[ 82.055910][ T1167] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.154' (ED25519) to the list of known hosts. 2024/10/13 09:30:22 ignoring optional flag "sandboxArg"="0" 2024/10/13 09:30:22 ignoring optional flag "type"="gce" 2024/10/13 09:30:22 parsed 1 programs [ 82.982208][ T30] audit: type=1400 audit(1728811822.489:128): avc: denied { getattr } for pid=5518 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 2024/10/13 09:30:22 executed programs: 0 [ 83.021454][ T30] audit: type=1400 audit(1728811822.529:129): avc: denied { mounton } for pid=5523 comm="syz-executor" path="/syzcgroup/unified" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 83.023013][ T5523] cgroup: Unknown subsys name 'net' [ 83.054302][ T5523] cgroup: Unknown subsys name 'cpuset' [ 83.061510][ T5523] cgroup: Unknown subsys name 'rlimit' [ 84.141299][ T5230] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.149730][ T5230] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.158635][ T5230] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.166689][ T5230] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.174917][ T5230] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.182368][ T5230] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.193959][ T30] audit: type=1400 audit(1728811823.709:130): avc: denied { mounton } for pid=5528 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 84.276972][ T5528] chnl_net:caif_netlink_parms(): no params data found [ 84.321696][ T5528] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.328953][ T5528] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.336274][ T5528] bridge_slave_0: entered allmulticast mode [ 84.342923][ T5528] bridge_slave_0: entered promiscuous mode [ 84.351209][ T5528] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.358493][ T5528] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.365726][ T5528] bridge_slave_1: entered allmulticast mode [ 84.372874][ T5528] bridge_slave_1: entered promiscuous mode [ 84.393467][ T5528] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 84.405870][ T5528] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 84.429469][ T5528] team0: Port device team_slave_0 added [ 84.437408][ T5528] team0: Port device team_slave_1 added [ 84.454668][ T5528] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 84.461711][ T5528] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.488077][ T5528] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 84.500745][ T5528] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 84.508367][ T5528] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 84.534365][ T5528] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 84.561829][ T5528] hsr_slave_0: entered promiscuous mode [ 84.568162][ T5528] hsr_slave_1: entered promiscuous mode [ 84.632928][ T5528] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.640357][ T5528] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.647799][ T5528] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.655011][ T5528] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.694145][ T5528] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.710365][ T2891] bridge0: port 1(bridge_slave_0) entered disabled state [ 84.719688][ T2891] bridge0: port 2(bridge_slave_1) entered disabled state [ 84.735814][ T5528] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.749005][ T2953] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.756152][ T2953] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.771453][ T2953] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.778607][ T2953] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.828079][ T5528] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 85.064537][ T5528] veth0_vlan: entered promiscuous mode [ 85.076365][ T5528] veth1_vlan: entered promiscuous mode [ 85.101425][ T5528] veth0_macvtap: entered promiscuous