Warning: Permanently added '10.128.0.183' (ED25519) to the list of known hosts.
2025/10/28 05:26:46 parsed 1 programs
[ 48.788152][ T30] audit: type=1400 audit(1761629207.980:105): avc: denied { unlink } for pid=401 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 48.830958][ T401] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 49.542195][ T30] audit: type=1401 audit(1761629208.730:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 49.756831][ T30] audit: type=1400 audit(1761629208.940:107): avc: denied { create } for pid=437 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 49.851137][ T443] bridge0: port 1(bridge_slave_0) entered blocking state
[ 49.858315][ T443] bridge0: port 1(bridge_slave_0) entered disabled state
[ 49.865682][ T443] device bridge_slave_0 entered promiscuous mode
[ 49.872610][ T443] bridge0: port 2(bridge_slave_1) entered blocking state
[ 49.879743][ T443] bridge0: port 2(bridge_slave_1) entered disabled state
[ 49.887266][ T443] device bridge_slave_1 entered promiscuous mode
[ 49.933808][ T443] bridge0: port 2(bridge_slave_1) entered blocking state
[ 49.940898][ T443] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 49.948568][ T443] bridge0: port 1(bridge_slave_0) entered blocking state
[ 49.955801][ T443] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 49.975085][ T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 49.982652][ T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 49.990353][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 49.998130][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 50.007377][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 50.015699][ T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.022902][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.031630][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 50.039925][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.046949][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.059135][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 50.068641][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 50.082457][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 50.094138][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 50.102554][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 50.110165][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 50.118744][ T443] device veth0_vlan entered promiscuous mode
[ 50.134693][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 50.143752][ T443] device veth1_macvtap entered promiscuous mode
[ 50.153148][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 50.163690][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/10/28 05:26:49 executed programs: 0
[ 50.456521][ T469] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.463858][ T469] bridge0: port 1(bridge_slave_0) entered disabled state
[ 50.471550][ T469] device bridge_slave_0 entered promiscuous mode
[ 50.478901][ T469] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.486521][ T469] bridge0: port 2(bridge_slave_1) entered disabled state
[ 50.494445][ T469] device bridge_slave_1 entered promiscuous mode
