Warning: Permanently added '10.128.0.123' (ED25519) to the list of known hosts. 2025/11/27 14:21:31 parsed 1 programs Setting up swapspace version 1, size = 127995904 bytes [ 47.447857][ T30] audit: type=1400 audit(1764253292.588:105): avc: denied { unlink } for pid=398 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 47.519182][ T398] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 48.036842][ T408] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.044288][ T408] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.052089][ T408] device bridge_slave_0 entered promiscuous mode [ 48.059643][ T408] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.066765][ T408] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.074643][ T408] device bridge_slave_1 entered promiscuous mode [ 48.124830][ T408] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.131917][ T408] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.139247][ T408] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.146367][ T408] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.164570][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 48.171834][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 48.179798][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 48.187880][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 48.198193][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 48.206663][ T8] bridge0: port 1(bridge_slave_0) entered blocking state [ 48.213925][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state [ 48.222730][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 48.231005][ T8] bridge0: port 2(bridge_slave_1) entered blocking state [ 48.238071][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state [ 48.251860][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 48.261238][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 48.274843][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 48.286609][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 48.295180][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 48.302767][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 48.311972][ T408] device veth0_vlan entered promiscuous mode [ 48.321758][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 48.330854][ T408] device veth1_macvtap entered promiscuous mode [ 48.340207][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 48.351101][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 48.531609][ T30] audit: type=1401 audit(1764253293.668:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768" [ 49.028795][ T374] device bridge_slave_1 left promiscuous mode [ 49.034997][ T374] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.042882][ T374] device bridge_slave_0 left promiscuous mode [ 49.050299][ T374] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.058453][ T374] device veth1_macvtap left promiscuous mode [ 49.064472][ T374] device veth0_vlan left promiscuous mode 2025/11/27 14:21:34 executed programs: 0 [ 49.351003][ T469] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.358212][ T469] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.365790][ T469] device bridge_slave_0 entered promiscuous mode [ 49.372885][ T469] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.379982][ T469] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.387630][ T469] device bridge_slave_1 entered promiscuous mode [ 49.445330][ T469] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.452514][ T469] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.459910][ T469] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.467142][ T469] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.485715][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 49.493341][ T45] bridge0: port 1(bridge_slave_0) entered disabled state [ 49.500813][ T45] bridge0: port 2(bridge_slave_1) entered disabled state [ 49.513048][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 49.521588][ T45] bridge0: port 1(bridge_slave_0) entered blocking state [ 49.528664][ T45] bridge0: port 1(bridge_slave_0) entered forwarding state [ 49.536120][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 49.544672][ T45] bridge0: port 2(bridge_slave_1) entered blocking state [ 49.551798][ T45] bridge0: port 