Warning: Permanently added '[localhost]:49915' (ED25519) to the list of known hosts.
2024/01/11 17:43:14 ignoring optional flag "sandboxArg"="0"
2024/01/11 17:43:14 parsed 1 programs
[ 63.637947][ T38] kauditd_printk_skb: 5 callbacks suppressed
[ 63.637956][ T38] audit: type=1400 audit(1704994994.683:206): avc: denied { getattr } for pid=5341 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 63.673560][ T38] audit: type=1400 audit(1704994994.723:207): avc: denied { mounton } for pid=5347 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 63.684800][ T38] audit: type=1400 audit(1704994994.723:208): avc: denied { mount } for pid=5347 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 63.695486][ T38] audit: type=1400 audit(1704994994.733:209): avc: denied { read write } for pid=5347 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 63.706009][ T38] audit: type=1400 audit(1704994994.733:210): avc: denied { open } for pid=5347 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 63.749608][ T38] audit: type=1400 audit(1704994994.803:211): avc: denied { unlink } for pid=5347 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 64.201806][ T38] audit: type=1400 audit(1704994995.253:212): avc: denied { relabelto } for pid=5350 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2024/01/11 17:43:17 executed programs: 0
[ 66.049312][ T5347] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 66.099000][ T5173] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 66.105037][ T5173] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 66.108579][ T5173] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 66.112916][ T5173] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 66.116556][ T5173] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 66.120184][ T5173] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 66.127385][ T38] audit: type=1400 audit(1704994997.173:213): avc: denied { mounton } for pid=5367 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 66.261573][ T5367] chnl_net:caif_netlink_parms(): no params data found
[ 66.377666][ T5367] bridge0: port 1(bridge_slave_0) entered blocking state
[ 66.381010][ T5367] bridge0: port 1(bridge_slave_0) entered disabled state
[ 66.384233][ T5367] bridge_slave_0: entered allmulticast mode
[ 66.388102][ T5367] bridge_slave_0: entered promiscuous mode
[ 66.393635][ T5367] bridge0: port 2(bridge_slave_1) entered blocking state
[ 66.396803][ T5367] bridge0: port 2(bridge_slave_1) entered disabled state
[ 66.400044][ T5367] bridge_slave_1: entered allmulticast mode
[ 66.402801][ T5367] bridge_slave_1: entered promiscuous mode
[ 66.466994][ T5367] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 66.472757][ T5367] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 66.516658][ T5367] team0: Port device team_slave_0 added
[ 66.521861][ T5367] team0: Port device team_slave_1 added
[ 66.579655][ T5367] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 66.582668][ T5367] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 66.594240][ T5367] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 66.600790][ T5367] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 66.603898][ T5367] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 66.615340][ T5367] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 66.682690][ T5367] hsr_slave_0: entered promiscuous mode
[ 66.687779][ T5367] hsr_slave_1: entered promiscuous mode
