Warning: Permanently added '10.128.0.126' (ED25519) to the list of known hosts.
2025/12/31 15:44:54 parsed 1 programs
[ 43.534196][ T30] audit: type=1400 audit(1767195895.225:105): avc: denied { unlink } for pid=396 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 43.565815][ T396] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 44.250565][ T30] audit: type=1401 audit(1767195895.935:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 44.457964][ T432] bridge0: port 1(bridge_slave_0) entered blocking state
[ 44.465854][ T432] bridge0: port 1(bridge_slave_0) entered disabled state
[ 44.473431][ T432] device bridge_slave_0 entered promiscuous mode
[ 44.480298][ T432] bridge0: port 2(bridge_slave_1) entered blocking state
[ 44.487793][ T432] bridge0: port 2(bridge_slave_1) entered disabled state
[ 44.495765][ T432] device bridge_slave_1 entered promiscuous mode
[ 44.533727][ T432] bridge0: port 2(bridge_slave_1) entered blocking state
[ 44.541349][ T432] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 44.548902][ T432] bridge0: port 1(bridge_slave_0) entered blocking state
[ 44.556109][ T432] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 44.574249][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 44.581769][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 44.589584][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 44.598538][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 44.606717][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 44.614133][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 44.622552][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 44.631135][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 44.638498][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 44.650930][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 44.660116][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 44.672468][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 44.683351][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 44.691559][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 44.699632][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 44.708161][ T432] device veth0_vlan entered promiscuous mode
[ 44.717309][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 44.726391][ T432] device veth1_macvtap entered promiscuous mode
[ 44.735403][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 44.745660][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/12/31 15:44:56 executed programs: 0
[ 45.068807][ T468] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.075935][ T468] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.084072][ T468] device bridge_slave_0 entered promiscuous mode
[ 45.094627][ T468] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.101683][ T468] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.109225][ T468] device bridge_slave_1 entered promiscuous mode
[ 45.153010][ T468] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.160184][ T468] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.167573][ T468] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.174702][ T468] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.194911][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 45.202733][ T45] bridge0: port 1(bridge_slave_0) entered disabled state
[ 45.210408][ T45] bridge0: port 2(bridge_slave_1) entered disabled state
