Warning: Permanently added '10.128.0.219' (ED25519) to the list of known hosts.
2025/09/22 20:30:46 parsed 1 programs
[   45.669426][   T24] kauditd_printk_skb: 31 callbacks suppressed
[   45.669438][   T24] audit: type=1400 audit(1758573046.760:105): avc:  denied  { unlink } for  pid=406 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   45.744642][  T406] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   46.348770][  T421] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.356001][  T421] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.363418][  T421] device bridge_slave_0 entered promiscuous mode
[   46.370129][  T421] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.377286][  T421] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.385105][  T421] device bridge_slave_1 entered promiscuous mode
[   46.414066][  T421] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.421207][  T421] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.428511][  T421] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.435833][  T421] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.452337][  T345] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.459739][  T345] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.467106][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.474778][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.484990][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.493295][  T345] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.500418][  T345] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.508929][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.517378][  T345] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.524705][  T345] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.536566][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.545703][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.559508][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.571828][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.579779][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   46.587478][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   46.596868][  T421] device veth0_vlan entered promiscuous mode
[   46.606586][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.615532][  T421] device veth1_macvtap entered promiscuous mode
[   46.625167][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.635115][  T345] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.666040][   T24] audit: type=1400 audit(1758573047.760:106): avc:  denied  { create } for  pid=428 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[   46.738768][   T24] audit: type=1401 audit(1758573047.830:107): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/09/22 20:30:48 executed programs: 0
[   47.171822][   T24] audit: type=1400 audit(1758573048.270:108): avc:  denied  { write } for  pid=397 comm="syz-execprog" path="pipe:[15280]" dev="pipefs" ino=15280 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   47.213137][  T468] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.220181][  T468] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.227857][  T468] device bridge_slave_0 entered promiscuous mode
[   47.237885][  T468] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.244966][  T468] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.252551][  T468] device bridge_slave_1 entered promiscuous mode
[   47.285569][  T468] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.292652][  T468] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.300255][  T468] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.307346][  T468] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.324297][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   47.332163][   T48] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.339710][   T48] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.348846][    T9] device bridge_slave_1 left promiscuous mode
[   47.355106][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   47.362832][    T9] device bridge_slave_0 left promiscuous mode
[   47.368995][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   47.377131][    T9] device veth1_macvtap left promiscuous mode
[   47.383646][    T9] device veth0_vlan left promiscuous mode
