Warning: Permanently added '[localhost]:54025' (ED25519) to the list of known hosts.
2024/07/24 12:18:35 ignoring optional flag "sandboxArg"="0"
2024/07/24 12:18:35 parsed 1 programs
[ 101.190932][ T39] audit: type=1400 audit(1721823518.088:140): avc: denied { unlink } for pid=5446 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 101.728896][ T39] audit: type=1400 audit(1721823518.628:141): avc: denied { relabelto } for pid=5493 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 101.739577][ T39] audit: type=1400 audit(1721823518.628:142): avc: denied { write } for pid=5493 comm="mkswap" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 101.749185][ T39] audit: type=1400 audit(1721823518.638:143): avc: denied { read } for pid=5446 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 101.759142][ T39] audit: type=1400 audit(1721823518.638:144): avc: denied { open } for pid=5446 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 102.731887][ T5446] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 105.179742][ T39] audit: type=1400 audit(1721823522.078:145): avc: denied { mount } for pid=5506 comm="syz-executor" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 105.407655][ T67] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 105.411540][ T67] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 105.415330][ T67] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 105.421896][ T67] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 105.426001][ T67] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 105.430580][ T67] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 105.711342][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.714839][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.750529][ T1125] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.754033][ T1125] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 106.254624][ T39] audit: type=1401 audit(1721823523.148:146): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 106.567450][ T5546] chnl_net:caif_netlink_parms(): no params data found
[ 106.664671][ T5546] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.668645][ T5546] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.671114][ T5546] bridge_slave_0: entered allmulticast mode
[ 106.675321][ T5546] bridge_slave_0: entered promiscuous mode
[ 106.681061][ T5546] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.684286][ T5546] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.687352][ T5546] bridge_slave_1: entered allmulticast mode
[ 106.691425][ T5546] bridge_slave_1: entered promiscuous mode
[ 106.745730][ T5546] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 106.750703][ T5546] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 106.794867][ T5546] team0: Port device team_slave_0 added
[ 106.801883][ T5546] team0: Port device team_slave_1 added
[ 106.851903][ T5546] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 106.854727][ T5546] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 106.865722][ T5546] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 106.937345][ T5546] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 106.940374][ T5546] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 106.951452][ T5546] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 107.015790][ T5546] hsr_slave_0: entered promiscuous mode
[ 107.024884][ T5546] hsr_slave_1: entered promiscuous mode
[ 107.211779][ T39] audit: type=1400 audit(1721823524.108:147): avc: denied { create } for pid=5554 comm="dhcpcd-run-hook" name="resolv.conf.lapb9.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.221174][ T39] audit: type=1400 audit(1721823524.108:148): avc: denied { write open } for pid=5554 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf.lapb9.link" dev="tmpfs" ino=1788 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.232270][ T39] audit: type=1400 audit(1721823524.108:149): avc: denied { append } for pid=5554 comm="dhcpcd-run-hook" name="resolv.conf.lapb9.link" dev="tmpfs" ino=1788 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.242806][ T39] audit: type=1400 audit(1721823524.108:150): avc: denied { getattr } for pid=5554 comm="dhcpcd-run-hook" path="/tmp/resolv.conf" dev="tmpfs" ino=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.253912][ T39] audit: type=1400 audit(1721823524.138:151): avc: denied { read } for pid=5556 comm="cmp" name="resolv.conf" dev="tmpfs" ino=6 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.268198][ T39] audit: type=1400 audit(1721823524.168:152): avc: denied { unlink } for pid=5557 comm="rm" name="resolv.conf.lapb9.link" dev="tmpfs" ino=1788 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 107.721535][ T5546] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 107.729106][ T5546] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 107.738104][ T5546] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 107.747793][ T5546] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 107.821819][ T5546] 8021q: adding VLAN 0 to HW filter on device bond0
[ 107.838567][ T5546] 8021q: adding VLAN 0 to HW filter on device team0
[ 107.850817][ T57] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.853835][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 107.857901][ T57] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.860873][ T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 107.920869][ T39] audit: type=1400 audit(1721823524.818:153): avc: denied { sys_module } for pid=5546 comm="syz-executor" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 108.028212][ T5546] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 108.070270][ T5546] veth0_vlan: entered promiscuous mode
[ 108.077833][ T5546] veth1_vlan: entered promiscuous mode
[ 108.103790][ T5546] veth0_macvtap: entered promiscuous mode
[ 108.120661][ T5546] veth1_macvtap: entered promiscuous mode
[ 108.132972][ T5546] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 108.142062][ T5546] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 108.151922][ T5546] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.155324][ T5546] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.159725][ T5546] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.163524][ T5546] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 108.277031][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.372028][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.463269][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 108.543630][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2024/07/24 12:18:46 executed programs: 0
[ 109.220979][ T5254] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 109.225493][ T5254] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 109.229978][ T5254] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 109.233536][ T5254] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 109.238724][ T5254] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 109.243556][ T5254] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 109.405775][ T5653] chnl_net:caif_netlink_parms(): no params data found
[ 109.542183][ T5653] bridge0: port 1(bridge_slave_0) entered blocking state
[ 109.545798][ T5653] bridge0: port 1(bridge_slave_0) entered disabled state
[ 109.550551][ T5653] bridge_slave_0: entered allmulticast mode
[ 109.554942][ T5653] bridge_slave_0: entered promiscuous mode
[ 109.559682][ T5653] bridge0: port 2(bridge_slave_1) entered blocking state
[ 109.562696][ T5653] bridge0: port 2(bridge_slave_1) entered disabled state
[ 109.565545][ T5653] bridge_slave_1: entered allmulticast mode
[ 109.569394][ T5653] bridge_slave_1: entered promiscuous mode
[ 109.635110][ T5653] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 109.642392][ T5653] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 109.698834][ T5653] team0: Port device team_slave_0 added
[ 109.714566][ T5653] team0: Port device team_slave_1 added
[ 109.778348][ T5653] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 109.781413][ T5653] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.794807][ T5653] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 109.814834][ T5653] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 109.817842][ T5653] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 109.831497][ T5653] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 109.949256][ T5653] hsr_slave_0: entered promiscuous mode
[ 109.953570][ T5653] hsr_slave_1: entered promiscuous mode
