Warning: Permanently added '10.128.0.51' (ED25519) to the list of known hosts.
2023/08/26 16:33:36 ignoring optional flag "sandboxArg"="0"
2023/08/26 16:33:36 parsed 1 programs
[   46.740418][   T24] audit: type=1400 audit(1693067616.640:154): avc:  denied  { mounton } for  pid=342 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
2023/08/26 16:33:36 executed programs: 0
[   46.767811][   T24] audit: type=1400 audit(1693067616.640:155): avc:  denied  { mount } for  pid=342 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   46.798063][   T24] audit: type=1400 audit(1693067616.670:156): avc:  denied  { unlink } for  pid=342 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   46.824699][  T342] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.880798][  T348] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.888812][  T348] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.897420][  T348] device bridge_slave_0 entered promiscuous mode
[   46.905415][  T348] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.913503][  T348] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.921318][  T348] device bridge_slave_1 entered promiscuous mode
[   46.959113][   T24] audit: type=1400 audit(1693067616.860:157): avc:  denied  { write } for  pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   46.980655][   T24] audit: type=1400 audit(1693067616.890:158): avc:  denied  { read } for  pid=348 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   46.986871][  T348] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.010176][  T348] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.017293][  T348] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.024193][  T348] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.043102][   T25] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.050841][   T25] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.059144][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   47.067343][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   47.079653][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   47.088553][   T15] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.095725][   T15] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.114697][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   47.124116][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   47.132384][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.139266][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.146519][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   47.154545][   T25] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   47.165965][  T293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   47.174724][  T293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   47.181928][  T293] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   47.191478][  T348] device veth0_vlan entered promiscuous mode
[   47.201970][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.211193][  T348] device veth1_macvtap entered promiscuous mode
[   47.221169][   T15] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.234007][  T293] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.246938][   T24] audit: type=1400 audit(1693067617.150:159): avc:  denied  { mounton } for  pid=348 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=357 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   47.276871][   T24] audit: type=1400 audit(1693067617.180:160): avc:  denied  { write } for  pid=352 comm="syz-executor.0" name="vga_arbiter" dev="devtmpfs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1
2023/08/26 16:33:41 executed programs: 623
2023/08/26 16:33:46 executed programs: 1372
2023/08/26 16:33:51 executed programs: 2105
[  199.345987][    C1] watchdog: BUG: soft lockup - CPU#1 stuck for 123s! [kworker/u4:4:1585]
[  199.354460][    C1] Modules linked in:
[  199.358173][    C1] CPU: 1 PID: 1585 Comm: kworker/u4:4 Not tainted 5.10.189-syzkaller-989220-gc6a1fbd8e4aa #0
[  199.368299][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[  199.378381][    C1] Workqueue: events_unbound toggle_allocation_gate