[ 45.219555][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 45.227992][ T45] bridge0: port 1(bridge_slave_0) entered blocking state
[ 45.235147][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 45.247684][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 45.256040][ T45] bridge0: port 2(bridge_slave_1) entered blocking state
[ 45.263168][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 45.274762][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 45.284101][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 45.299863][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 45.311306][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 45.319526][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 45.327338][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 45.336048][ T468] device veth0_vlan entered promiscuous mode
[ 45.347728][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 45.357349][ T468] device veth1_macvtap entered promiscuous mode
[ 45.367618][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 45.382175][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 45.413005][ T480] loop2: detected capacity change from 0 to 512
[ 45.472160][ T480] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 45.485964][ T480] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 45.497782][ T480] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 45.511347][ T480] EXT4-fs (loop2): 1 truncate cleaned up
[ 45.517276][ T480] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 45.538905][ T30] audit: type=1400 audit(1767195897.225:107): avc: denied { mount } for pid=479 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 45.548544][ T480] ==================================================================
[ 45.560667][ T30] audit: type=1400 audit(1767195897.235:108): avc: denied { write } for pid=479 comm="syz.2.17" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 45.568505][ T480] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x13a3/0x37d0
[ 45.568545][ T480] Read of size 18446744073709551540 at addr ffff888118dbf870 by task syz.2.17/480
[ 45.590518][ T30] audit: type=1400 audit(1767195897.235:109): avc: denied { open } for pid=479 comm="syz.2.17" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 45.598459][ T480]
[ 45.598479][ T480] CPU: 1 PID: 480 Comm: syz.2.17 Not tainted syzkaller #0
[ 45.598498][ T480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 45.607711][ T30] audit: type=1400 audit(1767195897.235:110): avc: denied { setattr } for pid=479 comm="syz.2.17" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 45.629521][ T480] Call Trace:
[ 45.629531][ T480]
[ 45.629538][ T480] __dump_stack+0x21/0x30
[ 45.629560][ T480] dump_stack_lvl+0xee/0x150
[ 45.629577][ T480] ? show_regs_print_info+0x20/0x20
[ 45.629592][ T480] ? load_image+0x3a0/0x3a0
[ 45.696590][ T480] ? unwind_get_return_address+0x4d/0x90
[ 45.702302][ T480] print_address_description+0x7f/0x2c0
[ 45.708087][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 45.713694][ T480] kasan_report+0xf1/0x140
[ 45.718342][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 45.723859][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 45.729814][ T480] kasan_check_range+0x280/0x290
[ 45.734735][ T480] memmove+0x2d/0x70
[ 45.738609][ T480] ext4_xattr_set_entry+0x13a3/0x37d0
