Warning: Permanently added '10.128.0.72' (ED25519) to the list of known hosts. 2025/02/05 22:32:04 ignoring optional flag "sandboxArg"="0" 2025/02/05 22:32:05 parsed 1 programs [ 35.133181][ T28] audit: type=1400 audit(1738794725.748:66): avc: denied { node_bind } for pid=294 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 36.320049][ T28] audit: type=1400 audit(1738794726.938:67): avc: denied { mounton } for pid=302 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 36.321948][ T302] cgroup: Unknown subsys name 'net' [ 36.367739][ T28] audit: type=1400 audit(1738794726.938:68): avc: denied { mount } for pid=302 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 36.435880][ T28] audit: type=1400 audit(1738794726.998:69): avc: denied { unmount } for pid=302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 36.436065][ T302] cgroup: Unknown subsys name 'devices' [ 36.586394][ T302] cgroup: Unknown subsys name 'hugetlb' [ 36.593235][ T302] cgroup: Unknown subsys name 'rlimit' [ 36.728493][ T28] audit: type=1400 audit(1738794727.348:70): avc: denied { setattr } for pid=302 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 36.779574][ T307] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 36.780718][ T28] audit: type=1400 audit(1738794727.348:71): avc: denied { create } for pid=302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 36.819603][ T28] audit: type=1400 audit(1738794727.348:72): avc: denied { write } for pid=302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 36.847712][ T28] audit: type=1400 audit(1738794727.348:73): avc: denied { read } for pid=302 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 36.880192][ T28] audit: type=1400 audit(1738794727.348:74): avc: denied { module_request } for pid=302 comm="syz-executor" kmod="netdev-wpan0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 36.909736][ T28] audit: type=1400 audit(1738794727.348:75): avc: denied { mounton } for pid=302 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 36.913563][ T302] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 37.598855][ T314] request_module fs-gadgetfs succeeded, but still no fs? [ 38.077360][ T333] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.088934][ T333] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.106556][ T333] device bridge_slave_0 entered promiscuous mode [ 38.115073][ T333] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.126690][ T333] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.136618][ T333] device bridge_slave_1 entered promiscuous mode [ 38.220148][ T333] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.233971][ T333] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.252717][ T333] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.268162][ T333] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.317967][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.327535][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.341175][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.359959][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.387370][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 38.409348][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.426292][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.440098][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 38.454925][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.469278][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.487917][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 38.508540][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 38.527698][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 38.547620][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 38.561106][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 38.575697][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 38.591436][ T333] device veth0_vlan entered promiscuous mode [ 38.605979][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 38.620923][ T333] device veth1_macvtap entered promiscuous mode [ 38.639861][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.658934][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.720870][ T333] syz-executor (333) used greatest stack depth: 20776 bytes left 2025/02/05 22:32:10 executed programs: 0 [ 39.710330][ T370] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.726913][ T370] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.743484][ T370] device bridge_slave_0 entered promiscuous mode [ 39.765213][ T370] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.776498][ T370] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.806270][ T370] device bridge_slave_1 entered promiscuous mode [ 39.895507][ T370] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.909555][ T370] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.924713][ T370] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.940981][ T370] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.975608][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.989747][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.001735][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.015718][ T37] device bridge_slave_1 left promiscuous mode [ 40.027410][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.046435][ T37] device bridge_slave_0 left promiscuous mode [ 40.066882][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.088607][ T37] device veth1_macvtap left promiscuous mode [ 40.105838][ T37] device veth0_vlan left promiscuous mode [ 40.197644][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.208415][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.226539][ T10] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.237851][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.252804][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.266206][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.275002][ T10] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.289314][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.322456][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.344262][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.358941][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.371186][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.389923][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.399030][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.419448][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.432804][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.451335][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.459440][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.471584][ T370] device veth0_vlan entered promiscuous mode [ 40.493453][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.510496][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.533344][ T370] device veth1_macvtap entered promiscuous mode [ 40.558709][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 40.574608][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.587384][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.606488][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.619022][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.647678][ T28] kauditd_printk_skb: 29 callbacks suppressed [ 40.647696][ T28] audit: type=1400 audit(1738794731.268:105): avc: denied { mounton } for pid=370 comm="syz-executor" path="/root/syzkaller.kVoLhu/syz-tmp/newroot/dev" dev="tmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=dir permissive=1 [ 40.700341][ T28] audit: type=1400 audit(1738794731.278:106): avc: denied { mount } for pid=370 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 40.734992][ T28] audit: type=1400 audit(1738794731.318:107): avc: denied { mounton } for pid=370 comm="syz-executor" path="/dev/gadgetfs" dev="devtmpfs" ino=523 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 40.779527][ T378] loop2: detected capacity change from 0 to 2048 [ 40.824311][ T378] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 40.851228][ T28] audit: type=1400 audit(1738794731.468:108): avc: denied { mount } for pid=377 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 40.890825][ T28] audit: type=1400 audit(1738794731.468:109): avc: denied { write } for pid=377 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 40.890859][ T378] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 40.930812][ T28] audit: type=1400 audit(1738794731.468:110): avc: denied { add_name } for pid=377 comm="syz.2.16" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 40.997483][ T28] audit: type=1400 audit(1738794731.468:111): avc: denied { create } for pid=377 comm="syz.2.16" name="pids.current" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 41.049981][ T8] ------------[ cut here ]------------ [ 41.049980][ T28] audit: type=1400 audit(1738794731.488:112): avc: denied { read append open } for pid=377 comm="syz.2.16" path="/0/file0/pids.current" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 41.050012][ T28] audit: type=1400 audit(1738794731.488:113): avc: denied { map } for pid=377 comm="syz.2.16" path="/0/file0/pids.current" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 41.062327][ T8] kernel BUG at fs/ext4/inode.c:2760! [ 41.111056][ T28] audit: type=1400 audit(1738794731.488:114): avc: denied { write } for pid=377 comm="syz.2.16" path="/0/file0/pids.current" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 41.168096][ T8] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 41.231715][ T8] CPU: 1 PID: 8 Comm: kworker/u4:0 Not tainted 6.1.124-syzkaller-00117-g7658169f5f5f #0 [ 41.255523][ T8] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 41.287145][ T8] Workqueue: writeback wb_workfn (flush-7:2) [ 41.301133][ T8] RIP: 0010:ext4_writepages+0x3fab/0x3fd0 [ 41.307340][ T8] Code: f7 7f ff 31 ff 89 de e8 b3 f7 7f ff 45 