Warning: Permanently added '10.128.0.156' (ED25519) to the list of known hosts.
2026/04/18 18:07:19 parsed 1 programs
[   24.981657][   T36] audit: type=1400 audit(1776535639.220:64): avc:  denied  { node_bind } for  pid=290 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   26.130305][   T36] audit: type=1400 audit(1776535640.360:65): avc:  denied  { mounton } for  pid=296 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   26.131356][  T296] cgroup: Unknown subsys name 'net'
[   26.153114][   T36] audit: type=1400 audit(1776535640.360:66): avc:  denied  { mount } for  pid=296 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   26.180887][   T36] audit: type=1400 audit(1776535640.390:67): avc:  denied  { unmount } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   26.181268][  T296] cgroup: Unknown subsys name 'devices'
[   26.363432][  T296] cgroup: Unknown subsys name 'hugetlb'
[   26.369103][  T296] cgroup: Unknown subsys name 'rlimit'
[   26.527755][   T36] audit: type=1400 audit(1776535640.760:68): avc:  denied  { setattr } for  pid=296 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   26.551091][   T36] audit: type=1400 audit(1776535640.760:69): avc:  denied  { create } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.563565][  T299] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   26.571745][   T36] audit: type=1400 audit(1776535640.760:70): avc:  denied  { write } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.601058][   T36] audit: type=1400 audit(1776535640.760:71): avc:  denied  { read } for  pid=296 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   26.617027][  T296] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   26.621286][   T36] audit: type=1400 audit(1776535640.760:72): avc:  denied  { sys_module } for  pid=296 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   26.651333][   T36] audit: type=1400 audit(1776535640.760:73): avc:  denied  { mounton } for  pid=296 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   27.613080][  T302] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   27.796510][  T317] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.803688][  T317] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.810773][  T317] bridge_slave_0: entered allmulticast mode
[   27.817639][  T317] bridge_slave_0: entered promiscuous mode
[   27.827674][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.834874][  T317] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.841965][  T317] bridge_slave_1: entered allmulticast mode
[   27.848145][  T317] bridge_slave_1: entered promiscuous mode
[   27.891961][  T317] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.899128][  T317] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.906757][  T317] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.914090][  T317] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.935129][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.942593][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.952759][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.959824][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.968756][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.976027][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.000789][  T317] veth0_vlan: entered promiscuous mode
[   28.012480][  T317] veth1_macvtap: entered promiscuous mode
[   28.063676][   T13] bridge_slave_1: left allmulticast mode
[   28.069380][   T13] bridge_slave_1: left promiscuous mode
[   28.075223][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.083543][   T13] bridge_slave_0: left allmulticast mode
[   28.089408][   T13] bridge_slave_0: left promiscuous mode
[   28.095326][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.213879][   T13] veth1_macvtap: left promiscuous mode
[   28.219497][   T13] veth0_vlan: left promiscuous mode
2026/04/18 18:07:23 executed programs: 0