[ 45.743989][ T480] ? __kasan_kmalloc+0xda/0x110
[ 45.748900][ T480] ? __kmalloc_track_caller+0x13c/0x2c0
[ 45.754594][ T480] ? kmemdup+0x26/0x60
[ 45.758744][ T480] ? setxattr+0x2b1/0x300
[ 45.763054][ T480] ? x64_sys_call+0x8cc/0x9a0
[ 45.767794][ T480] ? do_syscall_64+0x4c/0xa0
[ 45.772406][ T480] ? ext4_xattr_ibody_set+0x360/0x360
[ 45.777850][ T480] ? __kmalloc_track_caller+0x13c/0x2c0
[ 45.783583][ T480] ? memcpy+0x56/0x70
[ 45.787549][ T480] ext4_xattr_block_set+0x8cd/0x2cb0
[ 45.792896][ T480] ? errseq_check+0x41/0x80
[ 45.797466][ T480] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 45.803017][ T480] ? __kasan_check_write+0x14/0x20
[ 45.808257][ T480] ext4_xattr_set_handle+0xba5/0x12b0
[ 45.813620][ T480] ? ext4_xattr_set_entry+0x37d0/0x37d0
[ 45.819141][ T480] ? ext4_xattr_set+0x1f6/0x320
[ 45.823971][ T480] ? __ext4_journal_start_sb+0x154/0x2b0
[ 45.829581][ T480] ext4_xattr_set+0x22a/0x320
[ 45.834239][ T480] ? ext4_xattr_set_credits+0x290/0x290
[ 45.839777][ T480] ? selinux_inode_setxattr+0x5b4/0xbb0
[ 45.845476][ T480] ext4_xattr_trusted_set+0x3c/0x50
[ 45.850648][ T480] ? ext4_xattr_trusted_get+0x40/0x40
[ 45.856140][ T480] __vfs_setxattr+0x3e1/0x430
[ 45.860891][ T480] __vfs_setxattr_noperm+0x12a/0x5e0
[ 45.866150][ T480] __vfs_setxattr_locked+0x212/0x230
[ 45.871435][ T480] vfs_setxattr+0x168/0x2f0
[ 45.875918][ T480] ? xattr_permission+0x550/0x550
[ 45.880938][ T480] ? _copy_from_user+0x95/0xd0
[ 45.885923][ T480] setxattr+0x2da/0x300
[ 45.890200][ T480] ? path_setxattr+0x280/0x280
[ 45.895227][ T480] ? debug_smp_processor_id+0x17/0x20
[ 45.900602][ T480] ? __mnt_want_write+0x1e6/0x260
[ 45.905789][ T480] ? mnt_want_write+0x20b/0x2e0
[ 45.910860][ T480] path_setxattr+0x142/0x280
[ 45.915706][ T480] ? simple_xattr_list_add+0x120/0x120
[ 45.921157][ T480] ? do_sys_truncate+0x12f/0x190
[ 45.926181][ T480] ? __kasan_check_write+0x14/0x20
[ 45.931289][ T480] __x64_sys_lsetxattr+0xc2/0xe0
[ 45.936387][ T480] x64_sys_call+0x8cc/0x9a0
[ 45.941401][ T480] do_syscall_64+0x4c/0xa0
[ 45.945892][ T480] ? clear_bhb_loop+0x50/0xa0
[ 45.950692][ T480] ? clear_bhb_loop+0x50/0xa0
[ 45.955362][ T480] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 45.961410][ T480] RIP: 0033:0x7f2fdec7cb69
[ 45.965895][ T480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 45.985830][ T480] RSP: 002b:00007f2fde6ed038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 45.994495][ T480] RAX: ffffffffffffffda RBX: 00007f2fdeea3fa0 RCX: 00007f2fdec7cb69
[ 46.002531][ T480] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 46.010580][ T480] RBP: 00007f2fdecffdf1 R08: 0000000000000000 R09: 0000000000000000
[ 46.018559][ T480] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 46.026724][ T480] R13: 0000000000000000 R14: 00007f2fdeea3fa0 R15: 00007ffff10e75d8
[ 46.034763][ T480]
[ 46.037771][ T480]
[ 46.040073][ T480] Allocated by task 480:
[ 46.044288][ T480] __kasan_kmalloc+0xda/0x110
[ 46.049070][ T480] __kmalloc_track_caller+0x13c/0x2c0
[ 46.054494][ T480] kmemdup+0x26/0x60
[ 46.058389][ T480] ext4_xattr_block_set+0x7e2/0x2cb0
[ 46.063829][ T480] ext4_xattr_set_handle+0xba5/0x12b0
[ 46.069361][ T480] ext4_xattr_set+0x22a/0x320
[ 46.074096][ T480] ext4_xattr_trusted_set+0x3c/0x50
[ 46.079381][ T480] __vfs_setxattr+0x3e1/0x430
[ 46.084121][ T480] __vfs_setxattr_noperm+0x12a/0x5e0
[ 46.089380][ T480] __vfs_setxattr_locked+0x212/0x230
