skb+0x1c4/0x210
[ 44.163847][ C1] ? auditd_conn_free+0xe0/0xe0
[ 44.168709][ C1] ? auditd_conn_free+0xe0/0xe0
[ 44.173476][ C1] ? kauditd_send_queue+0x2e0/0x2e0
[ 44.178601][ C1] kauditd_send_queue+0x28d/0x2e0
[ 44.183693][ C1] ? auditd_conn_free+0xe0/0xe0
[ 44.188504][ C1] ? kauditd_send_queue+0x2e0/0x2e0
[ 44.193616][ C1] kauditd_thread+0x4f5/0x740
[ 44.198581][ C1] ? __kasan_check_write+0x18/0x20
[ 44.203599][ C1] ? release_firmware_map_entry+0x190/0x190
[ 44.209326][ C1] ? _raw_spin_lock+0x1b0/0x1b0
[ 44.214131][ C1] ? audit_log+0x150/0x150
[ 44.218468][ C1] ? wake_bit_function+0x230/0x230
[ 44.223421][ C1] ? __kthread_parkme+0x12d/0x180
[ 44.228286][ C1] kthread+0x2ba/0x350
[ 44.232182][ C1] ? audit_log+0x150/0x150
[ 44.236479][ C1] ? kthread_blkcg+0xe0/0xe0
[ 44.240956][ C1] ret_from_fork+0x1f/0x30
[ 44.245553][ C1]
[ 44.248499][ C1]
[ 44.250680][ C1] The buggy address belongs to the virtual mapping at
[ 44.250680][ C1] [ffffc900001a9000, ffffc900001b2000) created by:
[ 44.250680][ C1] irq_init_percpu_irqstack+0x337/0x490
[ 44.269272][ C1]
[ 44.271437][ C1] The buggy address belongs to the physical page:
[ 44.277927][ C1] page:ffffea0007dcc240 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1f7309
[ 44.288076][ C1] flags: 0x4000000000001000(reserved|zone=1)
[ 44.294250][ C1] page_type: 0xffffffff()
[ 44.298426][ C1] raw: 4000000000001000 ffffea0007dcc248 ffffea0007dcc248 0000000000000000
[ 44.306926][ C1] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000
[ 44.315537][ C1] page dumped because: kasan: bad access detected
[ 44.321874][ C1] page_owner info is not present (never set?)
[ 44.327772][ C1]
[ 44.329999][ C1] Memory state around the buggy address:
[ 44.335411][ C1] ffffc900001b0980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.343391][ C1] ffffc900001b0a00: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00
[ 44.351376][ C1] >ffffc900001b0a80: 00 00 00 00 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[ 44.359362][ C1] ^
[ 44.364403][ C1] ffffc900001b0b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.372299][ C1] ffffc900001b0b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.380195][ C1] ==================================================================
[ 44.388135][ C1] Disabling lock debugging due to kernel taint
[ 44.398784][ T28] audit: type=1400 audit(1686729116.790:157): avc: denied { bpf } for pid=344 comm="syz-executor.0" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 44.419647][ T28] audit: type=1400 audit(1686729116.790:158): avc: denied { prog_load } for pid=344 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 44.447409][ T352] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.485678][ T354] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.537159][ T356] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.585580][ T358] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.636008][ T360] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.685370][ T363] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.735684][ T365] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 44.776788][ T367] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
2023/06/14 07:52:00 executed programs: 49
[ 48.597064][ T543] __nla_validate_parse: 75 callbacks suppressed
[ 48.597079][ T543] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.672113][ T546] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.721918][ T548] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.782247][ T550] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.841912][ T552] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.902006][ T554] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 48.946330][ T556] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 49.015603][ T559] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 49.055617][ T561] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[ 49.095190][ T563] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
2023/06/14 07:52:05 executed programs: 146