Warning: Permanently added '10.128.0.7' (ED25519) to the list of known hosts. 2025/04/04 17:59:30 ignoring optional flag "sandboxArg"="0" 2025/04/04 17:59:31 parsed 1 programs [ 101.053137][ T30] audit: type=1400 audit(1743789573.092:140): avc: denied { unlink } for pid=6000 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 102.356047][ T6000] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 105.189432][ T5857] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 105.198463][ T5857] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 105.206476][ T5857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 105.214412][ T5857] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 105.222480][ T5857] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 105.733786][ T30] audit: type=1401 audit(1743789577.772:141): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" [ 106.012973][ T6061] chnl_net:caif_netlink_parms(): no params data found [ 106.065085][ T6061] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.072547][ T6061] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.079765][ T6061] bridge_slave_0: entered allmulticast mode [ 106.087682][ T6061] bridge_slave_0: entered promiscuous mode [ 106.095825][ T6061] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.103214][ T6061] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.110359][ T6061] bridge_slave_1: entered allmulticast mode [ 106.117548][ T6061] bridge_slave_1: entered promiscuous mode [ 106.140367][ T6061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.152152][ T6061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.179271][ T6061] team0: Port device team_slave_0 added [ 106.187152][ T6061] team0: Port device team_slave_1 added [ 106.209821][ T6061] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.217087][ T6061] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.243058][ T6061] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.255080][ T6061] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.262080][ T6061] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.288069][ T6061] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.324533][ T6061] hsr_slave_0: entered promiscuous mode [ 106.330586][ T6061] hsr_slave_1: entered promiscuous mode [ 106.412302][ T6061] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.490972][ T6061] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.560018][ T6061] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.642252][ T6061] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 106.750559][ T6061] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 106.761887][ T6061] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 106.771138][ T6061] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 106.779956][ T6061] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 106.801859][ T6061] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.808930][ T6061] bridge0: port 2(bridge_slave_1) entered forwarding state [ 106.816382][ T6061] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.823474][ T6061] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.867314][ T6061] 8021q: adding VLAN 0 to HW filter on device bond0 [ 106.884090][ T1116] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.892604][ T1116] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.906278][ T6061] 8021q: adding VLAN 0 to HW filter on device team0 [ 106.918461][ T1116] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.925547][ T1116] bridge0: port 1(bridge_slave_0) entered forwarding state [ 106.938416][ T1116] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.945553][ T1116] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.077123][ T6061] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.110658][ T6061] veth0_vlan: entered promiscuous mode [ 107.120531][ T6061] veth1_vlan: entered promiscuous mode [ 107.143572][ T6061] veth0_macvtap: entered promiscuous mode [ 107.153276][ T6061] veth1_macvtap: entered promiscuous mode [ 107.167186][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 107.178093][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.189591][ T6061] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.199069][ T6061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 107.210237][ T6061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 107.221829][ T6061] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.235744][ T6061] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.244505][ T6061] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.253586][ T6061] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.262901][ T6061] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.673547][ T1116] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.682370][ T1116] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.705441][ T67] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.713751][ T67] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 2025/04/04 17:59:40 executed programs: 0 [ 108.668132][ T5857] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 