Warning: Permanently added '[localhost]:2484' (ED25519) to the list of known hosts. 2024/06/23 03:01:02 ignoring optional flag "sandboxArg"="0" 2024/06/23 03:01:02 parsed 1 programs [ 79.919059][ T39] kauditd_printk_skb: 3 callbacks suppressed [ 79.919074][ T39] audit: type=1400 audit(1719111662.838:101): avc: denied { mounton } for pid=5233 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 79.960527][ T5233] cgroup: Unknown subsys name 'net' [ 79.983862][ T39] audit: type=1400 audit(1719111662.838:102): avc: denied { mount } for pid=5233 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 79.995761][ T39] audit: type=1400 audit(1719111662.848:103): avc: denied { mounton } for pid=5241 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 80.005926][ T39] audit: type=1400 audit(1719111662.848:104): avc: denied { mount } for pid=5241 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 80.016828][ T39] audit: type=1400 audit(1719111662.858:105): avc: denied { create } for pid=5255 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 80.026738][ T39] audit: type=1400 audit(1719111662.858:106): avc: denied { write } for pid=5255 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 80.035506][ T39] audit: type=1400 audit(1719111662.858:107): avc: denied { read } for pid=5255 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 80.046442][ T39] audit: type=1400 audit(1719111662.898:108): avc: denied { unmount } for pid=5233 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 80.054953][ T39] audit: type=1400 audit(1719111662.908:109): avc: denied { setattr } for pid=5259 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=761 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 80.062211][ T5262] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 80.065203][ T39] audit: type=1400 audit(1719111662.908:110): avc: denied { read } for pid=4914 comm="dhcpcd" scontext=system_u:system_r:dhcpc_t tcontext=system_u:system_r:dhcpc_t tclass=netlink_kobject_uevent_socket permissive=1 [ 80.273420][ T5233] cgroup: Unknown subsys name 'rlimit' [ 81.399585][ T5252] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 83.270337][ T5302] chnl_net:caif_netlink_parms(): no params data found [ 83.509108][ T5302] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.511978][ T5302] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.516563][ T5302] bridge_slave_0: entered allmulticast mode [ 83.520838][ T5302] bridge_slave_0: entered promiscuous mode [ 83.528570][ T5302] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.531688][ T5302] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.539180][ T5302] bridge_slave_1: entered allmulticast mode [ 83.542722][ T5302] bridge_slave_1: entered promiscuous mode [ 83.616289][ T5302] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.623672][ T5302] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.693542][ T5302] team0: Port device team_slave_0 added [ 83.700676][ T5302] team0: Port device team_slave_1 added [ 83.758719][ T5302] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.761275][ T5302] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.772322][ T5302] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.789821][ T5302] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.793083][ T5302] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.805261][ T5302] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.884697][ T5302] hsr_slave_0: entered promiscuous mode [ 83.889357][ T5302] hsr_slave_1: entered promiscuous mode [ 84.140723][ T5302] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.157779][ T5302] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.165223][ T5302] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.172159][ T5302] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.290128][ T5302] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.313940][ T5302] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.327531][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.332028][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.346734][ T5309] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.349892][ T5309] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.515791][ T5302] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.598868][ T5302] veth0_vlan: entered promiscuous mode [ 84.609110][ T5302] veth1_vlan: entered promiscuous mode [ 84.631956][ T5302] veth0_macvtap: entered promiscuous mode [ 84.642141][ T5302] veth1_macvtap: entered promiscuous mode [ 84.663203][ T5302] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.674296][ T5302] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.683223][ T5302] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.687381][ T5302] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.691111][ T5302] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.695675][ T5302] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.872314][ T13] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 84.951098][ T13] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.025393][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.028613][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.041971][ T13] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.071991][ T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.079213][ T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.149949][ T13] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 85.187107][ T39] kauditd_printk_skb: 10 callbacks suppressed [ 85.187122][ T39] audit: type=1400 audit(1719111668.108:121): avc: denied { create } for pid=5325 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 85.198690][ T39] audit: type=1400 audit(1719111668.108:122): avc: denied { read write } for pid=5325 comm="syz-executor.0" name="vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 85.200906][ T5327] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.209031][ T39] audit: type=1400 audit(1719111668.108:123): avc: denied { open } for pid=5325 comm="syz-executor.0" path="/dev/vhci" dev="devtmpfs" ino=1105 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 85.215530][ T5327] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.223543][ T39] audit: type=1400 audit(1719111668.118:124): avc: denied { ioctl } for pid=5325 comm="syz-executor.0" path="socket:[5932]" dev="sockfs" ino=5932 ioctlcmd=0x48c9 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 85.232307][ T5327] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.241505][ T5327] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.246152][ T5327] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.249288][ T5327] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.255617][ T4636] skb: ffff88801daa2140, skb fc: 0, rskb: ffff88801daa2280, rskb fc: 0, hci_req_sync_complete 2024/06/23 03:01:08 executed programs: 0 [ 85.412474][ T4636] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 85.422962][ T5341] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 85.426107][ T5342] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 85.427316][ T5345] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 85.431964][ T5341] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 85.432919][ T5342] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 85.436782][ T5341] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 85.443223][ T5342] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 85.443562][ T5341] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 85.445123][ T5344] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 85.445954][ T5348] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 85.446239][ T5348] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 85.447273][ T5348] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 85.447537][ T5342] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 85.448076][ T5342] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 85.448391][ T5342] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.449978][ T65] skb: ffff88802ca99900, skb fc: 0, rskb: ffff88802ca99540, rskb fc: 0, hci_req_sync_complete [ 85.454362][ T5348] skb: ffff88801eb363c0, skb fc: 0, rskb: ffff88801bbac500, rskb fc: 0, hci_req_sync_complete [ 85.455066][ T5327] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 85.456171][ T65] Oops: general protection fault, probably for non-canonical address 0xdffffc000000000f: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 85.460709][ T5327] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 85.462108][ T65] KASAN: null-ptr-deref in range [0x0000000000000078-0x000000000000007f] [ 85.467187][ T5327] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 85.467690][ T65] CPU: 0 PID: 65 Comm: kworker/u33:0 Not tainted 6.10.0-rc3-syzkaller-00044-g2ccbdf43d5e7-dirty #0 [ 85.469438][ T5348] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 85.470085][ T5348] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 