[ 46.094637][ T480] vfs_setxattr+0x168/0x2f0
[ 46.099203][ T480] setxattr+0x2da/0x300
[ 46.103385][ T480] path_setxattr+0x142/0x280
[ 46.108042][ T480] __x64_sys_lsetxattr+0xc2/0xe0
[ 46.113281][ T480] x64_sys_call+0x8cc/0x9a0
[ 46.117849][ T480] do_syscall_64+0x4c/0xa0
[ 46.122362][ T480] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.128329][ T480]
[ 46.130629][ T480] The buggy address belongs to the object at ffff888118dbf800
[ 46.130629][ T480] which belongs to the cache kmalloc-1k of size 1024
[ 46.144748][ T480] The buggy address is located 112 bytes inside of
[ 46.144748][ T480] 1024-byte region [ffff888118dbf800, ffff888118dbfc00)
[ 46.158177][ T480] The buggy address belongs to the page:
[ 46.163873][ T480] page:ffffea0004636e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x118db8
[ 46.174194][ T480] head:ffffea0004636e00 order:3 compound_mapcount:0 compound_pincount:0
[ 46.182580][ T480] flags: 0x4000000000010200(slab|head|zone=1)
[ 46.188723][ T480] raw: 4000000000010200 ffffea000461a200 0000000600000006 ffff888100043080
[ 46.197282][ T480] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 46.206093][ T480] page dumped because: kasan: bad access detected
[ 46.212711][ T480] page_owner tracks the page as allocated
[ 46.218489][ T480] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 101, ts 4855564818, free_ts 0
[ 46.236886][ T480] post_alloc_hook+0x192/0x1b0
[ 46.241727][ T480] prep_new_page+0x1c/0x110
[ 46.246304][ T480] get_page_from_freelist+0x2cc5/0x2d50
[ 46.252006][ T480] __alloc_pages+0x18f/0x440
[ 46.256664][ T480] new_slab+0xa1/0x4d0
[ 46.260885][ T480] ___slab_alloc+0x381/0x810
[ 46.265583][ T480] __slab_alloc+0x49/0x90
[ 46.270091][ T480] __kmalloc_track_caller+0x169/0x2c0
[ 46.275660][ T480] __alloc_skb+0x21a/0x740
[ 46.280231][ T480] netlink_sendmsg+0x602/0xb70
[ 46.285115][ T480] ____sys_sendmsg+0x5a2/0x8c0
[ 46.289886][ T480] ___sys_sendmsg+0x1f0/0x260
[ 46.294650][ T480] __x64_sys_sendmsg+0x1e2/0x2a0
[ 46.299653][ T480] x64_sys_call+0x4b/0x9a0
[ 46.304044][ T480] do_syscall_64+0x4c/0xa0
[ 46.308519][ T480] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.314394][ T480] page_owner free stack trace missing
[ 46.319739][ T480]
[ 46.322036][ T480] Memory state around the buggy address:
[ 46.327637][ T480] ffff888118dbf700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.335761][ T480] ffff888118dbf780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 46.343806][ T480] >ffff888118dbf800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 46.351932][ T480] ^
[ 46.359895][ T480] ffff888118dbf880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 46.368023][ T480] ffff888118dbf900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 46.376226][ T480] ==================================================================
[ 46.384358][ T480] Disabling lock debugging due to kernel taint
[ 46.397138][ T30] audit: type=1400 audit(1767195898.085:111): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 46.419607][ T30] audit: type=1400 audit(1767195898.085:112): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 46.442622][ T30] audit: type=1400 audit(1767195898.085:113): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 46.464343][ T30] audit: type=1400 audit(1767195898.085:114): avc: denied { add_name } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 46.530257][ T484] loop2: detected capacity change from 0 to 512