[ 66.986538][ T38] audit: type=1400 audit(1704994998.033:214): avc: denied { search } for pid=4647 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 67.262093][ T5367] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 67.268325][ T5367] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 67.274916][ T5367] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 67.281117][ T5367] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 67.298577][ T5367] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.301893][ T5367] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.305289][ T5367] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.308471][ T5367] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.313979][ T3546] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.317421][ T3546] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.369059][ T5367] 8021q: adding VLAN 0 to HW filter on device bond0
[ 67.386668][ T5367] 8021q: adding VLAN 0 to HW filter on device team0
[ 67.396277][ T824] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.399630][ T824] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.410188][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.413246][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.462163][ T38] audit: type=1400 audit(1704994998.513:215): avc: denied { sys_module } for pid=5367 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 67.546814][ T5367] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 67.581309][ T5367] veth0_vlan: entered promiscuous mode
[ 67.589319][ T5367] veth1_vlan: entered promiscuous mode
[ 67.611659][ T5367] veth0_macvtap: entered promiscuous mode
[ 67.616064][ T5367] veth1_macvtap: entered promiscuous mode
[ 67.629907][ T5367] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 67.639601][ T5367] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 67.647028][ T5367] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.651187][ T5367] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.655106][ T5367] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.660690][ T5367] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 67.703969][ T1091] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 67.707501][ T1091] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 67.731356][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 67.734881][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 67.899849][ T5446] syz-executor.0 (5446) used greatest stack depth: 22080 bytes left
[ 68.046402][ T5454] syz-executor.0 (5454) used greatest stack depth: 21984 bytes left
[ 68.178711][ T4608] Bluetooth: hci0: command 0x0409 tx timeout
[ 68.209594][ T5469] ==================================================================
[ 68.212611][ T5469] BUG: KASAN: use-after-free in __skb_flow_dissect+0x19d1/0x7a50
[ 68.215467][ T5469] Read of size 1 at addr ffff88813c4e000e by task syz-executor.0/5469
[ 68.220245][ T5469]
[ 68.221118][ T5469] CPU: 2 PID: 5469 Comm: syz-executor.0 Not tainted 6.7.0-syzkaller-gde927f6c0b07 #0
[ 68.224537][ T5469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 68.228211][ T5469] Call Trace:
[ 68.229487][ T5469]
[ 68.230605][ T5469] dump_stack_lvl+0xd9/0x1b0
[ 68.232464][ T5469] print_report+0xc4/0x620
[ 68.234112][ T5469] ? __virt_addr_valid+0x5e/0x580
[ 68.235972][ T5469] ? __phys_addr+0xc6/0x140
[ 68.237661][ T5469] kasan_report+0xda/0x110
[ 68.239547][ T5469] ? __skb_flow_dissect+0x19d1/0x7a50
[ 68.241525][ T5469] ? __skb_flow_dissect+0x19d1/0x7a50
[ 68.243668][ T5469] __skb_flow_dissect+0x19d1/0x7a50
[ 68.245583][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.247306][ T5469] ? bpf_flow_dissect+0x3a0/0x3a0
[ 68.249373][ T5469] ? __synchronize_srcu+0x258/0x2a0
[ 68.251736][ T5469] ? __orc_find+0x104/0x130
[ 68.253800][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.256029][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.258123][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.260335][ T5469] ? __orc_find+0x104/0x130
[ 68.262095][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.264164][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.266562][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.268897][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.271030][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.273149][ T5469] ? lock_release+0x4bf/0x690