[ 109.966674][ T5653] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 109.973441][ T5653] Cannot create hsr debugfs directory
[ 111.321256][ T5254] Bluetooth: hci0: command tx timeout
[ 113.397301][ T5254] Bluetooth: hci0: command tx timeout
[ 113.544019][ T13] bridge_slave_1: left allmulticast mode
[ 113.546329][ T13] bridge_slave_1: left promiscuous mode
[ 113.548578][ T13] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.555913][ T13] bridge_slave_0: left allmulticast mode
[ 113.560167][ T13] bridge_slave_0: left promiscuous mode
[ 113.562792][ T13] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.793750][ T13] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 113.802035][ T13] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 113.808511][ T13] bond0 (unregistering): Released all slaves
[ 113.997804][ T13] hsr_slave_0: left promiscuous mode
[ 114.000841][ T13] hsr_slave_1: left promiscuous mode
[ 114.003875][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 114.007141][ T13] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 114.011891][ T13] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 114.015102][ T13] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 114.046225][ T13] veth1_macvtap: left promiscuous mode
[ 114.049093][ T13] veth0_macvtap: left promiscuous mode
[ 114.051623][ T13] veth1_vlan: left promiscuous mode
[ 114.053983][ T13] veth0_vlan: left promiscuous mode
[ 114.566065][ T13] team0 (unregistering): Port device team_slave_1 removed
[ 114.609718][ T13] team0 (unregistering): Port device team_slave_0 removed
[ 115.304986][ T5653] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 115.311773][ T5653] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 115.319849][ T5653] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 115.325852][ T5653] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 115.402639][ T5653] 8021q: adding VLAN 0 to HW filter on device bond0
[ 115.421050][ T5653] 8021q: adding VLAN 0 to HW filter on device team0
[ 115.431960][ T30] bridge0: port 1(bridge_slave_0) entered blocking state
[ 115.435095][ T30] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 115.449225][ T826] bridge0: port 2(bridge_slave_1) entered blocking state
[ 115.452787][ T826] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 115.479305][ T5254] Bluetooth: hci0: command tx timeout
[ 115.490449][ T5653] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 115.702250][ T5653] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 115.738258][ T5653] veth0_vlan: entered promiscuous mode
[ 115.745961][ T5653] veth1_vlan: entered promiscuous mode
[ 115.778735][ T5653] veth0_macvtap: entered promiscuous mode
[ 115.782939][ T5653] veth1_macvtap: entered promiscuous mode
[ 115.808659][ T5653] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 115.818843][ T5653] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 115.825779][ T5653] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.829622][ T5653] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.833128][ T5653] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.836818][ T5653] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 115.879013][ T1092] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.881529][ T1092] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.904629][ T1099] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 115.908015][ T1099] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/07/24 12:18:52 executed programs: 2
[ 115.949465][ T39] audit: type=1400 audit(1721823532.848:154): avc: denied { prog_load } for pid=5756 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 115.957647][ T39] audit: type=1400 audit(1721823532.848:155): avc: denied { bpf } for pid=5756 comm="syz.0.15" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 115.966421][ T39] audit: type=1400 audit(1721823532.848:156): avc: denied { perfmon } for pid=5756 comm="syz.0.15" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[ 115.976094][ T39] audit: type=1400 audit(1721823532.868:157): avc: denied { prog_run } for pid=5756 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[ 115.984230][ T39] audit: type=1400 audit(1721823532.868:158): avc: denied { create } for pid=5756 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 115.993120][ T39] audit: type=1400 audit(1721823532.878:159): avc: denied { ioctl } for pid=5756 comm="syz.0.15" path="socket:[11443]" dev="sockfs" ino=11443 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1