[   47.456021][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   47.464450][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   47.473101][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[   47.480129][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[   47.488837][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   47.497352][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   47.505760][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[   47.512825][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[   47.524621][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   47.532802][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   47.541942][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   47.550163][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   47.563896][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   47.572300][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   47.583043][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   47.591156][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   47.599208][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   47.606956][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   47.615577][  T468] device veth0_vlan entered promiscuous mode
[   47.624702][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   47.633151][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.642257][  T468] device veth1_macvtap entered promiscuous mode
[   47.650793][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   47.658869][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   47.667218][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.678214][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   47.686754][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.722229][   T24] audit: type=1400 audit(1758573048.820:109): avc:  denied  { create } for  pid=474 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   47.742720][   T24] audit: type=1400 audit(1758573048.820:110): avc:  denied  { write } for  pid=474 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   47.766416][   T24] audit: type=1400 audit(1758573048.820:111): avc:  denied  { nlmsg_write } for  pid=474 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   48.381689][    C0] ==================================================================
[   48.389955][    C0] BUG: KASAN: stack-out-of-bounds in __xfrm_dst_hash+0x399/0x480
[   48.398029][    C0] Read of size 4 at addr ffffc90000007b18 by task swapper/0/0
[   48.405863][    C0] 
[   48.408490][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0
[   48.415634][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/14/2025
[   48.426084][    C0] Call Trace:
[   48.429615][    C0]  <IRQ>
[   48.432557][    C0]  __dump_stack+0x21/0x24
[   48.437187][    C0]  dump_stack_lvl+0x169/0x1d8
[   48.441928][    C0]  ? debug_smp_processor_id+0x17/0x20
[   48.447331][    C0]  ? show_regs_print_info+0x18/0x18
[   48.452727][    C0]  ? thaw_kernel_threads+0x220/0x220
[   48.458101][    C0]  ? tcp_ack_update_rtt+0xb19/0x12b0
[   48.463399][    C0]  print_address_description+0x7f/0x2c0
[   48.469094][    C0]  ? __xfrm_dst_hash+0x399/0x480
[   48.474063][    C0]  kasan_report+0xe2/0x130
[   48.478597][    C0]  ? __xfrm_dst_hash+0x399/0x480
[   48.483631][    C0]  __asan_report_load4_noabort+0x14/0x20
[   48.489263][    C0]  __xfrm_dst_hash+0x399/0x480
[   48.494139][    C0]  xfrm_state_find+0x27e/0x2880
[   48.499007][    C0]  ? unwind_next_frame+0x3d5/0x700
[   48.504132][    C0]  ? xfrm_sad_getinfo+0x170/0x170
[   48.509310][    C0]  ? stack_trace_save+0x98/0xe0
[   48.514182][    C0]  ? stack_trace_snprint+0xf0/0xf0
[   48.519373][    C0]  xfrm_resolve_and_create_bundle+0x626/0x28d0
[   48.525622][    C0]  ? xfrm_sk_policy_lookup+0x470/0x470
[   48.531228][    C0]  ? xfrm_selector_match+0xb7e/0x1030
[   48.536686][    C0]  ? __xfrm_policy_check+0x2920/0x2920
[   48.542692][    C0]  ? __kasan_check_write+0x14/0x20
[   48.547809][    C0]  xfrm_lookup_with_ifid+0x6e5/0x1980
[   48.553269][    C0]  ? percpu_counter_add_batch+0x13c/0x160
[   48.559120][    C0]  ? rt_set_nexthop+0x5ce/0x790
[   48.563962][    C0]  ? __xfrm_sk_clone_policy+0x680/0x680
[   48.569599][    C0]  ? ip_route_output_key_hash_rcu+0x15af/0x20e0
[   48.575962][    C0]  xfrm_lookup_route+0x3c/0x170
[   48.580809][    C0]  ip_route_output_flow+0x1d2/0x2d0
[   48.586027][    C0]  ? igmpv3_newpack+0x156/0xc40
[   48.590999][    C0]  ? ipv4_sk_update_pmtu+0x1320/0x1320
[   48.596438][    C0]  ? make_kuid+0x1ad/0x640
[   48.600855][    C0]  ? __put_user_ns+0x60/0x60
[   48.605611][    C0]  ? __kasan_check_write+0x14/0x20
[   48.610726][    C0]  ? __alloc_skb+0x38b/0x520
[   48.615319][    C0]  igmpv3_newpack+0x264/0xc40
[   48.620179][    C0]  ? igmpv3_sendpack+0x190/0x190
[   48.625110][    C0]  ? __kasan_check_read+0x11/0x20
[   48.630117][    C0]  ? ttwu_do_wakeup+0xf6/0x3c0
[   48.635018][    C0]  add_grhead+0x75/0x2e0