mode [ 85.110378][ T5528] veth1_macvtap: entered promiscuous mode [ 85.127461][ T5528] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 85.142032][ T5528] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 85.195646][ T2953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.204967][ T2953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.228865][ T2953] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.237468][ T2953] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.248466][ T30] audit: type=1400 audit(1728811824.759:131): avc: denied { mounton } for pid=5528 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2320 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 85.303186][ T30] audit: type=1400 audit(1728811824.809:132): avc: denied { create } for pid=5548 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 86.136576][ T5549] block nbd0: shutting down sockets [ 86.216168][ T4615] Bluetooth: hci0: command tx timeout [ 88.295736][ T4615] Bluetooth: hci0: command tx timeout [ 90.375779][ T4615] Bluetooth: hci0: command tx timeout [ 92.465451][ T4615] Bluetooth: hci0: command tx timeout [ 133.256444][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.262787][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.696356][ T1269] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.702702][ T1269] ieee802154 phy1 wpan1: encryption failed: -22 [ 207.015081][ T55] Bluetooth: hci0: command 0x0406 tx timeout [ 243.336009][ T31] INFO: task syz-executor.0:5549 blocked for more than 143 seconds. [ 243.344236][ T31] Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0 [ 243.353220][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 243.362132][ T31] task:syz-executor.0 state:D stack:27008 pid:5549 tgid:5548 ppid:5528 flags:0x00004006 [ 243.372555][ T31] Call Trace: [ 243.375903][ T31] [ 243.378859][ T31] __schedule+0xef5/0x5750 [ 243.383408][ T31] ? __pfx___lock_acquire+0x10/0x10 [ 243.389355][ T31] ? __pfx___schedule+0x10/0x10 [ 243.394256][ T31] ? schedule+0x298/0x350 [ 243.399399][ T31] ? __pfx_lock_release+0x10/0x10 [ 243.404479][ T31] ? trace_lock_acquire+0x14a/0x1d0 [ 243.409901][ T31] ? lock_acquire+0x2f/0xb0 [ 243.414446][ T31] ? schedule+0x1fd/0x350 [ 243.419179][ T31] schedule+0xe7/0x350 [ 243.423493][ T31] schedule_timeout+0x258/0x2a0 [ 243.428463][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 243.434216][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 243.439535][ T31] __wait_for_common+0x3e1/0x600 [ 243.444692][ T31] ? __pfx_schedule_timeout+0x10/0x10 [ 243.450182][ T31] ? __pfx___wait_for_common+0x10/0x10 [ 243.455964][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 243.461227][ T31] ? flush_workqueue_prep_pwqs+0x29b/0x500 [ 243.467307][ T31] ? check_flush_dependency+0x86/0x450 [ 243.472826][ T31] __flush_workqueue+0x39e/0x1200 [ 243.477949][ T31] ? __pfx___flush_workqueue+0x10/0x10 [ 243.483462][ T31] ? blk_mq_run_hw_queues+0x1fb/0x290 [ 243.488978][ T31] ? blk_mq_unquiesce_queue+0xbf/0x100 [ 243.494532][ T31] nbd_ioctl+0x308/0xfd0 [ 243.498934][ T31] ? __pfx_nbd_ioctl+0x10/0x10 [ 243.503721][ T31] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10 [ 243.511255][ T31] ? __pfx_autoremove_wake_function+0x10/0x10 [ 243.517928][ T31] ? trace_lock_acquire+0x14a/0x1d0 [ 243.523254][ T31] ? __pfx_nbd_ioctl+0x10/0x10 [ 243.528547][ T31] blkdev_ioctl+0x276/0x6d0 [ 243.533438][ T31] ? __pfx_blkdev_ioctl+0x10/0x10 [ 243.538609][ T31] ? selinux_file_ioctl+0x180/0x270 [ 243.543865][ T31] ? selinux_file_ioctl+0xb4/0x270 [ 243.549095][ T31] ? __pfx_blkdev_ioctl+0x10/0x10 [ 243.554196][ T31] __x64_sys_ioctl+0x18f/0x220 [ 243.559131][ T31] do_syscall_64+0xcd/0x250 [ 243.563849][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 243.570115][ T31] RIP: 0033:0x7f465d2795e9 [ 243.574599][ T31] RSP: 002b:00007f465e3640c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 