[ 46.609477][ T484] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 46.620858][ T484] EXT4-fs (loop2): 1 truncate cleaned up
[ 46.626754][ T484] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 46.663729][ T6] general protection fault, probably for non-canonical address 0xdffffc0000000000: 0000 [#1] PREEMPT SMP KASAN
[ 46.675648][ T6] KASAN: null-ptr-deref in range [0x0000000000000000-0x0000000000000007]
[ 46.684038][ T6] CPU: 0 PID: 6 Comm: kworker/0:0 Tainted: G B syzkaller #0
[ 46.692598][ T6] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 46.702715][ T6] Workqueue: mld mld_dad_work
[ 46.707461][ T6] RIP: 0010:ip6t_do_table+0x265/0x14c0
[ 46.712895][ T6] Code: 83 c3 38 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2c 93 78 fd 45 89 f6 49 c1 e6 03 4c 03 33 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 0c 93 78 fd 49 8b 06 48 89 44 24
[ 46.732740][ T6] RSP: 0018:ffffc90000067860 EFLAGS: 00010246
[ 46.739077][ T6] RAX: 0000000000000000 RBX: ffff888119056838 RCX: 62e9cbe31e983600
[ 46.747239][ T6] RDX: 0000000000000000 RSI: ffffffff856346a0 RDI: ffffffff85634660
[ 46.755199][ T6] RBP: ffffc90000067a50 R08: dffffc0000000000 R09: ffffc900000679b0
[ 46.763299][ T6] R10: fffff5200000cf3a R11: 1ffff9200000cf36 R12: 0000000000000000
[ 46.771338][ T6] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811ba3ba00
[ 46.779375][ T6] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 46.788922][ T6] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 46.795821][ T6] CR2: ffffffffffffff8b CR3: 000000011ba19000 CR4: 00000000003506b0
[ 46.803965][ T6] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 46.812041][ T6] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 46.820186][ T6] Call Trace:
[ 46.823631][ T6]
[ 46.826635][ T6] ? memset+0x35/0x40
[ 46.830750][ T6] ? xfrm_lookup_with_ifid+0x8d0/0x2120
[ 46.836328][ T6] ? __xfrm_sk_clone_policy+0x680/0x680
[ 46.841870][ T6] ? ip6t_alloc_initial_table+0x660/0x660
[ 46.847563][ T6] ? _raw_spin_lock_irq+0xe0/0xe0
[ 46.852757][ T6] ? memcpy+0x56/0x70
[ 46.856719][ T6] ? xfrm_lookup+0x38/0x50
[ 46.861522][ T6] ip6table_raw_hook+0x25/0x30
[ 46.866452][ T6] ? ip6table_raw_table_init+0x80/0x80
[ 46.871906][ T6] nf_hook_slow+0xbc/0x200
[ 46.876546][ T6] mld_sendpack+0xae4/0xb40
[ 46.881047][ T6] ? add_grec+0x1100/0x1100
[ 46.885541][ T6] ? igmp6_send+0xf70/0xf70
[ 46.890278][ T6] ? add_grec+0x11a/0x1100
[ 46.894808][ T6] mld_dad_work+0x248/0x660
[ 46.899296][ T6] process_one_work+0x6be/0xba0
[ 46.904222][ T6] worker_thread+0xa59/0x1200
[ 46.908964][ T6] kthread+0x411/0x500
[ 46.913009][ T6] ? worker_clr_flags+0x190/0x190
[ 46.918095][ T6] ? kthread_blkcg+0xd0/0xd0
[ 46.922657][ T6] ret_from_fork+0x1f/0x30
[ 46.927049][ T6]
[ 46.930045][ T6] Modules linked in:
[ 46.934064][ C1] BUG: unable to handle page fault for address: 000028250c8b486d
[ 46.934098][ T6] ---[ end trace 9628c1baa235e9e3 ]---
[ 46.941854][ C1] #PF: supervisor read access in kernel mode
[ 46.947410][ T6] RIP: 0010:ip6t_do_table+0x265/0x14c0
[ 46.953320][ C1] #PF: error_code(0x0000) - not-present page
[ 46.958778][ T6] Code: 83 c3 38 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2c 93 78 fd 45 89 f6 49 c1 e6 03 4c 03 33 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 0c 93 78 fd 49 8b 06 48 89 44 24
