Warning: Permanently added '10.128.0.191' (ED25519) to the list of known hosts. 2024/05/22 21:37:31 ignoring optional flag "sandboxArg"="0" 2024/05/22 21:37:31 parsed 1 programs [ 41.159139][ T27] audit: type=1400 audit(1716413851.624:156): avc: denied { mounton } for pid=340 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 41.183739][ T27] audit: type=1400 audit(1716413851.624:157): avc: denied { mount } for pid=340 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 2024/05/22 21:37:31 executed programs: 0 [ 41.218336][ T27] audit: type=1400 audit(1716413851.684:158): avc: denied { unlink } for pid=340 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.226649][ T340] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 41.263290][ T346] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.270274][ T346] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.277136][ T346] device bridge_slave_0 entered promiscuous mode [ 41.283451][ T346] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.290407][ T346] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.297296][ T346] device bridge_slave_1 entered promiscuous mode [ 41.308588][ T27] audit: type=1400 audit(1716413851.774:159): avc: denied { write } for pid=346 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 41.309911][ T346] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.328968][ T27] audit: type=1400 audit(1716413851.774:160): avc: denied { read } for pid=346 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 41.335800][ T346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.363258][ T346] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.370098][ T346] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.379004][ T23] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.385912][ T23] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.392968][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.400139][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.409220][ T346] device veth0_vlan entered promiscuous mode [ 41.415651][ T346] device veth1_macvtap entered promiscuous mode [ 41.422204][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.430146][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.437730][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.445007][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.452415][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.460661][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.468520][ T304] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.475403][ T304] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.482675][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.490799][ T304] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.497591][ T304] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.504715][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.512452][ T304] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.522085][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.530309][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.538833][ T27] audit: type=1400 audit(1716413852.004:161): avc: denied { mounton } for pid=346 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 41.565019][ T27] audit: type=1400 audit(1716413852.024:162): avc: denied { mounton } for pid=352 comm="syz-executor.0" path="/root/syzkaller-testdir1545312091/syzkaller.3CqyC8/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 41.615341][ T356] BUG: kernel NULL pointer dereference, address: 0000000000000038 [ 41.623180][ T356] #PF: supervisor read access in kernel mode [ 41.629501][ T356] #PF: error_code(0x0000) - not-present page [ 41.635483][ T356] PGD 110be1067 P4D 110be1067 PUD 110bc2067 PMD 0 [ 41.641907][ T356] Oops: 0000 [#1] PREEMPT SMP [ 41.646421][ T356] CPU: 0 PID: 356 Comm: syz-executor.0 Not tainted 6.1.75-syzkaller #0 [ 41.654495][ T356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 41.664389][ T356] RIP: 0010:do_rmdir+0x100/0x1c0 [ 41.669444][ T356] Code: 8b 7e 30 b8 a0 00 00 00 48 01 c7 e8 5a 32 b9 00 48 8d 7d b0 4c 89 f6 44 89 e2 e8 db c6 ff ff 49 89 c7 48 3d 00 f0 ff ff 77 2d <49> 83 7f 30 00 74 15 49 8b 7d 18 49 8b 76 30 4c 89 fa e8 e9 fa ff [ 41.689158][ T356] RSP: 0018:ffffc900007a7eb0 EFLAGS: 00010203 [ 41.695125][ T356] RAX: 0000000000000008 RBX: ffffc900007a7f01 RCX: 0000000000000003 [ 41.703127][ T356] RDX: 00000000ffffff9c RSI: 0000000300000000 RDI: ffff888108a64c00 [ 41.711059][ T356] RBP: ffffc900007a7f10 R08: ffff888111caca40 R09: ffffffff8154602c [ 41.719066][ T356] R10: ffff888111caca40 R11: ffff888100041400 R12: 0000000000000000 [ 41.726970][ T356] R13: ffff888108d24620 R14: ffff88810d173680 R15: 0000000000000008 [ 41.734780][ T356] FS: 00007f2cdc8256c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 41.743632][ T356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.750052][ T356] CR2: 0000000000000038 CR3: 0000000110bc7000 CR4: 00000000003506b0 [ 41.758084][ T356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.765851][ T356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.773672][ T356] Call Trace: [ 41.776783][ T356] [ 41.779563][ T356] ? __die_body+0x62/0xb0 [ 41.783728][ T356] ? __die+0x7e/0x90 [ 41.787458][ T356] ? page_fault_oops+0x369/0x3d0 [ 41.792237][ T356] ? exc_page_fault+0x4dc/0x670 [ 41.796919][ T356] ? asm_exc_page_fault+0x27/0x30 [ 41.801780][ T356] ? fuse_lookup_name+0x37c/0x3e0 [ 41.806641][ T356] ? do_rmdir+0x100/0x1c0 [ 41.810813][ T356] __x64_sys_rmdir+0x1e/0x30 [ 41.815321][ T356] do_syscall_64+0x3d/0xb0 [ 41.819572][ T356] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 41.825315][ T356] RIP: 0033:0x7f2cdba7dde9 [ 41.829554][ T356] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 41.849003][ T356] RSP: 002b:00007f2cdc8250c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000054 [ 41.857419][ T356] RAX: ffffffffffffffda RBX: 00007f2cdbbac050 RCX: 00007f2cdba7dde9 [ 41.865338][ T356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000200 [ 41.873247][ T356] RBP: 00007f2cdbaca47a R08: 0000000000000000 R09: 0000000000000000 [ 41.881244][ T356] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 41.889364][ T356] R13: 000000000000006e R14: 00007f2cdbbac050 R15: 00007fff7154ec88 [ 41.897161][ T356] [ 41.900022][ T356] Modules linked in: [ 41.903817][ T356] CR2: 0000000000000038 [ 41.907972][ T356] ---[ end trace 0000000000000000 ]--- [ 41.913237][ T356] RIP: 0010:do_rmdir+0x100/0x1c0 [ 41.918471][ T356] Code: 8b 7e 30 b8 a0 00 00 00 48 01 c7 e8 5a 32 b9 00 48 8d 7d b0 4c 89 f6 44 89 e2 e8 db c6 ff ff 49 89 c7 48 3d 00 f0 ff ff 77 2d <49> 83 7f 30 00 74 15 49 8b 7d 18 49 8b 76 30 4c 89 fa e8 e9 fa ff [ 41.937999][ T356] RSP: 0018:ffffc900007a7eb0 EFLAGS: 00010203 [ 41.943898][ T356] RAX: 0000000000000008 RBX: ffffc900007a7f01 RCX: 0000000000000003 [ 41.951792][ T356] RDX: 00000000ffffff9c RSI: 0000000300000000 RDI: ffff888108a64c00 [ 41.959955][ T356] RBP: ffffc900007a7f10 R08: ffff888111caca40 R09: ffffffff8154602c [ 41.967763][ T356] R10: ffff888111caca40 R11: ffff888100041400 R12: 0000000000000000 [ 41.975572][ T356] R13: ffff888108d24620 R14: ffff88810d173680 R15: 0000000000000008 [ 41.983562][ T356] FS: 00007f2cdc8256c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 41.992502][ T356] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.998950][ T356] CR2: 0000000000000038 CR3: 0000000110bc7000 CR4: 00000000003506b0 [ 42.006732][ T356] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.014653][ T356] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.022531][ T356] Kernel panic - not syncing: Fatal exception [ 42.028766][ T356] Kernel Offset: disabled [ 42.033081][ T356] Rebooting in 86400 seconds..