[ 116.707357][ C0] ==================================================================
[ 116.711084][ C0] BUG: KASAN: stack-out-of-bounds in xdp_do_check_flushed+0x41c/0x4e0
[ 116.714750][ C0] Read of size 4 at addr ffffc900032bfa50 by task syz.0.42/5811
[ 116.720158][ C0]
[ 116.721791][ C0] CPU: 0 UID: 0 PID: 5811 Comm: syz.0.42 Not tainted 6.10.0-syzkaller-12246-g786c8248dbd3-dirty #0
[ 116.727245][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 116.731968][ C0] Call Trace:
[ 116.733446][ C0]
[ 116.734614][ C0] dump_stack_lvl+0x116/0x1f0
[ 116.736737][ C0] print_report+0xc3/0x620
[ 116.739016][ C0] ? __virt_addr_valid+0x5e/0x590
[ 116.741439][ C0] kasan_report+0xd9/0x110
[ 116.743490][ C0] ? xdp_do_check_flushed+0x41c/0x4e0
[ 116.745820][ C0] ? xdp_do_check_flushed+0x41c/0x4e0
[ 116.748141][ C0] xdp_do_check_flushed+0x41c/0x4e0
[ 116.750302][ C0] __napi_poll.constprop.0+0xd1/0x550
[ 116.752413][ C0] net_rx_action+0xa92/0x1010
[ 116.754692][ C0] ? __pfx_net_rx_action+0x10/0x10
[ 116.756967][ C0] ? __pfx_mark_lock+0x10/0x10
[ 116.758908][ C0] ? __pfx_rcu_is_watching+0x10/0x10
[ 116.761383][ C0] ? trace_rcu_utilization+0x100/0x160
[ 116.763927][ C0] ? mark_held_locks+0x9f/0xe0
[ 116.766148][ C0] handle_softirqs+0x216/0x8f0
[ 116.767936][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 116.770010][ C0] irq_exit_rcu+0xbb/0x120
[ 116.771944][ C0] sysvec_apic_timer_interrupt+0x95/0xb0
[ 116.774382][ C0]
[ 116.775729][ C0]
[ 116.777081][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 116.779723][ C0] RIP: 0010:const_folio_flags.constprop.0+0x56/0x150
[ 116.782725][ C0] Code: 8b 6b 08 31 ff 83 e5 01 48 89 ee e8 84 cc ab ff 48 85 ed 0f 85 d4 00 00 00 e8 46 d1 ab ff 66 90 e8 3f d1 ab ff e8 3a d1 ab ff <48> 89 d8 5b 5d 41 5c c3 cc cc cc cc e8 29 d1 ab ff 48 89 dd 31 ff
[ 116.790686][ C0] RSP: 0018:ffffc900032bf6d0 EFLAGS: 00000293
[ 116.792922][ C0] RAX: 0000000000000000 RBX: ffffea00010118c0 RCX: ffffffff81deb54c
[ 116.796383][ C0] RDX: ffff8880274e8000 RSI: ffffffff81deb566 RDI: 0000000000000007
[ 116.799845][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 116.802992][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000127
[ 116.806157][ C0] R13: ffff88802305c948 R14: ffffea00010118c0 R15: 0000000000000000
[ 116.809229][ C0] ? const_folio_flags.constprop.0+0x3c/0x150
[ 116.811611][ C0] ? const_folio_flags.constprop.0+0x56/0x150
[ 116.813971][ C0] free_pages_and_swap_cache+0x24e/0x510
[ 116.816144][ C0] ? __pfx_free_pages_and_swap_cache+0x10/0x10
[ 116.818957][ C0] ? hlock_class+0x4e/0x130
[ 116.821093][ C0] ? mark_lock+0xb5/0xc60
[ 116.823012][ C0] ? __pfx___might_resched+0x10/0x10
[ 116.825254][ C0] ? mark_held_locks+0x9f/0xe0
[ 116.827446][ C0] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 116.830189][ C0] tlb_finish_mmu+0x168/0x7b0
[ 116.832483][ C0] exit_mmap+0x3d1/0xb20
[ 116.834506][ C0] ? __pfx_exit_mmap+0x10/0x10
[ 116.836685][ C0] __mmput+0x12a/0x480
[ 116.838512][ C0] mmput+0x62/0x70
[ 116.839808][ C0] do_exit+0x9bf/0x2bb0
[ 116.841448][ C0] ? get_signal+0x8f2/0x2770
[ 116.843492][ C0] ? __pfx_do_exit+0x10/0x10
[ 116.845492][ C0] ? do_raw_spin_lock+0x12d/0x2c0
[ 116.847622][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 116.849810][ C0] do_group_exit+0xd3/0x2a0
[ 116.851633][ C0] get_signal+0x25fd/0x2770
[ 116.853482][ C0] ? vfs_write+0x917/0x1140
[ 116.855231][ C0] ? vfs_write+0x14d/0x1140
[ 116.857075][ C0] ? __pfx_get_signal+0x10/0x10
[ 116.859004][ C0] ? __pfx_do_futex+0x10/0x10
[ 116.860882][ C0] arch_do_signal_or_restart+0x90/0x7e0
[ 116.863237][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 116.865704][ C0] ? ksys_write+0x1ab/0x260
[ 116.867573][ C0] ? __pfx_ksys_write+0x10/0x10
[ 116.869615][ C0] syscall_exit_to_user_mode+0x150/0x2a0
[ 116.872160][ C0] do_syscall_64+0xda/0x250
[ 116.874226][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.876769][ C0] RIP: 0033:0x7f6f7c575b59
[ 116.878853][ C0] Code: Unable to access opcode bytes at 0x7f6f7c575b2f.
