Warning: Permanently added '10.128.0.32' (ED25519) to the list of known hosts.
2024/04/08 02:41:29 ignoring optional flag "sandboxArg"="0"
2024/04/08 02:41:29 parsed 1 programs
2024/04/08 02:41:29 executed programs: 0
[   42.228621][   T30] audit: type=1400 audit(1712544089.291:152): avc:  denied  { mounton } for  pid=339 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   42.255528][   T30] audit: type=1400 audit(1712544089.291:153): avc:  denied  { mount } for  pid=339 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   42.297514][  T343] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.304617][  T343] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.312424][  T343] device bridge_slave_0 entered promiscuous mode
[   42.319581][  T343] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.326878][  T343] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.334528][  T343] device bridge_slave_1 entered promiscuous mode
[   42.382500][   T30] audit: type=1400 audit(1712544089.451:154): avc:  denied  { write } for  pid=343 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.397534][  T343] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.411628][  T343] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.411647][   T30] audit: type=1400 audit(1712544089.461:155): avc:  denied  { read } for  pid=343 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   42.419730][  T343] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.449830][  T343] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.470107][  T301] bridge0: port 1(bridge_slave_0) entered disabled state
[   42.477784][  T301] bridge0: port 2(bridge_slave_1) entered disabled state
[   42.486212][  T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   42.493802][  T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   42.502876][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   42.511339][   T39] bridge0: port 1(bridge_slave_0) entered blocking state
[   42.518299][   T39] bridge0: port 1(bridge_slave_0) entered forwarding state
[   42.539742][  T343] device veth0_vlan entered promiscuous mode
[   42.547348][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   42.557609][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   42.566187][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   42.573919][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   42.581527][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   42.590030][   T39] bridge0: port 2(bridge_slave_1) entered blocking state
[   42.597296][   T39] bridge0: port 2(bridge_slave_1) entered forwarding state
[   42.604650][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   42.612856][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   42.626927][  T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   42.636458][  T343] device veth1_macvtap entered promiscuous mode
[   42.646805][  T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   42.659928][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   42.674772][   T30] audit: type=1400 audit(1712544089.741:156): avc:  denied  { mounton } for  pid=343 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   42.704761][  T349] FAULT_INJECTION: forcing a failure.
[   42.704761][  T349] name failslab, interval 1, probability 0, space 0, times 1
[   42.717868][  T349] CPU: 0 PID: 349 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller-1069047-g993bed180178 #0
[   42.728306][  T349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   42.738193][  T349] Call Trace:
[   42.741700][  T349]  <TASK>
[   42.744434][  T349]  dump_stack_lvl+0x151/0x1b7
[   42.749442][  T349]  ? io_uring_drop_tctx_refs+0x190/0x190
[   42.755311][  T349]  dump_stack+0x15/0x17
[   42.759379][  T349]  should_fail+0x3c6/0x510
[   42.763850][  T349]  __should_failslab+0xa4/0xe0
[   42.768450][  T349]  ? anon_vma_clone+0x9a/0x500
[   42.773471][  T349]  should_failslab+0x9/0x20
[   42.779100][  T349]  slab_pre_alloc_hook+0x37/0xd0
[   42.784123][  T349]  ? anon_vma_clone+0x9a/0x500
[   42.788738][  T349]  kmem_cache_alloc+0x44/0x200
[   42.793571][  T349]  anon_vma_clone+0x9a/0x500
[   42.798206][  T349]  anon_vma_fork+0x91/0x4e0
[   42.802744][  T349]  ? anon_vma_name+0x43/0x70
[   42.807582][  T349]  ? vm_area_dup+0x17a/0x230
[   42.812147][  T349]  copy_mm+0xa3a/0x13e0
[   42.816442][  T349]  ? copy_signal+0x610/0x610
[   42.820916][  T349]  ? __init_rwsem+0xd6/0x1c0
[   42.825794][  T349]  ? copy_signal+0x4e3/0x610
[   42.830208][  T349]  copy_process+0x1149/0x3290
[   42.835060][  T349]  ? proc_fail_nth_write+0x20b/0x290
[   42.840172][  T349]  ? fsnotify_perm+0x6a/0x5d0