[  199.384893][    C1] RIP: 0010:smp_call_function_single+0x278/0x510
[  199.391242][    C1] Code: 0f 85 18 02 00 00 44 8b 6c 24 48 44 89 ee 83 e6 01 31 ff e8 ca e7 0a 00 41 83 e5 01 75 0a e8 0f e4 0a 00 e9 eb 00 00 00 f3 90 <42> 0f b6 04 23 84 c0 75 15 f7 44 24 48 01 00 00 00 0f 84 cd 00 00
[  199.411717][    C1] RSP: 0018:ffffc90003a9f720 EFLAGS: 00000293
[  199.418356][    C1] RAX: ffffffff815fb504 RBX: 1ffff92000753eed RCX: ffff888112f70000
[  199.426577][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  199.434574][    C1] RBP: ffffc90003a9f810 R08: ffffffff815fb4d6 R09: ffffed103ee4aed1
[  199.442730][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  199.451240][    C1] R13: 0000000000000001 R14: ffffc90003a9f768 R15: 0000000000000000
[  199.459223][    C1] FS:  0000000000000000(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000
[  199.468151][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.474662][    C1] CR2: 00007f802129d988 CR3: 000000000600f000 CR4: 00000000003506a0
[  199.482475][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.490372][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.498266][    C1] Call Trace:
[  199.501563][    C1]  <IRQ>
[  199.504327][    C1]  ? show_regs+0x58/0x60
[  199.508375][    C1]  ? watchdog_timer_fn+0x471/0x590
[  199.513552][    C1]  ? proc_watchdog_cpumask+0xd0/0xd0
[  199.518701][    C1]  ? __hrtimer_run_queues+0x3d7/0xa50
[  199.523888][    C1]  ? hrtimer_interrupt+0x8b0/0x8b0
[  199.529000][    C1]  ? clockevents_program_event+0x214/0x2c0
[  199.534817][    C1]  ? ktime_get_update_offsets_now+0x266/0x280
[  199.540734][    C1]  ? hrtimer_interrupt+0x39a/0x8b0
[  199.545720][    C1]  ? __sysvec_apic_timer_interrupt+0xfd/0x3c0
[  199.551715][    C1]  ? asm_call_irq_on_stack+0xf/0x20
[  199.556944][    C1]  </IRQ>
[  199.559850][    C1]  ? sysvec_apic_timer_interrupt+0x85/0xe0
[  199.565450][    C1]  ? asm_sysvec_apic_timer_interrupt+0x12/0x20
[  199.571571][    C1]  ? smp_call_function_single+0x266/0x510
[  199.577175][    C1]  ? smp_call_function_single+0x294/0x510
[  199.585682][    C1]  ? smp_call_function_single+0x278/0x510
[  199.591460][    C1]  ? text_poke_sync+0x20/0x20
[  199.596131][    C1]  ? flush_smp_call_function_from_idle+0x1b0/0x1b0
[  199.602443][    C1]  ? cpumask_any_but+0x18/0xb0
[  199.607027][    C1]  ? text_poke_sync+0x20/0x20
[  199.611537][    C1]  ? cpumask_any_but+0xa3/0xb0
[  199.616241][    C1]  smp_call_function_many_cond+0x94e/0xa30
[  199.621925][    C1]  ? __kmalloc_track_caller+0xe8/0x320
[  199.627603][    C1]  ? text_poke_sync+0x20/0x20
[  199.632580][    C1]  ? smp_call_function_many+0x40/0x40
[  199.637930][    C1]  ? text_poke+0x20/0x20
[  199.642164][    C1]  ? text_poke_sync+0x20/0x20
[  199.646679][    C1]  on_each_cpu+0xa8/0x1a0
[  199.650837][    C1]  ? __kmalloc_track_caller+0xe8/0x320
[  199.656478][    C1]  ? smp_call_function+0x90/0x90
[  199.661756][    C1]  ? text_poke_loc_init+0xc5/0x580
[  199.666681][    C1]  ? text_poke_finish+0x30/0x30
[  199.671881][    C1]  text_poke_bp_batch+0x1d4/0x600
[  199.677265][    C1]  ? __kasan_check_write+0x14/0x20
[  199.682467][    C1]  ? text_poke_loc_init+0x580/0x580
[  199.687674][    C1]  ? __kasan_check_write+0x14/0x20
[  199.692740][    C1]  ? mutex_lock+0xa5/0x110
[  199.697580][    C1]  ? mutex_trylock+0xa0/0xa0
[  199.702146][    C1]  ? __kasan_check_write+0x14/0x20
[  199.707091][    C1]  text_poke_finish+0x1a/0x30
[  199.711603][    C1]  arch_jump_label_transform_apply+0x15/0x30
[  199.718006][    C1]  __jump_label_update+0x36a/0x380
[  199.722944][    C1]  jump_label_update+0x379/0x400
[  199.727705][    C1]  static_key_enable_cpuslocked+0x12f/0x250
[  199.733433][    C1]  static_key_enable+0x1a/0x30
[  199.738300][    C1]  toggle_allocation_gate+0xbf/0x450
[  199.743444][    C1]  ? kfence_protect+0x270/0x270
[  199.748208][    C1]  ? finish_task_switch+0x130/0x5a0
[  199.753408][    C1]  ? switch_mm_irqs_off+0x33c/0x9a0
[  199.759140][    C1]  ? __switch_to_asm+0x34/0x60
