Warning: Permanently added '10.128.1.192' (ED25519) to the list of known hosts.
2024/08/08 23:10:42 ignoring optional flag "sandboxArg"="0"
2024/08/08 23:10:42 parsed 1 programs
2024/08/08 23:10:42 executed programs: 0
[ 47.184621][ T353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.191655][ T353] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.198954][ T353] device bridge_slave_0 entered promiscuous mode
[ 47.205559][ T353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.212421][ T353] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.219582][ T353] device bridge_slave_1 entered promiscuous mode
[ 47.263741][ T353] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.270614][ T353] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.277842][ T353] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.284682][ T353] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.303887][ T306] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.311430][ T306] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.319594][ T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 47.326802][ T306] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 47.335605][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 47.343607][ T39] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.350465][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.358809][ T306] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 47.366813][ T306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.373941][ T306] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.394230][ T353] device veth0_vlan entered promiscuous mode
[ 47.401328][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 47.409820][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 47.418300][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 47.425707][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 47.433619][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 47.441741][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 47.453639][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 47.462773][ T353] device veth1_macvtap entered promiscuous mode
[ 47.471672][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 47.481731][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 47.495261][ T30] kauditd_printk_skb: 15 callbacks suppressed
[ 47.495276][ T30] audit: type=1400 audit(1723158643.135:91): avc: denied { mounton } for pid=353 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 47.530160][ T30] audit: type=1400 audit(1723158643.175:92): avc: denied { create } for pid=357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 47.551004][ T30] audit: type=1400 audit(1723158643.175:93): avc: denied { write } for pid=357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 47.571330][ T30] audit: type=1400 audit(1723158643.175:94): avc: denied { nlmsg_write } for pid=357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[ 47.592347][ T30] audit: type=1400 audit(1723158643.175:95): avc: denied { prog_load } for pid=357 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 47.777625][ C0] ==================================================================
[ 47.785602][ C0] BUG: KASAN: stack-out-of-bounds in __xfrm_dst_hash+0x38d/0x460
[ 47.793158][ C0] Read of size 4 at addr ffffc90000007ab8 by task swapper/0/0
[ 47.800458][ C0]
[ 47.802632][ C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted 5.15.152-syzkaller-1069667-g70e1a731d986 #0
[ 47.812428][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 47.822448][ C0] Call Trace:
[ 47.825534][ C0]
[ 47.828217][ C0] dump_stack_lvl+0x151/0x1b7
[ 47.832732][ C0] ? io_uring_drop_tctx_refs+0x190/0x190
[ 47.838200][ C0] ? panic+0x751/0x751
[ 47.842106][ C0] print_address_description+0x87/0x3b0
[ 47.847505][ C0] kasan_report+0x179/0x1c0
[ 47.851828][ C0] ? __xfrm_dst_hash+0x38d/0x460
[ 47.856603][ C0] ? __xfrm_dst_hash+0x38d/0x460
[ 47.861383][ C0] __asan_report_load4_noabort+0x14/0x20
[ 47.866840][ C0] __xfrm_dst_hash+0x38d/0x460
[ 47.871445][ C0] xfrm_state_find+0x2f1/0x2f70
[ 47.876214][ C0] ? xfrm_sad_getinfo+0x170/0x170
[ 47.881073][ C0] ? xfrm4_get_saddr+0x18c/0x2a0
[ 47.885851][ C0] ? secondary_startup_64_no_verify+0xb1/0xbb
[ 47.891754][ C0] ? rhashtable_lookup+0x499/0x520
[ 47.896779][ C0] ? stack_trace_snprint+0xf0/0xf0
[ 47.901730][ C0] xfrm_resolve_and_create_bundle+0x65a/0x2b70