[   42.845044][  T349]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[   42.850084][  T349]  ? vfs_write+0x9ec/0x1110
[   42.854886][  T349]  kernel_clone+0x21e/0x9e0
[   42.859224][  T349]  ? file_end_write+0x1c0/0x1c0
[   42.864141][  T349]  ? create_io_thread+0x1e0/0x1e0
[   42.868997][  T349]  ? mutex_unlock+0xb2/0x260
[   42.873899][  T349]  ? __mutex_lock_slowpath+0x10/0x10
[   42.879662][  T349]  __x64_sys_clone+0x23f/0x290
[   42.884787][  T349]  ? __do_sys_vfork+0x130/0x130
[   42.889592][  T349]  ? ksys_write+0x260/0x2c0
[   42.895105][  T349]  ? debug_smp_processor_id+0x17/0x20
[   42.900773][  T349]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   42.906850][  T349]  ? exit_to_user_mode_prepare+0x39/0xa0
[   42.913746][  T349]  do_syscall_64+0x3d/0xb0
[   42.918154][  T349]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   42.924348][  T349] RIP: 0033:0x7f5df9076959
[   42.928825][  T349] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   42.949444][  T349] RSP: 002b:00007f5df8bf9078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   42.960001][  T349] RAX: ffffffffffffffda RBX: 00007f5df9195f80 RCX: 00007f5df9076959
[   42.968106][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000200
[   42.976390][  T349] RBP: 00007f5df8bf9120 R08: 0000000000000000 R09: 0000000000000000
[   42.984712][  T349] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   42.993149][  T349] R13: 000000000000000b R14: 00007f5df9195f80 R15: 00007ffc908e7ee8
[   43.001266][  T349]  </TASK>
[   43.028326][  T353] FAULT_INJECTION: forcing a failure.
[   43.028326][  T353] name failslab, interval 1, probability 0, space 0, times 0
[   43.041235][  T353] CPU: 1 PID: 353 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller-1069047-g993bed180178 #0
[   43.051613][  T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   43.061809][  T353] Call Trace:
[   43.064939][  T353]  <TASK>
[   43.067706][  T353]  dump_stack_lvl+0x151/0x1b7
[   43.072219][  T353]  ? io_uring_drop_tctx_refs+0x190/0x190
[   43.077785][  T353]  dump_stack+0x15/0x17
[   43.081775][  T353]  should_fail+0x3c6/0x510
[   43.086326][  T353]  __should_failslab+0xa4/0xe0
[   43.091016][  T353]  ? anon_vma_fork+0xf7/0x4e0
[   43.095690][  T353]  should_failslab+0x9/0x20
[   43.100035][  T353]  slab_pre_alloc_hook+0x37/0xd0
[   43.104831][  T353]  ? anon_vma_fork+0xf7/0x4e0
[   43.109504][  T353]  kmem_cache_alloc+0x44/0x200
[   43.114210][  T353]  anon_vma_fork+0xf7/0x4e0
[   43.118867][  T353]  ? anon_vma_name+0x43/0x70
[   43.123447][  T353]  ? vm_area_dup+0x17a/0x230
[   43.127852][  T353]  copy_mm+0xa3a/0x13e0
[   43.131941][  T353]  ? copy_signal+0x610/0x610
[   43.136356][  T353]  ? __init_rwsem+0xd6/0x1c0
[   43.140887][  T353]  ? copy_signal+0x4e3/0x610
[   43.145400][  T353]  copy_process+0x1149/0x3290
[   43.150043][  T353]  ? proc_fail_nth_write+0x20b/0x290
[   43.155808][  T353]  ? fsnotify_perm+0x6a/0x5d0
[   43.160498][  T353]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[   43.165543][  T353]  ? vfs_write+0x9ec/0x1110
[   43.169863][  T353]  kernel_clone+0x21e/0x9e0
[   43.174204][  T353]  ? file_end_write+0x1c0/0x1c0
[   43.178890][  T353]  ? create_io_thread+0x1e0/0x1e0
[   43.183795][  T353]  ? mutex_unlock+0xb2/0x260
[   43.189189][  T353]  ? __mutex_lock_slowpath+0x10/0x10
[   43.194451][  T353]  __x64_sys_clone+0x23f/0x290
[   43.199513][  T353]  ? __do_sys_vfork+0x130/0x130
[   43.204185][  T353]  ? ksys_write+0x260/0x2c0
[   43.208712][  T353]  ? debug_smp_processor_id+0x17/0x20
[   43.214022][  T353]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   43.220014][  T353]  ? exit_to_user_mode_prepare+0x39/0xa0
[   43.225621][  T353]  do_syscall_64+0x3d/0xb0
[   43.229899][  T353]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.236114][  T353] RIP: 0033:0x7f5df9076959
[   43.240631][  T353] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   43.260880][  T353] RSP: 002b:00007f5df8bf9078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   43.269546][  T353] RAX: ffffffffffffffda RBX: 00007f5df9195f80 RCX: 00007f5df9076959
[   43.277566][  T353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000200
[   43.285954][  T353] RBP: 00007f5df8bf9120 R08: 0000000000000000 R09: 0000000000000000
[   43.294671][  T353] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   43.302769][  T353] R13: 000000000000000b R14: 00007f5df9195f80 R15: 00007ffc908e7ee8
[   43.310701][  T353]  </TASK>
[   43.316561][  T353] ------------[ cut here ]------------
[   43.322502][  T353] refcount_t: underflow; use-after-free.
