Warning: Permanently added '10.128.0.161' (ED25519) to the list of known hosts. 2023/10/17 18:19:08 ignoring optional flag "sandboxArg"="0" 2023/10/17 18:19:08 parsed 1 programs [ 105.968682][ T27] kauditd_printk_skb: 76 callbacks suppressed [ 105.968699][ T27] audit: type=1400 audit(1697566748.748:201): avc: denied { getattr } for pid=5372 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 105.999667][ T27] audit: type=1400 audit(1697566748.748:202): avc: denied { read } for pid=5372 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 106.024171][ T27] audit: type=1400 audit(1697566748.748:203): avc: denied { open } for pid=5372 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 106.043102][ T5377] cgroup: Unknown subsys name 'net' [ 106.050686][ T27] audit: type=1400 audit(1697566748.808:204): avc: denied { mounton } for pid=5377 comm="syz-executor" path="/syzcgroup/unified" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 106.069595][ T5377] cgroup: Unknown subsys name 'rlimit' [ 106.083435][ T27] audit: type=1400 audit(1697566748.818:205): avc: denied { mount } for pid=5377 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 2023/10/17 18:19:08 executed programs: 0 [ 106.107322][ T27] audit: type=1400 audit(1697566748.868:206): avc: denied { mounton } for pid=5377 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 106.133401][ T27] audit: type=1400 audit(1697566748.868:207): avc: denied { mount } for pid=5377 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 107.286528][ T4434] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 107.296187][ T4434] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 107.305216][ T4434] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 107.313757][ T4434] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 107.322374][ T4434] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 107.330084][ T4434] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 107.342386][ T27] audit: type=1400 audit(1697566750.118:208): avc: denied { mounton } for pid=5382 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 107.491290][ T5382] chnl_net:caif_netlink_parms(): no params data found [ 107.567923][ T5382] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.575129][ T5382] bridge0: port 1(bridge_slave_0) entered disabled state [ 107.582669][ T5382] bridge_slave_0: entered allmulticast mode [ 107.590166][ T5382] bridge_slave_0: entered promiscuous mode [ 107.599969][ T5382] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.607358][ T5382] bridge0: port 2(bridge_slave_1) entered disabled state [ 107.614631][ T5382] bridge_slave_1: entered allmulticast mode [ 107.622018][ T5382] bridge_slave_1: entered promiscuous mode [ 107.655971][ T5382] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 107.669399][ T5382] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 107.710407][ T5382] team0: Port device team_slave_0 added [ 107.719715][ T5382] team0: Port device team_slave_1 added [ 107.751879][ T5382] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 107.758933][ T5382] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.785895][ T5382] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 107.799302][ T5382] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 107.806357][ T5382] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 107.832519][ T5382] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 107.878178][ T5382] hsr_slave_0: entered promiscuous mode [ 107.884924][ T5382] hsr_slave_1: entered promiscuous mode [ 108.012541][ T5382] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.019841][ T5382] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.028784][ T5382] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.036168][ T5382] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.104774][ T5382] 8021q: adding VLAN 0 to HW filter on device bond0 [ 108.124783][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.135040][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.151601][ T5382] 8021q: adding VLAN 0 to HW filter on device team0 [ 108.172524][ T5043] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.180124][ T5043] bridge0: port 1(bridge_slave_0) entered forwarding state [ 108.190357][ T5043] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.197611][ T5043] bridge0: port 2(bridge_slave_1) entered forwarding state [ 108.275457][ T5382] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 108.311841][ T27] audit: type=1400 audit(1697566751.088:209): avc: denied { sys_module } for pid=5382 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1 [ 108.623925][ T5382] veth0_vlan: entered promiscuous mode [ 108.644354][ T5382] veth1_vlan: entered promiscuous mode [ 108.679914][ T5382] veth0_macvtap: entered promiscuous mode [ 108.692104][ T5382] veth1_macvtap: entered promiscuous mode [ 108.715926][ T5382] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 108.735300][ T5382] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 108.832226][ T7] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.845666][ T7] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.879837][ T2519] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 108.888819][ T2519] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.906079][ T27] audit: type=1400 audit(1697566751.678:210): avc: denied { mounton } for pid=5382 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=2323 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 109.247597][ T5043] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 109.357869][ T4434] Bluetooth: hci0: command 0x0409 tx timeout [ 109.527980][ T5043] usb 1-1: too many configurations: 186, using maximum allowed: 8 [ 110.367295][ T5043] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 110.376368][ T5043] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 110.385874][ T5043] usb 1-1: Product: syz [ 110.390716][ T5043] usb 1-1: Manufacturer: syz [ 110.395313][ T5043] usb 1-1: SerialNumber: syz [ 110.441974][ T5043] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 111.017404][ T777] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 111.435046][ C0] divide error: 0000 [#1] PREEMPT SMP KASAN [ 111.437091][ T4434] Bluetooth: hci0: command 0x041b tx timeout [ 111.440961][ C0] CPU: 0 PID: 15 Comm: ksoftirqd/0 Not tainted 6.6.0-rc6-syzkaller-00029-g213f891525c2 #0 [ 111.440985][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 111.440997][ C0] RIP: 0010:ath9k_htc_swba+0x1be/0xc70 [ 111.472992][ C0] Code: 00 48 8b 13 0f b7 c9 bb 01 00 00 00 4d 8d bd b0 03 00 00 4c 89 ff 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c3 e8 12 ce 54 04 48 63 c3 48 83 f8 [ 111.492699][ C0] RSP: 0018:ffffc9000035fc18 EFLAGS: 00010246 [ 111.499292][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 111.507266][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff888075bab7f0 [ 111.515318][ C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 111.523279][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 111.531245][ C0] R13: ffff888075bab440 R14: 0000000000000210 R15: ffff888075bab7f0 [ 111.539211][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 111.548483][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.555259][ C0] CR2: 0000000020001038 CR3: 00000000785d8000 CR4: 00000000003506f0 [ 111.563226][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 111.571192][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 111.579154][ C0] Call Trace: [ 111.582426][ C0] [ 111.585350][ C0] ? show_regs+0x8f/0xa0 [ 111.589598][ C0] ? die+0x36/0xa0 [ 111.593312][ C0] ? do_trap+0x22b/0x420 [ 111.597552][ C0] ? ath9k_htc_swba+0x1be/0xc70 [ 111.602415][ C0] ? ath9k_htc_swba+0x1be/0xc70 [ 111.607279][ C0] ? do_error_trap+0xf4/0x230 [ 111.611973][ C0] ? ath9k_htc_swba+0x1be/0xc70 [ 111.616838][ C0] ? exc_divide_error+0x38/0x50 [ 111.621694][ C0] ? ath9k_htc_swba+0x1be/0xc70 [ 111.626555][ C0] ? asm_exc_divide_error+0x1a/0x20 [ 111.631990][ C0] ? ath9k_htc_swba+0x1be/0xc70 [ 111.636887][ C0] ? ath9k_htc_swba+0x105/0xc70 [ 111.641750][ C0] ? ath9k_wmi_event_tasklet+0x181/0x460 [ 111.647477][ C0] ? reacquire_held_locks+0x4b0/0x4b0 [ 111.652965][ C0] ? ath9k_htc_beaconep+0x20/0x20 [ 111.658139][ C0] ? _raw_spin_unlock_irqrestore+0x4e/0x70 [ 111.664145][ C0] ath9k_wmi_event_tasklet+0x34e/0x460 [ 111.669633][ C0] tasklet_action_common.constprop.0+0x242/0x3d0 [ 111.676051][ C0] __do_softirq+0x218/0x965 [ 111.680637][ C0] ? __lock_text_end+0x5/0x5 [ 111.685308][ C0] ? run_ksoftirqd+0x54/0x60 [ 111.689950][ C0] ? _local_bh_enable+0xa0/0xa0 [ 111.694804][ C0] ? smpboot_thread_fn+0x59b/0xa00 [ 111.700218][ C0] run_ksoftirqd+0x31/0x60 [ 111.704629][ C0] smpboot_thread_fn+0x660/0xa00 [ 111.709659][ C0] ? __kthread_parkme+0x14b/0x220 [ 111.714933][ C0] ? sort_range+0x30/0x30 [ 111.719461][ C0] kthread+0x33c/0x440 [ 111.723547][ C0] ? _raw_spin_unlock_irq+0x23/0x50 [ 111.728771][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 111.734516][ C0] ret_from_fork+0x45/0x80 [ 111.738977][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 111.744624][ C0] ret_from_fork_asm+0x11/0x20 [ 111.749483][ C0] [ 111.752514][ C0] Modules linked in: [ 111.756616][ C0] ---[ end trace 0000000000000000 ]--- [ 111.762302][ C0] RIP: 0010:ath9k_htc_swba+0x1be/0xc70 [ 111.767843][ C0] Code: 00 48 8b 13 0f b7 c9 bb 01 00 00 00 4d 8d bd b0 03 00 00 4c 89 ff 48 0f ca 48 89 d0 c1 ea 0a 48 c1 e8 20 c1 e0 16 09 d0 31 d2 f1 8d 04 12 31 d2 f7 f1 29 c3 e8 12 ce 54 04 48 63 c3 48 83 f8 [ 111.788248][ C0] RSP: 0018:ffffc9000035fc18 EFLAGS: 00010246 [ 111.794542][ C0] RAX: 0000000000000000 RBX: 0000000000000001 RCX: 0000000000000000 [ 111.802750][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: ffff888075bab7f0 [ 111.810940][ C0] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 111.819132][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000 [ 111.827327][ C0] R13: ffff888075bab440 R14: 0000000000000210 R15: ffff888075bab7f0 [ 111.835665][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 111.844639][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 111.851285][ C0] CR2: 0000000020001038 CR3: 00000000785d8000 CR4: 00000000003506f0 [ 111.859292][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 111.867322][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 111.875326][ C0] Kernel panic - not syncing: Fatal exception in interrupt [ 111.882786][ C0] Kernel Offset: disabled [ 111.887121][ C0] Rebooting in 86400 seconds..