Warning: Permanently added '10.128.1.188' (ECDSA) to the list of known hosts.
2023/04/04 11:00:06 ignoring optional flag "sandboxArg"="0"
2023/04/04 11:00:06 parsed 1 programs
2023/04/04 11:00:06 executed programs: 0
[ 37.832724][ T30] kauditd_printk_skb: 65 callbacks suppressed
[ 37.832738][ T30] audit: type=1400 audit(1680606006.940:137): avc: denied { mounton } for pid=368 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 37.886223][ T30] audit: type=1400 audit(1680606006.940:138): avc: denied { mount } for pid=368 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 37.962399][ T376] bridge0: port 1(bridge_slave_0) entered blocking state
[ 37.970182][ T376] bridge0: port 1(bridge_slave_0) entered disabled state
[ 37.977943][ T376] device bridge_slave_0 entered promiscuous mode
[ 37.984850][ T376] bridge0: port 2(bridge_slave_1) entered blocking state
[ 37.991946][ T376] bridge0: port 2(bridge_slave_1) entered disabled state
[ 37.999402][ T376] device bridge_slave_1 entered promiscuous mode
[ 38.045003][ T386] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.052346][ T386] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.061290][ T386] device bridge_slave_0 entered promiscuous mode
[ 38.076708][ T380] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.083690][ T380] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.091121][ T380] device bridge_slave_0 entered promiscuous mode
[ 38.098146][ T386] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.105548][ T386] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.113026][ T386] device bridge_slave_1 entered promiscuous mode
[ 38.130746][ T380] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.137883][ T380] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.145007][ T380] device bridge_slave_1 entered promiscuous mode
[ 38.160505][ T385] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.167828][ T385] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.175328][ T385] device bridge_slave_0 entered promiscuous mode
[ 38.182350][ T385] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.189305][ T385] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.196670][ T385] device bridge_slave_1 entered promiscuous mode
[ 38.239117][ T378] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.246386][ T378] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.253435][ T378] device bridge_slave_0 entered promiscuous mode
[ 38.260268][ T378] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.267395][ T378] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.274826][ T378] device bridge_slave_1 entered promiscuous mode
[ 38.303760][ T389] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.312914][ T389] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.320362][ T389] device bridge_slave_0 entered promiscuous mode
[ 38.329006][ T389] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.336037][ T389] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.343242][ T389] device bridge_slave_1 entered promiscuous mode
[ 38.432745][ T386] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.439819][ T386] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.447389][ T386] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.454390][ T386] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.469795][ T380] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.477221][ T380] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.484440][ T380] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.491544][ T380] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.512714][ T385] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.519804][ T385] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.527759][ T385] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.534645][ T385] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.545798][ T376] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.552700][ T376] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.559980][ T376] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.567020][ T376] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.608495][ T389] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.615482][ T389] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.623438][ T389] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.630629][ T389] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.639971][ T378] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.647095][ T378] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.654796][ T378] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.662929][ T378] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.688292][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.695531][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.703229][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.710537][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.717946][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.725103][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.732667][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.740066][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.747292][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.754615][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.761870][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.769452][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.777321][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.799838][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.808161][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 38.815663][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.823062][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.831709][ T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.838654][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.846066][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.854484][ T20] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.861515][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.868776][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.876800][ T20] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.883626][ T20] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.890930][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.898962][ T20] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.906056][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.913479][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.921821][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.929758][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.957403][ T386] device veth0_vlan entered promiscuous mode
[ 38.967966][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 38.976433][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.985098][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 38.994079][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 39.002418][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 39.009350][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 39.017300][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 39.025941][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 39.034506][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 39.041446][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 39.049172][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 39.057114][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 39.065379][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 39.073796][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 39.082018][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 39.090653][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.099142][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 39.107382][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.115438][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 39.122900][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 39.130236][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 39.138624][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 39.147085][ T330] bridge0: port 1(bridge_slave_0) entered blocking state
[ 39.154183][ T330] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 39.161951][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 39.170636][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 39.178795][ T330] bridge0: port 2(bridge_slave_1) entered blocking state
[ 39.185847][ T330] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 39.193127][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 39.200609][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 39.209237][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.216744][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.244954][ T389] device veth0_vlan entered promiscuous mode
[ 39.255891][ T376] device veth0_vlan entered promiscuous mode
[ 39.264897][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.273854][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.282565][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.290613][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.298112][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 39.306012][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 39.313864][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 39.322708][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 39.331312][ T331] bridge0: port 1(bridge_slave_0) entered blocking state
[ 39.338424][ T331] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 39.345655][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 39.354013][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 39.362126][ T331] bridge0: port 2(bridge_slave_1) entered blocking state
