Warning: Permanently added '10.128.1.131' (ED25519) to the list of known hosts. 2024/05/21 17:56:07 ignoring optional flag "sandboxArg"="0" 2024/05/21 17:56:07 parsed 1 programs [ 40.309922][ T29] kauditd_printk_skb: 78 callbacks suppressed [ 40.309928][ T29] audit: type=1400 audit(1716314167.759:154): avc: denied { mounton } for pid=338 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 40.341066][ T29] audit: type=1400 audit(1716314167.759:155): avc: denied { mount } for pid=338 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 40.364285][ T29] audit: type=1400 audit(1716314167.759:156): avc: denied { setattr } for pid=338 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 40.388217][ T29] audit: type=1400 audit(1716314167.759:157): avc: denied { read write } for pid=338 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.414617][ T29] audit: type=1400 audit(1716314167.759:158): avc: denied { open } for pid=338 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/05/21 17:56:07 executed programs: 0 [ 40.440933][ T29] audit: type=1400 audit(1716314167.889:159): avc: denied { unlink } for pid=338 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.450377][ T338] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 40.466532][ T29] audit: type=1400 audit(1716314167.889:160): avc: denied { relabelto } for pid=339 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.511029][ T344] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.517972][ T344] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.525027][ T344] device bridge_slave_0 entered promiscuous mode [ 40.531529][ T344] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.538669][ T344] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.546038][ T344] device bridge_slave_1 entered promiscuous mode [ 40.559558][ T344] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.566741][ T344] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.573804][ T344] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.580631][ T344] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.589537][ T297] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.596622][ T297] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.603656][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.610864][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.619803][ T344] device veth0_vlan entered promiscuous mode [ 40.626164][ T344] device veth1_macvtap entered promiscuous mode [ 40.633788][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.642861][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.650485][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.657862][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.665815][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.673721][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.682147][ T38] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.688951][ T38] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.696587][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.704708][ T38] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.711756][ T38] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.719730][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.727786][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.736754][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.745532][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.759530][ T29] audit: type=1400 audit(1716314168.209:161): avc: denied { mounton } for pid=350 comm="syz-executor.0" path="/root/syzkaller-testdir4252431796/syzkaller.qMo8Q9/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 40.859903][ T353] BUG: kernel NULL pointer dereference, address: 0000000000000008 [ 40.867757][ T353] #PF: supervisor read access in kernel mode [ 40.873832][ T353] #PF: error_code(0x0000) - not-present page [ 40.879662][ T353] PGD 10effc067 P4D 10effc067 PUD 10eff8067 PMD 0 [ 40.886083][ T353] Oops: 0000 [#1] PREEMPT SMP [ 40.890690][ T353] CPU: 1 PID: 353 Comm: syz-executor.0 Not tainted 5.15.149-syzkaller #0 [ 40.899047][ T353] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 40.909053][ T353] RIP: 0010:path_openat+0xd96/0x1230 [ 40.914497][ T353] Code: e4 0f 95 c2 48 83 f8 ff 0f 84 cd 03 00 00 48 85 c0 74 17 4c 89 f7 88 55 88 e8 36 c3 00 00 48 8b 45 98 0f b6 55 88 4c 8b 70 18 <41> f7 06 00 00 70 00 0f 84 13 01 00 00 49 83 fe fe 0f 94 c0 21 c2 [ 40.934242][ T353] RSP: 0018:ffffc900003fbcc8 EFLAGS: 00010246 [ 40.940286][ T353] RAX: ffff888100feb140 RBX: ffff88810ae290d0 RCX: 0000000500000000 [ 40.948254][ T353] RDX: 0000000000000000 RSI: 0000000400000000 RDI: ffff8881025eb780 [ 40.956154][ T353] RBP: ffffc900003fbd70 R08: 0000000000000005 R09: 0000000000000064 [ 40.964093][ T353] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 40.972226][ T353] R13: ffffc900003fbd80 R14: 0000000000000008 R15: ffffc900003fbebc [ 40.980091][ T353] FS: 00007f03e552a6c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 40.988924][ T353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.995351][ T353] CR2: 0000000000000008 CR3: 000000010f06b000 CR4: 00000000003506a0 [ 41.003242][ T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.011064][ T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.019248][ T353] Call Trace: [ 41.022473][ T353] [ 41.025245][ T353] ? show_regs.part.0+0x1e/0x20 [ 41.030103][ T353] ? __die+0x5d/0x9e [ 41.033838][ T353] ? page_fault_oops+0x12d/0x280 [ 41.038712][ T353] ? do_user_addr_fault+0x44b/0x730 [ 41.043730][ T353] ? debug_smp_processor_id+0x17/0x20 [ 41.049042][ T353] ? get_nohz_timer_target+0x25/0x220 [ 41.054252][ T353] ? _raw_spin_unlock_irqrestore+0x28/0x40 [ 41.059892][ T353] ? __mod_timer+0x251/0x3a0 [ 41.064428][ T353] ? add_timer+0x1b/0x20 [ 41.069226][ T353] ? exc_page_fault+0x67/0x160 [ 41.073909][ T353] ? asm_exc_page_fault+0x27/0x30 [ 41.078770][ T353] ? path_openat+0xd96/0x1230 [ 41.083602][ T353] ? path_openat+0xd8a/0x1230 [ 41.088370][ T353] do_filp_open+0xb1/0x150 [ 41.092608][ T353] ? _raw_spin_unlock+0x1f/0x40 [ 41.097287][ T353] do_sys_openat2+0x9c/0x250 [ 41.102001][ T353] __x64_sys_openat+0x51/0x90 [ 41.106485][ T353] do_syscall_64+0x35/0xb0 [ 41.110737][ T353] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 41.116474][ T353] RIP: 0033:0x7f03e59c9da9 [ 41.120746][ T353] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 41.140702][ T353] RSP: 002b:00007f03e552a0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 41.149039][ T353] RAX: ffffffffffffffda RBX: 00007f03e5af8050 RCX: 00007f03e59c9da9 [ 41.156843][ T353] RDX: 0000000000020200 RSI: 0000000020000080 RDI: 0000000000000004 [ 41.164742][ T353] RBP: 00007f03e5a1647a R08: 0000000000000000 R09: 0000000000000000 [ 41.172756][ T353] R10: 0000000000000010 R11: 0000000000000246 R12: 0000000000000000 [ 41.180744][ T353] R13: 000000000000006e R14: 00007f03e5af8050 R15: 00007ffd4bdd0c28 [ 41.189013][ T353] [ 41.192025][ T353] Modules linked in: [ 41.195765][ T353] CR2: 0000000000000008 [ 41.200115][ T353] ---[ end trace 9dec5033ab56a8d4 ]--- [ 41.205707][ T353] RIP: 0010:path_openat+0xd96/0x1230 [ 41.211592][ T353] Code: e4 0f 95 c2 48 83 f8 ff 0f 84 cd 03 00 00 48 85 c0 74 17 4c 89 f7 88 55 88 e8 36 c3 00 00 48 8b 45 98 0f b6 55 88 4c 8b 70 18 <41> f7 06 00 00 70 00 0f 84 13 01 00 00 49 83 fe fe 0f 94 c0 21 c2 [ 41.231718][ T353] RSP: 0018:ffffc900003fbcc8 EFLAGS: 00010246 [ 41.237951][ T353] RAX: ffff888100feb140 RBX: ffff88810ae290d0 RCX: 0000000500000000 [ 41.246030][ T353] RDX: 0000000000000000 RSI: 0000000400000000 RDI: ffff8881025eb780 [ 41.254169][ T353] RBP: ffffc900003fbd70 R08: 0000000000000005 R09: 0000000000000064 [ 41.262275][ T353] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000000 [ 41.270331][ T353] R13: ffffc900003fbd80 R14: 0000000000000008 R15: ffffc900003fbebc [ 41.278571][ T353] FS: 00007f03e552a6c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 41.287327][ T353] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.293745][ T353] CR2: 0000000000000008 CR3: 000000010f06b000 CR4: 00000000003506a0 [ 41.301566][ T353] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.309656][ T353] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.317849][ T353] Kernel panic - not syncing: Fatal exception [ 41.323934][ T353] Kernel Offset: disabled [ 41.328046][ T353] Rebooting in 86400 seconds..