[   43.328244][  T353] WARNING: CPU: 0 PID: 353 at lib/refcount.c:28 refcount_warn_saturate+0x158/0x1a0
[   43.337784][  T353] Modules linked in:
[   43.341897][  T353] CPU: 0 PID: 353 Comm: syz-executor.0 Not tainted 5.15.148-syzkaller-1069047-g993bed180178 #0
[   43.352317][  T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   43.362978][  T353] RIP: 0010:refcount_warn_saturate+0x158/0x1a0
[   43.369550][  T353] Code: 04 01 48 c7 c7 00 c6 82 85 e8 e4 b4 dc fe 0f 0b eb 8b e8 3b 5d 0b ff c6 05 b3 a4 3e 04 01 48 c7 c7 60 c6 82 85 e8 c8 b4 dc fe <0f> 0b e9 6c ff ff ff e8 1c 5d 0b ff c6 05 95 a4 3e 04 01 48 c7 c7
[   43.391081][  T353] RSP: 0018:ffffc90000d17968 EFLAGS: 00010246
[   43.397166][  T353] RAX: 667e69e930c8ba00 RBX: 0000000000000003 RCX: ffff88810cc962c0
[   43.405677][  T353] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[   43.414033][  T353] RBP: ffffc90000d17978 R08: ffffffff81575f25 R09: ffffed103ee24e93
[   43.422102][  T353] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1102190e986
[   43.430681][  T353] R13: ffff88810c874c30 R14: 0000000000000003 R15: ffff88810bae7181
[   43.439243][  T353] FS:  00007f5df8bf96c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   43.448338][  T353] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   43.455202][  T353] CR2: 0000555556ae1430 CR3: 000000011fae9000 CR4: 00000000003506a0
[   43.463752][  T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   43.471936][  T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   43.479953][  T353] Call Trace:
[   43.483474][  T353]  <TASK>
[   43.486456][  T353]  ? show_regs+0x58/0x60
[   43.491210][  T353]  ? __warn+0x160/0x2f0
[   43.495263][  T353]  ? refcount_warn_saturate+0x158/0x1a0
[   43.500709][  T353]  ? report_bug+0x3d9/0x5b0
[   43.505279][  T353]  ? refcount_warn_saturate+0x158/0x1a0
[   43.510660][  T353]  ? handle_bug+0x41/0x70
[   43.515025][  T353]  ? exc_invalid_op+0x1b/0x50
[   43.519640][  T353]  ? asm_exc_invalid_op+0x1b/0x20
[   43.525058][  T353]  ? __wake_up_klogd+0xd5/0x110
[   43.529952][  T353]  ? refcount_warn_saturate+0x158/0x1a0
[   43.535411][  T353]  ? refcount_warn_saturate+0x158/0x1a0
[   43.540866][  T353]  vm_area_free_no_check+0x123/0x130
[   43.546013][  T353]  copy_mm+0xefb/0x13e0
[   43.550253][  T353]  ? copy_signal+0x610/0x610
[   43.555413][  T353]  ? __init_rwsem+0xd6/0x1c0
[   43.560636][  T353]  ? copy_signal+0x4e3/0x610
[   43.566014][  T353]  copy_process+0x1149/0x3290
[   43.570980][  T353]  ? proc_fail_nth_write+0x20b/0x290
[   43.576520][  T353]  ? fsnotify_perm+0x6a/0x5d0
[   43.581095][  T353]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[   43.586289][  T353]  ? vfs_write+0x9ec/0x1110
[   43.590733][  T353]  kernel_clone+0x21e/0x9e0
[   43.595625][  T353]  ? file_end_write+0x1c0/0x1c0
[   43.600664][  T353]  ? create_io_thread+0x1e0/0x1e0
[   43.605720][  T353]  ? mutex_unlock+0xb2/0x260
[   43.610474][  T353]  ? __mutex_lock_slowpath+0x10/0x10
[   43.615975][  T353]  __x64_sys_clone+0x23f/0x290
[   43.620677][  T353]  ? __do_sys_vfork+0x130/0x130
[   43.626133][  T353]  ? ksys_write+0x260/0x2c0
[   43.631198][  T353]  ? debug_smp_processor_id+0x17/0x20
[   43.636541][  T353]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   43.642958][  T353]  ? exit_to_user_mode_prepare+0x39/0xa0
