Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. 2024/01/14 10:46:04 ignoring optional flag "sandboxArg"="0" 2024/01/14 10:46:05 parsed 1 programs [ 39.650130][ T29] kauditd_printk_skb: 78 callbacks suppressed [ 39.650135][ T29] audit: type=1400 audit(1705229165.059:154): avc: denied { mounton } for pid=349 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 39.682441][ T29] audit: type=1400 audit(1705229165.059:155): avc: denied { mount } for pid=349 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 39.706493][ T29] audit: type=1400 audit(1705229165.059:156): avc: denied { setattr } for pid=349 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 39.729665][ T29] audit: type=1400 audit(1705229165.059:157): avc: denied { read write } for pid=349 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 39.755887][ T29] audit: type=1400 audit(1705229165.059:158): avc: denied { open } for pid=349 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/01/14 10:46:05 executed programs: 0 [ 39.782042][ T29] audit: type=1400 audit(1705229165.139:159): avc: denied { unlink } for pid=349 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 39.807941][ T29] audit: type=1400 audit(1705229165.169:160): avc: denied { relabelto } for pid=350 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 39.810428][ T349] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 39.853189][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.860043][ T355] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.867116][ T355] device bridge_slave_0 entered promiscuous mode [ 39.873365][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.880255][ T355] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.887815][ T355] device bridge_slave_1 entered promiscuous mode [ 39.900552][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.907604][ T355] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.914886][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.922417][ T355] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.931838][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.939026][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.946444][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.953698][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.961540][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.969936][ T57] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.976779][ T57] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.985979][ T355] device veth0_vlan entered promiscuous mode [ 39.992460][ T355] device veth1_macvtap entered promiscuous mode [ 39.999609][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.007822][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.015459][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.023260][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.030953][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.039181][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.047380][ T311] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.054319][ T311] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.061667][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.069366][ T311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.078381][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.086638][ T57] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.098228][ T29] audit: type=1400 audit(1705229165.509:161): avc: denied { mounton } for pid=359 comm="syz-executor.0" path="/root/syzkaller-testdir456307410/syzkaller.DtXUBj/0/file0" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 40.148906][ T361] BUG: kernel NULL pointer dereference, address: 0000000000000002 [ 40.157060][ T361] #PF: supervisor read access in kernel mode [ 40.162873][ T361] #PF: error_code(0x0000) - not-present page [ 40.169154][ T361] PGD 10e721067 P4D 10e721067 PUD 10da1f067 PMD 0 [ 40.175972][ T361] Oops: 0000 [#1] PREEMPT SMP [ 40.180478][ T361] CPU: 1 PID: 361 Comm: syz-executor.0 Not tainted 5.15.145-syzkaller #0 [ 40.189127][ T361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 40.199271][ T361] RIP: 0010:do_unlinkat+0x135/0x2a0 [ 40.204616][ T361] Code: 48 81 c7 a0 00 00 00 e8 49 a4 a9 00 48 8b 75 b8 48 8d 7d c0 89 da e8 aa 8c ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 44 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 40.224158][ T361] RSP: 0018:ffffc900003ebeb0 EFLAGS: 00010203 [ 40.230152][ T361] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 40.238085][ T361] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff888103190000 [ 40.246164][ T361] RBP: ffffc900003ebf18 R08: 0000000000000004 R09: 0000000000000064 [ 40.254418][ T361] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000000 [ 40.262233][ T361] R13: ffff8881002c0000 R14: 0000000000000000 R15: 0000000000000002 [ 40.270217][ T361] FS: 00007f0cb68a66c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 40.279239][ T361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.285729][ T361] CR2: 0000000000000002 CR3: 000000010db9a000 CR4: 00000000003506a0 [ 40.293529][ T361] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.301438][ T361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.309331][ T361] Call Trace: [ 40.312445][ T361] [ 40.315232][ T361] ? show_regs.part.0+0x1e/0x20 [ 40.319923][ T361] ? __die+0x5d/0x9e [ 40.323935][ T361] ? page_fault_oops+0x12d/0x280 [ 40.328712][ T361] ? do_user_addr_fault+0x44b/0x730 [ 40.334284][ T361] ? _raw_spin_unlock_irqrestore+0x28/0x40 [ 40.339928][ T361] ? __mod_timer+0x251/0x3a0 [ 40.344354][ T361] ? add_timer+0x1b/0x20 [ 40.348429][ T361] ? debug_smp_processor_id+0x17/0x20 [ 40.353980][ T361] ? call_rcu+0x194/0x640 [ 40.358157][ T361] ? exc_page_fault+0x67/0x160 [ 40.362757][ T361] ? asm_exc_page_fault+0x27/0x30 [ 40.367617][ T361] ? do_unlinkat+0x135/0x2a0 [ 40.373208][ T361] __x64_sys_unlink+0x3d/0x60 [ 40.377895][ T361] do_syscall_64+0x35/0xb0 [ 40.382162][ T361] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.388148][ T361] RIP: 0033:0x7f0cb6d23b29 [ 40.392353][ T361] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 40.412319][ T361] RSP: 002b:00007f0cb68a60c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 40.421166][ T361] RAX: ffffffffffffffda RBX: 00007f0cb6e42f80 RCX: 00007f0cb6d23b29 [ 40.429320][ T361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 40.437351][ T361] RBP: 00007f0cb6d6f47a R08: 0000000000000000 R09: 0000000000000000 [ 40.445711][ T361] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 40.453856][ T361] R13: 000000000000000b R14: 00007f0cb6e42f80 R15: 00007ffe488558e8 [ 40.461994][ T361] [ 40.465075][ T361] Modules linked in: [ 40.468864][ T361] CR2: 0000000000000002 [ 40.472877][ T361] ---[ end trace e3c5294d652b29fe ]--- [ 40.478520][ T361] RIP: 0010:do_unlinkat+0x135/0x2a0 [ 40.483787][ T361] Code: 48 81 c7 a0 00 00 00 e8 49 a4 a9 00 48 8b 75 b8 48 8d 7d c0 89 da e8 aa 8c ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 44 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 40.503655][ T361] RSP: 0018:ffffc900003ebeb0 EFLAGS: 00010203 [ 40.509637][ T361] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 40.518185][ T361] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff888103190000 [ 40.526085][ T361] RBP: ffffc900003ebf18 R08: 0000000000000004 R09: 0000000000000064 [ 40.533986][ T361] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000000 [ 40.541898][ T361] R13: ffff8881002c0000 R14: 0000000000000000 R15: 0000000000000002 [ 40.549708][ T361] FS: 00007f0cb68a66c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 40.558775][ T361] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.565167][ T361] CR2: 0000000000000002 CR3: 000000010db9a000 CR4: 00000000003506a0 [ 40.573062][ T361] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.580873][ T361] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.588780][ T361] Kernel panic - not syncing: Fatal exception [ 40.594979][ T361] Kernel Offset: disabled [ 40.599228][ T361] Rebooting in 86400 seconds..