[ 116.881679][ C0] RSP: 002b:00007f6f7d27b0f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 116.884981][ C0] RAX: fffffffffffffe00 RBX: 00007f6f7c705f68 RCX: 00007f6f7c575b59
[ 116.888092][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6f7c705f68
[ 116.891579][ C0] RBP: 00007f6f7c705f60 R08: 00007f6f7d27b6c0 R09: 00007f6f7d27b6c0
[ 116.894768][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6f7c705f6c
[ 116.897924][ C0] R13: 000000000000000b R14: 00007ffd97f8d280 R15: 00007ffd97f8d368
[ 116.901341][ C0]
[ 116.902710][ C0]
[ 116.903841][ C0] The buggy address belongs to stack of task syz.0.42/5811
[ 116.907040][ C0] and is located at offset 24 in frame:
[ 116.909577][ C0] exit_mmap+0x0/0xb20
[ 116.911472][ C0]
[ 116.912608][ C0] This frame has 2 objects:
[ 116.914669][ C0] [32, 96) 'vmi'
[ 116.914681][ C0] [128, 256) 'tlb'
[ 116.916353][ C0]
[ 116.919280][ C0] The buggy address belongs to the virtual mapping at
[ 116.919280][ C0] [ffffc900032b8000, ffffc900032c1000) created by:
[ 116.919280][ C0] kernel_clone+0xfd/0x980
[ 116.926426][ C0]
[ 116.927407][ C0] The buggy address belongs to the physical page:
[ 116.929962][ C0] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88802b3e0000 pfn:0x2b3e0
[ 116.933915][ C0] memcg:ffff8880206d0182
[ 116.935559][ C0] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 116.938398][ C0] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 116.941911][ C0] raw: ffff88802b3e0000 0000000000000000 00000001ffffffff ffff8880206d0182
[ 116.945248][ C0] page dumped because: kasan: bad access detected
[ 116.947528][ C0] page_owner tracks the page as allocated
[ 116.949401][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 5653, tgid 5653 (syz-executor), ts 116595661744, free_ts 116458660012
[ 116.956703][ C0] post_alloc_hook+0x2d1/0x350
[ 116.958919][ C0] get_page_from_freelist+0x1351/0x2e50
[ 116.961176][ C0] __alloc_pages_noprof+0x22b/0x2460
[ 116.963282][ C0] alloc_pages_mpol_noprof+0x275/0x610
[ 116.965424][ C0] __vmalloc_node_range_noprof+0xa6a/0x1520
[ 116.967735][ C0] copy_process+0x2f3b/0x8de0
[ 116.969774][ C0] kernel_clone+0xfd/0x980
[ 116.971677][ C0] __do_sys_clone+0xba/0x100
[ 116.973754][ C0] do_syscall_64+0xcd/0x250
[ 116.975776][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.978430][ C0] page last free pid 5653 tgid 5653 stack trace:
[ 116.981158][ C0] free_unref_page+0x64a/0xe40
[ 116.983272][ C0] qlist_free_all+0x4e/0x140
[ 116.985213][ C0] kasan_quarantine_reduce+0x192/0x1e0
[ 116.987454][ C0] __kasan_slab_alloc+0x69/0x90
[ 116.989863][ C0] __kmalloc_cache_node_noprof+0x173/0x350
[ 116.992434][ C0] __get_vm_area_node+0xe1/0x2d0
[ 116.994545][ C0] __vmalloc_node_range_noprof+0x276/0x1520
[ 116.997127][ C0] vzalloc_noprof+0x6b/0x90