[   43.648690][  T353]  do_syscall_64+0x3d/0xb0
[   43.653361][  T353]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.659164][  T353] RIP: 0033:0x7f5df9076959
[   43.663479][  T353] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   43.683865][  T353] RSP: 002b:00007f5df8bf9078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   43.692638][  T353] RAX: ffffffffffffffda RBX: 00007f5df9195f80 RCX: 00007f5df9076959
[   43.700986][  T353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000200
[   43.709195][  T353] RBP: 00007f5df8bf9120 R08: 0000000000000000 R09: 0000000000000000
[   43.717502][  T353] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   43.725935][  T353] R13: 000000000000000b R14: 00007f5df9195f80 R15: 00007ffc908e7ee8
[   43.734264][  T353]  </TASK>
[   43.737183][  T353] ---[ end trace 68062fe9e030ccd9 ]---
[   43.754516][  T356] FAULT_INJECTION: forcing a failure.
[   43.754516][  T356] name failslab, interval 1, probability 0, space 0, times 0
[   43.767634][  T356] CPU: 0 PID: 356 Comm: syz-executor.0 Tainted: G        W         5.15.148-syzkaller-1069047-g993bed180178 #0
[   43.780225][  T356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   43.790814][  T356] Call Trace:
[   43.793972][  T356]  <TASK>
[   43.797018][  T356]  dump_stack_lvl+0x151/0x1b7
[   43.802479][  T356]  ? io_uring_drop_tctx_refs+0x190/0x190
[   43.808381][  T356]  dump_stack+0x15/0x17
[   43.812441][  T356]  should_fail+0x3c6/0x510
[   43.817028][  T356]  __should_failslab+0xa4/0xe0
[   43.821659][  T356]  ? anon_vma_fork+0x1df/0x4e0
[   43.826307][  T356]  should_failslab+0x9/0x20
[   43.830876][  T356]  slab_pre_alloc_hook+0x37/0xd0
[   43.836370][  T356]  ? anon_vma_fork+0x1df/0x4e0
[   43.841381][  T356]  kmem_cache_alloc+0x44/0x200
[   43.845977][  T356]  anon_vma_fork+0x1df/0x4e0
[   43.850394][  T356]  copy_mm+0xa3a/0x13e0
[   43.854540][  T356]  ? copy_signal+0x610/0x610
[   43.859145][  T356]  ? __init_rwsem+0xd6/0x1c0
[   43.863640][  T356]  ? copy_signal+0x4e3/0x610
[   43.868238][  T356]  copy_process+0x1149/0x3290
[   43.872883][  T356]  ? proc_fail_nth_write+0x20b/0x290
[   43.878383][  T356]  ? fsnotify_perm+0x6a/0x5d0
[   43.883129][  T356]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[   43.888495][  T356]  ? vfs_write+0x9ec/0x1110
[   43.893097][  T356]  kernel_clone+0x21e/0x9e0
[   43.897637][  T356]  ? file_end_write+0x1c0/0x1c0
[   43.902501][  T356]  ? create_io_thread+0x1e0/0x1e0
[   43.908106][  T356]  ? mutex_unlock+0xb2/0x260
[   43.912775][  T356]  ? __mutex_lock_slowpath+0x10/0x10
[   43.918499][  T356]  __x64_sys_clone+0x23f/0x290
[   43.923383][  T356]  ? __do_sys_vfork+0x130/0x130
[   43.928240][  T356]  ? ksys_write+0x260/0x2c0
[   43.932991][  T356]  ? debug_smp_processor_id+0x17/0x20
[   43.938292][  T356]  ? fpregs_assert_state_consistent+0xb6/0xe0
[   43.944512][  T356]  ? exit_to_user_mode_prepare+0x39/0xa0
[   43.950056][  T356]  do_syscall_64+0x3d/0xb0
[   43.955248][  T356]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   43.961690][  T356] RIP: 0033:0x7f5df9076959
[   43.965926][  T356] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   43.986629][  T356] RSP: 002b:00007f5df8bf9078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[   43.995313][  T356] RAX: ffffffffffffffda RBX: 00007f5df9195f80 RCX: 00007f5df9076959
