Warning: Permanently added '10.128.1.180' (ED25519) to the list of known hosts. 2024/10/31 16:05:40 ignoring optional flag "sandboxArg"="0" 2024/10/31 16:05:41 parsed 1 programs [ 21.014429][ T24] audit: type=1400 audit(1730390741.120:66): avc: denied { node_bind } for pid=281 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1 [ 21.686903][ T24] audit: type=1400 audit(1730390741.800:67): avc: denied { mounton } for pid=287 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=1926 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 21.687905][ T287] cgroup: Unknown subsys name 'net' [ 21.709432][ T24] audit: type=1400 audit(1730390741.800:68): avc: denied { mount } for pid=287 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 21.736241][ T24] audit: type=1400 audit(1730390741.820:69): avc: denied { unmount } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1 [ 21.736403][ T287] cgroup: Unknown subsys name 'devices' [ 21.907355][ T287] cgroup: Unknown subsys name 'hugetlb' [ 21.912733][ T287] cgroup: Unknown subsys name 'rlimit' [ 22.103934][ T24] audit: type=1400 audit(1730390742.210:70): avc: denied { setattr } for pid=287 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 22.126900][ T24] audit: type=1400 audit(1730390742.210:71): avc: denied { create } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.132114][ T293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped). [ 22.147254][ T24] audit: type=1400 audit(1730390742.210:72): avc: denied { write } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.175484][ T24] audit: type=1400 audit(1730390742.210:73): avc: denied { read } for pid=287 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 22.175505][ T287] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 22.195415][ T24] audit: type=1400 audit(1730390742.210:74): avc: denied { module_request } for pid=287 comm="syz-executor" kmod="netdev-wpan0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 22.225486][ T24] audit: type=1400 audit(1730390742.210:75): avc: denied { mounton } for pid=287 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 22.677180][ T303] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 22.938013][ T328] bridge0: port 1(bridge_slave_0) entered blocking state [ 22.944849][ T328] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.952272][ T328] device bridge_slave_0 entered promiscuous mode [ 22.959900][ T328] bridge0: port 2(bridge_slave_1) entered blocking state [ 22.966791][ T328] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.973789][ T328] device bridge_slave_1 entered promiscuous mode [ 23.028465][ T328] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.035289][ T328] bridge0: port 2(bridge_slave_1) entered forwarding state [ 23.042499][ T328] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.049330][ T328] bridge0: port 1(bridge_slave_0) entered forwarding state [ 23.065255][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 23.072674][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.079677][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.089010][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 23.097234][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.104052][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 23.112203][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 23.120434][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.127276][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 23.138870][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 23.147483][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 23.160112][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 23.170120][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 23.177983][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 23.185094][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 23.192762][ T328] device veth0_vlan entered promiscuous mode [ 23.201577][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 23.210463][ T328] device veth1_macvtap entered promiscuous mode [ 23.219819][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready 2024/10/31 16:05:43 executed programs: 0 [ 23.229698][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 23.344765][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.352134][ T355] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.359294][ T355] device bridge_slave_0 entered promiscuous mode [ 23.366755][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.373574][ T355] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.380841][ T355] device bridge_slave_1 entered promiscuous mode [ 23.465561][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.472538][ T359] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.479789][ T359] device bridge_slave_0 entered promiscuous mode [ 23.488481][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.495306][ T359] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.502614][ T359] device bridge_slave_1 entered promiscuous mode [ 23.526732][ T363] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.533562][ T363] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.540760][ T363] device bridge_slave_0 entered promiscuous mode [ 23.547735][ T363] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.554559][ T363] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.561778][ T363] device bridge_slave_1 entered promiscuous mode [ 23.603066][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.609912][ T355] bridge0: port 2(bridge_slave_1) entered forwarding state [ 23.617003][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.623782][ T355] bridge0: port 1(bridge_slave_0) entered forwarding state [ 23.635780][ T365] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.642788][ T365] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.650077][ T365] device bridge_slave_0 entered promiscuous mode [ 23.659168][ T365] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.666044][ T365] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.673197][ T365] device bridge_slave_1 entered promiscuous mode [ 23.700720][ T366] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.707663][ T366] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.714609][ T366] device bridge_slave_0 entered promiscuous mode [ 23.721526][ T366] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.728397][ T366] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.735622][ T366] device bridge_slave_1 entered promiscuous mode [ 23.803733][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.810578][ T359] bridge0: port 2(bridge_slave_1) entered forwarding state [ 23.817662][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 23.824448][ T359] bridge0: port 1(bridge_slave_0) entered forwarding state [ 23.878755][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 23.886303][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 23.894245][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.901447][ T7] bridge0: port 1(bridge_slave_0) entered disabled state [ 23.908780][ T7] bridge0: port 2(bridge_slave_1) entered disabled state [ 23.932485][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 23.940652][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 23.948593][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 23.955411][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 23.980769][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 23.988105][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 24.018386][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 24.025586][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 24.033020][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 24.040716][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 24.048465][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 24.056732][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 24.064602][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.071379][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.078563][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 24.086653][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 24.094532][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.101296][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.108412][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 24.116582][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 24.124441][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.131230][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.138362][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 24.146480][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 24.154351][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.161135][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.168313][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 24.176795][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 24.184649][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.191445][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.198661][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 24.206565][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 24.214191][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 24.222198][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 24.230100][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.236840][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.243983][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 24.251986][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 24.259710][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 24.267469][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 24.275075][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 24.282913][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 24.290761][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 24.298303][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 24.320378][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 24.328155][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 24.342874][ T359] device veth0_vlan entered promiscuous mode [ 24.352045][ T355] device veth0_vlan entered promiscuous mode [ 24.367177][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 24.375198][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 24.383561][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 24.391433][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 24.399272][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 24.406987][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 24.414617][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 24.422719][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 24.430994][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 24.438792][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 24.446533][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 24.453629][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 24.460925][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 24.468228][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 24.475363][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 24.482610][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 24.493354][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 24.501377][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 24.512708][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 24.521038][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 24.529282][ T7] bridge0: port 1(bridge_slave_0) entered blocking state [ 24.536127][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state [ 24.543574][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 24.551687][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 24.559693][ T7] bridge0: port 2(bridge_slave_1) entered blocking state [ 24.566530][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state [ 24.577669][ T359] device veth1_macvtap entered promiscuous mode [ 24.584972][ T355] device veth1_macvtap entered promiscuous mode [ 24.593217][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 24.600780][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 24.608379][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 24.616991][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 24.624802][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 24.632936][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 24.649030][ T366] device veth0_vlan entered promiscuous mode [ 24.656151][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 24.663981][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 24.671295][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 24.678492][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 24.686938][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 24.694926][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 24.703165][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 24.723364][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 24.731511][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 24.739702][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 24.748086][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 24.756751][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 24.764362][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 24.779248][ T366] device veth1_macvtap entered promiscuous mode [ 