Warning: Permanently added '10.128.0.176' (ED25519) to the list of known hosts. 2024/10/28 11:21:45 ignoring optional flag "sandboxArg"="0" 2024/10/28 11:21:45 ignoring optional flag "type"="gce" 2024/10/28 11:21:45 parsed 1 programs [ 45.374991][ T23] kauditd_printk_skb: 19 callbacks suppressed [ 45.375004][ T23] audit: type=1400 audit(1730114505.240:95): avc: denied { unlink } for pid=407 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/10/28 11:21:45 executed programs: 0 [ 45.448461][ T407] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 45.522030][ T413] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.529036][ T413] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.536631][ T413] device bridge_slave_0 entered promiscuous mode [ 45.543542][ T413] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.550793][ T413] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.558570][ T413] device bridge_slave_1 entered promiscuous mode [ 45.612477][ T413] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.619639][ T413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.626825][ T413] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.633774][ T413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.658652][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 45.665878][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 45.673575][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 45.681034][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 45.691543][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 45.700040][ T9] bridge0: port 1(bridge_slave_0) entered blocking state [ 45.706983][ T9] bridge0: port 1(bridge_slave_0) entered forwarding state [ 45.716468][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 45.724473][ T9] bridge0: port 2(bridge_slave_1) entered blocking state [ 45.731372][ T9] bridge0: port 2(bridge_slave_1) entered forwarding state [ 45.745764][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 45.755628][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 45.773531][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 45.786576][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 45.802192][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 45.816911][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 45.827368][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 45.856614][ T23] audit: type=1400 audit(1730114505.720:96): avc: denied { mounton } for pid=418 comm="syz-executor.0" path="/root/syzkaller-testdir3534938627/syzkaller.8MmKys/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 45.883949][ T23] audit: type=1400 audit(1730114505.720:97): avc: denied { mount } for pid=418 comm="syz-executor.0" name="/" dev="tmpfs" ino=11048 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 45.907448][ T23] audit: type=1400 audit(1730114505.720:98): avc: denied { mounton } for pid=418 comm="syz-executor.0" path="/syzcgroup/unified/syz0" dev="cgroup2" ino=13 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 45.907459][ T413] ------------[ cut here ]------------ [ 45.931514][ T23] audit: type=1400 audit(1730114505.720:99): avc: denied { unmount } for pid=413 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1 [ 45.936474][ T413] WARNING: CPU: 1 PID: 413 at fs/inode.c:302 drop_nlink+0xbb/0x100 [ 45.936485][ T413] Modules linked in: [ 45.968263][ T413] CPU: 1 PID: 413 Comm: syz-executor.0 Not tainted 5.4.283-syzkaller-04984-ge6ac8beecb16 #0 [ 45.978247][ T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 45.988155][ T413] RIP: 0010:drop_nlink+0xbb/0x100 [ 45.993090][ T413] Code: 49 8b 1e 48 8d bb d0 04 00 00 be 08 00 00 00 e8 cb 99 f2 ff f0 48 ff 83 d0 04 00 00 5b 41 5c 41 5e 41 5f 5d c3 e8 55 dd c2 ff <0f> 0b eb 89 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c [ 46.013701][ T413] RSP: 0018:ffff8881f0bc7aa8 EFLAGS: 00010293 [ 46.019684][ T413] RAX: ffffffff81a1594b RBX: 1ffff1103c331aaf RCX: ffff8881f31f8000 [ 46.027726][ T413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.035947][ T413] RBP: 0000000000000000 R08: ffffffff81a158cf R09: 0000000000000003 [ 46.043855][ T413] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881e198d578 [ 46.051866][ T413] R13: dffffc0000000000 R14: ffff8881e198d530 R15: dffffc0000000000 [ 46.059823][ T413] FS: 000055556976d480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 46.069209][ T413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.075746][ T413] CR2: 000000c001300000 CR3: 00000001edb96000 CR4: 00000000003406a0 [ 46.083759][ T413] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.092234][ T413] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.100223][ T413] Call Trace: [ 46.103524][ T413] ? __warn+0x162/0x250 [ 46.107540][ T413] ? report_bug+0x3a1/0x4e0 [ 46.111858][ T413] ? drop_nlink+0xbb/0x100 [ 46.116274][ T413] ? drop_nlink+0xbb/0x100 [ 46.120600][ T413] ? do_invalid_op+0x6e/0x110 [ 46.125212][ T413] ? invalid_op+0x1e/0x30 [ 46.129367][ T413] ? drop_nlink+0x3f/0x100 [ 46.133636][ T413] ? drop_nlink+0xbb/0x100 [ 46.137989][ T413] ? drop_nlink+0xbb/0x100 [ 46.142495][ T413] ? drop_nlink+0xbb/0x100 [ 46.146836][ T413] shmem_rmdir+0x54/0x80 [ 46.150907][ T413] vfs_rmdir+0x285/0x3c0 [ 46.155257][ T413] incfs_kill_sb+0x105/0x200 [ 46.159692][ T413] deactivate_locked_super+0xa8/0x110 [ 46.164895][ T413] deactivate_super+0x1e2/0x2a0 [ 46.169568][ T413] ? deactivate_locked_super+0x110/0x110 [ 46.175121][ T413] ? fast_dput+0x7a/0x280 [ 46.179290][ T413] cleanup_mnt+0x44e/0x500 [ 46.183539][ T413] task_work_run+0x140/0x170 [ 46.187965][ T413] do_exit+0xcaf/0x2bc0 [ 46.191958][ T413] ? check_preemption_disabled+0x153/0x320 [ 46.197617][ T413] ? put_task_struct+0x80/0x80 [ 46.202437][ T413] ? debug_smp_processor_id+0x20/0x20 [ 46.207774][ T413] do_group_exit+0x138/0x300 [ 46.212300][ T413] __x64_sys_exit_group+0x3b/0x40 [ 46.217131][ T413] do_syscall_64+0xca/0x1c0 [ 46.221573][ T413] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 46.227382][ T413] RIP: 0033:0x7f8aca5bee69 [ 46.231664][ T413] Code: Bad RIP value. [ 46.235543][ T413] RSP: 002b:00007ffe3aa72888 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 46.243982][ T413] RAX: ffffffffffffffda RBX: 00007f8aca60a42b RCX: 00007f8aca5bee69 [ 46.251882][ T413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.259965][ T413] RBP: 0000000000000010 R08: 00007ffe3aa70626 R09: 00007ffe3aa73b40 [ 46.267961][ T413] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe3aa73b40 [ 46.275863][ T413] R13: 00007f8aca60a3b9 R14: 000055556976d430 R15: 0000000000000003 [ 46.283681][ T413] ---[ end trace 075f96944f1d226a ]--- [ 46.290846][ T413] ================================================================== [ 46.298831][ T413] BUG: KASAN: null-ptr-deref in ihold+0x1b/0x50 [ 46.305081][ T413] Write of size 4 at addr 0000000000000160 by task syz-executor.0/413 [ 46.313480][ T413] [ 46.315673][ T413] CPU: 1 PID: 413 Comm: syz-executor.0 Tainted: G W 5.4.283-syzkaller-04984-ge6ac8beecb16 #0 [ 46.326919][ T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 46.336820][ T413] Call Trace: [ 46.340133][ T413] dump_stack+0x1d8/0x241 [ 46.344297][ T413] ? panic+0x89d/0x89d [ 46.348187][ T413] ? nf_ct_l4proto_log_invalid+0x258/0x258 [ 46.354038][ T413] ? _raw_spin_trylock_bh+0x190/0x190 [ 46.359345][ T413] ? _raw_spin_unlock+0x49/0x60 [ 46.364191][ T413] ? ihold+0x1b/0x50 [ 46.368064][ T413] __kasan_report+0xe9/0x120 [ 46.372955][ T413] ? ihold+0x1b/0x50 [ 46.376843][ T413] kasan_report+0x30/0x60 [ 46.381018][ T413] check_memory_region+0x272/0x280 [ 46.385956][ T413] ihold+0x1b/0x50 [ 46.389510][ T413] vfs_rmdir+0x1e0/0x3c0 [ 46.393605][ T413] incfs_kill_sb+0x105/0x200 [ 46.398018][ T413] deactivate_locked_super+0xa8/0x110 [ 46.403226][ T413] deactivate_super+0x1e2/0x2a0 [ 46.407912][ T413] ? deactivate_locked_super+0x110/0x110 [ 46.413413][ T413] ? fast_dput+0x7a/0x280 [ 46.417724][ T413] cleanup_mnt+0x44e/0x500 [ 46.421969][ T413] task_work_run+0x140/0x170 [ 46.426401][ T413] do_exit+0xcaf/0x2bc0 [ 46.430667][ T413] ? check_preemption_disabled+0x153/0x320 [ 46.437088][ T413] ? put_task_struct+0x80/0x80 [ 46.441944][ T413] ? debug_smp_processor_id+0x20/0x20 [ 46.447160][ T413] do_group_exit+0x138/0x300 [ 46.451593][ T413] __x64_sys_exit_group+0x3b/0x40 [ 46.456448][ T413] do_syscall_64+0xca/0x1c0 [ 46.460778][ T413] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 46.466513][ T413] RIP: 0033:0x7f8aca5bee69 [ 46.470853][ T413] Code: Bad RIP value. [ 46.474745][ T413] RSP: 002b:00007ffe3aa72888 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 46.483097][ T413] RAX: ffffffffffffffda RBX: 00007f8aca60a42b RCX: 00007f8aca5bee69 [ 46.490904][ T413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.498706][ T413] RBP: 0000000000000010 R08: 00007ffe3aa70626 R09: 00007ffe3aa73b40 [ 46.506523][ T413] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe3aa73b40 [ 46.514411][ T413] R13: 00007f8aca60a3b9 R14: 000055556976d430 R15: 0000000000000003 [ 46.522234][ T413] ================================================================== [ 46.530402][ T413] Disabling lock debugging due to kernel taint [ 46.538313][ T413] BUG: kernel NULL pointer dereference, address: 0000000000000160 [ 46.546070][ T413] #PF: supervisor write access in kernel mode [ 46.552104][ T413] #PF: error_code(0x0002) - not-present page [ 46.558081][ T413] PGD 0 P4D 0 [ 46.561284][ T413] Oops: 0002 [#1] PREEMPT SMP KASAN [ 46.566337][ T413] CPU: 1 PID: 413 Comm: syz-executor.0 Tainted: G B W 5.4.283-syzkaller-04984-ge6ac8beecb16 #0 [ 46.577694][ T413] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 46.587768][ T413] RIP: 0010:ihold+0x20/0x50 [ 46.592118][ T413] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 b6 d5 c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 05 92 f2 ff bd 01 00 00 00 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 7a d8 c2 ff [ 46.611844][ T413] RSP: 0018:ffff8881f0bc7ae0 EFLAGS: 00010246 [ 46.617821][ T413] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f31f8000 [ 46.625622][ T413] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff [ 46.633697][ T413] RBP: 0000000000000001 R08: ffffffff813ae3b5 R09: 0000000000000003 [ 46.641613][ T413] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000 [ 46.649432][ T413] R13: dffffc0000000000 R14: ffff8881e198c060 R15: 0000000000000000 [ 46.657338][ T413] FS: 000055556976d480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 46.666119][ T413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.672552][ T413] CR2: 0000000000000160 CR3: 00000001ed74d000 CR4: 00000000003406a0 [ 46.680332][ T413] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.688276][ T413] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.696150][ T413] Call Trace: [ 46.699293][ T413] ? __die+0xb4/0x100 [ 46.703101][ T413] ? no_context+0xac7/0xd20 [ 46.707440][ T413] ? is_prefetch+0x4b0/0x4b0 [ 46.712124][ T413] ? ihold+0x1b/0x50 [ 46.715856][ T413] ? __do_page_fault+0xa72/0xbb0 [ 46.720642][ T413] ? __bad_area_nosemaphore+0xc0/0x470 [ 46.726032][ T413] ? page_fault+0x2f/0x40 [ 46.730284][ T413] ? check_panic_on_warn+0x55/0xa0 [ 46.735225][ T413] ? ihold+0x20/0x50 [ 46.738952][ T413] vfs_rmdir+0x1e0/0x3c0 [ 46.743129][ T413] incfs_kill_sb+0x105/0x200 [ 46.747727][ T413] deactivate_locked_super+0xa8/0x110 [ 46.753034][ T413] deactivate_super+0x1e2/0x2a0 [ 46.757802][ T413] ? deactivate_locked_super+0x110/0x110 [ 46.763364][ T413] ? fast_dput+0x7a/0x280 [ 46.767519][ T413] cleanup_mnt+0x44e/0x500 [ 46.771776][ T413] task_work_run+0x140/0x170 [ 46.776227][ T413] do_exit+0xcaf/0x2bc0 [ 46.780188][ T413] ? check_preemption_disabled+0x153/0x320 [ 46.786011][ T413] ? put_task_struct+0x80/0x80 [ 46.790865][ T413] ? debug_smp_processor_id+0x20/0x20 [ 46.796184][ T413] do_group_exit+0x138/0x300 [ 46.800724][ T413] __x64_sys_exit_group+0x3b/0x40 [ 46.805562][ T413] do_syscall_64+0xca/0x1c0 [ 46.809901][ T413] entry_SYSCALL_64_after_hwframe+0x5c/0xc1 [ 46.816008][ T413] RIP: 0033:0x7f8aca5bee69 [ 46.820276][ T413] Code: Bad RIP value. [ 46.824428][ T413] RSP: 002b:00007ffe3aa72888 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7 [ 46.832951][ T413] RAX: ffffffffffffffda RBX: 00007f8aca60a42b RCX: 00007f8aca5bee69 [ 46.841088][ T413] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 46.848896][ T413] RBP: 0000000000000010 R08: 00007ffe3aa70626 R09: 00007ffe3aa73b40 [ 46.856702][ T413] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffe3aa73b40 [ 46.864713][ T413] R13: 00007f8aca60a3b9 R14: 000055556976d430 R15: 0000000000000003 [ 46.872774][ T413] Modules linked in: [ 46.876600][ T413] CR2: 0000000000000160 [ 46.880606][ T413] ---[ end trace 075f96944f1d226b ]--- [ 46.885964][ T413] RIP: 0010:ihold+0x20/0x50 [ 46.890584][ T413] Code: 0f 1f 84 00 00 00 00 00 66 90 55 53 48 89 fb e8 b6 d5 c2 ff 48 8d bb 60 01 00 00 be 04 00 00 00 e8 05 92 f2 ff bd 01 00 00 00 0f c1 ab 60 01 00 00 ff c5 bf 02 00 00 00 89 ee e8 7a d8 c2 ff [ 46.910346][ T413] RSP: 0018:ffff8881f0bc7ae0 EFLAGS: 00010246 [ 46.916242][ T413] RAX: 0000000000000000 RBX: 0000000000000000 RCX: ffff8881f31f8000 [ 46.924061][ T413] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 00000000ffffffff [ 46.932055][ T413] RBP: 0000000000000001 R08: ffffffff813ae3b5 R09: 0000000000000003 [ 46.939853][ T413] R10: ffffffffffffffff R11: dffffc0000000001 R12: 0000000000000000 [ 46.947751][ T413] R13: dffffc0000000000 R14: ffff8881e198c060 R15: 0000000000000000 [ 46.955657][ T413] FS: 000055556976d480(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 46.964614][ T413] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 46.971099][ T413] CR2: 00007f8aca5bee3f CR3: 00000001ed74d000 CR4: 00000000003406a0 [ 46.979102][ T413] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 46.986990][ T413] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 46.995144][ T413] Kernel panic - not syncing: Fatal exception [ 47.001383][ T413] Kernel Offset: disabled [ 47.005506][ T413] Rebooting in 86400 seconds..