Warning: Permanently added '10.128.0.72' (ED25519) to the list of known hosts.
2024/06/21 07:59:43 ignoring optional flag "sandboxArg"="0"
2024/06/21 07:59:43 parsed 1 programs
2024/06/21 07:59:43 executed programs: 0
[   40.723781][   T28] kauditd_printk_skb: 18 callbacks suppressed
[   40.723796][   T28] audit: type=1400 audit(1718956783.369:94): avc:  denied  { unlink } for  pid=343 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   40.763326][  T343] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   40.822172][  T349] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.829274][  T349] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.836838][  T349] device bridge_slave_0 entered promiscuous mode
[   40.844106][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.851130][  T349] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.858818][  T349] device bridge_slave_1 entered promiscuous mode
[   40.910847][  T349] bridge0: port 2(bridge_slave_1) entered blocking state
[   40.917732][  T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[   40.924973][  T349] bridge0: port 1(bridge_slave_0) entered blocking state
[   40.931895][  T349] bridge0: port 1(bridge_slave_0) entered forwarding state
[   40.954561][   T19] bridge0: port 1(bridge_slave_0) entered disabled state
[   40.962056][   T19] bridge0: port 2(bridge_slave_1) entered disabled state
[   40.969836][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   40.977194][   T19] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   40.995506][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   41.003719][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[   41.010563][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[   41.018009][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   41.027521][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[   41.034449][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[   41.042566][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   41.051163][   T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   41.064418][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   41.076756][  T349] device veth0_vlan entered promiscuous mode
[   41.085062][  T353] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   41.093058][  T353] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   41.100649][  T353] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   41.112054][  T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   41.121414][  T349] device veth1_macvtap entered promiscuous mode
[   41.134579][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   41.143016][   T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   41.164544][   T28] audit: type=1400 audit(1718956783.809:95): avc:  denied  { mounton } for  pid=354 comm="syz-executor.0" path="/root/syzkaller-testdir2851574244/syzkaller.FCi2XX/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   41.172202][  T355] incfs: ino conflict with backing FS 1
[   41.192403][   T28] audit: type=1400 audit(1718956783.809:96): avc:  denied  { mount } for  pid=354 comm="syz-executor.0" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   41.219475][   T28] audit: type=1400 audit(1718956783.809:97): avc:  denied  { mounton } for  pid=354 comm="syz-executor.0" path="/syzcgroup/unified/syz0" dev="cgroup2" ino=24 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[   41.243783][   T28] audit: type=1400 audit(1718956783.839:98): avc:  denied  { unmount } for  pid=349 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[   41.243793][  T349] ------------[ cut here ]------------
[   41.243813][  T349] WARNING: CPU: 0 PID: 349 at fs/inode.c:332 drop_nlink+0xc1/0x110
[   41.277259][  T349] Modules linked in:
[   41.281070][  T349] CPU: 0 PID: 349 Comm: syz-executor.0 Not tainted 6.1.78-syzkaller-1151177-gcd89d4fa0722 #0
[   41.291336][  T349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   41.301353][  T349] RIP: 0010:drop_nlink+0xc1/0x110
[   41.306469][  T349] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 57 e9 ef ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 cf 02 a9 ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[   41.326112][  T349] RSP: 0018:ffffc90001367a70 EFLAGS: 00010293