[  199.763733][    C1]  ? __kasan_check_read+0x11/0x20
[  199.768686][    C1]  ? read_word_at_a_time+0x12/0x20
[  199.773717][    C1]  ? strscpy+0x9c/0x260
[  199.777780][    C1]  process_one_work+0x6dc/0xbd0
[  199.782571][    C1]  worker_thread+0xaea/0x1510
[  199.787188][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  199.792037][    C1]  ? __kasan_check_read+0x11/0x20
[  199.797065][    C1]  kthread+0x34b/0x3d0
[  199.801092][    C1]  ? worker_clr_flags+0x180/0x180
[  199.805931][    C1]  ? kthread_blkcg+0xd0/0xd0
[  199.810370][    C1]  ret_from_fork+0x1f/0x30
[  199.814954][    C1] Sending NMI from CPU 1 to CPUs 0:
[  199.821151][    C1] NMI backtrace for cpu 0
[  199.821160][    C1] CPU: 0 PID: 8714 Comm: syz-executor.0 Not tainted 5.10.189-syzkaller-989220-gc6a1fbd8e4aa #0
[  199.821168][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023
[  199.821174][    C1] RIP: 0010:_raw_spin_lock_irqsave+0xb4/0x210
[  199.821188][    C1] Code: f8 fc 48 c7 44 24 50 00 00 00 00 9c 8f 44 24 50 42 80 3c 3b 00 74 08 4c 89 e7 e8 87 4a f8 fc 48 8b 44 24 50 48 89 44 24 18 fa <bf> 01 00 00 00 e8 92 94 99 fc 4c 8d 64 24 40 4c 89 e3 48 c1 eb 03
[  199.821193][    C1] RSP: 0018:ffffc90002d8fca0 EFLAGS: 00000046
[  199.821205][    C1] RAX: 0000000000000046 RBX: 1ffff920005b1f9e RCX: ffff888111a40000
[  199.821212][    C1] RDX: 0000000000000000 RSI: 0000000000000046 RDI: ffffffff86b14fc0
[  199.821218][    C1] RBP: ffffc90002d8fd68 R08: ffffffff82c86a89 R09: 0000000000000003
[  199.821224][    C1] R10: fffff520005b1f9c R11: dffffc0000000001 R12: ffffc90002d8fcf0
[  199.821230][    C1] R13: ffffffff86b14fc0 R14: 1ffff920005b1f98 R15: dffffc0000000000
[  199.821237][    C1] FS:  00005555555c3480(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[  199.821242][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  199.821248][    C1] CR2: 00007f8020cded58 CR3: 000000010f145000 CR4: 00000000003506b0
[  199.821254][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  199.821260][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  199.821263][    C1] Call Trace:
[  199.821266][    C1]  <NMI>
[  199.821270][    C1]  ? show_regs+0x58/0x60
[  199.821274][    C1]  ? nmi_cpu_backtrace+0x133/0x160
[  199.821279][    C1]  ? _raw_spin_lock_irqsave+0xb4/0x210
[  199.821284][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  199.821287][    C1]  ? nmi_handle+0xa8/0x280
[  199.821292][    C1]  ? _raw_spin_lock_irqsave+0xb4/0x210
[  199.821296][    C1]  ? default_do_nmi+0x69/0x160
[  199.821300][    C1]  ? exc_nmi+0xaf/0x120
[  199.821304][    C1]  ? end_repeat_nmi+0x16/0x31
[  199.821308][    C1]  ? vga_arb_release+0x3a9/0x950
[  199.821313][    C1]  ? _raw_spin_lock_irqsave+0xb4/0x210
[  199.821317][    C1]  ? _raw_spin_lock_irqsave+0xb4/0x210
[  199.821322][    C1]  ? _raw_spin_lock_irqsave+0xb4/0x210
[  199.821325][    C1]  </NMI>
[  199.821329][    C1]  ? _raw_spin_lock+0x1b0/0x1b0
[  199.821334][    C1]  ? __fsnotify_parent+0x4b9/0x6c0
[  199.821338][    C1]  vga_arb_release+0x203/0x950
[  199.821342][    C1]  ? vga_arb_open+0x220/0x220
[  199.821346][    C1]  __fput+0x309/0x760
[  199.821350][    C1]  ____fput+0x15/0x20
[  199.821354][    C1]  task_work_run+0x129/0x190
[  199.821358][    C1]  exit_to_user_mode_loop+0xbf/0xd0
[  199.821363][    C1]  syscall_exit_to_user_mode+0xbc/0x1d0
[  199.821367][    C1]  do_syscall_64+0x40/0x70
[  199.821372][    C1]  entry_SYSCALL_64_after_hwframe+0x61/0xc6
[  199.821376][    C1] RIP: 0033:0x7f802117ba1a
[  199.821389][    C1] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[  199.821394][    C1] RSP: 002b:00007ffe99a763f0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  199.821405][    C1] RAX: 0000000000000000 RBX: 0000000000000004 RCX: 00007f802117ba1a
[  199.821411][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  199.821417][    C1] RBP: 0000000000000032 R08: 0000001b31760000 R09: 00007f802129c05c
[  199.821424][    C1] R10: 00007ffe99a76540 R11: 0000000000000293 R12: 00007f8020d00418
[  199.821430][    C1] R13: ffffffffffffffff R14: 00007f8020d00000 R15: 000000000001033a