24.789898][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 24.799664][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 24.812885][ T363] device veth0_vlan entered promiscuous mode [ 24.831798][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 24.840246][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 24.849803][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 24.857604][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 24.869311][ T359] ------------[ cut here ]------------ [ 24.869677][ T355] ------------[ cut here ]------------ [ 24.874591][ T359] WARNING: CPU: 1 PID: 359 at fs/inode.c:304 drop_nlink+0xc1/0x110 [ 24.880516][ T355] WARNING: CPU: 0 PID: 355 at fs/inode.c:304 drop_nlink+0xc1/0x110 [ 24.890796][ T359] Modules linked in: [ 24.899235][ T355] Modules linked in: [ 24.900427][ T363] device veth1_macvtap entered promiscuous mode [ 24.902939][ T355] CPU: 1 PID: 355 Comm: syz-executor Not tainted 5.10.226-syzkaller #0 [ 24.918144][ T359] CPU: 1 PID: 359 Comm: syz-executor Not tainted 5.10.226-syzkaller #0 [ 24.926592][ T359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 24.934025][ T365] device veth0_vlan entered promiscuous mode [ 24.936825][ T355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 24.943246][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 24.952372][ T359] RIP: 0010:drop_nlink+0xc1/0x110 [ 24.961010][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 24.966071][ T359] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 a7 cc f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 af 30 b3 ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c [ 24.972823][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 24.992204][ T355] RIP: 0010:drop_nlink+0xc1/0x110 [ 24.999687][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 25.004872][ T355] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 a7 cc f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 af 30 b3 ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c [ 25.011743][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 25.030529][ T359] RSP: 0018:ffffc90005837cc0 EFLAGS: 00010293 [ 25.038816][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 25.044111][ T355] RSP: 0018:ffffc90005817cc0 EFLAGS: 00010293 [ 25.052074][ T359] RAX: ffffffff81b77c41 RBX: 0000000000000000 RCX: ffff888129b1cf00 [ 25.053115][ T355] [ 25.058079][ T359] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 25.066650][ T355] RAX: ffffffff81b77c41 RBX: 0000000000000000 RCX: ffff88810f95a780 [ 25.070378][ T359] RBP: ffffc90005837ce8 R08: ffffffff81b77bc4 R09: 0000000000000003 [ 25.081936][ T355] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 25.091479][ T359] R10: fffff52000b06f88 R11: dffffc0000000001 R12: dffffc0000000000 [ 25.091486][ T359] R13: 1ffff1102265d2cd R14: ffff8881132e9620 R15: ffff8881132e9668 [ 25.091495][ T359] FS: 0000555558a23500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 25.091502][ T359] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.091508][ T359] CR2: 0000555558a464e8 CR3: 0000000128e07000 CR4: 00000000003506a0 [ 25.091517][ T359] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.091522][ T359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.091525][ T359] Call Trace: [ 25.091540][ T359] ? show_regs+0x58/0x60 [ 25.091556][ T359] ? __warn+0x160/0x2f0 [ 25.107775][ T355] RBP: ffffc90005817ce8 R08: ffffffff81b77bc4 R09: 0000000000000003 [ 25.120858][ T365] device veth1_macvtap entered promiscuous mode [ 25.166035][ T355] R10: fffff52000b02f88 R11: dffffc0000000001 R12: dffffc0000000000 [ 25.173917][ T359] ? drop_nlink+0xc1/0x110 [ 25.186561][ T355] R13: 1ffff11021f423b5 R14: ffff88810fa11d60 R15: ffff88810fa11da8 [ 25.186569][ T355] FS: 00005555641b4500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 25.186574][ T355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.186581][ T355] CR2: 00005555641d74e8 CR3: 000000010fbb9000 CR4: 00000000003506b0 [ 25.186590][ T355] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.186602][ T355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.191387][ T359] ? report_bug+0x3d9/0x5b0 [ 25.199011][ T355] Call Trace: [ 25.208042][ T359] ? drop_nlink+0xc1/0x110 [ 25.213886][ T355] ? show_regs+0x58/0x60 [ 25.221791][ T359] ? handle_bug+0x41/0x70 [ 25.229451][ T355] ? __warn+0x160/0x2f0 [ 25.238244][ T359] ? exc_invalid_op+0x1b/0x50 [ 25.241725][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 25.244784][ T359] ? asm_exc_invalid_op+0x12/0x20 [ 25.249074][ T355] ? drop_nlink+0xc1/0x110 [ 25.253384][ T359] ? drop_nlink+0x44/0x110 [ 25.257577][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 25.261475][ T359] ? drop_nlink+0xc1/0x110 [ 25.265902][ T355] ? report_bug+0x3d9/0x5b0 [ 25.273788][ T359] ? drop_nlink+0xc1/0x110 [ 25.278606][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 25.282852][ T359] shmem_rmdir+0x59/0x90 [ 25.287200][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 25.295197][ T359] vfs_rmdir+0x2b7/0x3f0 [ 25.299280][ T355] ? drop_nlink+0xc1/0x110 [ 25.303805][ T359] incfs_kill_sb+0x108/0x220 [ 25.308025][ T355] ? handle_bug+0x41/0x70 [ 25.315796][ T359] deactivate_locked_super+0xad/0x110 [ 25.320122][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 25.328339][ T359] deactivate_super+0xbe/0xf0 [ 25.332150][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 25.336345][ T359] cleanup_mnt+0x45c/0x510 [ 25.340706][ T355] ? exc_invalid_op+0x1b/0x50 [ 25.344762][ T359] __cleanup_mnt+0x19/0x20 [ 25.350231][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 25.358012][ T359] task_work_run+0x129/0x190 [ 25.362208][ T355] ? asm_exc_invalid_op+0x12/0x20 [ 25.370085][ T359] exit_to_user_mode_loop+0xbf/0xd0 [ 25.374193][ T355] ? drop_nlink+0x44/0x110 [ 25.378880][ T359] syscall_exit_to_user_mode+0xa2/0x1a0 [ 25.382950][ T355] ? drop_nlink+0xc1/0x110 [ 25.390341][ T359] do_syscall_64+0x40/0x70 [ 25.395602][ T355] ? drop_nlink+0xc1/0x110 [ 25.399937][ T359] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.410859][ T355] shmem_rmdir+0x59/0x90 [ 25.419292][ T359] RIP: 0033:0x7f5cbb95ba47 [ 25.437397][ T355] vfs_rmdir+0x2b7/0x3f0 [ 25.445472][ T359] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 25.466692][ T359] RSP: 002b:00007ffd090257d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 25.468282][ T355] incfs_kill_sb+0x108/0x220 [ 25.474918][ T359] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f5cbb95ba47 [ 25.482399][ T355] deactivate_locked_super+0xad/0x110 [ 25.488216][ T366] ------------[ cut here ]------------ [ 25.493276][ T355] deactivate_super+0xbe/0xf0 [ 25.498902][ T366] WARNING: CPU: 0 PID: 366 at fs/inode.c:304 drop_nlink+0xc1/0x110 [ 25.504757][ T355] cleanup_mnt+0x45c/0x510 [ 25.511369][ T359] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd09025890 [ 25.517303][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 25.523110][ T366] Modules linked in: [ 25.534412][ T366] CPU: 0 PID: 366 Comm: syz-executor Not tainted 5.10.226-syzkaller #0 [ 25.537430][ T355] __cleanup_mnt+0x19/0x20 [ 25.547351][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 25.547507][ T359] RBP: 00007ffd09025890 R08: 0000000000000000 R09: 0000000000000000 [ 25.555793][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 25.563250][ T366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 25.563266][ T366] RIP: 0010:drop_nlink+0xc1/0x110 [ 25.563275][ T366] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 a7 cc f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 af 30 b3 ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c [ 25.563281][ T366] RSP: 0018:ffffc90005867cc0 EFLAGS: 00010293 [ 25.563292][ T366] RAX: ffffffff81b77c41 RBX: 0000000000000000 RCX: ffff888128108000 [ 25.563297][ T366] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 25.563303][ T366] RBP: ffffc90005867ce8 R08: ffffffff81b77bc4 R09: 0000000000000003 [ 25.563311][ T366] R10: fffff52000b0cf88 R11: dffffc0000000001 R12: dffffc0000000000 [ 25.563317][ T366] R13: 1ffff1102265d0fd R14: ffff8881132e87a0 R15: ffff8881132e87e8 [ 25.563326][ T366] FS: 000055556c2ad500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 25.563332][ T366] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.563339][ T366] CR2: 0000001b3245ffff CR3: 000000012b3ba000 CR4: 00000000003506b0 [ 25.563348][ T366] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 25.563354][ T366] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 25.563356][ T366] Call Trace: [ 25.563368][ T366] ? show_regs+0x58/0x60 [ 25.563377][ T366] ? __warn+0x160/0x2f0 [ 25.563386][ T366] ? drop_nlink+0xc1/0x110 [ 25.563402][ T366] ? report_bug+0x3d9/0x5b0 [ 25.571376][ T355] task_work_run+0x129/0x190 [ 25.581565][ T359] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd09026910 [ 25.587338][ T323] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 25.606041][ T366] ? drop_nlink+0xc1/0x110 [ 25.619912][ T355] exit_to_user_mode_loop+0xbf/0xd0 [ 25.627442][ T359] R13: 00007f5cbb9cd1cc R14: 00000000000060ee R15: 00007ffd09026950 [ 25.635228][ T363] ------------[ cut here ]------------ [ 25.643060][ T366] ? handle_bug+0x41/0x70 [ 25.659565][ T355] syscall_exit_to_user_mode+0xa2/0x1a0 [ 25.659574][ T355] do_syscall_64+0x40/0x70 [ 25.659584][ T355] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 25.659591][ T355] RIP: 0033:0x7f2aade4ba47 [ 25.659606][ T355] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 25.666182][ T363] WARNING: CPU: 0 PID: 363 at fs/inode.c:304 drop_nlink+0xc1/0x110 [ 25.696630][ T355] RSP: 002b:00007ffea1c7e538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 25.696643][ T355] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2aade4ba47 [ 25.696648][ T355] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffea1c7e5f0 [ 25.696654][ T355] RBP: 00007ffea1c7e5f0 R08: 0000000000000000 R09: 0000000000000000 [ 25.696659][ T355] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffea1c7f670 [ 25.696665][ T355] R13: 00007f2aadebd1cc R14: 00000000000060e7 R15: 00007ffea1c7f6b0 [ 25.696680][ T355] ---[ end trace 4e092644ac4854d2 ]--- [ 25.700887][ T359] ---[ end trace 4e092644ac4854d3 ]--- [ 25.709490][ T355] ================================================================== [ 25.716311][ T359] BUG: kernel NULL pointer dereference, address: 0000000000000170 [ 25.721441][ T355] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60 [ 25.729329][ T359] #PF: supervisor write access in kernel mode [ 25.733588][ T355] Write of size 4 at addr 0000000000000170 by task syz-executor/355 [ 25.738615][ T359] #PF: error_code(0x0002) - not-present page [ 25.746427][ T355] [ 25.751720][ T359] PGD 112ddf067 [ 25.755892][ T355] CPU: 1 PID: 355 Comm: syz-executor Tainted: G W 5.10.226-syzkaller #0 [ 25.761267][ T359] P4D 112ddf067 [ 25.765522][ T355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 25.771252][ T359] PUD 0 [ 25.775501][ T355] Call Trace: [ 25.794943][ T359] [ 25.802678][ T355] dump_stack_lvl+0x1e2/0x24b [ 25.810917][ T359] Oops: 0002 [#1] PREEMPT SMP KASAN [ 25.818729][ T355] ? panic+0x812/0x812 [ 25.826539][ T359] CPU: 0 PID: 359 Comm: syz-executor Tainted: G W 5.10.226-syzkaller #0 [ 25.834352][ T355] ? bfq_pos_tree_add_move+0x43b/0x43b [ 25.842159][ T359] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 25.849975][ T355] ? __kasan_check_write+0x14/0x20 [ 25.855270][ T359] RIP: 0010:ihold+0x25/0x60 [ 25.860564][ T355] ? _raw_spin_lock+0xa4/0x1b0 [ 25.868461][ T359] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 c1 28 b3 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 c4 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 44 2c b3 [ 25.876099][ T355] ? _raw_spin_trylock_bh+0x190/0x190 [ 25.882171][ T359] RSP: 0018:ffffc90005837d00 EFLAGS: 00010202 [ 25.888081][ T355] kasan_report+0x167/0x1c0 [ 25.895880][ T359] [ 25.901703][ T355] ? ihold+0x20/0x60 [ 25.903868][ T359] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81b78440 [ 25.907276][ T355] ? ihold+0x20/0x60 [ 25.916716][ T359] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170 [ 25.920103][ T355] kasan_check_range+0x293/0x2a0 [ 25.929993][ T359] RBP: ffffc90005837d10 R08: ffffffff81b40b41 R09: ffffed1024199dc6 [ 25.932688][ T355] __kasan_check_write+0x14/0x20 [ 25.935810][ T359] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 25.937980][ T355] ihold+0x20/0x60 [ 25.942490][ T359] R13: ffff888120ccf110 R14: 0000000000000000 R15: 0000000000000000 [ 25.947529][ T355] vfs_rmdir+0x200/0x3f0 [ 25.951433][ T359] FS: 0000555558a23500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 25.960892][ T355] incfs_kill_sb+0x108/0x220 [ 25.966185][ T359] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 25.976088][ T355] deactivate_locked_super+0xad/0x110 [ 25.981027][ T359] CR2: 0000000000000170 CR3: 0000000128e07000 CR4: 00000000003506b0 [ 25.985369][ T355] deactivate_super+0xbe/0xf0 [ 25.989967][ T359] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.009412][ T355] cleanup_mnt+0x45c/0x510 [ 26.014617][ T359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.020521][ T355] __cleanup_mnt+0x19/0x20 [ 26.024853][ T359] Call Trace: [ 26.027031][ T355] task_work_run+0x129/0x190 [ 26.030761][ T359] ? __die_body+0x62/0xb0 [ 26.038575][ T355] exit_to_user_mode_loop+0xbf/0xd0 [ 26.042303][ T359] ? __die+0x7e/0x90 [ 26.050119][ T355] syscall_exit_to_user_mode+0xa2/0x1a0 [ 26.054888][ T359] ? no_context+0x9f9/0xd20 [ 26.062699][ T355] do_syscall_64+0x40/0x70 [ 26.067476][ T359] ? is_prefetch+0x5c0/0x5c0 [ 26.075291][ T355] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.078844][ T359] ? __kasan_check_write+0x14/0x20 [ 26.086654][ T355] RIP: 0033:0x7f2aade4ba47 [ 26.090737][ T359] ? _raw_spin_trylock_bh+0x190/0x190 [ 26.099501][ T355] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 26.103927][ T359] ? __bad_area_nosemaphore+0xc4/0x430 [ 26.110348][ T355] RSP: 002b:00007ffea1c7e538 EFLAGS: 00000246 [ 26.115559][ T359] ? _atomic_dec_and_lock+0xfc/0x140 [ 26.123364][ T355] ORIG_RAX: 00000000000000a6 [ 26.127881][ T359] ? bad_area_nosemaphore+0x2d/0x40 [ 26.135690][ T355] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2aade4ba47 [ 26.139945][ T359] ? exc_page_fault+0x3df/0x5b0 [ 26.147753][ T355] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffea1c7e5f0 [ 26.152008][ T359] ? asm_exc_page_fault+0x1e/0x30 [ 26.155130][ T355] RBP: 00007ffea1c7e5f0 R08: 0000000000000000 R09: 0000000000000000 [ 26.159561][ T359] ? vfs_rmdir+0x1d1/0x3f0 [ 26.163723][ T355] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffea1c7f670 [ 26.168759][ T359] ? ihold+0x20/0x60 [ 26.172490][ T355] R13: 00007f2aadebd1cc R14: 00000000000060e7 R15: 00007ffea1c7f6b0 [ 26.177872][ T359] ? ihold+0x25/0x60 [ 26.182207][ T355] ================================================================== [ 26.186465][ T359] vfs_rmdir+0x200/0x3f0 [ 26.328733][ T359] incfs_kill_sb+0x108/0x220 [ 26.333148][ T359] deactivate_locked_super+0xad/0x110 [ 26.338370][ T359] deactivate_super+0xbe/0xf0 [ 26.342872][ T359] cleanup_mnt+0x45c/0x510 [ 26.347127][ T359] __cleanup_mnt+0x19/0x20 [ 26.351380][ T359] task_work_run+0x129/0x190 [ 26.355803][ T359] exit_to_user_mode_loop+0xbf/0xd0 [ 26.360841][ T359] syscall_exit_to_user_mode+0xa2/0x1a0 [ 26.366213][ T359] do_syscall_64+0x40/0x70 [ 26.370467][ T359] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.376196][ T359] RIP: 0033:0x7f5cbb95ba47 [ 26.380449][ T359] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 26.399887][ T359] RSP: 002b:00007ffd090257d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 26.408133][ T359] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f5cbb95ba47 [ 26.415944][ T359] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd09025890 [ 26.423753][ T359] RBP: 00007ffd09025890 R08: 0000000000000000 R09: 0000000000000000 [ 26.431566][ T359] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffd09026910 [ 26.440072][ T359] R13: 00007f5cbb9cd1cc R14: 00000000000060ee R15: 00007ffd09026950 [ 26.447882][ T359] Modules linked in: [ 26.451624][ T359] CR2: 0000000000000170 [ 26.455635][ T359] ---[ end trace 4e092644ac4854d4 ]--- [ 26.455668][ T355] BUG: kernel NULL pointer dereference, address: 0000000000000170 [ 26.460917][ T359] RIP: 0010:ihold+0x25/0x60 [ 26.468662][ T355] #PF: supervisor write access in kernel mode [ 26.472999][ T359] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 c1 28 b3 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 c4 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 44 2c b3 [ 26.478897][ T355] #PF: error_code(0x0002) - not-present page [ 26.498340][ T359] RSP: 0018:ffffc90005837d00 EFLAGS: 00010202 [ 26.504140][ T355] PGD 112f93067 [ 26.504149][ T359] [ 26.510047][ T355] P4D 112f93067 [ 26.513436][ T359] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81b78440 [ 26.515602][ T355] PUD 0 [ 26.518991][ T359] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170 [ 26.526799][ T355] [ 26.529492][ T359] RBP: ffffc90005837d10 R08: ffffffff81b40b41 R09: ffffed1024199dc6 [ 26.537303][ T355] Oops: 0002 [#2] PREEMPT SMP KASAN [ 26.539471][ T359] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 26.547286][ T355] CPU: 1 PID: 355 Comm: syz-executor Tainted: G B D W 5.10.226-syzkaller #0 [ 26.552319][ T359] R13: ffff888120ccf110 R14: 0000000000000000 R15: 0000000000000000 [ 26.560126][ T355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 26.569590][ T359] FS: 0000555558a23500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 26.577408][ T355] RIP: 0010:ihold+0x25/0x60 [ 26.587288][ T359] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.587300][ T359] CR2: 0000000000000170 CR3: 0000000128e07000 CR4: 00000000003506b0 [ 26.596065][ T355] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 c1 28 b3 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 c4 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 44 2c b3 [ 26.600399][ T359] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.606821][ T355] RSP: 0018:ffffc90005817d00 EFLAGS: 00010246 [ 26.614635][ T359] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.634073][ T355] [ 26.641883][ T359] Kernel panic - not syncing: Fatal exception [ 26.647789][ T355] RAX: ffff88810f95a700 RBX: 0000000000000001 RCX: ffff88810f95a780 [ 26.671481][ T355] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff [ 26.679293][ T355] RBP: ffffc90005817d10 R08: ffffffff813e2a7b R09: 0000000000000003 [ 26.687104][ T355] R10: fffffbfff0e10c48 R11: dffffc0000000001 R12: dffffc0000000000 [ 26.694923][ T355] R13: ffff888120f02990 R14: 0000000000000000 R15: 0000000000000000 [ 26.702727][ T355] FS: 00005555641b4500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 26.711491][ T355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 26.717913][ T355] CR2: 0000000000000170 CR3: 000000010fbb9000 CR4: 00000000003506a0 [ 26.725724][ T355] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 26.733534][ T355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 26.741342][ T355] Call Trace: [ 26.744480][ T355] ? __die_body+0x62/0xb0 [ 26.748639][ T355] ? __die+0x7e/0x90 [ 26.752375][ T355] ? no_context+0x9f9/0xd20 [ 26.756711][ T355] ? is_prefetch+0x5c0/0x5c0 [ 26.761144][ T355] ? preempt_schedule+0xd9/0xe0 [ 26.765826][ T355] ? __kasan_check_read+0x11/0x20 [ 26.770684][ T355] ? preempt_schedule_common+0xbe/0xf0 [ 26.775983][ T355] ? preempt_schedule+0xd9/0xe0 [ 26.780667][ T355] ? schedule_preempt_disabled+0x20/0x20 [ 26.786137][ T355] ? sysvec_apic_timer_interrupt+0xcb/0xe0 [ 26.791774][ T355] ? __bad_area_nosemaphore+0xc4/0x430 [ 26.797070][ T355] ? bad_area_nosemaphore+0x2d/0x40 [ 26.802104][ T355] ? exc_page_fault+0x3df/0x5b0 [ 26.806789][ T355] ? asm_exc_page_fault+0x1e/0x30 [ 26.811651][ T355] ? check_panic_on_warn+0x5b/0xb0 [ 26.816599][ T355] ? ihold+0x25/0x60 [ 26.820331][ T355] vfs_rmdir+0x200/0x3f0 [ 26.824408][ T355] incfs_kill_sb+0x108/0x220 [ 26.828840][ T355] deactivate_locked_super+0xad/0x110 [ 26.834045][ T355] deactivate_super+0xbe/0xf0 [ 26.838556][ T355] cleanup_mnt+0x45c/0x510 [ 26.842810][ T355] __cleanup_mnt+0x19/0x20 [ 26.847062][ T355] task_work_run+0x129/0x190 [ 26.851490][ T355] exit_to_user_mode_loop+0xbf/0xd0 [ 26.856522][ T355] syscall_exit_to_user_mode+0xa2/0x1a0 [ 26.861903][ T355] do_syscall_64+0x40/0x70 [ 26.866156][ T355] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 26.871884][ T355] RIP: 0033:0x7f2aade4ba47 [ 26.876139][ T355] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 26.895575][ T355] RSP: 002b:00007ffea1c7e538 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 26.903833][ T355] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f2aade4ba47 [ 26.911635][ T355] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffea1c7e5f0 [ 26.919447][ T355] RBP: 00007ffea1c7e5f0 R08: 0000000000000000 R09: 0000000000000000 [ 26.927259][ T355] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffea1c7f670 [ 26.935069][ T355] R13: 00007f2aadebd1cc R14: 00000000000060e7 R15: 00007ffea1c7f6b0 [ 26.942888][ T355] Modules linked in: [ 26.946611][ T355] CR2: 0000000000000170 [ 26.950613][ T355] ---[ end trace 4e092644ac4854d5 ]--- [ 26.955906][ T355] RIP: 0010:ihold+0x25/0x60 [ 26.960245][ T355] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 c1 28 b3 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 90 c4 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 44 2c b3 [ 26.979685][ T355] RSP: 0018:ffffc90005837d00 EFLAGS: 00010202 [ 26.985581][ T355] RAX: 0000000000000001 RBX: 0000000000000001 RCX: ffffffff81b78440 [ 26.993391][ T355] RDX: 0000000000000001 RSI: 0000000000000286 RDI: 0000000000000170 [ 27.001203][ T355] RBP: ffffc90005837d10 R08: ffffffff81b40b41 R09: ffffed1024199dc6 [ 27.009014][ T355] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 27.016825][ T355] R13: ffff888120ccf110 R14: 0000000000000000 R15: 0000000000000000 [ 27.024639][ T355] FS: 00005555641b4500(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 27.033403][ T355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 27.039825][ T355] CR2: 0000000000000170 CR3: 000000010fbb9000 CR4: 00000000003506a0 [ 27.047638][ T355] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 27.055448][ T355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 27.774787][ T359] Shutting down cpus with NMI [ 27.779461][ T359] Kernel Offset: disabled [ 27.783577][ T359] Rebooting in 86400 seconds..