[ 68.275176][ T5469] ? arch_stack_walk+0x112/0x170
[ 68.277472][ T5469] ? stack_depot_save_flags+0x558/0x730
[ 68.280012][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.282192][ T5469] ? do_raw_read_unlock+0xe0/0xe0
[ 68.284011][ T5469] ? ipgre_xmit+0x4a1/0x980
[ 68.285781][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.287691][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.290010][ T5469] ? _raw_write_unlock_irqrestore+0x3b/0x70
[ 68.292725][ T5469] ? stack_depot_save_flags+0x558/0x730
[ 68.295254][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.297338][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.299384][ T5469] ? lock_acquire+0x464/0x520
[ 68.301543][ T5469] ? __orc_find+0x104/0x130
[ 68.303589][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.305790][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.307778][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.309989][ T5469] ? __orc_find+0x104/0x130
[ 68.312049][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.314262][ T5469] ? __module_address+0x55/0x3b0
[ 68.316536][ T5469] ? is_module_text_address+0x145/0x1a0
[ 68.319015][ T5469] ? __skb_get_hash+0xc7/0x540
[ 68.321191][ T5469] __skb_get_hash+0xc7/0x540
[ 68.323115][ T5469] ? arch_stack_walk+0x112/0x170
[ 68.325388][ T5469] ? __skb_get_hash_symmetric+0x440/0x440
[ 68.327754][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.330146][ T5469] ? _raw_read_unlock_irqrestore+0x3b/0x70
[ 68.332556][ T5469] ? stack_depot_save_flags+0x259/0x730
[ 68.334756][ T5469] ip_tunnel_xmit+0x1855/0x33c0
[ 68.336752][ T5469] ? arch_uprobe_pre_xol+0x298/0x310
[ 68.338986][ T5469] ? fixup_umip_exception+0x900/0x9d0
[ 68.341440][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.343338][ T5469] ? __orc_find+0x104/0x130
[ 68.345404][ T5469] ? stack_access_ok+0x80/0x270
[ 68.347606][ T5469] ? ip_md_tunnel_xmit+0x2000/0x2000
[ 68.349997][ T5469] ? skb_network_protocol+0x1f0/0x670
[ 68.352441][ T5469] ? skb_csum_hwoffload_help+0x190/0x190
[ 68.354976][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.357167][ T5469] ? lock_acquire+0x464/0x520
[ 68.359272][ T5469] ipip_tunnel_xmit+0x3cc/0x4e0
[ 68.361463][ T5469] dev_hard_start_xmit+0x13d/0x6d0
[ 68.363820][ T5469] __dev_queue_xmit+0x7c1/0x3d60
[ 68.366068][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.368297][ T5469] ? lock_release+0x4bf/0x690
[ 68.370470][ T5469] ? ___neigh_create+0x18d3/0x2a80
[ 68.372832][ T5469] ? netdev_core_pick_tx+0x3a0/0x3a0
[ 68.374970][ T5469] ? do_raw_write_lock+0x11e/0x3b0
[ 68.377211][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.379294][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.381392][ T5469] ? lock_release+0x4bf/0x690
[ 68.383455][ T5469] ? lock_sync+0x190/0x190
[ 68.385439][ T5469] ? ip_finish_output2+0x833/0x2550
[ 68.387724][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.389768][ T5469] ? ___neigh_create+0xec1/0x2a80
[ 68.391744][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.393942][ T5469] neigh_connected_output+0x42c/0x5d0
[ 68.396392][ T5469] ip_finish_output2+0x833/0x2550
[ 68.398684][ T5469] ? nf_hook+0x3bf/0x6c0
[ 68.400630][ T5469] ? ip_fragment.constprop.0+0x230/0x230
[ 68.403156][ T5469] ? ip_skb_dst_mtu+0x3fc/0xc80
[ 68.405397][ T5469] ? ip_frag_next+0xa40/0xa40
[ 68.407568][ T5469] ? dst_output+0x170/0x170
[ 68.409651][ T5469] __ip_finish_output+0x38b/0x650
[ 68.411986][ T5469] ip_finish_output+0x31/0x310
[ 68.414194][ T5469] ip_mc_output+0x1dd/0x6a0
[ 68.416306][ T5469] ip_local_out+0xaf/0x1a0
[ 68.418344][ T5469] iptunnel_xmit+0x5b4/0x9b0
[ 68.420497][ T5469] ip_tunnel_xmit+0x1dbc/0x33c0
[ 68.422538][ T5469] ? kasan_save_stack+0x33/0x50
[ 68.424773][ T5469] ? kasan_save_track+0x14/0x30
[ 68.426973][ T5469] ? ip_md_tunnel_xmit+0x2000/0x2000
[ 68.429376][ T5469] ? pskb_expand_head+0x236/0x1170
[ 68.431686][ T5469] ? __sanitizer_cov_trace_const_cmp1+0x1/0x20
[ 68.434496][ T5469] ? skb_network_protocol+0x1f0/0x670
[ 68.436927][ T5469] ? __x64_sys_bpf+0x78/0xc0
[ 68.439021][ T5469] ? __gre_xmit+0x4f5/0x990
[ 68.441192][ T5469] ipgre_xmit+0x4a1/0x980
[ 68.443182][ T5469] dev_hard_start_xmit+0x13d/0x6d0
[ 68.445517][ T5469] __dev_queue_xmit+0x7c1/0x3d60
[ 68.447819][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.450018][ T5469] ? trace_kmalloc+0x26/0xa0
[ 68.452162][ T5469] ? __kmalloc_node_track_caller+0x236/0x460
[ 68.454935][ T5469] ? netdev_core_pick_tx+0x3a0/0x3a0
[ 68.457345][ T5469] ? kmalloc_reserve+0x13c/0x260
[ 68.459410][ T5469] ? skb_headers_offset_update+0x129/0x260
[ 68.461756][ T5469] ? pskb_expand_head+0x627/0x1170
[ 68.464032][ T5469] ? skb_release_data+0x870/0x870
[ 68.466286][ T5469] __bpf_redirect+0x6f1/0xf10
[ 68.468448][ T5469] bpf_clone_redirect+0x2b2/0x420
[ 68.470750][ T5469] ? __bpf_redirect+0xf10/0xf10
[ 68.472994][ T5469] ___bpf_prog_run+0x3e44/0xabc0
[ 68.475237][ T5469] ? lock_release+0x4bf/0x690
[ 68.477261][ T5469] ? finish_task_switch.isra.0+0x214/0xca0
[ 68.479834][ T5469] __bpf_prog_run512+0xb7/0xf0
[ 68.482012][ T5469] ? __bpf_prog_run_args32+0x140/0x140
[ 68.484465][ T5469] ? lock_release+0x4bf/0x690
[ 68.486448][ T5469] ? finish_task_switch.isra.0+0x2ee/0xca0
[ 68.489034][ T5469] ? __switch_to+0x75d/0x1380
[ 68.491222][ T5469] ? preempt_schedule_thunk+0x1a/0x30
[ 68.493673][ T5469] ? __cant_sleep+0x190/0x190
[ 68.496020][ T5469] ? bpf_test_timer_continue+0x152/0x3d0
[ 68.498557][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.501286][ T5469] bpf_test_run+0x3d3/0x9c0
[ 68.503380][ T5469] ? bpf_test_timer_continue+0x3d0/0x3d0
[ 68.505945][ T5469] ? kasan_save_track+0x14/0x30
[ 68.508165][ T5469] ? eth_type_trans+0x2b2/0x680
[ 68.510379][ T5469] ? krealloc+0xa7/0x100
[ 68.512333][ T5469] bpf_prog_test_run_skb+0xb75/0x1dd0
[ 68.514765][ T5469] ? bpf_prog_test_run_raw_tp+0x710/0x710
[ 68.517328][ T5469] ? fput+0x32/0x390
[ 68.519122][ T5469] ? bpf_prog_test_run_raw_tp+0x710/0x710
[ 68.521716][ T5469] __sys_bpf+0x11bf/0x4910
[ 68.523740][ T5469] ? bpf_perf_link_attach+0x540/0x540
[ 68.526165][ T5469] ? __might_fault+0x13f/0x1a0
[ 68.528347][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.530795][ T5469] ? preempt_count_sub+0x160/0x160
[ 68.533127][ T5469] ? __might_fault+0xe6/0x1a0
[ 68.535280][ T5469] ? folio_memcg_unlock+0x240/0x240
[ 68.537657][ T5469] __x64_sys_bpf+0x78/0xc0
[ 68.539744][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.542475][ T5469] do_syscall_64+0xd3/0x250
[ 68.544570][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 68.547250][ T5469] RIP: 0033:0x7f718ba7cce9
[ 68.549304][ T5469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 68.557947][ T5469] RSP: 002b:00007f718c8010c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 68.561748][ T5469] RAX: ffffffffffffffda RBX: 00007f718bb9bf80 RCX: 00007f718ba7cce9
[ 68.565297][ T5469] RDX: 0000000000000028 RSI: 0000000020000080 RDI: 000000000000000a
[ 68.568867][ T5469] RBP: 00007f718bac947a R08: 0000000000000000 R09: 0000000000000000
[ 68.572441][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 68.575993][ T5469] R13: 000000000000000b R14: 00007f718bb9bf80 R15: 00007ffc650c69f8
[ 68.579596][ T5469]
[ 68.581010][ T5469]
[ 68.582104][ T5469] The buggy address belongs to the physical page:
[ 68.585016][ T5469] page:ffffea0004f13800 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x13c4e0
[ 68.589573][ T5469] flags: 0x57ff00000000000(node=1|zone=2|lastcpupid=0x7ff)
[ 68.592815][ T5469] page_type: 0xffffffff()
[ 68.594777][ T5469] raw: 057ff00000000000 ffffea0004f13808 ffffea0004f13808 0000000000000000
[ 68.598626][ T5469] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 68.602490][ T5469] page dumped because: kasan: bad access detected
[ 68.605531][ T5469] page_owner info is not present (never set?)
[ 68.608319][ T5469]
[ 68.609427][ T5469] Memory state around the buggy address:
[ 68.611941][ T5469] ffff88813c4dff00: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 68.615563][ T5469] ffff88813c4dff80: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 68.619208][ T5469] >ffff88813c4e0000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 68.622825][ T5469] ^
[ 68.624811][ T5469] ffff88813c4e0080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 68.628102][ T5469] ffff88813c4e0100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 68.631753][ T5469] ==================================================================
[ 68.635556][ T5469] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 68.638922][ T5469] CPU: 2 PID: 5469 Comm: syz-executor.0 Not tainted 6.7.0-syzkaller-gde927f6c0b07 #0
[ 68.643258][ T5469] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 68.647840][ T5469] Call Trace:
[ 68.649383][ T5469]
[ 68.650751][ T5469] dump_stack_lvl+0xd9/0x1b0
[ 68.652903][ T5469] panic+0x6dc/0x790
[ 68.654704][ T5469] ? panic_smp_self_stop+0xa0/0xa0
[ 68.657250][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.659481][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.662248][ T5469] ? check_panic_on_warn+0x1f/0xb0
[ 68.664606][ T5469] check_panic_on_warn+0xab/0xb0
[ 68.666876][ T5469] end_report+0x108/0x150
[ 68.668905][ T5469] kasan_report+0xea/0x110
[ 68.670961][ T5469] ? __skb_flow_dissect+0x19d1/0x7a50
[ 68.673435][ T5469] ? __skb_flow_dissect+0x19d1/0x7a50
[ 68.675894][ T5469] __skb_flow_dissect+0x19d1/0x7a50
[ 68.678273][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.680477][ T5469] ? bpf_flow_dissect+0x3a0/0x3a0
[ 68.682778][ T5469] ? __synchronize_srcu+0x258/0x2a0
[ 68.685165][ T5469] ? __orc_find+0x104/0x130
[ 68.687242][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.689508][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.691997][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.694343][ T5469] ? __orc_find+0x104/0x130
[ 68.696426][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.698589][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.701079][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.703393][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.705535][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.707746][ T5469] ? lock_release+0x4bf/0x690
[ 68.709935][ T5469] ? arch_stack_walk+0x112/0x170
[ 68.712270][ T5469] ? stack_depot_save_flags+0x558/0x730
[ 68.714775][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.717247][ T5469] ? do_raw_read_unlock+0xe0/0xe0
[ 68.719249][ T5469] ? ipgre_xmit+0x4a1/0x980
[ 68.720902][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.722780][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.725020][ T5469] ? _raw_write_unlock_irqrestore+0x3b/0x70
[ 68.727189][ T5469] ? stack_depot_save_flags+0x558/0x730
[ 68.729198][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.731064][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.732942][ T5469] ? lock_acquire+0x464/0x520
[ 68.735017][ T5469] ? __orc_find+0x104/0x130
[ 68.737041][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.739211][ T5469] ? __read_once_word_nocheck+0x9/0x10
