Warning: Permanently added '10.128.1.85' (ED25519) to the list of known hosts. 2023/12/29 19:40:38 ignoring optional flag "sandboxArg"="0" 2023/12/29 19:40:38 parsed 1 programs [ 41.226866][ T30] audit: type=1400 audit(1703878838.988:157): avc: denied { mounton } for pid=340 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 41.252167][ T30] audit: type=1400 audit(1703878838.988:158): avc: denied { mount } for pid=340 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 2023/12/29 19:40:39 executed programs: 0 [ 41.310602][ T30] audit: type=1400 audit(1703878839.078:159): avc: denied { unlink } for pid=340 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.351956][ T340] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 41.406554][ T347] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.413651][ T347] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.421082][ T347] device bridge_slave_0 entered promiscuous mode [ 41.427840][ T347] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.434877][ T347] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.442414][ T347] device bridge_slave_1 entered promiscuous mode [ 41.484596][ T30] audit: type=1400 audit(1703878839.248:160): avc: denied { write } for pid=347 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 41.489893][ T347] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.505070][ T30] audit: type=1400 audit(1703878839.248:161): avc: denied { read } for pid=347 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 41.511863][ T347] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.511952][ T347] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.546539][ T347] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.566044][ T6] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.573648][ T6] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.581485][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.588735][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.597909][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.606025][ T39] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.612879][ T39] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.630972][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.639138][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.647316][ T39] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.654440][ T39] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.661592][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.669271][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.681457][ T347] device veth0_vlan entered promiscuous mode [ 41.690045][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.697810][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.705439][ T39] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.714803][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.723981][ T347] device veth1_macvtap entered promiscuous mode [ 41.733856][ T293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.745758][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.759217][ T30] audit: type=1400 audit(1703878839.518:162): avc: denied { mounton } for pid=347 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=362 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 41.793276][ T30] audit: type=1400 audit(1703878839.558:163): avc: denied { mounton } for pid=352 comm="syz-executor.0" path="/root/syzkaller-testdir991471837/syzkaller.GKjIjM/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 41.896371][ T353] general protection fault, probably for non-canonical address 0xdffffc0000000003: 0000 [#1] PREEMPT SMP KASAN [ 41.908118][ T353] KASAN: null-ptr-deref in range [0x0000000000000018-0x000000000000001f] [ 41.916460][ T353] CPU: 0 PID: 353 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller-1068904-g28e3f5851a99 #0 [ 41.926854][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 41.936746][ T353] RIP: 0010:step_into+0x1b6/0xe70 [ 41.942487][ T353] Code: 20 0f 85 99 0a 00 00 44 8b 3b 43 80 3c 2c 00 74 0a 48 8b 7c 24 18 e8 09 c5 f3 ff 48 8b 9c 24 b8 00 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 86 0a 00 00 8b 1b 89 de 81 e6 00 00 07 [ 41.962626][ T353] RSP: 0018:ffffc90000d379a0 EFLAGS: 00010207 [ 41.968787][ T353] RAX: 0000000000000003 RBX: 000000000000001e RCX: ffff88810c922780 [ 41.976790][ T353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 41.984671][ T353] RBP: ffffc90000d37ad0 R08: ffffffff81be2ef0 R09: ffffed102189776e [ 41.992481][ T353] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920001a6f4b [ 42.000376][ T353] R13: dffffc0000000000 R14: ffffc90000d37cc0 R15: 0000000000000081 [ 42.008288][ T353] FS: 00007fb6a235b6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 42.017253][ T353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.023708][ T353] CR2: 0000000020005000 CR3: 00000001223f3000 CR4: 00000000003506b0 [ 42.031603][ T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.039537][ T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.047354][ T353] Call Trace: [ 42.050584][ T353] [ 42.053337][ T353] ? __die_body+0x62/0xb0 [ 42.057618][ T353] ? die_addr+0x9f/0xd0 [ 42.061680][ T353] ? exc_general_protection+0x311/0x4b0 [ 42.067311][ T353] ? asm_exc_general_protection+0x27/0x30 [ 42.073207][ T353] ? step_into+0x160/0xe70 [ 42.077456][ T353] ? step_into+0x1b6/0xe70 [ 42.081714][ T353] ? set_root+0x400/0x400 [ 42.085886][ T353] walk_component+0x359/0x610 [ 42.090399][ T353] ? nd_alloc_stack+0xf0/0xf0 [ 42.094922][ T353] ? handle_lookup_down+0x130/0x130 [ 42.100269][ T353] path_lookupat+0x16d/0x450 [ 42.104774][ T353] filename_lookup+0x230/0x5c0 [ 42.109619][ T353] ? hashlen_string+0x120/0x120 [ 42.114496][ T353] ? getname_flags+0x1fd/0x520 [ 42.119091][ T353] user_path_at_empty+0x43/0x1a0 [ 42.123866][ T353] __x64_sys_umount+0xf0/0x170 [ 42.128469][ T353] ? path_umount+0xea0/0xea0 [ 42.132990][ T353] ? __kasan_check_read+0x11/0x20 [ 42.137840][ T353] ? exit_to_user_mode_prepare+0x7e/0xa0 [ 42.143308][ T353] do_syscall_64+0x3d/0xb0 [ 42.147557][ T353] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 42.153377][ T353] RIP: 0033:0x7fb6a27d8ae9 [ 42.157634][ T353] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 42.177242][ T353] RSP: 002b:00007fb6a235b0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 42.185486][ T353] RAX: ffffffffffffffda RBX: 00007fb6a28f7f80 RCX: 00007fb6a27d8ae9 [ 42.193394][ T353] RDX: 0000000000000000 RSI: 0000000000000004 RDI: 0000000020000080 [ 42.201289][ T353] RBP: 00007fb6a282447a R08: 0000000000000000 R09: 0000000000000000 [ 42.209184][ T353] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 42.217252][ T353] R13: 000000000000000b R14: 00007fb6a28f7f80 R15: 00007ffee5b7f328 [ 42.225156][ T353] [ 42.228013][ T353] Modules linked in: [ 42.232419][ T353] ---[ end trace 62042c31365210bd ]--- [ 42.238149][ T353] RIP: 0010:step_into+0x1b6/0xe70 [ 42.243074][ T353] Code: 20 0f 85 99 0a 00 00 44 8b 3b 43 80 3c 2c 00 74 0a 48 8b 7c 24 18 e8 09 c5 f3 ff 48 8b 9c 24 b8 00 00 00 48 89 d8 48 c1 e8 03 <42> 0f b6 04 28 84 c0 0f 85 86 0a 00 00 8b 1b 89 de 81 e6 00 00 07 [ 42.263129][ T353] RSP: 0018:ffffc90000d379a0 EFLAGS: 00010207 [ 42.269406][ T353] RAX: 0000000000000003 RBX: 000000000000001e RCX: ffff88810c922780 [ 42.277707][ T353] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 42.285717][ T353] RBP: ffffc90000d37ad0 R08: ffffffff81be2ef0 R09: ffffed102189776e [ 42.293655][ T353] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff920001a6f4b [ 42.301431][ T353] R13: dffffc0000000000 R14: ffffc90000d37cc0 R15: 0000000000000081 [ 42.309315][ T353] FS: 00007fb6a235b6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 42.318208][ T353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.324633][ T353] CR2: 0000000020005000 CR3: 00000001223f3000 CR4: 00000000003506b0 [ 42.333080][ T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.341701][ T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.349672][ T353] Kernel panic - not syncing: Fatal exception [ 42.355938][ T353] Kernel Offset: disabled [ 42.360204][ T353] Rebooting in 86400 seconds..