[ 50.548190][ T469] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.555257][ T469] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.562607][ T469] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.569676][ T469] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.593155][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 50.600890][ T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 50.608540][ T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 50.623617][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 50.632243][ T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 50.639507][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 50.647023][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 50.655334][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 50.662557][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 50.677790][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 50.685995][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 50.702077][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 50.715381][ T469] device veth0_vlan entered promiscuous mode
[ 50.722534][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 50.731408][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 50.739273][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 50.753168][ T469] device veth1_macvtap entered promiscuous mode
[ 50.761096][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 50.774009][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 50.784630][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 50.812468][ T480] loop2: detected capacity change from 0 to 512
[ 50.849363][ T480] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 50.863095][ T480] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 50.875473][ T480] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 50.889035][ T480] EXT4-fs (loop2): 1 truncate cleaned up
[ 50.894809][ T480] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 50.916107][ T30] audit: type=1400 audit(1761629210.110:108): avc: denied { mount } for pid=479 comm="syz.2.17" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 50.939343][ T30] audit: type=1400 audit(1761629210.130:109): avc: denied { write } for pid=479 comm="syz.2.17" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 50.943221][ T480] ==================================================================
[ 50.961733][ T30] audit: type=1400 audit(1761629210.130:110): avc: denied { open } for pid=479 comm="syz.2.17" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 50.969453][ T480] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x13a3/0x37d0
[ 50.991701][ T30] audit: type=1400 audit(1761629210.130:111): avc: denied { setattr } for pid=479 comm="syz.2.17" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 50.999288][ T480] Read of size 18446744073709551540 at addr ffff888113137870 by task syz.2.17/480
[ 50.999309][ T480]
[ 50.999326][ T480] CPU: 1 PID: 480 Comm: syz.2.17 Not tainted syzkaller #0
[ 51.040953][ T480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 51.051206][ T480] Call Trace:
[ 51.054494][ T480]
[ 51.057467][ T480] __dump_stack+0x21/0x30
[ 51.061811][ T480] dump_stack_lvl+0xee/0x150
[ 51.067013][ T480] ? show_regs_print_info+0x20/0x20
[ 51.072231][ T480] ? load_image+0x3a0/0x3a0
[ 51.077031][ T480] ? unwind_get_return_address+0x4d/0x90
[ 51.082823][ T480] print_address_description+0x7f/0x2c0
[ 51.088557][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 51.094206][ T480] kasan_report+0xf1/0x140
[ 51.098635][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 51.104278][ T480] ? ext4_xattr_set_entry+0x13a3/0x37d0
[ 51.110003][ T480] kasan_check_range+0x280/0x290
[ 51.115031][ T480] memmove+0x2d/0x70
[ 51.119051][ T480] ext4_xattr_set_entry+0x13a3/0x37d0
[ 51.124943][ T480] ? __kasan_kmalloc+0xda/0x110
[ 51.129786][ T480] ? __kmalloc_track_caller+0x13c/0x2c0
[ 51.135510][ T480] ? kmemdup+0x26/0x60
[ 51.139586][ T480] ? setxattr+0x251/0x300
[ 51.144014][ T480] ? x64_sys_call+0x8cc/0x9a0
[ 51.148690][ T480] ? do_syscall_64+0x4c/0xa0
[ 51.153294][ T480] ? ext4_xattr_ibody_set+0x360/0x360
[ 51.158871][ T480] ? ext4_xattr_block_set+0x7e2/0x2cb0