[   29.062195][  T365] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.069461][  T365] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.077062][  T365] bridge_slave_0: entered allmulticast mode
[   29.083538][  T365] bridge_slave_0: entered promiscuous mode
[   29.090584][  T365] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.097943][  T365] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.105093][  T365] bridge_slave_1: entered allmulticast mode
[   29.112085][  T365] bridge_slave_1: entered promiscuous mode
[   29.157792][  T365] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.164888][  T365] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.172345][  T365] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.179393][  T365] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.199002][  T337] bridge0: port 1(bridge_slave_0) entered disabled state
[   29.207151][  T337] bridge0: port 2(bridge_slave_1) entered disabled state
[   29.217815][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   29.224911][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   29.242709][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[   29.249789][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[   29.264975][  T365] veth0_vlan: entered promiscuous mode
[   29.276014][  T365] veth1_macvtap: entered promiscuous mode
[   29.308605][  T365] ------------[ cut here ]------------
[   29.314663][  T365] WARNING: CPU: 0 PID: 365 at fs/inode.c:340 drop_nlink+0xce/0x110
[   29.323005][  T365] Modules linked in:
[   29.326914][  T365] CPU: 0 UID: 0 PID: 365 Comm: syz-executor Not tainted syzkaller #0 de3e1d1c5728fabb050931035751e453f935abb5
[   29.338898][  T365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.349270][  T365] RIP: 0010:drop_nlink+0xce/0x110
[   29.354456][  T365] Code: 04 00 00 be 08 00 00 00 e8 7f 15 ee ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 58 d9 b1 03 cc e8 62 d3 95 ff <0f> 0b eb 81 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 59 ff ff ff 4c
[   29.374184][  T365] RSP: 0018:ffffc9000115fc60 EFLAGS: 00010293
[   29.380371][  T365] RAX: ffffffff81f1d94e RBX: ffff888114e8cb98 RCX: ffff888114c25f00
[   29.388422][  T365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   29.396651][  T365] RBP: ffffc9000115fc88 R08: 0000000000000003 R09: 0000000000000004
[   29.404943][  T365] R10: dffffc0000000000 R11: fffff5200022bf7c R12: dffffc0000000000
[   29.413295][  T365] R13: 1ffff110229d197c R14: ffff888114e8cbe0 R15: 0000000000000000
[   29.421721][  T365] FS:  000055556b02b500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   29.430774][  T365] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.437500][  T365] CR2: 000055556b04e948 CR3: 0000000113744000 CR4: 00000000003526b0
[   29.445614][  T365] Call Trace:
[   29.448907][  T365]  <TASK>
[   29.452016][  T365]  shmem_rmdir+0x5f/0x90
[   29.456304][  T365]  vfs_rmdir+0x3e3/0x560
[   29.460558][  T365]  incfs_kill_sb+0x109/0x230
[   29.465212][  T365]  deactivate_locked_super+0xd8/0x2a0
[   29.470696][  T365]  deactivate_super+0xb8/0xe0
[   29.475455][  T365]  cleanup_mnt+0x406/0x4a0
[   29.479930][  T365]  __cleanup_mnt+0x1d/0x40
[   29.484400][  T365]  task_work_run+0x1e8/0x260
[   29.489029][  T365]  ? __cfi_task_work_run+0x10/0x10
[   29.494377][  T365]  ? __x64_sys_umount+0x12e/0x180
[   29.499426][  T365]  ? __cfi___x64_sys_umount+0x10/0x10
[   29.505110][  T365]  ? __kasan_check_read+0x15/0x20
[   29.510345][  T365]  resume_user_mode_work+0x35/0x50
[   29.515850][  T365]  syscall_exit_to_user_mode+0x63/0xb0
[   29.521469][  T365]  do_syscall_64+0x63/0xf0
[   29.525981][  T365]  ? clear_bhb_loop+0x50/0xa0
[   29.530756][  T365]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   29.536677][  T365] RIP: 0033:0x7fb97f39da57
[   29.541232][  T365] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   29.561318][  T365] RSP: 002b:00007ffc02e3e758 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   29.569761][  T365] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb97f39da57