[ 47.907725][ C0] ? xfrm_sk_policy_lookup+0x5b0/0x5b0
[ 47.913172][ C0] ? xfrm_policy_lookup+0xf95/0x1010
[ 47.918228][ C0] ? arch_call_rest_init+0xe/0x10
[ 47.923086][ C0] ? start_kernel+0x462/0x4ce
[ 47.927613][ C0] xfrm_lookup_with_ifid+0x6fc/0x20d0
[ 47.932814][ C0] ? __xfrm_sk_clone_policy+0x930/0x930
[ 47.938285][ C0] ? ip_route_output_key_hash_rcu+0x159d/0x20b0
[ 47.944359][ C0] xfrm_lookup_route+0x3b/0x160
[ 47.949147][ C0] ip_route_output_flow+0x1ef/0x310
[ 47.954189][ C0] ? ipv4_sk_update_pmtu+0x1e00/0x1e00
[ 47.959570][ C0] ? make_kuid+0x200/0x700
[ 47.963818][ C0] ? __put_user_ns+0x60/0x60
[ 47.968242][ C0] ? __alloc_skb+0x355/0x550
[ 47.972666][ C0] igmpv3_newpack+0x437/0x10d0
[ 47.977264][ C0] ? __queue_work+0x92a/0xcd0
[ 47.981783][ C0] ? delayed_work_timer_fn+0x61/0x80
[ 47.987080][ C0] ? igmpv3_sendpack+0x190/0x190
[ 47.991860][ C0] add_grhead+0x84/0x330
[ 47.995922][ C0] add_grec+0x12ca/0x15d0
[ 48.000096][ C0] ? __kasan_check_write+0x14/0x20
[ 48.005162][ C0] ? _raw_spin_lock_bh+0xa4/0x1b0
[ 48.010016][ C0] ? igmpv3_send_report+0x460/0x460
[ 48.015046][ C0] igmp_ifc_timer_expire+0x83b/0xf50
[ 48.020253][ C0] ? __kasan_check_write+0x14/0x20
[ 48.025200][ C0] ? _raw_spin_lock+0xa4/0x1b0
[ 48.029808][ C0] ? _raw_spin_trylock_bh+0x190/0x190
[ 48.035012][ C0] ? igmp_gq_timer_expire+0xd0/0xd0
[ 48.040045][ C0] call_timer_fn+0x3b/0x2d0
[ 48.044388][ C0] ? igmp_gq_timer_expire+0xd0/0xd0
[ 48.049420][ C0] __run_timers+0x72a/0xa10
[ 48.053759][ C0] ? calc_index+0x280/0x280
[ 48.058137][ C0] ? hrtimer_interrupt+0x867/0xaa0
[ 48.063130][ C0] run_timer_softirq+0x69/0xf0
[ 48.067732][ C0] __do_softirq+0x26d/0x5bf
[ 48.072169][ C0] __irq_exit_rcu+0x50/0xf0
[ 48.076687][ C0] irq_exit_rcu+0x9/0x10
[ 48.080766][ C0] sysvec_apic_timer_interrupt+0x9a/0xc0
[ 48.086224][ C0]
[ 48.089003][ C0]
[ 48.091783][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 48.097710][ C0] RIP: 0010:acpi_idle_enter+0x416/0x760
[ 48.103073][ C0] Code: 89 de 48 83 e6 08 31 ff e8 e7 1b 8b fc 48 83 e3 08 0f 85 b0 00 00 00 0f 1f 44 00 00 e8 93 17 8b fc 0f 00 2d ac 36 c4 00 fb f4 e9 e1 00 00 00 49 83 c7 04 4c 89 f8 48 c1 e8 03 42 0f b6 04 30
[ 48.122697][ C0] RSP: 0018:ffffffff86407bf0 EFLAGS: 000002d3
[ 48.128689][ C0] RAX: ffffffff84e528ad RBX: 0000000000000000 RCX: ffffffff8641d280
[ 48.136581][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 48.144387][ C0] RBP: ffffffff86407c30 R08: ffffffff84e52899 R09: fffffbfff0c83a51
[ 48.152201][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000001
[ 48.160013][ C0] R13: ffff888102dea804 R14: dffffc0000000000 R15: ffff888106bff864
[ 48.167929][ C0] ? acpi_idle_enter+0x3f9/0x760
[ 48.172682][ C0] ? acpi_idle_enter+0x40d/0x760
[ 48.177470][ C0] ? intel_idle_ibrs+0x130/0x130
[ 48.182233][ C0] cpuidle_enter_state+0x5e1/0x1550
[ 48.187263][ C0] ? cpuidle_enter_s2idle+0x600/0x600
[ 48.192561][ C0] ? menu_enable_device+0x380/0x380
[ 48.197600][ C0] ? sched_clock_cpu+0x18/0x3b0
[ 48.202378][ C0] cpuidle_enter+0x5f/0xa0
[ 48.206639][ C0] do_idle+0x36b/0x5d0
[ 48.210618][ C0] ? idle_inject_timer_fn+0x60/0x60
[ 48.215659][ C0] ? radix_tree_lookup+0x23a/0x290
[ 48.220595][ C0] ? debug_smp_processor_id+0x17/0x20
[ 48.225802][ C0] cpu_startup_entry+0x18/0x20
[ 48.230400][ C0] rest_init+0x10b/0x130
[ 48.234484][ C0] ? time_init+0x38/0x38
[ 48.238559][ C0] arch_call_rest_init+0xe/0x10
[ 48.243422][ C0] start_kernel+0x462/0x4ce
[ 48.247758][ C0] x86_64_start_reservations+0x2a/0x2c
[ 48.253048][ C0] x86_64_start_kernel+0x5b/0x5e
[ 48.257923][ C0] secondary_startup_64_no_verify+0xb1/0xbb
[ 48.263645][ C0]
[ 48.266504][ C0]
[ 48.268683][ C0]
[ 48.270846][ C0] Memory state around the buggy address:
[ 48.276321][ C0] ffffc90000007980: f3 f3 f3 f3 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.284317][ C0] ffffc90000007a00: 00 00 00 00 00 00 00 00 00 00 00 00 f1 f1 f1 f1
[ 48.292206][ C0] >ffffc90000007a80: 00 00 00 00 00 00 00 f3 f3 f3 f3 f3 00 00 00 00
[ 48.300183][ C0] ^
[ 48.305914][ C0] ffffc90000007b00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.314195][ C0] ffffc90000007b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.322265][ C0] ==================================================================
[ 48.330164][ C0] Disabling lock debugging due to kernel taint
2024/08/08 23:10:47 executed programs: 607
2024/08/08 23:10:52 executed programs: 1338