2(bridge_slave_1) entered forwarding state [ 49.563648][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 49.573035][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 49.586598][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 49.598208][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 49.606265][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 49.613911][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 49.622257][ T469] device veth0_vlan entered promiscuous mode [ 49.632492][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 49.641741][ T469] device veth1_macvtap entered promiscuous mode [ 49.651444][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 49.661481][ T45] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 49.684855][ T30] audit: type=1400 audit(1764253294.818:107): avc: denied { read write } for pid=479 comm="syz.2.17" name="vhost-vsock" dev="devtmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 49.711051][ T30] audit: type=1400 audit(1764253294.838:108): avc: denied { open } for pid=479 comm="syz.2.17" path="/dev/vhost-vsock" dev="devtmpfs" ino=264 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 49.735717][ T480] loop2: detected capacity change from 0 to 2048 [ 49.742703][ T30] audit: type=1400 audit(1764253294.838:109): avc: denied { ioctl } for pid=479 comm="syz.2.17" path="/dev/vhost-vsock" dev="devtmpfs" ino=264 ioctlcmd=0xaf01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 49.853045][ T480] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,norecovery,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue. Quota mode: none. [ 49.875265][ T30] audit: type=1400 audit(1764253295.008:110): avc: denied { mount } for pid=479 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 49.896996][ T479] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.17: bg 0: block 234: padding at end of block bitmap is not set [ 49.911565][ T30] audit: type=1400 audit(1764253295.008:111): avc: denied { write } for pid=479 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 49.934726][ T30] audit: type=1400 audit(1764253295.008:112): avc: denied { add_name } for pid=479 comm="syz.2.17" name="hugetlb.2MB.usage_in_bytes" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 49.957269][ T30] audit: type=1400 audit(1764253295.008:113): avc: denied { create } for pid=479 comm="syz.2.17" name="hugetlb.2MB.usage_in_bytes" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 49.979858][ T30] audit: type=1400 audit(1764253295.008:114): avc: denied { read append open } for pid=479 comm="syz.2.17" path="/0/file0/hugetlb.2MB.usage_in_bytes" dev="loop2" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 50.065195][ T486] loop2: detected capacity change from 0 to 2048 [ 50.102090][ T486] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,norecovery,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue. Quota mode: none. [ 50.148361][ T485] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.18: bg 0: block 234: padding at end of block bitmap is not set [ 50.240369][ T491] loop2: detected capacity change from 0 to 2048 [ 50.298480][ T491] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_lock,auto_da_alloc,nojournal_checksum,norecovery,auto_da_alloc,noquota,data_err=abort,grpid,grpjquota=,nouid32,grpid,,errors=continue. Quota mode: none. [ 50.352119][ T492] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm vhost-491: bg 0: block 234: padding at end of block bitmap is not set [ 50.369771][ T45] ------------[ cut here ]------------ [ 50.375407][ T45] kernel BUG at fs/ext4/inode.c:2747! [ 50.381084][ T45] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 50.387174][ T45] CPU: 1 PID: 45 Comm: kworker/u4:2 Not tainted syzkaller #0 [ 50.394540][ T45] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 50.405065][ T45] Workqueue: writeback wb_workfn (flush-7:2) [ 50.411133][ T45] RIP: 0010:ext4_writepages+0x2f75/0x2f90 [ 50.416858][ T45] Code: 00 00 00 e8 9d 73 8f ff 84 db 75 2c e8 04 71 8f ff 49 bc 00 00 00 00 00 fc ff df 48 8b 5c 24 20 e9 d6 f7 ff ff e8 eb 70 8f ff <0f> 0b e8 e4 70 8f ff e8 cb 28 27 ff eb a2 e8 d8 70 8f ff e8 bf 28 [ 50.436471][ T45] RSP: 0018:ffffc900002ef100 EFLAGS: 00010293 [ 50.442543][ T45] RAX: ffffffff81d94df5 RBX: 0000008410000000 RCX: ffff8881053cbb40 [ 50.450604][ T45] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 50.458579][ T45] RBP: ffffc900002ef470 R08: dffffc0000000000 R09: ffffed102518b98a [ 50.466587][ T45] R10: ffffed102518b98a R11: 1ffff1102518b989 R12: dffffc0000000000 [ 50.474572][ T45] R13: 0000000000000001 R14: 0000008000000000 R15: ffff888128c5cee0 [ 50.482630][ T45] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 50.491556][ T45] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.498235][ T45] CR2: 00002000000007c0 CR3: 000000012dafc000 CR4: 00000000003506a0 [ 50.506213][ T45] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.514183][ T45] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.522258][ T45] Call Trace: [ 50.525627][ T45] [ 50.528560][ T45] ? __kasan_check_write+0x14/0x20 [ 50.533672][ T45] ? pagecache_get_page+0xcb6/0xda0 [ 50.538956][ T45] ? __kasan_check_read+0x11/0x20 [ 50.544089][ T45] ? mark_page_accessed+0x3b6/0x8d0 [ 50.549296][ T45] ? __activate_page+0xd40/0xd40 [ 50.554236][ T45] ? ext4_readpage+0x220/0x220 [ 50.559293][ T45] ? update_curr+0x2f3/0x5b0 [ 50.563912][ T45] ? memcpy+0x56/0x70 [ 50.567906][ T45] ? copy_page_from_iter_atomic+0x784/0x1350 [ 50.574331][ T45] ? __kasan_check_read+0x11/0x20 [ 50.579356][ T45] ? __set_page_dirty_no_writeback+0xff/0x130 [ 50.585536][ T45] ? ext4_readpage+0x220/0x220 [ 50.590502][ T45] do_writepages+0x48a/0x6c0 [ 50.595090][ T45] ? update_curr+0x2f3/0x5b0 [ 50.599691][ T45] ? __writepage+0x130/0x130 [ 50.604415][ T45] ? enqueue_task_fair+0xaa7/0x2120 [ 50.609763][ T45] ? __kasan_check_write+0x14/0x20 [ 50.614883][ T45] ? _raw_spin_lock+0x8e/0xe0 [ 50.619560][ T45] __writeback_single_inode+0xd5/0x9c0 [ 50.625024][ T45] ? wbc_attach_and_unlock_inode+0x194/0x5f0 [ 50.631107][ T45] writeback_sb_inodes+0x9c0/0x1590 [ 50.636794][ T45] ? psi_task_change+0x212/0x370 [ 50.641966][ T45] ? queue_io+0x4c0/0x4c0 [ 50.646401][ T45] ? __kasan_check_read+0x11/0x20 [ 50.651430][ T45] ? queue_io+0x382/0x4c0 [ 50.655935][ T45] wb_writeback+0x3f1/0x980 [ 50.660534][ T45] ? inode_cgwb_move_to_attached+0x3e0/0x3e0 [ 50.666636][ T45] ? set_worker_desc+0x155/0x1c0 [ 50.671793][ T45] ? __kasan_check_write+0x14/0x20 [ 50.677436][ T45] wb_workfn+0x38f/0xe20 [ 50.681855][ T45] ? inode_wait_for_writeback+0x200/0x200 [ 50.687756][ T45] ? compat_start_thread+0x20/0x20 [ 50.692881][ T45] ? kvm_sched_clock_read+0x18/0x40 [ 50.698106][ T45] ? _raw_spin_unlock+0x4d/0x70 [ 50.703137][ T45] ? finish_task_switch+0x16b/0x780 [ 50.708438][ T45] ? __switch_to_asm+0x3a/0x60 [ 50.713581][ T45] ? __schedule+0xb76/0x14c0 [ 50.718198][ T45] process_one_work+0x6be/0xba0 [ 50.723065][ T45] worker_thread+0xa59/0x1200 [ 50.727753][ T45] ? __kthread_parkme+0xac/0x200 [ 50.732720][ T45] kthread+0x411/0x500 [ 50.736890][ T45] ? worker_clr_flags+0x190/0x190 [ 50.741909][ T45] ? kthread_blkcg+0xd0/0xd0 [ 50.746594][ T45] ret_from_fork+0x1f/0x30 [ 50.751119][ T45] [ 50.754134][ T45] Modules linked in: [ 50.770952][ T45] ---[ end trace 4d6649a5bd006f2e ]--- [ 50.776470][ T45] RIP: 0010:ext4_writepages+0x2f75/0x2f90 [ 50.782561][ T45] Code: 00 00 00 e8 9d 73 8f ff 84 db 75 2c e8 04 71 8f ff 49 bc 00 00 00 00 00 fc ff df 48 8b 5c 24 20 e9 d6 f7 ff ff e8 eb 70 8f ff <0f> 0b e8 e4 70 8f ff e8 cb 28 27 ff eb a2 e8 d8 70 8f ff e8 bf 28 [ 50.802528][ T45] RSP: 0018:ffffc900002ef100 EFLAGS: 00010293 [ 50.809206][ T45] RAX: ffffffff81d94df5 RBX: 0000008410000000 RCX: ffff8881053cbb40 [ 50.817255][ T45] RDX: 0000000000000000 RSI: 0000008000000000 RDI: 0000000000000000 [ 50.825917][ T45] RBP: ffffc900002ef470 R08: dffffc0000000000 R09: ffffed102518b98a [ 50.834014][ T45] R10: ffffed102518b98a R11: 1ffff1102518b989 R12: dffffc0000000000 [ 50.842399][ T45] R13: 0000000000000001 R14: 0000008000000000 R15: ffff888128c5cee0 [ 50.850640][ T45] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 50.859925][ T45] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 50.866815][ T45] CR2: 000000c006cbf000 CR3: 000000010d227000 CR4: 00000000003506b0 [ 50.874946][ T45] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 50.883293][ T45] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 50.892190][ T45] Kernel panic - not syncing: Fatal exception [ 50.898703][ T45] Kernel Offset: disabled [ 50.903028][ T45] Rebooting in 86400 seconds..