108.676847][ T5857] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 108.685652][ T5857] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 108.694010][ T5857] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 108.705146][ T5857] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 108.824303][ T6111] chnl_net:caif_netlink_parms(): no params data found [ 108.883815][ T6111] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.890978][ T6111] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.898151][ T6111] bridge_slave_0: entered allmulticast mode [ 108.905000][ T6111] bridge_slave_0: entered promiscuous mode [ 108.913831][ T6111] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.921357][ T6111] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.928469][ T6111] bridge_slave_1: entered allmulticast mode [ 108.935992][ T6111] bridge_slave_1: entered promiscuous mode [ 108.969087][ T6111] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.981217][ T6111] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 109.008947][ T6111] team0: Port device team_slave_0 added [ 109.017267][ T6111] team0: Port device team_slave_1 added [ 109.042103][ T6111] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 109.049054][ T6111] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.076590][ T6111] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 109.088770][ T6111] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 109.095780][ T6111] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 109.122444][ T6111] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 109.159621][ T6111] hsr_slave_0: entered promiscuous mode [ 109.167004][ T6111] hsr_slave_1: entered promiscuous mode [ 109.173378][ T6111] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 109.181584][ T6111] Cannot create hsr debugfs directory [ 109.261612][ T6111] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 110.781663][ T5137] Bluetooth: hci0: command tx timeout [ 110.991507][ T6111] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.040759][ T6111] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.102282][ T6111] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 111.187449][ T6111] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 111.196369][ T6111] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 111.205501][ T6111] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 111.219687][ T6111] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 111.276012][ T6111] 8021q: adding VLAN 0 to HW filter on device bond0 [ 111.294079][ T6111] 8021q: adding VLAN 0 to HW filter on device team0 [ 111.305139][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 111.312216][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 111.327215][ T12] bridge0: port 2(bridge_slave_1) entered blocking state [ 111.334340][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state [ 111.458551][ T6111] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 111.496812][ T6111] veth0_vlan: entered promiscuous mode [ 111.507601][ T6111] veth1_vlan: entered promiscuous mode [ 111.533647][ T6111] veth0_macvtap: entered promiscuous mode [ 111.542145][ T6111] veth1_macvtap: entered promiscuous mode [ 111.556119][ T6111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.566653][ T6111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.577828][ T6111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.588607][ T6111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.599746][ T6111] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 111.613536][ T6111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.625084][ T6111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.635332][ T6111] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 111.646311][ T6111] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.657627][ T6111] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 111.669891][ T6111] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.678738][ T6111] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.687611][ T6111] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.696490][ T6111] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 111.747979][ T1100] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.762676][ T1100] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.789662][ T1116] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 111.797705][ T1116] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 111.858183][ T30] audit: type=1400 audit(1743789583.892:142): avc: denied { mounton } for pid=6124 comm="syz.0.16" path="/0/file0" dev="tmpfs" ino=17 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 111.875995][ T6125] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI [ 111.892293][ T6125] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 111.900697][ T6125] CPU: 1 UID: 0 PID: 6125 Comm: syz.0.16 Not tainted 6.14.0-syzkaller-13381-g4a1d8ababde6 #0 PREEMPT(full) [ 111.912132][ T6125] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 111.922256][ T6125] RIP: 0010:iter_file_splice_write+0xa4e/0x1150 [ 111.928487][ T6125] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83 [ 111.948090][ T6125] RSP: 0018:ffffc90002eff918 EFLAGS: 00010202 [ 111.954141][ T6125] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff82430ac5 [ 111.962095][ T6125] RDX: 0000000000000001 RSI: ffffffff82430966 RDI: 0000000000000008 [ 111.970047][ T6125] RBP: 0000000000000010 R08: 0000000000000006 R09: 0000000000000000 [ 111.977998][ T6125] R10: 7ffffffffffeffff R11: ffffffff81a2236a R12: 0000000000000000 [ 111.985952][ T6125] R13: ffff88802a978800 R14: ffff8880331cd400 R15: 7ffffffffffeffff [ 111.993912][ T6125] FS: 00007f4192afc6c0(0000) GS:ffff888124ab3000(0000) knlGS:0000000000000000 [ 112.002823][ T6125] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.009388][ T6125] CR2: 0000000020001900 CR3: 0000000035074000 CR4: 00000000003526f0 [ 112.017522][ T6125] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 112.025472][ T6125] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 112.033610][ T6125] Call Trace: [ 112.036871][ T6125] [ 112.039799][ T6125] ? __pfx_iter_file_splice_write+0x10/0x10 [ 112.045692][ T6125] ? __pfx_iter_file_splice_write+0x10/0x10 [ 112.051571][ T6125] direct_splice_actor+0x18f/0x6c0 [ 112.056672][ T6125] splice_direct_to_actor+0x342/0xa30 [ 112.062036][ T6125] ? __pfx_direct_splice_actor+0x10/0x10 [ 112.067661][ T6125] ? __pfx_splice_direct_to_actor+0x10/0x10 [ 112.073546][ T6125] ? __pfx___might_resched+0x10/0x10 [ 112.078827][ T6125] do_splice_direct+0x174/0x240 [ 112.083667][ T6125] ? __pfx_do_splice_direct+0x10/0x10 [ 112.089027][ T6125] ? __pfx_direct_file_splice_eof+0x10/0x10 [ 112.094911][ T6125] ? rw_verify_area+0xcf/0x680 [ 112.099680][ T6125] do_sendfile+0xafd/0xe50 [ 112.104088][ T6125] ? __pfx_do_sendfile+0x10/0x10 [ 112.109022][ T6125] ? __x64_sys_futex+0x1e0/0x4c0 [ 112.113947][ T6125] ? __x64_sys_futex+0x1e9/0x4c0 [ 112.118877][ T6125] __x64_sys_sendfile64+0x1d8/0x220 [ 112.124076][ T6125] ? __pfx___x64_sys_sendfile64+0x10/0x10 [ 112.129803][ T6125] ? rcu_is_watching+0x12/0xc0 [ 112.134567][ T6125] do_syscall_64+0xcd/0x260 [ 112.139071][ T6125] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 112.144965][ T6125] RIP: 0033:0x7f4191d85d29 [ 112.149447][ T6125] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 112.169039][ T6125] RSP: 002b:00007f4192afc038 EFLAGS: 00000246 ORIG_RAX: 0000000000000028 [ 112.177437][ T6125] RAX: ffffffffffffffda RBX: 00007f4191f75fa0 RCX: 00007f4191d85d29 [ 112.185392][ T6125] RDX: 0000000000000000 RSI: 0000000000000008 RDI: 0000000000000007 [ 112.193341][ T6125] RBP: 00007f4191e01b08 R08: 0000000000000000 R09: 0000000000000000 [ 112.201291][ T6125] R10: 000000007ffff000 R11: 0000000000000246 R12: 0000000000000000 [ 112.209241][ T6125] R13: 0000000000000000 R14: 00007f4191f75fa0 R15: 00007ffdc1ecc7a8 [ 112.217197][ T6125] [ 112.220193][ T6125] Modules linked in: [ 112.225087][ T6125] ---[ end trace 0000000000000000 ]--- [ 112.233767][ T6125] RIP: 0010:iter_file_splice_write+0xa4e/0x1150 [ 112.240092][ T6125] Code: 00 48 89 fa 48 c1 ea 03 80 3c 1a 00 0f 85 1a 05 00 00 4d 8b 65 10 49 c7 45 10 00 00 00 00 49 8d 7c 24 08 48 89 fa 48 c1 ea 03 <80> 3c 1a 00 0f 85 ee 04 00 00 49 8b 54 24 08 4c 89 ee 4c 89 f7 83 [ 112.240098][ T30] audit: type=1400 audit(1743789583.902:143): avc: denied { mount } for pid=6124 comm="syz.0.16" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 112.240126][ T30] audit: type=1400 audit(1743789583.902:144): avc: denied { setattr } for pid=6124 comm="syz.0.16" name="/" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 112.306779][ T30] audit: type=1400 audit(1743789583.902:145): avc: denied { write } for pid=6124 comm="syz.0.16" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 112.309049][ T6125] RSP: 0018:ffffc90002eff918 EFLAGS: 00010202 [ 112.328075][ T30] audit: type=1400 audit(1743789583.902:146): avc: denied { open } for pid=6124 comm="syz.0.16" path="/0/file0" dev="9p" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 112.329014][ T6125] [ 112.359654][ T6125] RAX: 0000000000000000 RBX: dffffc0000000000 RCX: ffffffff82430ac5 [ 112.367769][ T6125] RDX: 0000000000000001 RSI: ffffffff82430966 RDI: 0000000000000008 [ 112.375840][ T6125] RBP: 0000000000000010 R08: 0000000000000006 R09: 0000000000000000 [ 112.384040][ T6125] R10: 7ffffffffffeffff R11: ffffffff81a2236a R12: 0000000000000000 [ 112.392059][ T6125] R13: ffff88802a978800 R14: ffff8880331cd400 R15: 7ffffffffffeffff [ 112.400029][ T6125] FS: 00007f4192afc6c0(0000) GS:ffff888124ab3000(0000) knlGS:0000000000000000 [ 112.409036][ T6125] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 112.415768][ T6125] CR2: 0000000020001900 CR3: 0000000035074000 CR4: 00000000003526f0 [ 112.423839][ T6125] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 112.431926][ T6125] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 112.440269][ T6125] Kernel panic - not syncing: Fatal exception [ 112.446543][ T6125] Kernel Offset: disabled [ 112.450851][ T6125] Rebooting in 86400 seconds..