[ 46.964915][ C1] PGD 0 P4D 0
[ 46.964936][ C1] Oops: 0000 [#2] PREEMPT SMP KASAN
[ 46.964951][ C1] CPU: 1 PID: 484 Comm: syz.2.18 Tainted: G B D syzkaller #0
[ 46.985025][ T6] RSP: 0018:ffffc90000067860 EFLAGS: 00010246
[ 46.988349][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 46.993661][ T6]
[ 47.002770][ C1] RIP: 0010:__stack_depot_save+0x177/0x480
[ 47.009011][ T6] RAX: 0000000000000000 RBX: ffff888119056838 RCX: 62e9cbe31e983600
[ 47.019287][ C1] Code: 29 cd 48 8b 3d 52 25 a9 04 45 89 e9 41 81 e1 ff 0f 00 00 4e 8b 24 cf 4d 85 e4 74 5c 44 89 f1 eb 09 4d 8b 24 24 4d 85 e4 74 4e <45> 39 6c 24 08 75 f0 45 39 74 24 0c 75 e9 31 d2 48 8b 34 d3 49 3b
[ 47.019302][ C1] RSP: 0018:ffffc900001d0868 EFLAGS: 00010206
[ 47.021610][ T6] RDX: 0000000000000000 RSI: ffffffff856346a0 RDI: ffffffff85634660
[ 47.027473][ C1]
[ 47.027478][ C1] RAX: 0000000000000000 RBX: ffffc900001d08d0 RCX: 000000000000000f
[ 47.027491][ C1] RDX: 000000008d795adf RSI: 000000009f062c5e RDI: ffff88823fec0000
[ 47.035639][ T6] RBP: ffffc90000067a50 R08: dffffc0000000000 R09: ffffc900000679b0
[ 47.055321][ C1] RBP: ffffc900001d08c0 R08: 0000000000000001 R09: 0000000000000df8
[ 47.055335][ C1] R10: 0000000060dda1a6 R11: 1ffff9200003a0f1 R12: 000028250c8b4865
[ 47.055345][ C1] R13: 0000000008152df8 R14: 000000000000000f R15: 0000000000000800
[ 47.055356][ C1] FS: 00007f2fde6ed6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 47.061480][ T6] R10: fffff5200000cf3a R11: 1ffff9200000cf36 R12: 0000000000000000
[ 47.069693][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 47.069705][ C1] CR2: 000028250c8b486d CR3: 000000011ba19000 CR4: 00000000003506a0
[ 47.069721][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 47.072053][ T6] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811ba3ba00
[ 47.080025][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 47.080036][ C1] Call Trace:
[ 47.080041][ C1]
[ 47.080049][ C1] kasan_set_track+0x5b/0x70
[ 47.088018][ T6] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 47.096040][ C1] ? kasan_set_track+0x4a/0x70
[ 47.096057][ C1] ? kasan_set_free_info+0x23/0x40
[ 47.104106][ T6] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 47.112131][ C1] ? ____kasan_slab_free+0x125/0x160
[ 47.120179][ T6] CR2: ffffffffffffff8b CR3: 000000011ba19000 CR4: 00000000003506b0
[ 47.129070][ C1] ? __kasan_slab_free+0x11/0x20
[ 47.129087][ C1] ? slab_free_freelist_hook+0xc2/0x190
[ 47.137403][ T6] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 47.143952][ C1] ? kmem_cache_free+0x100/0x320
[ 47.143974][ C1] ? file_free_rcu+0x93/0xa0
[ 47.152179][ T6] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 47.160456][ C1] ? rcu_do_batch+0x51d/0xba0
[ 47.160476][ C1] ? rcu_core+0x5e4/0xf80
[ 47.168546][ T6] Kernel panic - not syncing: Fatal exception in interrupt
[ 47.176475][ C1] ? rcu_core_si+0x9/0x10
[ 47.283599][ C1] ? handle_softirqs+0x250/0x560
[ 47.288721][ C1] ? __irq_exit_rcu+0x52/0xf0
[ 47.293438][ C1] ? irq_exit_rcu+0x9/0x10
[ 47.297846][ C1] ? sysvec_apic_timer_interrupt+0xa9/0xc0
[ 47.303728][ C1] ? asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 47.309869][ C1] ? __memmove+0x19c/0x1a0
[ 47.314536][ C1] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 47.320157][ C1] ? ext4_xattr_block_set+0x8cd/0x2cb0
[ 47.325603][ C1] ? ext4_xattr_set_handle+0xba5/0x12b0
[ 47.331152][ C1] ? ext4_xattr_set+0x22a/0x320
[ 47.336166][ C1] ? ext4_xattr_trusted_set+0x3c/0x50
[ 47.341535][ C1] ? __vfs_setxattr+0x3e1/0x430
[ 47.346382][ C1] ? __vfs_setxattr_noperm+0x12a/0x5e0
[ 47.351917][ C1] ? __vfs_setxattr_locked+0x212/0x230
[ 47.357361][ C1] ? vfs_setxattr+0x168/0x2f0
[ 47.362029][ C1] ? setxattr+0x2da/0x300
[ 47.366342][ C1] ? path_setxattr+0x142/0x280
[ 47.371264][ C1] ? __x64_sys_lsetxattr+0xc2/0xe0
[ 47.376363][ C1] ? x64_sys_call+0x8cc/0x9a0
[ 47.381040][ C1] ? do_syscall_64+0x4c/0xa0
[ 47.385616][ C1] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.391686][ C1] ? __raise_softirq_irqoff+0x17/0xd0
[ 47.397042][ C1] ? kmem_cache_free+0x100/0x320
[ 47.401979][ C1] kasan_set_free_info+0x23/0x40
[ 47.407341][ C1] ____kasan_slab_free+0x125/0x160
[ 47.412535][ C1] __kasan_slab_free+0x11/0x20
[ 47.417562][ C1] slab_free_freelist_hook+0xc2/0x190
[ 47.423021][ C1] ? file_free_rcu+0x93/0xa0
[ 47.427949][ C1] kmem_cache_free+0x100/0x320
[ 47.432876][ C1] file_free_rcu+0x93/0xa0
[ 47.437290][ C1] rcu_do_batch+0x51d/0xba0
[ 47.441870][ C1] ? local_bh_enable+0x20/0x20
[ 47.446812][ C1] ? __kasan_check_write+0x14/0x20
[ 47.452084][ C1] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 47.457893][ C1] ? _raw_spin_lock+0xe0/0xe0
[ 47.462652][ C1] ? _raw_spin_unlock_irqrestore+0x5b/0x80
[ 47.468540][ C1] ? rcu_report_qs_rnp+0x2bf/0x3a0
[ 47.473745][ C1] rcu_core+0x5e4/0xf80
[ 47.478064][ C1] ? rcu_cpu_kthread_park+0x90/0x90
[ 47.483260][ C1] ? run_rebalance_domains+0xf7/0x1c0
[ 47.488622][ C1] rcu_core_si+0x9/0x10
[ 47.492862][ C1] handle_softirqs+0x250/0x560
[ 47.497703][ C1] __irq_exit_rcu+0x52/0xf0
[ 47.502207][ C1] irq_exit_rcu+0x9/0x10
[ 47.506461][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 47.512114][ C1]
[ 47.515038][ C1]
[ 47.517957][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 47.523934][ C1] RIP: 0010:__memmove+0x19c/0x1a0
[ 47.528948][ C1] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 00 eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 47.549163][ C1] RSP: 0018:ffffc900010c7240 EFLAGS: 00010282
[ 47.555243][ C1] RAX: ffff88811866f850 RBX: ffffffffffffffb4 RCX: fffffffffdb94279
[ 47.563404][ C1] RDX: ffffffffffffffb4 RSI: ffff88811aadb5ab RDI: ffff88811aadb58b
[ 47.571546][ C1] RBP: ffffc900010c7270 R08: ffff88811866f804 R09: ffffed10230cdf80
[ 47.579509][ C1] R10: 0000000000000000 R11: 0000000000000080 R12: 0000000000000000
[ 47.587552][ C1] R13: ffffffff81e7dfa3 R14: ffff88811866f870 R15: ffff88811866f850
[ 47.595604][ C1] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 47.601325][ C1] ? memmove+0x56/0x70
[ 47.605512][ C1] ext4_xattr_set_entry+0x13a3/0x37d0
[ 47.611209][ C1] ? __kasan_kmalloc+0xda/0x110
[ 47.616059][ C1] ? __kmalloc_track_caller+0x13c/0x2c0
[ 47.621947][ C1] ? kmemdup+0x26/0x60
[ 47.626088][ C1] ? setxattr+0x2b1/0x300
[ 47.630585][ C1] ? x64_sys_call+0x8cc/0x9a0
[ 47.635350][ C1] ? do_syscall_64+0x4c/0xa0
[ 47.639941][ C1] ? ext4_xattr_ibody_set+0x360/0x360
[ 47.645388][ C1] ? __kmalloc_track_caller+0x13c/0x2c0
[ 47.650926][ C1] ? memcpy+0x56/0x70
[ 47.654984][ C1] ext4_xattr_block_set+0x8cd/0x2cb0
[ 47.660267][ C1] ? errseq_check+0x41/0x80
[ 47.664948][ C1] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 47.670669][ C1] ? __kasan_check_write+0x14/0x20
[ 47.675947][ C1] ext4_xattr_set_handle+0xba5/0x12b0
[ 47.681398][ C1] ? ext4_xattr_set_entry+0x37d0/0x37d0