[ 51.164433][ T480] ? ext4_xattr_block_set+0x7e2/0x2cb0
[ 51.169985][ T480] ? __kmalloc_track_caller+0x13c/0x2c0
[ 51.175637][ T480] ? memcpy+0x56/0x70
[ 51.179642][ T480] ext4_xattr_block_set+0x8cd/0x2cb0
[ 51.185074][ T480] ? errseq_check+0x41/0x80
[ 51.189744][ T480] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 51.195345][ T480] ? __kasan_check_write+0x14/0x20
[ 51.200593][ T480] ext4_xattr_set_handle+0xba5/0x12b0
[ 51.205987][ T480] ? ext4_xattr_set_entry+0x37d0/0x37d0
[ 51.211629][ T480] ? ext4_xattr_set+0x1f6/0x320
[ 51.216543][ T480] ? __ext4_journal_start_sb+0x154/0x2b0
[ 51.222174][ T480] ext4_xattr_set+0x22a/0x320
[ 51.226936][ T480] ? ext4_xattr_set_credits+0x290/0x290
[ 51.232651][ T480] ? selinux_inode_setxattr+0x5b4/0xbb0
[ 51.238211][ T480] ext4_xattr_trusted_set+0x3c/0x50
[ 51.243439][ T480] ? ext4_xattr_trusted_get+0x40/0x40
[ 51.248913][ T480] __vfs_setxattr+0x3e1/0x430
[ 51.253932][ T480] __vfs_setxattr_noperm+0x12a/0x5e0
[ 51.259500][ T480] __vfs_setxattr_locked+0x212/0x230
[ 51.264898][ T480] vfs_setxattr+0x168/0x2f0
[ 51.269776][ T480] ? xattr_permission+0x550/0x550
[ 51.274907][ T480] ? _copy_from_user+0x95/0xd0
[ 51.279861][ T480] setxattr+0x2da/0x300
[ 51.284022][ T480] ? path_setxattr+0x280/0x280
[ 51.288786][ T480] ? debug_smp_processor_id+0x17/0x20
[ 51.294258][ T480] ? __mnt_want_write+0x1e6/0x260
[ 51.299311][ T480] ? mnt_want_write+0x20b/0x2e0
[ 51.304249][ T480] path_setxattr+0x142/0x280
[ 51.308931][ T480] ? simple_xattr_list_add+0x120/0x120
[ 51.314834][ T480] ? do_sys_truncate+0x12f/0x190
[ 51.319795][ T480] ? __kasan_check_write+0x14/0x20
[ 51.325024][ T480] __x64_sys_lsetxattr+0xc2/0xe0
[ 51.330224][ T480] x64_sys_call+0x8cc/0x9a0
[ 51.334754][ T480] do_syscall_64+0x4c/0xa0
[ 51.339166][ T480] ? clear_bhb_loop+0x50/0xa0
[ 51.343944][ T480] ? clear_bhb_loop+0x50/0xa0
[ 51.348621][ T480] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 51.354611][ T480] RIP: 0033:0x7fbc8c91bec9
[ 51.359109][ T480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 51.379444][ T480] RSP: 002b:00007fbc8c78c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 51.387964][ T480] RAX: ffffffffffffffda RBX: 00007fbc8cb72fa0 RCX: 00007fbc8c91bec9
[ 51.396297][ T480] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 51.404441][ T480] RBP: 00007fbc8c99ef91 R08: 0000000000000000 R09: 0000000000000000
[ 51.412596][ T480] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 51.420752][ T480] R13: 00007fbc8cb73038 R14: 00007fbc8cb72fa0 R15: 00007ffe70cf50f8
[ 51.429529][ T480]
[ 51.432548][ T480]
[ 51.435172][ T480] Allocated by task 480:
[ 51.439404][ T480] __kasan_kmalloc+0xda/0x110
[ 51.444082][ T480] __kmalloc_track_caller+0x13c/0x2c0
[ 51.449453][ T480] kmemdup+0x26/0x60
[ 51.453343][ T480] ext4_xattr_block_set+0x7e2/0x2cb0
[ 51.458804][ T480] ext4_xattr_set_handle+0xba5/0x12b0
[ 51.464440][ T480] ext4_xattr_set+0x22a/0x320
[ 51.469463][ T480] ext4_xattr_trusted_set+0x3c/0x50
[ 51.474757][ T480] __vfs_setxattr+0x3e1/0x430
[ 51.479534][ T480] __vfs_setxattr_noperm+0x12a/0x5e0
[ 51.484812][ T480] __vfs_setxattr_locked+0x212/0x230
[ 51.490093][ T480] vfs_setxattr+0x168/0x2f0
[ 51.494606][ T480] setxattr+0x2da/0x300
[ 51.498764][ T480] path_setxattr+0x142/0x280
[ 51.503364][ T480] __x64_sys_lsetxattr+0xc2/0xe0
[ 51.508310][ T480] x64_sys_call+0x8cc/0x9a0
[ 51.513097][ T480] do_syscall_64+0x4c/0xa0
[ 51.517698][ T480] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 51.523597][ T480]
[ 51.525947][ T480] The buggy address belongs to the object at ffff888113137800
[ 51.525947][ T480] which belongs to the cache kmalloc-1k of size 1024
[ 51.540079][ T480] The buggy address is located 112 bytes inside of