85.470527][ T5348] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 85.470763][ T5348] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 85.470883][ T5327] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 85.475411][ T65] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014 [ 85.475427][ T65] Workqueue: hci2 hci_rx_work [ 85.475514][ T65] RIP: 0010:hci_req_sync_complete+0x217/0x3d0 [ 85.485155][ T5345] skb: ffff88801e16d040, skb fc: 0, rskb: ffff88801e16ca00, rskb fc: 0, hci_req_sync_complete [ 85.489889][ T65] Code: 48 c1 ea 03 80 3c 02 00 0f 85 76 01 00 00 4c 8b b3 08 0e 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7e 7e 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 3a 01 00 00 [ 85.541820][ T65] RSP: 0018:ffffc90000d27b10 EFLAGS: 00010207 [ 85.544488][ T65] RAX: dffffc0000000000 RBX: ffff88801edac000 RCX: ffffffff816e69b9 [ 85.547875][ T65] RDX: 000000000000000f RSI: ffffffff816ef706 RDI: 000000000000007e [ 85.551340][ T65] RBP: ffff88802ca99900 R08: 0000000000000005 R09: 0000000000000000 [ 85.554483][ T65] R10: 0000000080000000 R11: 0000000000000005 R12: 0000000000000000 [ 85.558174][ T5348] skb: ffff88802c98f540, skb fc: 0, rskb: ffff88802c98f180, rskb fc: 0, hci_req_sync_complete [ 85.558212][ T65] R13: ffff88801edace08 R14: 0000000000000000 R15: 0000000000000c1a [ 85.566752][ T65] FS: 0000000000000000(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 85.570874][ T65] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.573760][ T65] CR2: 00007f599deb91b0 CR3: 000000002af2e000 CR4: 0000000000350ef0 [ 85.577721][ T65] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.581610][ T65] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.585260][ T65] Call Trace: [ 85.586722][ T65] [ 85.587994][ T65] ? show_regs+0x8c/0xa0 [ 85.589974][ T65] ? die_addr+0x4f/0xd0 [ 85.591878][ T65] ? exc_general_protection+0x155/0x230 [ 85.594631][ T65] ? asm_exc_general_protection+0x26/0x30 [ 85.597263][ T65] ? __wake_up_klogd.part.0+0x99/0xf0 [ 85.599479][ T65] ? vprintk+0x86/0xa0 [ 85.601112][ T65] ? hci_req_sync_complete+0x217/0x3d0 [ 85.603177][ T65] hci_event_packet+0x963/0x1170 [ 85.605374][ T65] ? __pfx_hci_cmd_complete_evt+0x10/0x10 [ 85.607606][ T65] ? __pfx_hci_event_packet+0x10/0x10 [ 85.609660][ T65] ? mark_held_locks+0x9f/0xe0 [ 85.611412][ T65] ? kcov_remote_start+0x3d1/0x6e0 [ 85.613389][ T65] ? __pfx_hci_req_sync_complete+0x10/0x10 [ 85.615652][ T65] ? lockdep_hardirqs_on+0x7c/0x110 [ 85.618026][ T65] hci_rx_work+0x2c4/0x1610 [ 85.620182][ T65] process_one_work+0x9fb/0x1b60 [ 85.622601][ T65] ? __pfx_lock_acquire+0x10/0x10 [ 85.624989][ T65] ? __pfx_process_one_work+0x10/0x10 [ 85.627344][ T65] ? assign_work+0x1a0/0x250 [ 85.629741][ T65] worker_thread+0x6c8/0xf70 [ 85.631948][ T65] ? __pfx_worker_thread+0x10/0x10 [ 85.634314][ T65] kthread+0x2c1/0x3a0 [ 85.636243][ T65] ? _raw_spin_unlock_irq+0x23/0x50 [ 85.638686][ T65] ? __pfx_kthread+0x10/0x10 [ 85.640878][ T65] ret_from_fork+0x45/0x80 [ 85.643019][ T65] ? __pfx_kthread+0x10/0x10 [ 85.645068][ T65] ret_from_fork_asm+0x1a/0x30 [ 85.647288][ T65] [ 85.648736][ T65] Modules linked in: [ 85.654252][ T65] ---[ end trace 0000000000000000 ]--- [ 85.656372][ T65] RIP: 0010:hci_req_sync_complete+0x217/0x3d0 [ 85.658841][ T65] Code: 48 c1 ea 03 80 3c 02 00 0f 85 76 01 00 00 4c 8b b3 08 0e 00 00 48 b8 00 00 00 00 00 fc ff df 49 8d 7e 7e 48 89 fa 48 c1 ea 03 <0f> b6 04 02 48 89 fa 83 e2 07 38 d0 7f 08 84 c0 0f 85 3a 01 00 00 [ 85.667603][ T65] RSP: 0018:ffffc90000d27b10 EFLAGS: 00010207 [ 85.670381][ T65] RAX: dffffc0000000000 RBX: ffff88801edac000 RCX: ffffffff816e69b9 [ 85.673881][ T65] RDX: 000000000000000f RSI: ffffffff816ef706 RDI: 000000000000007e [ 85.677163][ T65] RBP: ffff88802ca99900 R08: 0000000000000005 R09: 0000000000000000 [ 85.680100][ T65] R10: 0000000080000000 R11: 0000000000000005 R12: 0000000000000000 [ 85.683627][ T65] R13: ffff88801edace08 R14: 0000000000000000 R15: 0000000000000c1a [ 85.687607][ T65] FS: 0000000000000000(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 85.691213][ T65] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.693742][ T65] CR2: 00007f599deb91b0 CR3: 000000001a976000 CR4: 0000000000350ef0 [ 85.697263][ T65] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.701364][ T65] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.705114][ T65] Kernel panic - not syncing: Fatal exception [ 85.708115][ T65] Kernel Offset: disabled [ 85.709807][ T65] Rebooting in 86400 seconds..