[ 116.999153][ C0] do_ipt_get_ctl+0x6b8/0xaa0
[ 117.001169][ C0] nf_getsockopt+0x79/0xe0
[ 117.002902][ C0] ip_getsockopt+0x18e/0x1e0
[ 117.004683][ C0] tcp_getsockopt+0x9e/0x100
[ 117.006505][ C0] do_sock_getsockopt+0x2e5/0x760
[ 117.008502][ C0] __sys_getsockopt+0x1a1/0x270
[ 117.010445][ C0] __x64_sys_getsockopt+0xbd/0x160
[ 117.012382][ C0] do_syscall_64+0xcd/0x250
[ 117.014409][ C0]
[ 117.015526][ C0] Memory state around the buggy address:
[ 117.018036][ C0] ffffc900032bf900: f3 f3 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 117.021655][ C0] ffffc900032bf980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 117.025224][ C0] >ffffc900032bfa00: 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00 00
[ 117.028571][ C0] ^
[ 117.031408][ C0] ffffc900032bfa80: 00 00 00 f2 f2 f2 f2 00 00 00 00 00 00 00 00 00
[ 117.034798][ C0] ffffc900032bfb00: 00 00 00 00 00 00 00 f3 f3 f3 f3 00 00 00 00 00
[ 117.038508][ C0] ==================================================================
[ 117.042057][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 117.045921][ C0] CPU: 0 UID: 0 PID: 5811 Comm: syz.0.42 Not tainted 6.10.0-syzkaller-12246-g786c8248dbd3-dirty #0
[ 117.050585][ C0] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 117.055167][ C0] Call Trace:
[ 117.056682][ C0]
[ 117.057908][ C0] dump_stack_lvl+0x3d/0x1f0
[ 117.059917][ C0] panic+0x6f5/0x7a0
[ 117.061709][ C0] ? __pfx_panic+0x10/0x10
[ 117.063724][ C0] ? check_panic_on_warn+0x1f/0xb0
[ 117.066054][ C0] check_panic_on_warn+0xab/0xb0
[ 117.068259][ C0] end_report+0x117/0x180
[ 117.070241][ C0] kasan_report+0xe9/0x110
[ 117.072131][ C0] ? xdp_do_check_flushed+0x41c/0x4e0
[ 117.074678][ C0] ? xdp_do_check_flushed+0x41c/0x4e0
[ 117.077760][ C0] xdp_do_check_flushed+0x41c/0x4e0
[ 117.080929][ C0] __napi_poll.constprop.0+0xd1/0x550
[ 117.083562][ C0] net_rx_action+0xa92/0x1010
[ 117.085967][ C0] ? __pfx_net_rx_action+0x10/0x10
[ 117.088384][ C0] ? __pfx_mark_lock+0x10/0x10
[ 117.090662][ C0] ? __pfx_rcu_is_watching+0x10/0x10
[ 117.093035][ C0] ? trace_rcu_utilization+0x100/0x160
[ 117.095600][ C0] ? mark_held_locks+0x9f/0xe0
[ 117.097811][ C0] handle_softirqs+0x216/0x8f0
[ 117.099981][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 117.102103][ C0] irq_exit_rcu+0xbb/0x120
[ 117.103777][ C0] sysvec_apic_timer_interrupt+0x95/0xb0
[ 117.105843][ C0]
[ 117.106957][ C0]
[ 117.108024][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 117.110059][ C0] RIP: 0010:const_folio_flags.constprop.0+0x56/0x150
[ 117.112411][ C0] Code: 8b 6b 08 31 ff 83 e5 01 48 89 ee e8 84 cc ab ff 48 85 ed 0f 85 d4 00 00 00 e8 46 d1 ab ff 66 90 e8 3f d1 ab ff e8 3a d1 ab ff <48> 89 d8 5b 5d 41 5c c3 cc cc cc cc e8 29 d1 ab ff 48 89 dd 31 ff
[ 117.120570][ C0] RSP: 0018:ffffc900032bf6d0 EFLAGS: 00000293