[ 51.540079][ T480] 1024-byte region [ffff888113137800, ffff888113137c00)
[ 51.553524][ T480] The buggy address belongs to the page:
[ 51.559325][ T480] page:ffffea00044c4c00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888113130800 pfn:0x113130
[ 51.570981][ T480] head:ffffea00044c4c00 order:3 compound_mapcount:0 compound_pincount:0
[ 51.579416][ T480] flags: 0x4000000000010200(slab|head|zone=1)
[ 51.585726][ T480] raw: 4000000000010200 0000000000000000 0000000100000001 ffff888100043080
[ 51.594405][ T480] raw: ffff888113130800 000000008010000f 00000001ffffffff 0000000000000000
[ 51.603079][ T480] page dumped because: kasan: bad access detected
[ 51.609604][ T480] page_owner tracks the page as allocated
[ 51.615623][ T480] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 112, ts 6654381709, free_ts 0
[ 51.633862][ T480] post_alloc_hook+0x192/0x1b0
[ 51.638814][ T480] prep_new_page+0x1c/0x110
[ 51.643316][ T480] get_page_from_freelist+0x2cc5/0x2d50
[ 51.648855][ T480] __alloc_pages+0x18f/0x440
[ 51.653445][ T480] new_slab+0xa1/0x4d0
[ 51.657508][ T480] ___slab_alloc+0x381/0x810
[ 51.662216][ T480] __slab_alloc+0x49/0x90
[ 51.666590][ T480] __kmalloc_track_caller+0x169/0x2c0
[ 51.671973][ T480] __alloc_skb+0x21a/0x740
[ 51.676489][ T480] alloc_uevent_skb+0x85/0x240
[ 51.681377][ T480] kobject_uevent_net_broadcast+0x335/0x5a0
[ 51.687278][ T480] kobject_uevent_env+0x52e/0x700
[ 51.692483][ T480] kobject_synth_uevent+0x520/0xaf0
[ 51.697681][ T480] uevent_store+0x25/0x60
[ 51.702010][ T480] dev_attr_store+0x5e/0x80
[ 51.706506][ T480] sysfs_kf_write+0x129/0x150
[ 51.711185][ T480] page_owner free stack trace missing
[ 51.716664][ T480]
[ 51.718986][ T480] Memory state around the buggy address:
[ 51.724727][ T480] ffff888113137700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 51.732966][ T480] ffff888113137780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 51.741126][ T480] >ffff888113137800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 51.749475][ T480] ^
[ 51.757375][ T480] ffff888113137880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 51.766214][ T480] ffff888113137900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 51.774822][ T480] ==================================================================
[ 51.782888][ T480] Disabling lock debugging due to kernel taint
[ 51.801908][ T30] audit: type=1400 audit(1761629210.990:112): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 51.824896][ T30] audit: type=1400 audit(1761629210.990:113): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 51.853106][ T30] audit: type=1400 audit(1761629210.990:114): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 51.864407][ T484] loop2: detected capacity change from 0 to 512
[ 51.928329][ T484] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 51.942180][ T484] EXT4-fs (loop2): 1 truncate cleaned up
[ 51.948219][ T484] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 51.974708][ T406] general protection fault, probably for non-canonical address 0xf66b1b9359737c18: 0000 [#1] PREEMPT SMP KASAN
[ 51.986563][ T406] KASAN: maybe wild-memory-access in range [0xb358fc9acb9be0c0-0xb358fc9acb9be0c7]
[ 51.996188][ T406] CPU: 1 PID: 406 Comm: udevd Tainted: G B syzkaller #0
[ 52.004565][ T406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 52.014698][ T406] RIP: 0010:kmem_cache_alloc+0x8a/0x260
[ 52.020432][ T406] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 45 28 48 8d 0c 07 49 8b 9d d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 45 00 48 89 f8 65 49 0f c7
[ 52.040399][ T406] RSP: 0018:ffffc90000a67c78 EFLAGS: 00010286
[ 52.046551][ T406] RAX: 0000000000000800 RBX: f6d0348ad8fb8be7 RCX: 187c7359931b6bf6