84 f6 75 2a e8 19 f5 7f ff 49 bc 00 00 00 00 00 fc ff df e9 6e f6 ff ff e8 05 f5 7f ff <0f> 0b e8 fe f4 7f ff e8 f5 e7 0a ff e9 46 c3 ff ff e8 ef f4 7f ff [ 41.354049][ T8] RSP: 0018:ffffc90000087000 EFLAGS: 00010293 [ 41.361408][ T8] RAX: ffffffff81f59fbb RBX: 0000008000000000 RCX: ffff888100395100 [ 41.385748][ T8] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 41.404631][ T8] RBP: ffffc90000087410 R08: ffffffff81f5671b R09: ffffed102172de57 [ 41.425789][ T8] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888116050000 [ 41.447242][ T8] R13: ffff88810b96f3f0 R14: 000000c410000000 R15: ffffc900000872e0 [ 41.467452][ T8] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 41.489366][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.508201][ T8] CR2: 000000c006eb9000 CR3: 0000000110041000 CR4: 00000000003506a0 [ 41.538322][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.556783][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.570759][ T8] Call Trace: [ 41.578418][ T8] [ 41.582010][ T8] ? __die_body+0x62/0xb0 [ 41.591635][ T8] ? die+0x88/0xb0 [ 41.600590][ T8] ? do_trap+0x103/0x330 [ 41.613073][ T8] ? ext4_writepages+0x3fab/0x3fd0 [ 41.619253][ T8] ? handle_invalid_op+0x95/0xc0 [ 41.631432][ T8] ? ext4_writepages+0x3fab/0x3fd0 [ 41.649536][ T8] ? exc_invalid_op+0x32/0x50 [ 41.655772][ T8] ? asm_exc_invalid_op+0x1b/0x20 [ 41.664794][ T8] ? ext4_writepages+0x70b/0x3fd0 [ 41.680221][ T8] ? ext4_writepages+0x3fab/0x3fd0 [ 41.689808][ T8] ? ext4_writepages+0x3fab/0x3fd0 [ 41.697667][ T8] ? loopback_xmit+0x434/0x610 [ 41.707661][ T8] ? __kasan_check_read+0x11/0x20 [ 41.714987][ T8] ? __local_bh_enable_ip+0x58/0x80 [ 41.726850][ T8] ? __dev_queue_xmit+0x156c/0x3730 [ 41.736572][ T8] ? ext4_read_folio+0x240/0x240 [ 41.744314][ T8] ? xas_load+0x39d/0x3b0 [ 41.757005][ T8] ? __kasan_check_write+0x14/0x20 [ 41.770712][ T8] ? __filemap_get_folio+0x95e/0xae0 [ 41.782414][ T8] ? __update_load_avg_cfs_rq+0xb1/0x2f0 [ 41.790967][ T8] ? __kasan_check_write+0x14/0x20 [ 41.797447][ T8] ? enqueue_task_fair+0xe82/0x2260 [ 41.811301][ T8] ? ext4_read_folio+0x240/0x240 [ 41.820346][ T8] do_writepages+0x385/0x620 [ 41.827165][ T8] ? __writepage+0x130/0x130 [ 41.836710][ T8] ? enqueue_task_fair+0xe82/0x2260 [ 41.850229][ T8] ? __kasan_check_write+0x14/0x20 [ 41.860732][ T8] __writeback_single_inode+0xdc/0xb80 [ 41.887311][ T8] writeback_sb_inodes+0xb32/0x1910 [ 41.899546][ T8] ? insn_get_prefixes+0xb2c/0x1870 [ 41.912482][ T8] ? _raw_spin_lock+0xa4/0x1b0 [ 41.922907][ T8] ? queue_io+0x520/0x520 [ 41.933821][ T8] ? __writeback_inodes_wb+0x3f0/0x3f0 [ 41.944065][ T8] ? queue_io+0x3d0/0x520 [ 41.954286][ T8] ? memset+0x35/0x40 [ 41.959334][ T8] wb_writeback+0x3c8/0xa00 [ 41.968722][ T8] ? inode_cgwb_move_to_attached+0x3c0/0x3c0 [ 41.980924][ T8] ? set_worker_desc+0x158/0x1c0 [ 41.994513][ T8] ? __kasan_check_write+0x14/0x20 [ 42.002420][ T8] wb_workfn+0x399/0x1030 [ 42.011645][ T8] ? inode_wait_for_writeback+0x280/0x280 [ 42.027703][ T8] ? native_set_ldt+0x130/0x130 [ 42.034979][ T8] ? kthread_data+0x53/0xc0 [ 42.041110][ T8] ? _raw_spin_unlock+0x4c/0x70 [ 42.050302][ T8] ? finish_task_switch+0x167/0x7b0 [ 42.058937][ T8] ? __kasan_check_read+0x11/0x20 [ 42.069133][ T8] ? read_word_at_a_time+0x12/0x20 [ 42.077296][ T8] ? strscpy+0x9c/0x260 [ 42.085058][ T8] process_one_work+0x73d/0xcb0 [ 42.094223][ T8] worker_thread+0xa60/0x1260 [ 42.101740][ T8] kthread+0x26d/0x300 [ 42.108524][ T8] ? worker_clr_flags+0x1a0/0x1a0 [ 42.122054][ T8] ? kthread_blkcg+0xd0/0xd0 [ 42.129498][ T8] ret_from_fork+0x1f/0x30 [ 42.136258][ T8] [ 42.141168][ T8] Modules linked in: [ 42.151843][ T8] ---[ end trace 0000000000000000 ]--- [ 42.161040][ T8] RIP: 0010:ext4_writepages+0x3fab/0x3fd0 [ 42.175583][ T8] Code: f7 7f ff 31 ff 89 de e8 b3 f7 7f ff 45 84 f6 75 2a e8 19 f5 7f ff 49 bc 00 00 00 00 00 fc ff df e9 6e f6 ff ff e8 05 f5 7f ff <0f> 0b e8 fe f4 7f ff e8 f5 e7 0a ff e9 46 c3 ff ff e8 ef f4 7f ff [ 42.206051][ T8] RSP: 0018:ffffc90000087000 EFLAGS: 00010293 [ 42.219721][ T8] RAX: ffffffff81f59fbb RBX: 0000008000000000 RCX: ffff888100395100 [ 42.236107][ T8] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 42.259626][ T8] RBP: ffffc90000087410 R08: ffffffff81f5671b R09: ffffed102172de57 [ 42.273441][ T8] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff888116050000 [ 42.287414][ T8] R13: ffff88810b96f3f0 R14: 000000c410000000 R15: ffffc900000872e0 [ 42.307492][ T8] FS: 0000000000000000(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 42.330226][ T8] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.339856][ T8] CR2: 000000c006eb9000 CR3: 0000000110041000 CR4: 00000000003506a0 [ 42.356005][ T8] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.390383][ T8] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.417840][ T8] Kernel panic - not syncing: Fatal exception [ 42.432276][ T8] Kernel Offset: disabled [ 42.451179][ T8] Rebooting in 86400 seconds..