[   44.003885][  T356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000060000200
[   44.011811][  T356] RBP: 00007f5df8bf9120 R08: 0000000000000000 R09: 0000000000000000
[   44.019726][  T356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[   44.027780][  T356] R13: 000000000000000b R14: 00007f5df9195f80 R15: 00007ffc908e7ee8
[   44.035745][  T356]  </TASK>
[   44.050489][  T343] BUG: unable to handle page fault for address: ffffed180000000d
[   44.058137][  T343] #PF: supervisor read access in kernel mode
[   44.063953][  T343] #PF: error_code(0x0000) - not-present page
[   44.070133][  T343] PGD 23fff2067 P4D 23fff2067 PUD 0 
[   44.075814][  T343] Oops: 0000 [#1] PREEMPT SMP KASAN
[   44.082289][  T343] CPU: 0 PID: 343 Comm: syz-executor.0 Tainted: G        W         5.15.148-syzkaller-1069047-g993bed180178 #0
[   44.094558][  T343] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024
[   44.104766][  T343] RIP: 0010:__rb_insert_augmented+0x36b/0x610
[   44.111531][  T343] Code: 49 89 5d 00 48 83 e3 fc 43 80 3c 26 00 74 08 4c 89 ff e8 18 09 2b ff 4d 89 2f 48 85 db 74 2a 4c 8d 73 10 4c 89 f0 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 f7 e8 56 08 2b ff 48 8d 43 08 4c 39 7b
[   44.132242][  T343] RSP: 0018:ffffc90000a278f8 EFLAGS: 00010a02
[   44.138382][  T343] RAX: 1ffff1180000000d RBX: ffff88c000000058 RCX: ffff88810bbc13c0
[   44.146707][  T343] RDX: 0000000000000000 RSI: ffff88810cd72998 RDI: ffff88810badcc28
[   44.154682][  T343] RBP: ffffc90000a27960 R08: dffffc0000000000 R09: ffff88810cd729a0
[   44.162939][  T343] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   44.171106][  T343] R13: ffff88810cd72998 R14: ffff88c000000068 R15: ffff88810bae7180
[   44.178930][  T343] FS:  0000555556ae1480(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   44.187969][  T343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   44.194638][  T343] CR2: ffffed180000000d CR3: 000000011be5a000 CR4: 00000000003506b0
[   44.202545][  T343] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   44.210473][  T343] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   44.218384][  T343] Call Trace:
[   44.221459][  T343]  <TASK>
[   44.224240][  T343]  ? __die_body+0x62/0xb0
[   44.228601][  T343]  ? __die+0x7e/0x90
[   44.232663][  T343]  ? page_fault_oops+0x7f9/0xa90
[   44.237660][  T343]  ? __rb_insert_augmented+0x36b/0x610
[   44.243891][  T343]  ? kernelmode_fixup_or_oops+0x270/0x270
[   44.249426][  T343]  ? is_prefetch+0x47a/0x6d0
[   44.254162][  T343]  ? search_bpf_extables+0x26d/0x2c0
[   44.259471][  T343]  ? __rb_insert_augmented+0x36b/0x610
[   44.265222][  T343]  ? __rb_insert_augmented+0x36b/0x610
[   44.270637][  T343]  ? __rb_insert_augmented+0x36b/0x610
[   44.276018][  T343]  ? fixup_exception+0xbb/0x13c0
[   44.281154][  T343]  ? stack_trace_save+0x113/0x1c0
[   44.285986][  T343]  ? kernelmode_fixup_or_oops+0x21b/0x270
[   44.291679][  T343]  ? __bad_area_nosemaphore+0xcf/0x490
[   44.296925][  T343]  ? __kasan_slab_alloc+0xc3/0xe0
[   44.301803][  T343]  ? bad_area_nosemaphore+0x2d/0x40
[   44.306918][  T343]  ? do_kern_addr_fault+0x69/0x80
[   44.311880][  T343]  ? exc_page_fault+0x4eb/0x830