[ 52.054580][ T406] RDX: 0000000000029951 RSI: 0000000000001000 RDI: f66b1b9359737418
[ 52.062630][ T406] RBP: ffffc90000a67cb8 R08: 0000000000000000 R09: ffffc90000a67da0
[ 52.070822][ T406] R10: fffff5200014cfb6 R11: 1ffff9200014cfb4 R12: ffff8881001c4600
[ 52.078791][ T406] R13: ffff8881001c4600 R14: 0000000000000cc0 R15: ffffffff81b12139
[ 52.086761][ T406] FS: 00007fdf4166e880(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 52.095686][ T406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 52.102351][ T406] CR2: 00007fdf414bd000 CR3: 000000012bf43000 CR4: 00000000003506a0
[ 52.110318][ T406] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 52.118416][ T406] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 52.126665][ T406] Call Trace:
[ 52.129953][ T406]
[ 52.132894][ T406] getname_flags+0xb9/0x500
[ 52.137402][ T406] user_path_at_empty+0x30/0x1c0
[ 52.142675][ T406] do_utimes+0x138/0x2a0
[ 52.147011][ T406] ? vfs_utimes+0x570/0x570
[ 52.151511][ T406] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 52.157785][ T406] __x64_sys_utimensat+0x14c/0x230
[ 52.163089][ T406] ? do_utimes+0x2a0/0x2a0
[ 52.167667][ T406] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 52.174095][ T406] x64_sys_call+0x35b/0x9a0
[ 52.178697][ T406] do_syscall_64+0x4c/0xa0
[ 52.183121][ T406] ? clear_bhb_loop+0x50/0xa0
[ 52.187795][ T406] ? clear_bhb_loop+0x50/0xa0
[ 52.192614][ T406] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 52.198504][ T406] RIP: 0033:0x7fdf417caa1a
[ 52.202942][ T406] Code: 77 06 c3 0f 1f 44 00 00 48 8b 15 d9 b3 0d 00 f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 41 89 ca b8 18 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 06 c3 0f 1f 44 00 00 48 8b 15 a9 b3 0d 00 f7
[ 52.222893][ T406] RSP: 002b:00007fff0d5b71a8 EFLAGS: 00000246 ORIG_RAX: 0000000000000118
[ 52.231614][ T406] RAX: ffffffffffffffda RBX: 0000000000006180 RCX: 00007fdf417caa1a
[ 52.239678][ T406] RDX: 0000000000000000 RSI: 0000558fc0c3d150 RDI: 00000000ffffff9c
[ 52.247680][ T406] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000558fc0c44960
[ 52.255747][ T406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 52.264107][ T406] R13: 0000000000000000 R14: 0000558fc0c3d150 R15: 0000558fc0c4a4d0
[ 52.272198][ T406]
[ 52.275397][ T406] Modules linked in:
[ 52.279348][ T101] general protection fault, probably for non-canonical address 0xf60d079359737c18: 0000 [#2] PREEMPT SMP KASAN
[ 52.280299][ T406] ---[ end trace 9a56809cd4dd93b0 ]---
[ 52.291100][ T101] KASAN: maybe wild-memory-access in range [0xb0685c9acb9be0c0-0xb0685c9acb9be0c7]
[ 52.291120][ T101] CPU: 0 PID: 101 Comm: udevd Tainted: G B D syzkaller #0
[ 52.291141][ T101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 52.291153][ T101] RIP: 0010:kmem_cache_alloc+0x8a/0x260
[ 52.296683][ T406] RIP: 0010:kmem_cache_alloc+0x8a/0x260
[ 52.306008][ T101] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 45 28 48 8d 0c 07 49 8b 9d d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 45 00 48 89 f8 65 49 0f c7
[ 52.306025][ T101] RSP: 0018:ffffc90000a37ce0 EFLAGS: 00010286
[ 52.306043][ T101] RAX: 0000000000000800 RBX: f6d0348ad8fb8be7 RCX: 187c735993070df6
[ 52.306058][ T101] RDX: 00000000000238d8 RSI: 0000000000001000 RDI: f60d079359737418
[ 52.314848][ T406] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 45 28 48 8d 0c 07 49 8b 9d d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 45 00 48 89 f8 65 49 0f c7
[ 52.325234][ T101] RBP: ffffc90000a37d20 R08: 0000000000000004 R09: ffffc90000a37e20
[ 52.325252][ T101] R10: fffff52000146fc6 R11: 1ffff92000146fc4 R12: ffff8881001c4600