[ 117.123186][ C0] RAX: 0000000000000000 RBX: ffffea00010118c0 RCX: ffffffff81deb54c
[ 117.126542][ C0] RDX: ffff8880274e8000 RSI: ffffffff81deb566 RDI: 0000000000000007
[ 117.129975][ C0] RBP: 0000000000000000 R08: 0000000000000007 R09: 0000000000000000
[ 117.133491][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000127
[ 117.136983][ C0] R13: ffff88802305c948 R14: ffffea00010118c0 R15: 0000000000000000
[ 117.140270][ C0] ? const_folio_flags.constprop.0+0x3c/0x150
[ 117.142565][ C0] ? const_folio_flags.constprop.0+0x56/0x150
[ 117.144853][ C0] free_pages_and_swap_cache+0x24e/0x510
[ 117.147021][ C0] ? __pfx_free_pages_and_swap_cache+0x10/0x10
[ 117.149677][ C0] ? hlock_class+0x4e/0x130
[ 117.151618][ C0] ? mark_lock+0xb5/0xc60
[ 117.153478][ C0] ? __pfx___might_resched+0x10/0x10
[ 117.155542][ C0] ? mark_held_locks+0x9f/0xe0
[ 117.157681][ C0] __tlb_batch_free_encoded_pages+0xf9/0x290
[ 117.160250][ C0] tlb_finish_mmu+0x168/0x7b0
[ 117.162002][ C0] exit_mmap+0x3d1/0xb20
[ 117.163637][ C0] ? __pfx_exit_mmap+0x10/0x10
[ 117.165804][ C0] __mmput+0x12a/0x480
[ 117.167650][ C0] mmput+0x62/0x70
[ 117.169355][ C0] do_exit+0x9bf/0x2bb0
[ 117.171195][ C0] ? get_signal+0x8f2/0x2770
[ 117.172823][ C0] ? __pfx_do_exit+0x10/0x10
[ 117.174823][ C0] ? do_raw_spin_lock+0x12d/0x2c0
[ 117.177003][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 117.179198][ C0] do_group_exit+0xd3/0x2a0
[ 117.181032][ C0] get_signal+0x25fd/0x2770
[ 117.182859][ C0] ? vfs_write+0x917/0x1140
[ 117.184673][ C0] ? vfs_write+0x14d/0x1140
[ 117.186768][ C0] ? __pfx_get_signal+0x10/0x10
[ 117.188916][ C0] ? __pfx_do_futex+0x10/0x10
[ 117.190977][ C0] arch_do_signal_or_restart+0x90/0x7e0
[ 117.193456][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 117.196130][ C0] ? ksys_write+0x1ab/0x260
[ 117.198148][ C0] ? __pfx_ksys_write+0x10/0x10
[ 117.200218][ C0] syscall_exit_to_user_mode+0x150/0x2a0
[ 117.202663][ C0] do_syscall_64+0xda/0x250
[ 117.204478][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 117.206867][ C0] RIP: 0033:0x7f6f7c575b59
[ 117.208646][ C0] Code: Unable to access opcode bytes at 0x7f6f7c575b2f.
[ 117.211848][ C0] RSP: 002b:00007f6f7d27b0f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 117.215568][ C0] RAX: fffffffffffffe00 RBX: 00007f6f7c705f68 RCX: 00007f6f7c575b59
[ 117.219072][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007f6f7c705f68
[ 117.222584][ C0] RBP: 00007f6f7c705f60 R08: 00007f6f7d27b6c0 R09: 00007f6f7d27b6c0
[ 117.225859][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f6f7c705f6c
[ 117.228938][ C0] R13: 000000000000000b R14: 00007ffd97f8d280 R15: 00007ffd97f8d368
[ 117.232028][ C0]
[ 117.233822][ C0] Kernel Offset: disabled
[ 117.235526][ C0] Rebooting in 86400 seconds..