Warning: Permanently added '10.128.1.50' (ED25519) to the list of known hosts. 2023/09/26 05:40:06 ignoring optional flag "sandboxArg"="0" 2023/09/26 05:40:06 parsed 1 programs [ 40.866977][ T23] kauditd_printk_skb: 75 callbacks suppressed [ 40.866979][ T23] audit: type=1400 audit(1695706806.940:151): avc: denied { mounton } for pid=336 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 40.897769][ T23] audit: type=1400 audit(1695706806.940:152): avc: denied { mount } for pid=336 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 40.921195][ T23] audit: type=1400 audit(1695706806.940:153): avc: denied { setattr } for pid=336 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 2023/09/26 05:40:07 executed programs: 0 [ 40.944104][ T23] audit: type=1400 audit(1695706806.940:154): avc: denied { read write } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.944146][ T336] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 40.969918][ T23] audit: type=1400 audit(1695706806.940:155): avc: denied { open } for pid=336 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.969921][ T23] audit: type=1400 audit(1695706806.970:156): avc: denied { unlink } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.991332][ T341] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.004596][ T23] audit: type=1400 audit(1695706806.970:157): avc: denied { relabelto } for pid=337 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 41.030405][ T341] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.037068][ T23] audit: type=1400 audit(1695706807.060:158): avc: denied { mounton } for pid=341 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 41.062518][ T341] device bridge_slave_0 entered promiscuous mode [ 41.099573][ T341] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.106422][ T341] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.113408][ T341] device bridge_slave_1 entered promiscuous mode [ 41.124086][ T341] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.130899][ T341] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.137969][ T341] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.144796][ T341] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.153523][ T50] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.160427][ T50] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.167340][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.174300][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.183173][ T341] device veth0_vlan entered promiscuous mode [ 41.189552][ T341] device veth1_macvtap entered promiscuous mode [ 41.196209][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.204272][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.211913][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.218956][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.226234][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.233960][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.241701][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.248500][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.255595][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.263382][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.270184][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.277274][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.284921][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.293159][ T50] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.301966][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.313209][ T23] audit: type=1400 audit(1695706807.390:159): avc: denied { mounton } for pid=347 comm="syz-executor.0" path="/root/syzkaller-testdir1787701615/syzkaller.EYehhF/0/file0" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 41.363808][ T348] BUG: kernel NULL pointer dereference, address: 0000000000000002 [ 41.371433][ T348] #PF: supervisor read access in kernel mode [ 41.377347][ T348] #PF: error_code(0x0000) - not-present page [ 41.383159][ T348] PGD 109563067 P4D 109563067 PUD 1095c5067 PMD 0 [ 41.389495][ T348] Oops: 0000 [#1] PREEMPT SMP [ 41.394009][ T348] CPU: 0 PID: 348 Comm: syz-executor.0 Not tainted 5.10.194-syzkaller #0 [ 41.402339][ T348] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 41.412330][ T348] RIP: 0010:do_unlinkat+0x13f/0x2b0 [ 41.417443][ T348] Code: 81 c7 a0 00 00 00 e8 00 a7 a1 00 48 8b 75 b8 48 8d 7d c0 44 89 ea e8 70 91 ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 34 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 41.436994][ T348] RSP: 0018:ffffc9000056feb0 EFLAGS: 00010203 [ 41.442980][ T348] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 41.450787][ T348] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff8881003c4a00 [ 41.458860][ T348] RBP: ffffc9000056ff18 R08: 0000000000000004 R09: 0000000000000064 [ 41.466697][ T348] R10: ffff888101bbd2c0 R11: 0000000000000001 R12: ffff88810738b000 [ 41.474572][ T348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000002 [ 41.482392][ T348] FS: 00007ffae11cf6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 41.491148][ T348] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.497590][ T348] CR2: 0000000000000002 CR3: 000000010953c000 CR4: 00000000003506b0 [ 41.505383][ T348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.513197][ T348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.521219][ T348] Call Trace: [ 41.524378][ T348] ? show_regs.part.0+0x1e/0x20 [ 41.529211][ T348] ? __die+0x5d/0x9e [ 41.532941][ T348] ? no_context+0x1f2/0x380 [ 41.537281][ T348] ? __bad_area_nosemaphore+0x4b/0x1a0 [ 41.542746][ T348] ? bad_area_nosemaphore+0x11/0x20 [ 41.547867][ T348] ? exc_page_fault+0x2c9/0x5a0 [ 41.552554][ T348] ? asm_exc_page_fault+0x1e/0x30 [ 41.557413][ T348] ? do_unlinkat+0x13f/0x2b0 [ 41.561844][ T348] __x64_sys_unlink+0x3d/0x60 [ 41.566357][ T348] do_syscall_64+0x32/0x80 [ 41.570610][ T348] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 41.576353][ T348] RIP: 0033:0x7ffae164cb29 [ 41.580587][ T348] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 41.600205][ T348] RSP: 002b:00007ffae11cf0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 41.608453][ T348] RAX: ffffffffffffffda RBX: 00007ffae176bf80 RCX: 00007ffae164cb29 [ 41.616262][ T348] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 41.624074][ T348] RBP: 00007ffae169847a R08: 0000000000000000 R09: 0000000000000000 [ 41.631882][ T348] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 41.639781][ T348] R13: 000000000000000b R14: 00007ffae176bf80 R15: 00007fff8d88d438 [ 41.648116][ T348] Modules linked in: [ 41.651850][ T348] CR2: 0000000000000002 [ 41.655836][ T348] ---[ end trace 195d53a9dc463b6d ]--- [ 41.661132][ T348] RIP: 0010:do_unlinkat+0x13f/0x2b0 [ 41.666170][ T348] Code: 81 c7 a0 00 00 00 e8 00 a7 a1 00 48 8b 75 b8 48 8d 7d c0 44 89 ea e8 70 91 ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 34 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 41.685786][ T348] RSP: 0018:ffffc9000056feb0 EFLAGS: 00010203 [ 41.691678][ T348] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 41.699489][ T348] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff8881003c4a00 [ 41.707306][ T348] RBP: ffffc9000056ff18 R08: 0000000000000004 R09: 0000000000000064 [ 41.715131][ T348] R10: ffff888101bbd2c0 R11: 0000000000000001 R12: ffff88810738b000 [ 41.722924][ T348] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000002 [ 41.730746][ T348] FS: 00007ffae11cf6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 41.739560][ T348] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.745927][ T348] CR2: 0000000000000002 CR3: 000000010953c000 CR4: 00000000003506b0 [ 41.753738][ T348] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.761553][ T348] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.769650][ T348] Kernel panic - not syncing: Fatal exception [ 41.775781][ T348] Kernel Offset: disabled [ 41.779898][ T348] Rebooting in 86400 seconds..