[ 68.741568][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.743922][ T5469] ? __orc_find+0x104/0x130
[ 68.746031][ T5469] ? stack_access_ok+0xf9/0x270
[ 68.748249][ T5469] ? __module_address+0x55/0x3b0
[ 68.750416][ T5469] ? is_module_text_address+0x145/0x1a0
[ 68.752907][ T5469] ? __skb_get_hash+0xc7/0x540
[ 68.755129][ T5469] __skb_get_hash+0xc7/0x540
[ 68.757279][ T5469] ? arch_stack_walk+0x112/0x170
[ 68.759459][ T5469] ? __skb_get_hash_symmetric+0x440/0x440
[ 68.761746][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.763755][ T5469] ? _raw_read_unlock_irqrestore+0x3b/0x70
[ 68.765964][ T5469] ? stack_depot_save_flags+0x259/0x730
[ 68.768401][ T5469] ip_tunnel_xmit+0x1855/0x33c0
[ 68.770456][ T5469] ? arch_uprobe_pre_xol+0x298/0x310
[ 68.772783][ T5469] ? fixup_umip_exception+0x900/0x9d0
[ 68.775198][ T5469] ? unwind_next_frame+0x51/0x2390
[ 68.777537][ T5469] ? __orc_find+0x104/0x130
[ 68.779592][ T5469] ? stack_access_ok+0x80/0x270
[ 68.781904][ T5469] ? ip_md_tunnel_xmit+0x2000/0x2000
[ 68.784240][ T5469] ? skb_network_protocol+0x1f0/0x670
[ 68.786654][ T5469] ? skb_csum_hwoffload_help+0x190/0x190
[ 68.789218][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.791313][ T5469] ? lock_acquire+0x464/0x520
[ 68.793447][ T5469] ipip_tunnel_xmit+0x3cc/0x4e0
[ 68.795679][ T5469] dev_hard_start_xmit+0x13d/0x6d0
[ 68.798017][ T5469] __dev_queue_xmit+0x7c1/0x3d60
[ 68.800172][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.802170][ T5469] ? lock_release+0x4bf/0x690
[ 68.804096][ T5469] ? ___neigh_create+0x18d3/0x2a80
[ 68.806078][ T5469] ? netdev_core_pick_tx+0x3a0/0x3a0
[ 68.808219][ T5469] ? do_raw_write_lock+0x11e/0x3b0
[ 68.810280][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.812328][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.814181][ T5469] ? lock_release+0x4bf/0x690
[ 68.816014][ T5469] ? lock_sync+0x190/0x190
[ 68.817775][ T5469] ? ip_finish_output2+0x833/0x2550
[ 68.819876][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.821995][ T5469] ? ___neigh_create+0xec1/0x2a80
[ 68.824030][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.826121][ T5469] neigh_connected_output+0x42c/0x5d0
[ 68.828493][ T5469] ip_finish_output2+0x833/0x2550
[ 68.830746][ T5469] ? nf_hook+0x3bf/0x6c0
[ 68.832702][ T5469] ? ip_fragment.constprop.0+0x230/0x230
[ 68.835340][ T5469] ? ip_skb_dst_mtu+0x3fc/0xc80
[ 68.837570][ T5469] ? ip_frag_next+0xa40/0xa40
[ 68.839869][ T5469] ? dst_output+0x170/0x170
[ 68.841974][ T5469] __ip_finish_output+0x38b/0x650
[ 68.844295][ T5469] ip_finish_output+0x31/0x310
[ 68.846504][ T5469] ip_mc_output+0x1dd/0x6a0
[ 68.848673][ T5469] ip_local_out+0xaf/0x1a0
[ 68.850746][ T5469] iptunnel_xmit+0x5b4/0x9b0
[ 68.852831][ T5469] ip_tunnel_xmit+0x1dbc/0x33c0
[ 68.854979][ T5469] ? kasan_save_stack+0x33/0x50
[ 68.856663][ T5469] ? kasan_save_track+0x14/0x30
[ 68.858387][ T5469] ? ip_md_tunnel_xmit+0x2000/0x2000
[ 68.860636][ T5469] ? pskb_expand_head+0x236/0x1170
[ 68.862813][ T5469] ? __sanitizer_cov_trace_const_cmp1+0x1/0x20
[ 68.865282][ T5469] ? skb_network_protocol+0x1f0/0x670
[ 68.867449][ T5469] ? __x64_sys_bpf+0x78/0xc0
[ 68.869297][ T5469] ? __gre_xmit+0x4f5/0x990