[   41.332067][  T349] RAX: ffffffff81cc6ee1 RBX: 0000000000000000 RCX: ffff88810f2c2880
[   41.339933][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   41.347809][  T349] RBP: ffffc90001367a98 R08: ffffffff81cc6e64 R09: 0000000000000003
[   41.355774][  T349] R10: ffffffffffffffff R11: dffffc0000000001 R12: dffffc0000000000
[   41.363659][  T349] R13: 1ffff11023481dc5 R14: ffff88811a40ede0 R15: ffff88811a40ee28
[   41.371670][  T349] FS:  0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[   41.380583][  T349] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   41.381328][   T28] audit: type=1400 audit(1718956784.029:99): avc:  denied  { read } for  pid=84 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[   41.386988][  T349] CR2: 000000c001380000 CR3: 000000010f4be000 CR4: 00000000003506b0
[   41.416341][  T349] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   41.424187][  T349] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   41.431909][  T349] Call Trace:
[   41.435070][  T349]  <TASK>
[   41.437815][  T349]  ? show_regs+0x58/0x60
[   41.441882][  T349]  ? __warn+0x160/0x3d0
[   41.446069][  T349]  ? drop_nlink+0xc1/0x110
[   41.450240][  T349]  ? report_bug+0x4d5/0x7d0
[   41.454729][  T349]  ? drop_nlink+0xc1/0x110
[   41.458924][  T349]  ? handle_bug+0x41/0x70
[   41.463085][  T349]  ? exc_invalid_op+0x1b/0x50
[   41.467957][  T349]  ? asm_exc_invalid_op+0x1b/0x20
[   41.472850][  T349]  ? drop_nlink+0x44/0x110
[   41.477403][  T349]  ? drop_nlink+0xc1/0x110
[   41.481859][  T349]  ? drop_nlink+0xc1/0x110
[   41.486784][  T349]  shmem_rmdir+0x59/0x90
[   41.490995][  T349]  vfs_rmdir+0x398/0x500
[   41.495145][  T349]  incfs_kill_sb+0x113/0x230
[   41.499802][  T349]  deactivate_locked_super+0xad/0x110
[   41.505068][  T349]  deactivate_super+0xbe/0xf0
[   41.509911][  T349]  cleanup_mnt+0x485/0x510
[   41.514397][  T349]  __cleanup_mnt+0x19/0x20
[   41.519446][  T349]  task_work_run+0x24d/0x2e0
[   41.523910][  T349]  ? kmem_cache_free+0x291/0x510
[   41.528661][  T349]  ? task_work_cancel+0x2b0/0x2b0
[   41.533566][  T349]  ? free_nsproxy+0x20d/0x260
[   41.538019][  T349]  ? exit_task_namespaces+0xb4/0xd0
[   41.543346][  T349]  do_exit+0xbd5/0x2b80
[   41.547325][  T349]  ? put_task_struct+0x80/0x80
[   41.552011][  T349]  ? __kasan_check_write+0x14/0x20
[   41.557136][  T349]  ? _raw_spin_lock_irq+0xa5/0x1b0
[   41.562228][  T349]  ? _raw_spin_lock_irqsave+0x210/0x210
[   41.567752][  T349]  ? zap_other_threads+0x29c/0x2d0
[   41.573076][  T349]  ? __kasan_check_write+0x14/0x20
[   41.578521][  T349]  do_group_exit+0x21a/0x2d0
[   41.583140][  T349]  __x64_sys_exit_group+0x3f/0x40
[   41.588120][  T349]  do_syscall_64+0x3d/0xb0
[   41.592513][  T349]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   41.598365][  T349] RIP: 0033:0x7fcc7587de69
[   41.602528][  T349] Code: Unable to access opcode bytes at 0x7fcc7587de3f.
[   41.609600][  T349] RSP: 002b:00007ffd437641b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   41.617907][  T349] RAX: ffffffffffffffda RBX: 00007fcc758c942b RCX: 00007fcc7587de69
[   41.625905][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   41.633767][  T349] RBP: 0000000000000010 R08: 00007ffd43761f56 R09: 00007ffd43765470
[   41.641565][  T349] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd43765470
[   41.649933][  T349] R13: 00007fcc758c93b9 R14: 00005555561bf430 R15: 0000000000000003
[   41.658203][  T349]  </TASK>
[   41.661198][  T349] ---[ end trace 0000000000000000 ]---
[   41.667244][  T349] ==================================================================
[   41.675428][  T349] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[   41.681795][  T349] Write of size 4 at addr 0000000000000170 by task syz-executor.0/349
[   41.689865][  T349] 
[   41.692027][  T349] CPU: 1 PID: 349 Comm: syz-executor.0 Tainted: G        W          6.1.78-syzkaller-1151177-gcd89d4fa0722 #0
[   41.703731][  T349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   41.714006][  T349] Call Trace:
[   41.717143][  T349]  <TASK>
[   41.719903][  T349]  dump_stack_lvl+0x151/0x1b7
[   41.724513][  T349]  ? nf_tcp_handle_invalid+0x3f1/0x3f1
[   41.729899][  T349]  ? _printk+0xd1/0x111
[   41.734357][  T349]  print_report+0xe1/0x4e0
[   41.738889][  T349]  ? __virt_addr_valid+0x59/0x2f0
[   41.743739][  T349]  ? kasan_addr_to_slab+0xd/0x80
[   41.748625][  T349]  ? ihold+0x20/0x60
[   41.752341][  T349]  kasan_report+0x13c/0x170
[   41.756698][  T349]  ? ihold+0x20/0x60
[   41.760604][  T349]  kasan_check_range+0x294/0x2a0
[   41.765466][  T349]  __kasan_check_write+0x14/0x20
[   41.770216][  T349]  ihold+0x20/0x60
[   41.773776][  T349]  vfs_rmdir+0x268/0x500
[   41.777881][  T349]  incfs_kill_sb+0x113/0x230
[   41.782284][  T349]  deactivate_locked_super+0xad/0x110
[   41.787492][  T349]  deactivate_super+0xbe/0xf0
[   41.792012][  T349]  cleanup_mnt+0x485/0x510
[   41.796476][  T349]  __cleanup_mnt+0x19/0x20
[   41.800685][  T349]  task_work_run+0x24d/0x2e0
[   41.805097][  T349]  ? kmem_cache_free+0x291/0x510
[   41.809874][  T349]  ? task_work_cancel+0x2b0/0x2b0
[   41.814816][  T349]  ? free_nsproxy+0x20d/0x260
[   41.819590][  T349]  ? exit_task_namespaces+0xb4/0xd0
[   41.824744][  T349]  do_exit+0xbd5/0x2b80
[   41.828760][  T349]  ? put_task_struct+0x80/0x80
[   41.833460][  T349]  ? __kasan_check_write+0x14/0x20
[   41.838496][  T349]  ? _raw_spin_lock_irq+0xa5/0x1b0
[   41.843819][  T349]  ? _raw_spin_lock_irqsave+0x210/0x210
[   41.849212][  T349]  ? zap_other_threads+0x29c/0x2d0
[   41.854148][  T349]  ? __kasan_check_write+0x14/0x20
[   41.859310][  T349]  do_group_exit+0x21a/0x2d0
[   41.863795][  T349]  __x64_sys_exit_group+0x3f/0x40
[   41.868648][  T349]  do_syscall_64+0x3d/0xb0
[   41.872901][  T349]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   41.878725][  T349] RIP: 0033:0x7fcc7587de69
[   41.883098][  T349] Code: Unable to access opcode bytes at 0x7fcc7587de3f.
[   41.890796][  T349] RSP: 002b:00007ffd437641b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   41.899042][  T349] RAX: ffffffffffffffda RBX: 00007fcc758c942b RCX: 00007fcc7587de69
[   41.907012][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   41.914932][  T349] RBP: 0000000000000010 R08: 00007ffd43761f56 R09: 00007ffd43765470
[   41.922832][  T349] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd43765470
[   41.930639][  T349] R13: 00007fcc758c93b9 R14: 00005555561bf430 R15: 0000000000000003
[   41.938626][  T349]  </TASK>
[   41.941489][  T349] ==================================================================
[   41.952195][  T349] Disabling lock debugging due to kernel taint
[   41.958258][  T349] BUG: kernel NULL pointer dereference, address: 0000000000000170
[   41.965896][  T349] #PF: supervisor write access in kernel mode
[   41.971894][  T349] #PF: error_code(0x0002) - not-present page
[   41.977732][  T349] PGD 0 P4D 0 
[   41.980906][  T349] Oops: 0002 [#1] PREEMPT SMP KASAN
[   41.985943][  T349] CPU: 1 PID: 349 Comm: syz-executor.0 Tainted: G    B   W          6.1.78-syzkaller-1151177-gcd89d4fa0722 #0
[   41.997598][  T349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[   42.007612][  T349] RIP: 0010:ihold+0x25/0x60
[   42.011942][  T349] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 a1 fa a8 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 00 e1 ef ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 24 fe a8
[   42.031772][  T349] RSP: 0018:ffffc90001367ab0 EFLAGS: 00010246
[   42.037875][  T349] RAX: ffff88810f2c2800 RBX: 0000000000000001 RCX: ffff88810f2c2880
[   42.045696][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   42.053496][  T349] RBP: ffffc90001367ac0 R08: ffffffff81446f63 R09: fffffbfff0e260fd
[   42.061598][  T349] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1102348188d
[   42.069612][  T349] R13: ffff888120101770 R14: 0000000000000000 R15: 1ffff110240202f4
[   42.077537][  T349] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   42.086655][  T349] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   42.093057][  T349] CR2: 0000000000000170 CR3: 000000000660f000 CR4: 00000000003506a0