[   48.639524][    C0]  add_grec+0x116b/0x1410
[   48.643855][    C0]  ? __kasan_check_write+0x14/0x20
[   48.648966][    C0]  igmp_ifc_timer_expire+0x89e/0xf80
[   48.654397][    C0]  ? __kasan_check_write+0x14/0x20
[   48.659626][    C0]  ? _raw_spin_lock+0x8e/0xe0
[   48.664384][    C0]  ? _raw_spin_trylock_bh+0x130/0x130
[   48.669737][    C0]  ? igmp_gq_timer_expire+0xe0/0xe0
[   48.674915][    C0]  call_timer_fn+0x38/0x290
[   48.679486][    C0]  ? igmp_gq_timer_expire+0xe0/0xe0
[   48.684855][    C0]  __run_timers+0x639/0x9a0
[   48.689552][    C0]  ? calc_index+0x200/0x200
[   48.694056][    C0]  ? sched_clock_cpu+0x1b/0x3d0
[   48.698898][    C0]  run_timer_softirq+0x6a/0xf0
[   48.703779][    C0]  __do_softirq+0x255/0x563
[   48.708291][    C0]  asm_call_irq_on_stack+0xf/0x20
[   48.713301][    C0]  </IRQ>
[   48.716392][    C0]  do_softirq_own_stack+0x60/0x80
[   48.721410][    C0]  __irq_exit_rcu+0x128/0x150
[   48.726075][    C0]  irq_exit_rcu+0x9/0x10
[   48.730391][    C0]  sysvec_apic_timer_interrupt+0xbf/0xe0
[   48.736016][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   48.741996][    C0] RIP: 0010:default_idle+0x12/0x20
[   48.747095][    C0] Code: 48 8b 7c 24 10 e8 be 29 00 00 e9 71 ff ff ff e8 14 ff fa ff 00 00 cc cc 55 48 89 e5 0f 1f 44 00 00 0f 00 2d 70 0e 4d 00 fb f4 <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 55 48 89 e5 41 57 41 56
[   48.766930][    C0] RSP: 0018:ffffffff86207d58 EFLAGS: 00000252
[   48.773006][    C0] RAX: ffff8881f7000000 RBX: ffffffff8621c040 RCX: 00000000000089ae
[   48.781184][    C0] RDX: 0000000000000001 RSI: ffffffff85202580 RDI: ffffffff85202540
[   48.789159][    C0] RBP: ffffffff86207d58 R08: dffffc0000000000 R09: ffffed103ee0ae7b
[   48.797125][    C0] R10: ffffed103ee0ae7b R11: 1ffff1103ee0ae7a R12: 0000000000000000
[   48.805174][    C0] R13: 1ffffffff0c43808 R14: 0000000000000000 R15: dffffc0000000000
[   48.813166][    C0]  arch_cpu_idle+0xa/0x10
[   48.817606][    C0]  default_idle_call+0x71/0x1d0
[   48.822455][    C0]  do_idle+0x1df/0x530
[   48.826690][    C0]  ? irqentry_exit+0x30/0x60
[   48.831365][    C0]  ? common_interrupt+0x10c/0x180
[   48.836407][    C0]  ? idle_inject_timer_fn+0x60/0x60
[   48.841611][    C0]  cpu_startup_entry+0x18/0x20
[   48.846399][    C0]  rest_init+0xe8/0xf0
[   48.850494][    C0]  ? time_init+0x38/0x38
[   48.854769][    C0]  arch_call_rest_init+0xe/0x10
[   48.859606][    C0]  start_kernel+0x42e/0x49c
[   48.864221][    C0]  x86_64_start_reservations+0x2a/0x2c
[   48.869674][    C0]  x86_64_start_kernel+0x60/0x63
[   48.874606][    C0]  secondary_startup_64_no_verify+0xad/0xbb
[   48.880502][    C0] 
[   48.882918][    C0] 
[   48.885256][    C0] Memory state around the buggy address:
[   48.890986][    C0]  ffffc90000007a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   48.899033][    C0]  ffffc90000007a80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00
[   48.907261][    C0] >ffffc90000007b00: 00 00 00 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[   48.915305][    C0]                             ^
[   48.920141][    C0]  ffffc90000007b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   48.928190][    C0]  ffffc90000007c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   48.936582][    C0] ==================================================================
[   48.944816][    C0] Disabling lock debugging due to kernel taint
2025/09/22 20:30:53 executed programs: 240
2025/09/22 20:30:58 executed programs: 540
[   58.229723][ T1680] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.237136][ T1680] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.244691][ T1680] device bridge_slave_0 entered promiscuous mode
[   58.252462][ T1680] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.259630][ T1680] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.267883][ T1680] device bridge_slave_1 entered promiscuous mode
[   58.297236][ T1680] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.305328][ T1680] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.313152][ T1680] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.320183][ T1680] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.339400][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.347262][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.355447][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.365320][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.373874][    T7] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.381155][    T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.389618][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready