[ 26.235349][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 26.302313][ T300] syz-executor.0 (300) used greatest stack depth: 10864 bytes left [ 27.211934][ T10] device bridge_slave_1 left promiscuous mode [ 27.217847][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 27.224842][ T10] device bridge_slave_0 left promiscuous mode [ 27.230928][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 27.238279][ T10] device veth1_macvtap left promiscuous mode [ 27.244070][ T10] device veth0_vlan left promiscuous mode [ 46.768747][ T29] kauditd_printk_skb: 19 callbacks suppressed [ 46.768752][ T29] audit: type=1400 audit(1720329874.249:95): avc: denied { read } for pid=76 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 Warning: Permanently added '10.128.10.19' (ED25519) to the list of known hosts. 2024/07/07 05:24:40 ignoring optional flag "sandboxArg"="0" 2024/07/07 05:24:40 parsed 1 programs [ 53.165814][ T29] audit: type=1400 audit(1720329880.649:96): avc: denied { mounton } for pid=353 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 53.190345][ T29] audit: type=1400 audit(1720329880.649:97): avc: denied { read write } for pid=353 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 53.216545][ T29] audit: type=1400 audit(1720329880.649:98): avc: denied { open } for pid=353 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/07/07 05:24:40 executed programs: 0 [ 53.242665][ T29] audit: type=1400 audit(1720329880.719:99): avc: denied { unlink } for pid=353 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 53.268590][ T29] audit: type=1400 audit(1720329880.719:100): avc: denied { relabelto } for pid=354 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 53.296467][ T353] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 53.315408][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.322257][ T359] bridge0: port 1(bridge_slave_0) entered disabled state [ 53.329182][ T359] device bridge_slave_0 entered promiscuous mode [ 53.335430][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.342247][ T359] bridge0: port 2(bridge_slave_1) entered disabled state [ 53.349404][ T359] device bridge_slave_1 entered promiscuous mode [ 53.361041][ T359] bridge0: port 2(bridge_slave_1) entered blocking state [ 53.367873][ T359] bridge0: port 2(bridge_slave_1) entered forwarding state [ 53.374924][ T359] bridge0: port 1(bridge_slave_0) entered blocking state [ 53.381767][ T359] bridge0: port 1(bridge_slave_0) entered forwarding state [ 53.392112][ T359] device veth0_vlan entered promiscuous mode [ 53.398443][ T359] device veth1_macvtap entered promiscuous mode [ 53.404844][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 53.412732][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 53.420610][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 53.428460][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 53.436179][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 53.444125][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 53.451666][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 53.458676][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 53.465739][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 53.473477][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 53.480443][ T301] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 53.488238][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 53.497854][ T305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 53.510198][ T29] audit: type=1400 audit(1720329880.989:101): avc: denied { mounton } for pid=364 comm="syz-executor.0" path="/root/syzkaller-testdir189328565/syzkaller.8ZjjXK/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 53.550680][ T29] audit: type=1400 audit(1720329881.029:102): avc: denied { write } for pid=364 comm="syz-executor.0" name="/" dev="incremental-fs" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 53.550703][ T366] BUG: kernel NULL pointer dereference, address: 0000000000000030 [ 53.573670][ T29] audit: type=1400 audit(1720329881.029:103): avc: denied { add_name } for pid=364 comm="syz-executor.0" name=".pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 53.581287][ T366] #PF: supervisor read access in kernel mode [ 53.581289][ T366] #PF: error_code(0x0000) - not-present page [ 53.581292][ T366] PGD 113d41067 P4D 113d41067 PUD 113d45067 PMD 0 [ 53.605550][ T29] audit: type=1400 audit(1720329881.029:104): avc: denied { link } for pid=364 comm="syz-executor.0" name=".pending_reads" dev="incremental-fs" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 53.611228][ T366] [ 53.611240][ T366] Oops: 0000 [#1] PREEMPT SMP [ 53.654701][ T366] CPU: 1 PID: 366 Comm: syz-executor.0 Not tainted 5.15.150-syzkaller #0 [ 53.663035][ T366] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 53.672947][ T366] RIP: 0010:vfs_link+0x19/0x320 [ 53.677613][ T366] Code: c4 e9 ff eb bc 41 bc ff ff ff ff eb 87 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 18 48 8b 42 28 48 89 7d d0 <4c> 8b 77 30 4c 89 45 c0 8b 80 28 04 00 00 4d 85 f6 89 45 cc 0f 84 [ 53.697254][ T366] RSP: 0018:ffffc900003a3d58 EFLAGS: 00010292 [ 53.703181][ T366] RAX: ffff888102599800 RBX: ffff888113cc9818 RCX: ffff888109ef29c0 [ 53.711150][ T366] RDX: ffff888108e7c738 RSI: ffffffff82e52a80 RDI: 0000000000000000 [ 53.719143][ T366] RBP: ffffc900003a3d98 R08: 0000000000000000 R09: ffffc900003a3b60 [ 53.727033][ T366] R10: ffff888108e7c7d8 R11: 0000000000000000 R12: ffff888113ccb400 [ 53.734933][ T366] R13: ffff888113ccb460 R14: ffffc900003a3de8 R15: 0000000000000000 [ 53.742751][ T366] FS: 00007fe4f2d796c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 53.751614][ T366] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 53.758125][ T366] CR2: 0000000000000030 CR3: 000000010d306000 CR4: 00000000003506a0 [ 53.765934][ T366] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 53.773743][ T366] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 53.781556][ T366] Call Trace: [ 53.784775][ T366] [ 53.787544][ T366] ? show_regs.part.0+0x1e/0x20 [ 53.792317][ T366] ? __die+0x5d/0x9e [ 53.796051][ T366] ? page_fault_oops+0x12d/0x280 [ 53.800835][ T366] ? do_user_addr_fault+0x44b/0x730 [ 53.805960][ T366] ? _raw_spin_unlock_irqrestore+0x28/0x40 [ 53.811673][ T366] ? __wake_up_common_lock+0x85/0xb0 [ 53.816794][ T366] ? kmem_cache_free+0x135/0x2c0 [ 53.821565][ T366] ? trace_event_raw_event_selinux_audited+0x200/0x200 [ 53.828250][ T366] ? audit_log_end+0x73/0x100 [ 53.832764][ T366] ? common_lsm_audit+0x136/0x860 [ 53.837622][ T366] ? call_rcu+0x9/0x10 [ 53.841529][ T366] ? avc_node_replace+0x5f/0x90 [ 53.846215][ T366] ? avc_update_node.isra.0+0x1ae/0x2c0 [ 53.851596][ T366] ? exc_page_fault+0x67/0x160 [ 53.856197][ T366] ? asm_exc_page_fault+0x27/0x30 [ 53.861058][ T366] ? vfs_link+0x19/0x320 [ 53.865135][ T366] ? preempt_count_add+0x4d/0xa0 [ 53.870007][ T366] dir_link+0x17e/0x250 [ 53.873997][ T366] vfs_link+0x207/0x320 [ 53.877986][ T366] do_linkat+0x1f8/0x2c0 [ 53.882071][ T366] __x64_sys_linkat+0x58/0x70 [ 53.886575][ T366] do_syscall_64+0x35/0xb0 [ 53.890829][ T366] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 53.896558][ T366] RIP: 0033:0x7fe4f31f7da9 [ 53.900821][ T366] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 53.920251][ T366] RSP: 002b:00007fe4f2d790c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000109 [ 53.928931][ T366] RAX: ffffffffffffffda RBX: 00007fe4f3325f80 RCX: 00007fe4f31f7da9 [ 53.936745][ T366] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000004 [ 53.944552][ T366] RBP: 00007fe4f324447a R08: 0000000000000000 R09: 0000000000000000 [ 53.952365][ T366] R10: 0000000020000000 R11: 0000000000000246 R12: 0000000000000000 [ 53.960174][ T366] R13: 000000000000000b R14: 00007fe4f3325f80 R15: 00007ffe1a8e1478 [ 53.967991][ T366] [ 53.970852][ T366] Modules linked in: [ 53.974595][ T366] CR2: 0000000000000030 [ 53.978760][ T366] ---[ end trace f7975aa35c70b4d8 ]--- [ 53.984044][ T366] RIP: 0010:vfs_link+0x19/0x320 [ 53.988730][ T366] Code: c4 e9 ff eb bc 41 bc ff ff ff ff eb 87 0f 1f 40 00 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 18 48 8b 42 28 48 89 7d d0 <4c> 8b 77 30 4c 89 45 c0 8b 80 28 04 00 00 4d 85 f6 89 45 cc 0f 84 [ 54.008172][ T366] RSP: 0018:ffffc900003a3d58 EFLAGS: 00010292 [ 54.014179][ T366] RAX: ffff888102599800 RBX: ffff888113cc9818 RCX: ffff888109ef29c0 [ 54.021969][ T366] RDX: ffff888108e7c738 RSI: ffffffff82e52a80 RDI: 0000000000000000 [ 54.029799][ T366] RBP: ffffc900003a3d98 R08: 0000000000000000 R09: ffffc900003a3b60 [ 54.037603][ T366] R10: ffff888108e7c7d8 R11: 0000000000000000 R12: ffff888113ccb400 [ 54.045500][ T366] R13: ffff888113ccb460 R14: ffffc900003a3de8 R15: 0000000000000000 [ 54.053588][ T366] FS: 00007fe4f2d796c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 54.062468][ T366] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 54.068968][ T366] CR2: 0000000000000030 CR3: 000000010d306000 CR4: 00000000003506a0 [ 54.076774][ T366] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 54.084667][ T366] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 54.092481][ T366] Kernel panic - not syncing: Fatal exception [ 54.098826][ T366] Kernel Offset: disabled [ 54.103126][ T366] Rebooting in 86400 seconds..