[ 68.871374][ T5469] ipgre_xmit+0x4a1/0x980
[ 68.873654][ T5469] dev_hard_start_xmit+0x13d/0x6d0
[ 68.876294][ T5469] __dev_queue_xmit+0x7c1/0x3d60
[ 68.878147][ T5469] ? rcu_is_watching+0x12/0xb0
[ 68.879910][ T5469] ? trace_kmalloc+0x26/0xa0
[ 68.882009][ T5469] ? __kmalloc_node_track_caller+0x236/0x460
[ 68.884905][ T5469] ? netdev_core_pick_tx+0x3a0/0x3a0
[ 68.887255][ T5469] ? kmalloc_reserve+0x13c/0x260
[ 68.889453][ T5469] ? skb_headers_offset_update+0x129/0x260
[ 68.891721][ T5469] ? pskb_expand_head+0x627/0x1170
[ 68.894248][ T5469] ? skb_release_data+0x870/0x870
[ 68.896999][ T5469] __bpf_redirect+0x6f1/0xf10
[ 68.899114][ T5469] bpf_clone_redirect+0x2b2/0x420
[ 68.901226][ T5469] ? __bpf_redirect+0xf10/0xf10
[ 68.903346][ T5469] ___bpf_prog_run+0x3e44/0xabc0
[ 68.905438][ T5469] ? lock_release+0x4bf/0x690
[ 68.907386][ T5469] ? finish_task_switch.isra.0+0x214/0xca0
[ 68.909842][ T5469] __bpf_prog_run512+0xb7/0xf0
[ 68.911905][ T5469] ? __bpf_prog_run_args32+0x140/0x140
[ 68.914184][ T5469] ? lock_release+0x4bf/0x690
[ 68.916178][ T5469] ? finish_task_switch.isra.0+0x2ee/0xca0
[ 68.918661][ T5469] ? __switch_to+0x75d/0x1380
[ 68.920827][ T5469] ? preempt_schedule_thunk+0x1a/0x30
[ 68.923253][ T5469] ? __cant_sleep+0x190/0x190
[ 68.925458][ T5469] ? bpf_test_timer_continue+0x152/0x3d0
[ 68.927947][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.930609][ T5469] bpf_test_run+0x3d3/0x9c0
[ 68.932741][ T5469] ? bpf_test_timer_continue+0x3d0/0x3d0
[ 68.935224][ T5469] ? kasan_save_track+0x14/0x30
[ 68.937007][ T5469] ? eth_type_trans+0x2b2/0x680
[ 68.938936][ T5469] ? krealloc+0xa7/0x100
[ 68.940605][ T5469] bpf_prog_test_run_skb+0xb75/0x1dd0
[ 68.942732][ T5469] ? bpf_prog_test_run_raw_tp+0x710/0x710
[ 68.944582][ T5469] ? fput+0x32/0x390
[ 68.945846][ T5469] ? bpf_prog_test_run_raw_tp+0x710/0x710
[ 68.947961][ T5469] __sys_bpf+0x11bf/0x4910
[ 68.949817][ T5469] ? bpf_perf_link_attach+0x540/0x540
[ 68.951808][ T5469] ? __might_fault+0x13f/0x1a0
[ 68.953894][ T5469] ? reacquire_held_locks+0x4c0/0x4c0
[ 68.956190][ T5469] ? preempt_count_sub+0x160/0x160
[ 68.958245][ T5469] ? __might_fault+0xe6/0x1a0
[ 68.960153][ T5469] ? folio_memcg_unlock+0x240/0x240
[ 68.962066][ T5469] __x64_sys_bpf+0x78/0xc0
[ 68.963710][ T5469] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 68.966028][ T5469] do_syscall_64+0xd3/0x250
[ 68.967981][ T5469] entry_SYSCALL_64_after_hwframe+0x63/0x6b
[ 68.970690][ T5469] RIP: 0033:0x7f718ba7cce9
[ 68.972730][ T5469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 68.981311][ T5469] RSP: 002b:00007f718c8010c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[ 68.985263][ T5469] RAX: ffffffffffffffda RBX: 00007f718bb9bf80 RCX: 00007f718ba7cce9
[ 68.989186][ T5469] RDX: 0000000000000028 RSI: 0000000020000080 RDI: 000000000000000a
[ 68.992882][ T5469] RBP: 00007f718bac947a R08: 0000000000000000 R09: 0000000000000000
[ 68.996613][ T5469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 69.000218][ T5469] R13: 000000000000000b R14: 00007f718bb9bf80 R15: 00007ffc650c69f8
[ 69.004005][ T5469]
[ 69.006132][ T5469] Kernel Offset: disabled
[ 69.008125][ T5469] Rebooting in 86400 seconds..