[ 52.325267][ T101] R13: ffff8881001c4600 R14: 0000000000000cc0 R15: ffffffff81b12139
[ 52.325281][ T101] FS: 00007fdf4166e880(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 52.325299][ T101] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 52.331114][ T406] RSP: 0018:ffffc90000a67c78 EFLAGS: 00010286
[ 52.336547][ T101] CR2: 00007fdf414bd000 CR3: 000000010db2c000 CR4: 00000000003506b0
[ 52.336567][ T101] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 52.336578][ T101] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 52.336589][ T101] Call Trace:
[ 52.336594][ T101]
[ 52.336602][ T101] getname_flags+0xb9/0x500
[ 52.336626][ T101] getname+0x19/0x20
[ 52.336640][ T101] do_sys_openat2+0xd9/0x7b0
[ 52.336661][ T101] ? user_path_at_empty+0x161/0x1c0
[ 52.336679][ T101] ? do_sys_open+0xe0/0xe0
[ 52.336700][ T101] ? do_readlinkat+0xed/0x480
[ 52.357401][ T406]
[ 52.363288][ T101] ? vfs_write+0xf70/0xf70
[ 52.363318][ T101] __x64_sys_openat+0x136/0x160
[ 52.371572][ T406] RAX: 0000000000000800 RBX: f6d0348ad8fb8be7 RCX: 187c7359931b6bf6
[ 52.379567][ T101] x64_sys_call+0x219/0x9a0
[ 52.379592][ T101] do_syscall_64+0x4c/0xa0
[ 52.379614][ T101] ? clear_bhb_loop+0x50/0xa0
[ 52.399651][ T406] RDX: 0000000000029951 RSI: 0000000000001000 RDI: f66b1b9359737418
[ 52.407549][ T101] ? clear_bhb_loop+0x50/0xa0
[ 52.407575][ T101] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 52.415593][ T406] RBP: ffffc90000a67cb8 R08: 0000000000000000 R09: ffffc90000a67da0
[ 52.423926][ T101] RIP: 0033:0x7fdf4175c407
[ 52.423952][ T101] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 52.423973][ T101] RSP: 002b:00007fff0d5b77d0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 52.423996][ T101] RAX: ffffffffffffffda RBX: 00007fdf4166e880 RCX: 00007fdf4175c407
[ 52.424011][ T101] RDX: 0000000000080141 RSI: 0000558f8b33a02e RDI: ffffffffffffff9c
[ 52.433452][ T406] R10: fffff5200014cfb6 R11: 1ffff9200014cfb4 R12: ffff8881001c4600
[ 52.440231][ T101] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 52.440246][ T101] R10: 00000000000001a4 R11: 0000000000000202 R12: 00000000ffffffff
[ 52.440259][ T101] R13: 00000000ffffffff R14: ffffffffffffffff R15: 00007fff0d5b7af0
[ 52.440278][ T101]
[ 52.440285][ T101] Modules linked in:
[ 52.458625][ T484] BUG: unable to handle page fault for address: ffff88811a7bc000
[ 52.662941][ T484] #PF: supervisor write access in kernel mode
[ 52.669011][ T484] #PF: error_code(0x0003) - permissions violation
[ 52.675624][ T484] PGD 7201067 P4D 7201067 PUD 1087e3063 PMD 10dbd0063 PTE 800000011a7bc161
[ 52.684232][ T484] Oops: 0003 [#3] PREEMPT SMP KASAN
[ 52.689441][ T484] CPU: 0 PID: 484 Comm: syz.2.18 Tainted: G B D syzkaller #0
[ 52.697940][ T484] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 52.708244][ T484] RIP: 0010:__memmove+0x19c/0x1a0
[ 52.713379][ T484] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 00 eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 52.733371][ T484] RSP: 0018:ffffc90002d07240 EFLAGS: 00010282
[ 52.739441][ T484] RAX: ffff88811923b050 RBX: ffffffffffffffb4 RCX: fffffffffea7f004
[ 52.747466][ T484] RDX: ffffffffffffffb4 RSI: ffff88811a7bc020 RDI: ffff88811a7bc000
[ 52.755532][ T484] RBP: ffffc90002d07270 R08: ffff88811923b004 R09: ffffed1023247680
[ 52.763517][ T484] R10: 0000000000000000 R11: 0000000000000080 R12: 0000000000000000
[ 52.771930][ T484] R13: ffffffff81e7d9d3 R14: ffff88811923b070 R15: ffff88811923b050
[ 52.780018][ T484] FS: 00007fbc8c78c6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 52.789176][ T484] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 52.795899][ T484] CR2: ffff88811a7bc000 CR3: 0000000117ae4000 CR4: 00000000003506b0