[ 39.369065][ T331] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 39.376416][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 39.384871][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 39.393536][ T331] bridge0: port 1(bridge_slave_0) entered blocking state
[ 39.401221][ T331] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 39.409101][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 39.417189][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 39.425623][ T331] bridge0: port 2(bridge_slave_1) entered blocking state
[ 39.432489][ T331] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 39.440282][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 39.448543][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 39.456981][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 39.465755][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.474501][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 39.483365][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.492092][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.499420][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.512682][ T380] device veth0_vlan entered promiscuous mode
[ 39.524375][ T389] device veth1_macvtap entered promiscuous mode
[ 39.534854][ T386] device veth1_macvtap entered promiscuous mode
[ 39.544035][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.552794][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.561296][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 39.569825][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.578933][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 39.586815][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.594975][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 39.603528][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 39.613610][ T376] device veth1_macvtap entered promiscuous mode
[ 39.631846][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.639921][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.648852][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.659254][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.668320][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.676482][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.684103][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 39.692229][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 39.700118][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.708238][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.716450][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.724336][ T325] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.743562][ T378] device veth0_vlan entered promiscuous mode
[ 39.750301][ T380] device veth1_macvtap entered promiscuous mode
[ 39.764188][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.772646][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.781164][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.789456][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.796854][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 39.804716][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 39.813156][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.821767][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.831543][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.840939][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.854275][ T30] audit: type=1400 audit(1680606008.970:139): avc: denied { mount } for pid=386 comm="syz-executor.5" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 39.888862][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 39.898403][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.899564][ T410] FAULT_INJECTION: forcing a failure.
[ 39.899564][ T410] name failslab, interval 1, probability 0, space 0, times 1
[ 39.907451][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.920735][ T410] CPU: 0 PID: 410 Comm: syz-executor.5 Not tainted 5.15.98-syzkaller-05895-g7364b7abbafb #0
[ 39.927775][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.937369][ T410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 39.937379][ T410] Call Trace:
[ 39.937389][ T410]
[ 39.937395][ T410] dump_stack_lvl+0x151/0x1b7
[ 39.937417][ T410] ? io_uring_drop_tctx_refs+0x190/0x190
[ 39.937432][ T410] dump_stack+0x15/0x17
[ 39.937443][ T410] should_fail+0x3c6/0x510
[ 39.937456][ T410] __should_failslab+0xa4/0xe0
[ 39.937470][ T410] ? anon_vma_fork+0x1be/0x500
[ 39.937484][ T410] should_failslab+0x9/0x20
[ 39.946597][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.956207][ T410] slab_pre_alloc_hook+0x37/0xd0
[ 39.956235][ T410] ? anon_vma_fork+0x1be/0x500
[ 39.956249][ T410] kmem_cache_alloc+0x44/0x200
[ 39.956262][ T410] anon_vma_fork+0x1be/0x500
[ 39.956275][ T410] ? vm_area_dup+0x17a/0x230
[ 39.956290][ T410] dup_mm+0x8c5/0x12c0
[ 39.960414][ T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.962460][ T410] ? copy_init_mm+0x20/0x20
[ 40.044004][ T410] copy_mm+0x107/0x1b0
[ 40.048477][ T410] copy_process+0x12bc/0x3260
[ 40.052961][ T410] ? proc_fail_nth_write+0x20b/0x290
[ 40.058610][ T410] ? fsnotify_perm+0x6a/0x5d0
[ 40.063172][ T410] ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 40.068468][ T410] ? vfs_write+0xa0d/0x1160
[ 40.072893][ T410] kernel_clone+0x21e/0x9e0
[ 40.077677][ T410] ? file_end_write+0x1c0/0x1c0
[ 40.082735][ T410] ? __kasan_check_write+0x14/0x20
[ 40.087762][ T410] ? create_io_thread+0x1e0/0x1e0
[ 40.092704][ T410] ? __mutex_lock_slowpath+0x10/0x10
[ 40.098129][ T410] __x64_sys_clone+0x23f/0x290
[ 40.102898][ T410] ? __do_sys_vfork+0x130/0x130
[ 40.107833][ T410] ? ksys_write+0x260/0x2c0
[ 40.112151][ T410] ? debug_smp_processor_id+0x17/0x20
[ 40.117534][ T410] ? fpregs_assert_state_consistent+0xb6/0xe0
[ 40.124492][ T410] ? exit_to_user_mode_prepare+0x39/0xa0
[ 40.129972][ T410] do_syscall_64+0x3d/0xb0
[ 40.134195][ T410] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 40.140060][ T410] RIP: 0033:0x7f30a58980f9
[ 40.144311][ T410] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 40.164165][ T410] RSP: 002b:00007f30a540b118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 40.172539][ T410] RAX: ffffffffffffffda RBX: 00007f30a59b7f80 RCX: 00007f30a58980f9
[ 40.180350][ T410] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000008200
[ 40.188162][ T410] RBP: 00007f30a540b1d0 R08: 0000000000000000 R09: 0000000000000000
[ 40.196061][ T410] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 40.204238][ T410] R13: 00007ffe0f94d81f R14: 00007f30a540b300 R15: 0000000000022000
[ 40.212479][ T410]
[ 40.217537][ T410] ------------[ cut here ]------------
[ 40.224001][ T378] device veth1_macvtap entered promiscuous mode
[ 40.224059][ T410] refcount_t: underflow; use-after-free.
[ 40.236267][ T410] WARNING: CPU: 0 PID: 410 at lib/refcount.c:28 refcount_warn_saturate+0x158/0x1a0
[ 40.245989][ T410] Modules linked in:
[ 40.251015][ T410] CPU: 0 PID: 410 Comm: syz-executor.5 Not tainted 5.15.98-syzkaller-05895-g7364b7abbafb #0
[ 40.253640][ T385] device veth0_vlan entered promiscuous mode
[ 40.261697][ T410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 40.276897][ T385] device veth1_macvtap entered promiscuous mode
[ 40.277970][ T410] RIP: 0010:refcount_warn_saturate+0x158/0x1a0
[ 40.290227][ T410] Code: 04 01 48 c7 c7 00 89 62 85 e8 e4 e7 e4 fe 0f 0b eb 8b e8 6b 6c 12 ff c6 05 d9 6a 25 04 01 48 c7 c7 60 89 62 85 e8 c8 e7 e4 fe <0f> 0b e9 6c ff ff ff e8 4c 6c 12 ff c6 05 bb 6a 25 04 01 48 c7 c7
[ 40.312015][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 40.312123][ T410] RSP: 0018:ffffc90000eb7948 EFLAGS: 00010246
[ 40.322585][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 40.329313][ T410] RAX: 46b422e907a01f00 RBX: 0000000000000003 RCX: ffff88810da24f00
[ 40.337635][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 40.345800][ T410] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 40.353268][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 40.361877][ T410] RBP: ffffc90000eb7958 R08: ffffffff815690d5 R09: ffffed103ee465e8
[ 40.369186][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 40.377081][ T410] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff11021da04cd
[ 40.384871][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 40.392678][ T410] R13: ffff88810ed02668 R14: 0000000000000003 R15: ffff888124899e39
[ 40.400723][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 40.408728][ T410] FS: 00007f30a540b700(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 40.416643][ T330] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 40.432611][ T410] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.440877][ T410] CR2: 00005555570593b8 CR3: 000000011ff91000 CR4: 00000000003506b0
[ 40.449396][ T410] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 40.449746][ T413] BUG: unable to handle page fault for address: ffffed1800000008
[ 40.458689][ T410] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 40.466147][ T413] #PF: supervisor read access in kernel mode
[ 40.466156][ T413] #PF: error_code(0x0000) - not-present page
[ 40.466164][ T413] PGD 23fff2067 P4D 23fff2067 PUD 0
[ 40.466186][ T413] Oops: 0000 [#1] PREEMPT SMP KASAN
[ 40.474373][ T410] Call Trace:
[ 40.480131][ T413] CPU: 0 PID: 413 Comm: syz-executor.3 Not tainted 5.15.98-syzkaller-05895-g7364b7abbafb #0
[ 40.480149][ T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023
[ 40.480157][ T413] RIP: 0010:__rb_insert_augmented+0x91/0x610
[ 40.486511][ T410]
[ 40.491635][ T413] Code: 00 74 08 4c 89 ef e8 ee 38 31 ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 c0 38 31 ff 48 89 d8 48 8b 1b 4c
[ 40.491649][ T413] RSP: 0018:ffffc90000f278d8 EFLAGS: 00010a02
[ 40.497403][ T410] vm_area_free_no_check+0x123/0x130
[ 40.500414][ T413]
[ 40.500419][ T413] RAX: ffff88c000000038 RBX: ffff88c000000040 RCX: dffffc0000000000
[ 40.500431][ T413] RDX: ffffffff81a3a4f0 RSI: ffff88810fe2b7e0 RDI: ffff88810e9f8be8
[ 40.511073][ T410] dup_mm+0xd73/0x12c0
[ 40.521374][ T413] RBP: ffffc90000f27940 R08: dffffc0000000000 R09: ffff88810e9f8bf0
[ 40.521387][ T413] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 40.521397][ T413] R13: ffff888124899e38 R14: 1ffff11800000008 R15: ffff888123234748
[ 40.521406][ T413] FS: 00007fdaaa1ed700(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 40.521419][ T413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.527835][ T410] ? copy_init_mm+0x20/0x20
[ 40.530593][ T413] CR2: ffffed1800000008 CR3: 00000001203e2000 CR4: 00000000003506b0
[ 40.530608][ T413] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 40.550307][ T410] copy_mm+0x107/0x1b0
[ 40.556048][ T413] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 40.556059][ T413] Call Trace:
[ 40.556063][ T413]
[ 40.556069][ T413] ? anon_vma_interval_tree_iter_next+0x390/0x390
[ 40.561192][ T410] copy_process+0x12bc/0x3260
[ 40.563317][ T413] vma_interval_tree_insert_after+0x2be/0x2d0
[ 40.563334][ T413] dup_mm+0xa11/0x12c0
[ 40.571968][ T410] ? proc_fail_nth_write+0x20b/0x290
[ 40.580064][ T413] ? copy_init_mm+0x20/0x20
[ 40.580094][ T413] copy_mm+0x107/0x1b0
[ 40.580106][ T413] copy_process+0x12bc/0x3260
[ 40.580121][ T413] ? proc_fail_nth_write+0x20b/0x290
[ 40.580135][ T413] ? fsnotify_perm+0x6a/0x5d0
[ 40.580150][ T413] ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 40.580165][ T413] ? vfs_write+0xa0d/0x1160
[ 40.580181][ T413] kernel_clone+0x21e/0x9e0
[ 40.580195][ T413] ? file_end_write+0x1c0/0x1c0
[ 40.580208][ T413] ? __kasan_check_write+0x14/0x20
[ 40.580224][ T413] ? create_io_thread+0x1e0/0x1e0
[ 40.580239][ T413] ? __mutex_lock_slowpath+0x10/0x10
[ 40.580255][ T413] __x64_sys_clone+0x23f/0x290
[ 40.580268][ T413] ? __do_sys_vfork+0x130/0x130
[ 40.580281][ T413] ? ksys_write+0x260/0x2c0
[ 40.590424][ T410] ? fsnotify_perm+0x6a/0x5d0
[ 40.592219][ T413] ? debug_smp_processor_id+0x17/0x20
[ 40.592237][ T413] ? fpregs_assert_state_consistent+0xb6/0xe0
[ 40.600315][ T410] ? pidfd_show_fdinfo+0x2b0/0x2b0
[ 40.608214][ T413] ? exit_to_user_mode_prepare+0x39/0xa0
[ 40.608235][ T413] do_syscall_64+0x3d/0xb0
[ 40.608251][ T413] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 40.608267][ T413] RIP: 0033:0x7fdaaa67a0f9
[ 40.608281][ T413] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[ 40.608293][ T413] RSP: 002b:00007fdaaa1ed118 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 40.608310][ T413] RAX: ffffffffffffffda RBX: 00007fdaaa799f80 RCX: 00007fdaaa67a0f9
[ 40.608320][ T413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000008200
[ 40.617748][ T410] ? vfs_write+0xa0d/0x1160
[ 40.624004][ T413] RBP: 00007fdaaa1ed1d0 R08: 0000000000000000 R09: 0000000000000000
[ 40.624015][ T413] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 40.624024][ T413] R13: 00007ffea438a24f R14: 00007fdaaa1ed300 R15: 0000000000022000
[ 40.628386][ T410] kernel_clone+0x21e/0x9e0
[ 40.636172][ T413]
[ 40.636183][ T413] Modules linked in:
[ 40.636194][ T413] CR2: ffffed1800000008
[ 40.636203][ T413] ---[ end trace 9c5a8acc87503394 ]---
[ 40.636211][ T413] RIP: 0010:__rb_insert_augmented+0x91/0x610
[ 40.636234][ T413] Code: 00 74 08 4c 89 ef e8 ee 38 31 ff 49 8b 45 00 a8 01 0f 85 60 05 00 00 48 89 5d a0 48 89 45 c0 48 8d 58 08 49 89 de 49 c1 ee 03 <43> 80 3c 26 00 74 08 48 89 df e8 c0 38 31 ff 48 89 d8 48 8b 1b 4c
[ 40.636245][ T413] RSP: 0018:ffffc90000f278d8 EFLAGS: 00010a02
[ 40.636257][ T413] RAX: ffff88c000000038 RBX: ffff88c000000040 RCX: dffffc0000000000
[ 40.636267][ T413] RDX: ffffffff81a3a4f0 RSI: ffff88810fe2b7e0 RDI: ffff88810e9f8be8
[ 40.636276][ T413] RBP: ffffc90000f27940 R08: dffffc0000000000 R09: ffff88810e9f8bf0
[ 40.647423][ T410] ? file_end_write+0x1c0/0x1c0
[ 40.648244][ T413] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[ 40.648258][ T413] R13: ffff888124899e38 R14: 1ffff11800000008 R15: ffff888123234748
[ 40.657214][ T410] ? __kasan_check_write+0x14/0x20
[ 40.659878][ T413] FS: 00007fdaaa1ed700(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000
[ 40.659894][ T413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.662857][ T410] ? create_io_thread+0x1e0/0x1e0
[ 40.669482][ T413] CR2: ffffed1800000008 CR3: 00000001203e2000 CR4: 00000000003506b0
[ 40.669496][ T413] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 40.669505][ T413] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 40.669516][ T413] Kernel panic - not syncing: Fatal exception
[ 40.669794][ T413] Kernel Offset: disabled
[ 41.040736][ T413] Rebooting in 86400 seconds..