243.583275][ T31] RAX: ffffffffffffffda RBX: 00007f465d38bf60 RCX: 00007f465d2795e9 [ 243.591441][ T31] RDX: 0000000000000000 RSI: 000000000000ab03 RDI: 0000000000000003 [ 243.599491][ T31] RBP: 00007f465d2d5018 R08: 0000000000000000 R09: 0000000000000000 [ 243.607539][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 243.615722][ T31] R13: 000000000000000b R14: 00007f465d38bf60 R15: 00007ffd0fb25a68 [ 243.623863][ T31] [ 243.627298][ T31] [ 243.627298][ T31] Showing all locks held in the system: [ 243.635436][ T31] 1 lock held by khungtaskd/31: [ 243.640322][ T31] #0: ffffffff8e1b8340 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x7f/0x390 [ 243.650420][ T31] 5 locks held by kworker/u8:6/2460: [ 243.655772][ T31] 1 lock held by klogd/4666: [ 243.660770][ T31] #0: ffff8880b863ee98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130 [ 243.670865][ T31] 2 locks held by getty/4979: [ 243.675682][ T31] #0: ffff88802f04f0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 243.685537][ T31] #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfba/0x1480 [ 243.695827][ T31] 2 locks held by kworker/u9:2/5230: [ 243.701192][ T31] #0: ffff888025934948 ((wq_completion)nbd0-recv){+.+.}-{0:0}, at: process_one_work+0x129b/0x1ba0 [ 243.712007][ T31] #1: ffffc90003927d80 ((work_completion)(&args->work)){+.+.}-{0:0}, at: process_one_work+0x921/0x1ba0 [ 243.723260][ T31] [ 243.725855][ T31] ============================================= [ 243.725855][ T31] [ 243.734301][ T31] NMI backtrace for cpu 1 [ 243.738719][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0 [ 243.749312][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 243.759604][ T31] Call Trace: [ 243.762991][ T31] [ 243.765945][ T31] dump_stack_lvl+0x116/0x1f0 [ 243.770699][ T31] nmi_cpu_backtrace+0x27b/0x390 [ 243.775646][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 243.781910][ T31] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 243.787918][ T31] watchdog+0xf0c/0x1240 [ 243.792269][ T31] ? __pfx_watchdog+0x10/0x10 [ 243.796963][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.802202][ T31] ? __kthread_parkme+0x148/0x220 [ 243.807266][ T31] ? __pfx_watchdog+0x10/0x10 [ 243.812084][ T31] kthread+0x2c1/0x3a0 [ 243.816193][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 243.821414][ T31] ? __pfx_kthread+0x10/0x10 [ 243.826126][ T31] ret_from_fork+0x45/0x80 [ 243.830669][ T31] ? __pfx_kthread+0x10/0x10 [ 243.835287][ T31] ret_from_fork_asm+0x1a/0x30 [ 243.840337][ T31] [ 243.843804][ T31] Sending NMI from CPU 1 to CPUs 0: [ 243.849365][ C0] NMI backtrace for cpu 0 [ 243.849379][ C0] CPU: 0 UID: 0 PID: 11 Comm: kworker/u8:0 Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0 [ 243.849408][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 243.849424][ C0] Workqueue: events_unbound cfg80211_wiphy_work [ 243.849461][ C0] RIP: 0010:debug_object_assert_init+0x1d6/0x370 [ 243.849496][ C0] Code: e8 03 80 3c 18 00 0f 85 85 01 00 00 49 8b 9e e0 2f 9a 9a 31 c0 48 85 db 0f 84 cc 00 00 00 48 ba 00 00 00 00 00 fc ff df eb 1d <48> 89 d9 48 c1 e9 03 80 3c 11 00 0f 85 25 01 00 00 48 8b 1b 48 85 [ 243.849518][ C0] RSP: 0018:ffffc90000107810 EFLAGS: 00000083 [ 243.849536][ C0] RAX: 0000000000000005 RBX: ffff88807b77a188 RCX: 1ffff1100f6ef434 [ 243.849553][ C0] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffff88807b77a1a0 [ 243.849569][ C0] RBP: ffffc90000107900 R08: 0000000000000001 R09: 0000000000000203 [ 243.849584][ C0] R10: 0000000000000003 R11: 0000000000000000 R12: ffff888029549a70 [ 243.849606][ C0] R13: 1ffff92000020f06 R14: 000000000005c8c8 R15: ffffffff8b6f76c0 [ 243.849622][ C0] FS: 0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 243.849646][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 243.849663][ C0] CR2: 000055bc3a8b8680 CR3: 000000000df7c000 CR4: 00000000003526f0 [ 243.849690][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 243.849705][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 243.849720][ C0] Call Trace: [ 243.849728][ C0] [ 243.849736][ C0] ? nmi_cpu_backtrace+0x1d8/0x390 [ 243.849765][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 243.849802][ C0] ? nmi_handle+0x1a9/0x5c0 [ 243.849828][ C0] ? debug_object_assert_init+0x1d6/0x370 [ 243.849858][ C0] ? default_do_nmi+0x6a/0x160 [ 243.849882][ C0] ? exc_nmi+0x170/0x1e0 [ 243.849904][ C0] ? end_repeat_nmi+0xf/0x53 [ 243.849939][ C0] ? debug_object_assert_init+0x1d6/0x370 [ 243.849970][ C0] ? debug_object_assert_init+0x1d6/0x370 [ 243.850000][ C0] ? debug_object_assert_init+0x1d6/0x370 [ 243.850031][ C0] [ 243.850038][ C0] [ 243.850047][ C0] ? __pfx_debug_object_assert_init+0x10/0x10 [ 243.850077][ C0] ? hlock_class+0x4e/0x130 [ 243.850109][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 243.850132][ C0] ? __pfx_mark_lock+0x10/0x10 [ 243.850153][ C0] ? __pfx_mark_lock+0x10/0x10 [ 243.850177][ C0] ? __mod_timer+0xae/0xdc0 [ 243.850210][ C0] __mod_timer+0xae/0xdc0 [ 243.850246][ C0] ? __pfx___mod_timer+0x10/0x10 [ 243.850282][ C0] ? round_jiffies+0xfb/0x140 [ 243.850316][ C0] ? __pfx_round_jiffies+0x10/0x10 [ 243.850359][ C0] ieee80211_ibss_work+0x481/0x14c0 [ 243.850393][ C0] ? __pfx___lock_acquire+0x10/0x10 [ 243.850415][ C0] ? __pfx_mark_lock+0x10/0x10 [ 243.850437][ C0] ? __pfx_ieee80211_ibss_work+0x10/0x10 [ 243.850473][ C0] ? lock_acquire.part.0+0x11b/0x380 [ 243.850497][ C0] ? find_held_lock+0x2d/0x110 [ 243.850528][ C0] ? skb_dequeue+0x126/0x180 [ 243.850557][ C0] ? __pfx_lock_release+0x10/0x10 [ 243.850581][ C0] ? mark_held_locks+0x9f/0xe0 [ 243.850604][ C0] ? _raw_spin_unlock_irqrestore+0x52/0x80 [ 243.850633][ C0] ? lockdep_hardirqs_on+0x7c/0x110 [ 243.850662][ C0] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 243.850697][ C0] ieee80211_iface_work+0xd01/0xf00 [ 243.850737][ C0] cfg80211_wiphy_work+0x3d9/0x550 [ 243.850773][ C0] process_one_work+0x9c5/0x1ba0 [ 243.850801][ C0] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 243.850825][ C0] ? __pfx_process_one_work+0x10/0x10 [ 243.850852][ C0] ? assign_work+0x1a0/0x250 [ 243.850889][ C0] worker_thread+0x6c8/0xf00 [ 243.850918][ C0] ? __pfx_worker_thread+0x10/0x10 [ 243.850941][ C0] kthread+0x2c1/0x3a0 [ 243.850968][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 243.850995][ C0] ? __pfx_kthread+0x10/0x10 [ 243.851024][ C0] ret_from_fork+0x45/0x80 [ 243.851046][ C0] ? __pfx_kthread+0x10/0x10 [ 243.851075][ C0] ret_from_fork_asm+0x1a/0x30 [ 243.851115][ C0] [ 243.851463][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 244.249532][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.12.0-rc2-syzkaller-00307-g36c254515dc6 #0 [ 244.260080][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 244.270504][ T31] Call Trace: [ 244.273831][ T31] [ 244.276855][ T31] dump_stack_lvl+0x3d/0x1f0 [ 244.281465][ T31] panic+0x71d/0x800 [ 244.285382][ T31] ? __pfx_panic+0x10/0x10 [ 244.289794][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 244.295163][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 244.301141][ T31] ? preempt_schedule_thunk+0x1a/0x30 [ 244.306520][ T31] ? watchdog+0xd76/0x1240 [ 244.310940][ T31] ? watchdog+0xd69/0x1240 [ 244.315420][ T31] watchdog+0xd87/0x1240 [ 244.319765][ T31] ? __pfx_watchdog+0x10/0x10 [ 244.324573][ T31] ? lockdep_hardirqs_on+0x7c/0x110 [ 244.329780][ T31] ? __kthread_parkme+0x148/0x220 [ 244.334822][ T31] ? __pfx_watchdog+0x10/0x10 [ 244.339518][ T31] kthread+0x2c1/0x3a0 [ 244.343597][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 244.348799][ T31] ? __pfx_kthread+0x10/0x10 [ 244.353409][ T31] ret_from_fork+0x45/0x80 [ 244.357876][ T31] ? __pfx_kthread+0x10/0x10 [ 244.362506][ T31] ret_from_fork_asm+0x1a/0x30 [ 244.367290][ T31] [ 244.370742][ T31] Kernel Offset: disabled [ 244.375104][ T31] Rebooting in 86400 seconds..