[ 52.804365][ T484] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 52.812604][ T484] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 52.820757][ T484] Call Trace:
[ 52.824051][ T484]
[ 52.827206][ T484] ? memmove+0x56/0x70
[ 52.831536][ T484] ext4_xattr_set_entry+0x13a3/0x37d0
[ 52.837165][ T484] ? __kasan_kmalloc+0xda/0x110
[ 52.842116][ T484] ? __kmalloc_track_caller+0x13c/0x2c0
[ 52.847845][ T484] ? kmemdup+0x26/0x60
[ 52.851926][ T484] ? setxattr+0x251/0x300
[ 52.856338][ T484] ? x64_sys_call+0x8cc/0x9a0
[ 52.861012][ T484] ? do_syscall_64+0x4c/0xa0
[ 52.865613][ T484] ? ext4_xattr_ibody_set+0x360/0x360
[ 52.871081][ T484] ? __kmalloc_track_caller+0x13c/0x2c0
[ 52.876723][ T484] ? memcpy+0x56/0x70
[ 52.880742][ T484] ext4_xattr_block_set+0x8cd/0x2cb0
[ 52.886205][ T484] ? errseq_check+0x41/0x80
[ 52.890706][ T484] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 52.896161][ T484] ? __kasan_check_write+0x14/0x20
[ 52.901433][ T484] ext4_xattr_set_handle+0xba5/0x12b0
[ 52.906915][ T484] ? ext4_xattr_set_entry+0x37d0/0x37d0
[ 52.912616][ T484] ? ext4_xattr_set+0x1f6/0x320
[ 52.917557][ T484] ? __ext4_journal_start_sb+0x154/0x2b0
[ 52.923298][ T484] ext4_xattr_set+0x22a/0x320
[ 52.928059][ T484] ? ext4_xattr_set_credits+0x290/0x290
[ 52.933872][ T484] ? selinux_inode_setxattr+0x5b4/0xbb0
[ 52.939455][ T484] ext4_xattr_trusted_set+0x3c/0x50
[ 52.944750][ T484] ? ext4_xattr_trusted_get+0x40/0x40
[ 52.950334][ T484] __vfs_setxattr+0x3e1/0x430
[ 52.955294][ T484] __vfs_setxattr_noperm+0x12a/0x5e0
[ 52.960598][ T484] __vfs_setxattr_locked+0x212/0x230
[ 52.965986][ T484] vfs_setxattr+0x168/0x2f0
[ 52.970580][ T484] ? xattr_permission+0x550/0x550
[ 52.975694][ T484] ? _copy_from_user+0x95/0xd0
[ 52.980570][ T484] setxattr+0x2da/0x300
[ 52.984731][ T484] ? path_setxattr+0x280/0x280
[ 52.989489][ T484] ? debug_smp_processor_id+0x17/0x20
[ 52.994864][ T484] ? __mnt_want_write+0x1e6/0x260
[ 52.999976][ T484] ? mnt_want_write+0x20b/0x2e0
[ 53.004971][ T484] path_setxattr+0x142/0x280
[ 53.009751][ T484] ? simple_xattr_list_add+0x120/0x120
[ 53.015225][ T484] ? do_sys_truncate+0x12f/0x190
[ 53.020252][ T484] ? __kasan_check_write+0x14/0x20
[ 53.025361][ T484] __x64_sys_lsetxattr+0xc2/0xe0
[ 53.030481][ T484] x64_sys_call+0x8cc/0x9a0
[ 53.034984][ T484] do_syscall_64+0x4c/0xa0
[ 53.039481][ T484] ? clear_bhb_loop+0x50/0xa0
[ 53.044173][ T484] ? clear_bhb_loop+0x50/0xa0
[ 53.048936][ T484] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 53.054829][ T484] RIP: 0033:0x7fbc8c91bec9
[ 53.059241][ T484] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 53.079139][ T484] RSP: 002b:00007fbc8c78c038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 53.087648][ T484] RAX: ffffffffffffffda RBX: 00007fbc8cb72fa0 RCX: 00007fbc8c91bec9
[ 53.095615][ T484] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 53.103756][ T484] RBP: 00007fbc8c99ef91 R08: 0000000000000000 R09: 0000000000000000
[ 53.111852][ T484] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 53.120118][ T484] R13: 00007fbc8cb73038 R14: 00007fbc8cb72fa0 R15: 00007ffe70cf50f8
[ 53.128390][ T484]
[ 53.131420][ T484] Modules linked in:
[ 53.135544][ T484] CR2: ffff88811a7bc000
[ 53.139705][ T484] ---[ end trace 9a56809cd4dd93b1 ]---
[ 53.139749][ T83] general protection fault, probably for non-canonical address 0xf66b1b9359737c18: 0000 [#4] PREEMPT SMP KASAN
[ 53.145204][ T484] RIP: 0010:kmem_cache_alloc+0x8a/0x260
[ 53.156909][ T83] KASAN: maybe wild-memory-access in range [0xb358fc9acb9be0c0-0xb358fc9acb9be0c7]
[ 53.162551][ T484] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 45 28 48 8d 0c 07 49 8b 9d d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 45 00 48 89 f8 65 49 0f c7