[ 47.687026][ C1] ? ext4_xattr_set+0x1f6/0x320
[ 47.691952][ C1] ? __ext4_journal_start_sb+0x154/0x2b0
[ 47.697664][ C1] ext4_xattr_set+0x22a/0x320
[ 47.702598][ C1] ? ext4_xattr_set_credits+0x290/0x290
[ 47.708132][ C1] ? selinux_inode_setxattr+0x5b4/0xbb0
[ 47.713850][ C1] ext4_xattr_trusted_set+0x3c/0x50
[ 47.719034][ C1] ? ext4_xattr_trusted_get+0x40/0x40
[ 47.724585][ C1] __vfs_setxattr+0x3e1/0x430
[ 47.729259][ C1] __vfs_setxattr_noperm+0x12a/0x5e0
[ 47.734529][ C1] __vfs_setxattr_locked+0x212/0x230
[ 47.739801][ C1] vfs_setxattr+0x168/0x2f0
[ 47.744290][ C1] ? xattr_permission+0x550/0x550
[ 47.749490][ C1] ? _copy_from_user+0x95/0xd0
[ 47.754860][ C1] setxattr+0x2da/0x300
[ 47.759305][ C1] ? path_setxattr+0x280/0x280
[ 47.764147][ C1] ? debug_smp_processor_id+0x17/0x20
[ 47.769598][ C1] ? __mnt_want_write+0x1e6/0x260
[ 47.774782][ C1] ? mnt_want_write+0x20b/0x2e0
[ 47.779793][ C1] path_setxattr+0x142/0x280
[ 47.784377][ C1] ? simple_xattr_list_add+0x120/0x120
[ 47.790102][ C1] ? do_sys_truncate+0x12f/0x190
[ 47.795392][ C1] ? __kasan_check_write+0x14/0x20
[ 47.800597][ C1] __x64_sys_lsetxattr+0xc2/0xe0
[ 47.805621][ C1] x64_sys_call+0x8cc/0x9a0
[ 47.810233][ C1] do_syscall_64+0x4c/0xa0
[ 47.814645][ C1] ? clear_bhb_loop+0x50/0xa0
[ 47.819396][ C1] ? clear_bhb_loop+0x50/0xa0
[ 47.824140][ C1] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 47.830107][ C1] RIP: 0033:0x7f2fdec7cb69
[ 47.834601][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 47.854460][ C1] RSP: 002b:00007f2fde6ed038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 47.862951][ C1] RAX: ffffffffffffffda RBX: 00007f2fdeea3fa0 RCX: 00007f2fdec7cb69
[ 47.870915][ C1] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 47.879051][ C1] RBP: 00007f2fdecffdf1 R08: 0000000000000000 R09: 0000000000000000
[ 47.887093][ C1] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 47.895312][ C1] R13: 0000000000000000 R14: 00007f2fdeea3fa0 R15: 00007ffff10e75d8
[ 47.903385][ C1]
[ 47.906475][ C1] Modules linked in:
[ 47.910552][ C1] CR2: 000028250c8b486d
[ 47.914773][ C1] ---[ end trace 9628c1baa235e9e4 ]---
[ 47.920366][ C1] RIP: 0010:ip6t_do_table+0x265/0x14c0
[ 47.925925][ C1] Code: 83 c3 38 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 2c 93 78 fd 45 89 f6 49 c1 e6 03 4c 03 33 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 0c 93 78 fd 49 8b 06 48 89 44 24
[ 47.945726][ C1] RSP: 0018:ffffc90000067860 EFLAGS: 00010246
[ 47.951978][ C1] RAX: 0000000000000000 RBX: ffff888119056838 RCX: 62e9cbe31e983600
[ 47.960126][ C1] RDX: 0000000000000000 RSI: ffffffff856346a0 RDI: ffffffff85634660
[ 47.968083][ C1] RBP: ffffc90000067a50 R08: dffffc0000000000 R09: ffffc900000679b0
[ 47.976041][ C1] R10: fffff5200000cf3a R11: 1ffff9200000cf36 R12: 0000000000000000
[ 47.984173][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88811ba3ba00
[ 47.992481][ C1] FS: 00007f2fde6ed6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 48.001488][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 48.008338][ C1] CR2: 000028250c8b486d CR3: 000000011ba19000 CR4: 00000000003506a0
[ 48.016295][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 48.024435][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 48.314899][ T6] Shutting down cpus with NMI
[ 48.319972][ T6] Kernel Offset: disabled
[ 48.324367][ T6] Rebooting in 86400 seconds..