[   29.577836][  T365] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc02e3e810
[   29.586154][  T365] RBP: 00007ffc02e3e810 R08: 00007ffc02e3f810 R09: 00000000ffffffff
[   29.594390][  T365] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc02e3f8a0
[   29.602441][  T365] R13: 00007fb97f432048 R14: 0000000000007257 R15: 00007ffc02e3f8e0
[   29.610426][  T365]  </TASK>
[   29.613481][  T365] ---[ end trace 0000000000000000 ]---
[   29.619178][  T365] ==================================================================
[   29.627801][  T365] BUG: KASAN: null-ptr-deref in ihold+0x24/0x70
[   29.634139][  T365] Write of size 4 at addr 0000000000000168 by task syz-executor/365
[   29.642460][  T365] 
[   29.644786][  T365] CPU: 1 UID: 0 PID: 365 Comm: syz-executor Tainted: G        W          syzkaller #0 de3e1d1c5728fabb050931035751e453f935abb5
[   29.644807][  T365] Tainted: [W]=WARN
[   29.644812][  T365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.644820][  T365] Call Trace:
[   29.644824][  T365]  <TASK>
[   29.644830][  T365]  __dump_stack+0x21/0x30
[   29.644850][  T365]  dump_stack_lvl+0x140/0x1c0
[   29.644865][  T365]  ? __cfi_dump_stack_lvl+0x10/0x10
[   29.644881][  T365]  print_report+0x3d/0x70
[   29.644895][  T365]  kasan_report+0x162/0x1a0
[   29.644908][  T365]  ? ihold+0x24/0x70
[   29.644919][  T365]  ? _raw_spin_unlock+0x45/0x60
[   29.644939][  T365]  ? ihold+0x24/0x70
[   29.644949][  T365]  kasan_check_range+0x25a/0x2b0
[   29.644962][  T365]  __kasan_check_write+0x18/0x20
[   29.644977][  T365]  ihold+0x24/0x70
[   29.644987][  T365]  vfs_rmdir+0x26a/0x560
[   29.645001][  T365]  incfs_kill_sb+0x109/0x230
[   29.645018][  T365]  deactivate_locked_super+0xd8/0x2a0
[   29.645032][  T365]  deactivate_super+0xb8/0xe0
[   29.645045][  T365]  cleanup_mnt+0x406/0x4a0
[   29.645057][  T365]  __cleanup_mnt+0x1d/0x40
[   29.645067][  T365]  task_work_run+0x1e8/0x260
[   29.645082][  T365]  ? __cfi_task_work_run+0x10/0x10
[   29.645095][  T365]  ? __x64_sys_umount+0x12e/0x180
[   29.645110][  T365]  ? __cfi___x64_sys_umount+0x10/0x10
[   29.645125][  T365]  ? __kasan_check_read+0x15/0x20
[   29.645140][  T365]  resume_user_mode_work+0x35/0x50
[   29.645158][  T365]  syscall_exit_to_user_mode+0x63/0xb0
[   29.645174][  T365]  do_syscall_64+0x63/0xf0
[   29.645186][  T365]  ? clear_bhb_loop+0x50/0xa0
[   29.645199][  T365]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   29.645217][  T365] RIP: 0033:0x7fb97f39da57
[   29.645229][  T365] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   29.645240][  T365] RSP: 002b:00007ffc02e3e758 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   29.645262][  T365] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb97f39da57
[   29.645271][  T365] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc02e3e810
[   29.645279][  T365] RBP: 00007ffc02e3e810 R08: 00007ffc02e3f810 R09: 00000000ffffffff
[   29.645288][  T365] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc02e3f8a0
[   29.645297][  T365] R13: 00007fb97f432048 R14: 0000000000007257 R15: 00007ffc02e3f8e0
[   29.645307][  T365]  </TASK>
[   29.645312][  T365] ==================================================================
[   29.894412][  T365] Disabling lock debugging due to kernel taint
[   29.900705][  T365] BUG: kernel NULL pointer dereference, address: 0000000000000168
[   29.908503][  T365] #PF: supervisor write access in kernel mode
[   29.914677][  T365] #PF: error_code(0x0002) - not-present page
[   29.920653][  T365] PGD 800000010e3aa067 P4D 800000010e3aa067 PUD 0 
[   29.927198][  T365] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI
[   29.933621][  T365] CPU: 1 UID: 0 PID: 365 Comm: syz-executor Tainted: G    B   W          syzkaller #0 de3e1d1c5728fabb050931035751e453f935abb5
[   29.947092][  T365] Tainted: [B]=BAD_PAGE, [W]=WARN
[   29.952214][  T365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.962442][  T365] RIP: 0010:ihold+0x2a/0x70
[   29.966958][  T365] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 4d ca 95 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 3c 0c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 5d
[   29.986732][  T365] RSP: 0018:ffffc9000115fca0 EFLAGS: 00010246
[   29.992796][  T365] RAX: ffff888114c25f00 RBX: 0000000000000000 RCX: ffff888114c25f00
[   30.000763][  T365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   30.008726][  T365] RBP: ffffc9000115fcb0 R08: ffffffff88b99947 R09: 1ffffffff1173328
[   30.016691][  T365] R10: dffffc0000000000 R11: fffffbfff1173329 R12: ffff888114e8cba4
[   30.024744][  T365] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   30.032810][  T365] FS:  000055556b02b500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   30.041755][  T365] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   30.048421][  T365] CR2: 0000000000000168 CR3: 0000000113744000 CR4: 00000000003526b0
[   30.056411][  T365] Call Trace:
[   30.059685][  T365]  <TASK>
[   30.062608][  T365]  vfs_rmdir+0x26a/0x560
[   30.066940][  T365]  incfs_kill_sb+0x109/0x230
[   30.071708][  T365]  deactivate_locked_super+0xd8/0x2a0
[   30.077160][  T365]  deactivate_super+0xb8/0xe0
[   30.081829][  T365]  cleanup_mnt+0x406/0x4a0
[   30.086248][  T365]  __cleanup_mnt+0x1d/0x40
[   30.090837][  T365]  task_work_run+0x1e8/0x260
[   30.095447][  T365]  ? __cfi_task_work_run+0x10/0x10
[   30.101002][  T365]  ? __x64_sys_umount+0x12e/0x180
[   30.106513][  T365]  ? __cfi___x64_sys_umount+0x10/0x10
[   30.111892][  T365]  ? __kasan_check_read+0x15/0x20
[   30.116923][  T365]  resume_user_mode_work+0x35/0x50
[   30.122442][  T365]  syscall_exit_to_user_mode+0x63/0xb0
[   30.128159][  T365]  do_syscall_64+0x63/0xf0
[   30.132582][  T365]  ? clear_bhb_loop+0x50/0xa0
[   30.137424][  T365]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   30.143324][  T365] RIP: 0033:0x7fb97f39da57
[   30.147731][  T365] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   30.167471][  T365] RSP: 002b:00007ffc02e3e758 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   30.175904][  T365] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fb97f39da57
[   30.183920][  T365] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffc02e3e810
[   30.191972][  T365] RBP: 00007ffc02e3e810 R08: 00007ffc02e3f810 R09: 00000000ffffffff
[   30.200034][  T365] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffc02e3f8a0
[   30.208180][  T365] R13: 00007fb97f432048 R14: 0000000000007257 R15: 00007ffc02e3f8e0
[   30.216167][  T365]  </TASK>
[   30.219208][  T365] Modules linked in:
[   30.223094][  T365] CR2: 0000000000000168
[   30.227239][  T365] ---[ end trace 0000000000000000 ]---
[   30.232704][  T365] RIP: 0010:ihold+0x2a/0x70
[   30.237209][  T365] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 4d ca 95 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 3c 0c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 5d
[   30.257184][  T365] RSP: 0018:ffffc9000115fca0 EFLAGS: 00010246
[   30.263258][  T365] RAX: ffff888114c25f00 RBX: 0000000000000000 RCX: ffff888114c25f00
[   30.271320][  T365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   30.279457][  T365] RBP: ffffc9000115fcb0 R08: ffffffff88b99947 R09: 1ffffffff1173328
[   30.287620][  T365] R10: dffffc0000000000 R11: fffffbfff1173329 R12: ffff888114e8cba4
[   30.295670][  T365] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   30.303633][  T365] FS:  000055556b02b500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   30.312551][  T365] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   30.319125][  T365] CR2: 0000000000000168 CR3: 0000000113744000 CR4: 00000000003526b0
[   30.327094][  T365] Kernel panic - not syncing: Fatal exception
[   30.333640][  T365] Kernel Offset: disabled
[   30.337959][  T365] Rebooting in 86400 seconds..