[   42.101053][  T349] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   42.109062][  T349] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   42.116931][  T349] Call Trace:
[   42.120137][  T349]  <TASK>
[   42.122933][  T349]  ? __die_body+0x62/0xb0
[   42.127200][  T349]  ? __die+0x7e/0x90
[   42.130932][  T349]  ? page_fault_oops+0x7f9/0xa90
[   42.135853][  T349]  ? vprintk_default+0x26/0x30
[   42.140613][  T349]  ? kernelmode_fixup_or_oops+0x270/0x270
[   42.146165][  T349]  ? add_taint+0x44/0xe0
[   42.150324][  T349]  ? panic+0x660/0x660
[   42.154318][  T349]  ? preempt_schedule_thunk+0x16/0x18
[   42.159536][  T349]  ? exc_page_fault+0x537/0x700
[   42.164235][  T349]  ? asm_exc_page_fault+0x27/0x30
[   42.169186][  T349]  ? add_taint+0x93/0xe0
[   42.173250][  T349]  ? ihold+0x25/0x60
[   42.176970][  T349]  vfs_rmdir+0x268/0x500
[   42.181396][  T349]  incfs_kill_sb+0x113/0x230
[   42.186150][  T349]  deactivate_locked_super+0xad/0x110
[   42.191452][  T349]  deactivate_super+0xbe/0xf0
[   42.195957][  T349]  cleanup_mnt+0x485/0x510
[   42.200215][  T349]  __cleanup_mnt+0x19/0x20
[   42.204543][  T349]  task_work_run+0x24d/0x2e0
[   42.209050][  T349]  ? kmem_cache_free+0x291/0x510
[   42.213826][  T349]  ? task_work_cancel+0x2b0/0x2b0
[   42.218832][  T349]  ? free_nsproxy+0x20d/0x260
[   42.223347][  T349]  ? exit_task_namespaces+0xb4/0xd0
[   42.228375][  T349]  do_exit+0xbd5/0x2b80
[   42.232359][  T349]  ? put_task_struct+0x80/0x80
[   42.236962][  T349]  ? __kasan_check_write+0x14/0x20
[   42.241914][  T349]  ? _raw_spin_lock_irq+0xa5/0x1b0
[   42.246863][  T349]  ? _raw_spin_lock_irqsave+0x210/0x210
[   42.252368][  T349]  ? zap_other_threads+0x29c/0x2d0
[   42.257596][  T349]  ? __kasan_check_write+0x14/0x20
[   42.262640][  T349]  do_group_exit+0x21a/0x2d0
[   42.267068][  T349]  __x64_sys_exit_group+0x3f/0x40
[   42.271944][  T349]  do_syscall_64+0x3d/0xb0
[   42.276269][  T349]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[   42.282023][  T349] RIP: 0033:0x7fcc7587de69
[   42.286267][  T349] Code: Unable to access opcode bytes at 0x7fcc7587de3f.
[   42.293114][  T349] RSP: 002b:00007ffd437641b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[   42.301361][  T349] RAX: ffffffffffffffda RBX: 00007fcc758c942b RCX: 00007fcc7587de69
[   42.309302][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   42.317130][  T349] RBP: 0000000000000010 R08: 00007ffd43761f56 R09: 00007ffd43765470
[   42.324922][  T349] R10: 000000000000000a R11: 0000000000000246 R12: 00007ffd43765470
[   42.332825][  T349] R13: 00007fcc758c93b9 R14: 00005555561bf430 R15: 0000000000000003
[   42.340723][  T349]  </TASK>
[   42.343592][  T349] Modules linked in:
[   42.347326][  T349] CR2: 0000000000000170
[   42.351320][  T349] ---[ end trace 0000000000000000 ]---
[   42.356599][  T349] RIP: 0010:ihold+0x25/0x60
[   42.360939][  T349] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 a1 fa a8 ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 00 e1 ef ff bb 01 00 00 00 <f0> 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 24 fe a8
[   42.380961][  T349] RSP: 0018:ffffc90001367ab0 EFLAGS: 00010246
[   42.387127][  T349] RAX: ffff88810f2c2800 RBX: 0000000000000001 RCX: ffff88810f2c2880
[   42.394915][  T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   42.403160][  T349] RBP: ffffc90001367ac0 R08: ffffffff81446f63 R09: fffffbfff0e260fd
[   42.410961][  T349] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1102348188d
[   42.418866][  T349] R13: ffff888120101770 R14: 0000000000000000 R15: 1ffff110240202f4
[   42.426831][  T349] FS:  0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[   42.435594][  T349] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   42.442197][  T349] CR2: 0000000000000170 CR3: 000000000660f000 CR4: 00000000003506a0
[   42.450018][  T349] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   42.457850][  T349] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   42.466038][  T349] Kernel panic - not syncing: Fatal exception
[   42.472344][  T349] Kernel Offset: disabled
[   42.476508][  T349] Rebooting in 86400 seconds..