[   44.316776][  T343]  ? asm_exc_page_fault+0x27/0x30
[   44.321638][  T343]  ? __rb_insert_augmented+0x36b/0x610
[   44.326972][  T343]  ? __rb_insert_augmented+0x28f/0x610
[   44.332309][  T343]  ? anon_vma_interval_tree_iter_next+0x390/0x390
[   44.338837][  T343]  vma_interval_tree_insert_after+0x2be/0x2d0
[   44.344863][  T343]  copy_mm+0xba2/0x13e0
[   44.349252][  T343]  ? copy_signal+0x610/0x610
[   44.353929][  T343]  ? __init_rwsem+0xd6/0x1c0
[   44.358775][  T343]  ? copy_signal+0x4e3/0x610
[   44.363319][  T343]  copy_process+0x1149/0x3290
[   44.367832][  T343]  ? pidfd_show_fdinfo+0x2b0/0x2b0
[   44.372769][  T343]  kernel_clone+0x21e/0x9e0
[   44.377117][  T343]  ? kernel_read+0x1f0/0x1f0
[   44.381614][  T343]  ? kmem_cache_free+0x116/0x2e0
[   44.386539][  T343]  ? create_io_thread+0x1e0/0x1e0
[   44.391665][  T343]  ? debug_smp_processor_id+0x17/0x20
[   44.397176][  T343]  __x64_sys_clone+0x23f/0x290
[   44.401862][  T343]  ? __do_sys_vfork+0x130/0x130
[   44.406761][  T343]  do_syscall_64+0x3d/0xb0
[   44.411192][  T343]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   44.416913][  T343] RIP: 0033:0x7f5df9073a93
[   44.421974][  T343] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[   44.441818][  T343] RSP: 002b:00007ffc908e80f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[   44.450585][  T343] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f5df9073a93
[   44.458732][  T343] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[   44.468416][  T343] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[   44.476577][  T343] R10: 0000555556ae1750 R11: 0000000000000246 R12: 0000000000000001
[   44.485146][  T343] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   44.493635][  T343]  </TASK>
[   44.496583][  T343] Modules linked in:
[   44.500477][  T343] CR2: ffffed180000000d
[   44.504469][  T343] ---[ end trace 68062fe9e030ccda ]---
[   44.509940][  T343] RIP: 0010:__rb_insert_augmented+0x36b/0x610
[   44.515848][  T343] Code: 49 89 5d 00 48 83 e3 fc 43 80 3c 26 00 74 08 4c 89 ff e8 18 09 2b ff 4d 89 2f 48 85 db 74 2a 4c 8d 73 10 4c 89 f0 48 c1 e8 03 <42> 80 3c 20 00 74 08 4c 89 f7 e8 56 08 2b ff 48 8d 43 08 4c 39 7b
[   44.535417][  T343] RSP: 0018:ffffc90000a278f8 EFLAGS: 00010a02
[   44.541566][  T343] RAX: 1ffff1180000000d RBX: ffff88c000000058 RCX: ffff88810bbc13c0
[   44.549547][  T343] RDX: 0000000000000000 RSI: ffff88810cd72998 RDI: ffff88810badcc28
[   44.558008][  T343] RBP: ffffc90000a27960 R08: dffffc0000000000 R09: ffff88810cd729a0
[   44.566128][  T343] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[   44.574892][  T343] R13: ffff88810cd72998 R14: ffff88c000000068 R15: ffff88810bae7180
[   44.582891][  T343] FS:  0000555556ae1480(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   44.592376][  T343] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   44.598919][  T343] CR2: ffffed180000000d CR3: 000000011be5a000 CR4: 00000000003506b0
[   44.606893][  T343] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   44.614785][  T343] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   44.622934][  T343] Kernel panic - not syncing: Fatal exception
[   44.629216][  T343] Kernel Offset: disabled
[   44.633571][  T343] Rebooting in 86400 seconds..