[ 53.171823][ T83] CPU: 1 PID: 83 Comm: syslogd Tainted: G B D syzkaller #0
[ 53.191706][ T484] RSP: 0018:ffffc90000a67c78 EFLAGS: 00010286
[ 53.200024][ T83] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 53.200037][ T83] RIP: 0010:kmem_cache_alloc+0x8a/0x260
[ 53.206300][ T484] RAX: 0000000000000800 RBX: f6d0348ad8fb8be7 RCX: 187c7359931b6bf6
[ 53.216446][ T83] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 45 28 48 8d 0c 07 49 8b 9d d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 45 00 48 89 f8 65 49 0f c7
[ 53.222154][ T484] RDX: 0000000000029951 RSI: 0000000000001000 RDI: f66b1b9359737418
[ 53.230120][ T83] RSP: 0018:ffffc900009e7ce0 EFLAGS: 00010286
[ 53.249929][ T484] RBP: ffffc90000a67cb8 R08: 0000000000000000 R09: ffffc90000a67da0
[ 53.257901][ T83]
[ 53.257907][ T83] RAX: 0000000000000800 RBX: f6d0348ad8fb8be7 RCX: 187c7359931b6bf6
[ 53.263964][ T484] R10: fffff5200014cfb6 R11: 1ffff9200014cfb4 R12: ffff8881001c4600
[ 53.272020][ T83] RDX: 0000000000029951 RSI: 0000000000001000 RDI: f66b1b9359737418
[ 53.274481][ T484] R13: ffff8881001c4600 R14: 0000000000000cc0 R15: ffffffff81b12139
[ 53.282454][ T83] RBP: ffffc900009e7d20 R08: 0000000000000004 R09: ffffc900009e7e20
[ 53.290515][ T484] FS: 00007fbc8c78c6c0(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 53.290538][ T484] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 53.290553][ T484] CR2: ffff88811a7bc000 CR3: 0000000117ae4000 CR4: 00000000003506b0
[ 53.298616][ T83] R10: fffff5200013cfc6 R11: 1ffff9200013cfc4 R12: ffff8881001c4600
[ 53.306681][ T484] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 53.314746][ T83] R13: ffff8881001c4600 R14: 0000000000000cc0 R15: ffffffff81b12139
[ 53.323873][ T484] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 53.330459][ T83] FS: 00007fce968d0c80(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 53.338714][ T484] Kernel panic - not syncing: Fatal exception
[ 53.346774][ T83] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 53.392983][ T83] CR2: 00007fdf414bd000 CR3: 000000010d2e5000 CR4: 00000000003506a0
[ 53.401383][ T83] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 53.409363][ T83] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 53.417435][ T83] Call Trace:
[ 53.420738][ T83]
[ 53.423683][ T83] getname_flags+0xb9/0x500
[ 53.428217][ T83] getname+0x19/0x20
[ 53.432117][ T83] do_sys_openat2+0xd9/0x7b0
[ 53.436717][ T83] ? __fput+0x63f/0x8b0
[ 53.440968][ T83] ? do_sys_open+0xe0/0xe0
[ 53.445430][ T83] ? __blkcg_punt_bio_submit+0x170/0x170
[ 53.451158][ T83] ? ____fput+0x15/0x20
[ 53.455416][ T83] __x64_sys_openat+0x136/0x160
[ 53.460373][ T83] x64_sys_call+0x219/0x9a0
[ 53.464971][ T83] do_syscall_64+0x4c/0xa0
[ 53.469396][ T83] ? clear_bhb_loop+0x50/0xa0
[ 53.474163][ T83] ? clear_bhb_loop+0x50/0xa0
[ 53.478848][ T83] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 53.484848][ T83] RIP: 0033:0x7fce96a20407
[ 53.489269][ T83] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 53.508978][ T83] RSP: 002b:00007ffdb8647690 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 53.517483][ T83] RAX: ffffffffffffffda RBX: 00007fce968d0c80 RCX: 00007fce96a20407
[ 53.525460][ T83] RDX: 0000000000000d41 RSI: 00007fce96c1a183 RDI: ffffffffffffff9c
[ 53.533437][ T83] RBP: 00007ffdb8647840 R08: 0000000000000000 R09: 0000000000000000
[ 53.541415][ T83] R10: 00000000000001b6 R11: 0000000000000202 R12: 0000000000000095
[ 53.549391][ T83] R13: 000000006900541b R14: 000055c055166600 R15: 000055c029fbdd98
[ 53.557468][ T83]
[ 53.560502][ T83] Modules linked in:
[ 53.564668][ T484] Kernel Offset: disabled
[ 53.569135][ T484] Rebooting in 86400 seconds..