[ 21.608800][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.617570][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.625935][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 21.634652][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 22.154239][ T9] device bridge_slave_1 left promiscuous mode [ 22.160399][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.168553][ T9] device bridge_slave_0 left promiscuous mode [ 22.174789][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 32.415089][ T25] kauditd_printk_skb: 65 callbacks suppressed [ 32.415099][ T25] audit: type=1400 audit(1670876019.620:148): avc: denied { read } for pid=145 comm="syslogd" name="log" dev="sda1" ino=1125 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 Warning: Permanently added '10.128.0.250' (ECDSA) to the list of known hosts. 2022/12/12 20:13:46 ignoring optional flag "sandboxArg"="0" 2022/12/12 20:13:46 parsed 1 programs 2022/12/12 20:13:46 executed programs: 0 [ 39.212964][ T25] audit: type=1400 audit(1670876026.420:149): avc: denied { mounton } for pid=401 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 39.238449][ T25] audit: type=1400 audit(1670876026.430:150): avc: denied { mount } for pid=401 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 39.262523][ T25] audit: type=1400 audit(1670876026.450:151): avc: denied { mounton } for pid=405 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 39.287716][ T25] audit: type=1400 audit(1670876026.460:152): avc: denied { module_request } for pid=405 comm="syz-executor.0" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 39.318960][ T405] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.326316][ T405] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.333834][ T405] device bridge_slave_0 entered promiscuous mode [ 39.340697][ T405] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.348011][ T405] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.355509][ T405] device bridge_slave_1 entered promiscuous mode [ 39.384813][ T405] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.392249][ T405] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.399605][ T405] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.406857][ T405] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.423831][ T374] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.431151][ T374] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.440333][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.448380][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.457498][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.465721][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.472753][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.481142][ T380] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.489997][ T380] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.497209][ T380] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.513202][ T380] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.521738][ T380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 39.530302][ T380] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 39.546182][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.554558][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.563175][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.571461][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.583872][ T25] audit: type=1400 audit(1670876026.790:153): avc: denied { mount } for pid=405 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 39.614176][ T412] loop0: detected capacity change from 0 to 264192 [ 39.622613][ T25] audit: type=1400 audit(1670876026.820:154): avc: denied { mounton } for pid=411 comm="syz-executor.0" path="/root/syzkaller-testdir456188967/syzkaller.OiZnaE/0/file0" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 39.649826][ T412] erofs: (device loop0): mounted with root inode @ nid 36. [ 39.657403][ T412] attempt to access beyond end of device [ 39.657403][ T412] loop0: rw=0, want=2201354232, limit=264192 [ 39.668920][ T412] BUG: unable to handle page fault for address: fffff52100091e3b [ 39.676711][ T412] #PF: supervisor read access in kernel mode [ 39.682668][ T412] #PF: error_code(0x0000) - not-present page [ 39.688622][ T412] PGD 23ffef067 P4D 23ffef067 PUD 0 [ 39.693894][ T412] Oops: 0000 [#1] PREEMPT SMP KASAN [ 39.699160][ T412] CPU: 1 PID: 412 Comm: syz-executor.0 Not tainted 5.15.82-syzkaller #0 [ 39.707480][ T412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 39.717625][ T412] RIP: 0010:z_erofs_decompress_queue+0x8b3/0x1ec0 [ 39.724123][ T412] Code: 84 c0 0f 85 27 02 00 00 41 8b 07 c1 f8 02 89 c0 48 8b 4c 24 68 4c 8d 24 c1 4d 89 e7 49 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <41> 80 3c 07 00 74 08 4c 89 e7 e8 8e b2 87 ff 4d 8b 2c 24 4d 85 ed [ 39.743716][ T412] RSP: 0018:ffffc9000048f0a0 EFLAGS: 00010a02 [ 39.749767][ T412] RAX: dffffc0000000000 RBX: ffffea00048e6ac0 RCX: ffffc9000048f1e0 [ 39.757823][ T412] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffea00048e6ae8 [ 39.765864][ T412] RBP: ffffc9000048f610 R08: dffffc0000000000 R09: fffff9400091cd5e [ 39.773830][ T412] R10: fffff9400091cd5e R11: 1ffffd400091cd5d R12: ffffc9080048f1d8 [ 39.781875][ T412] R13: ffffea00048e6ac0 R14: 0000000000000000 R15: 1ffff92100091e3b [ 39.789828][ T412] FS: 00007eff4141f700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 39.798736][ T412] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.805389][ T412] CR2: fffff52100091e3b CR3: 0000000105fe3000 CR4: 00000000003506a0 [ 39.813357][ T412] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.821311][ T412] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.829277][ T412] Call Trace: [ 39.832548][ T412] [ 39.835509][ T412] ? z_erofs_onlinepage_endio+0x170/0x170 [ 39.841239][ T412] ? erofs_namei+0x178/0x1050 [ 39.845914][ T412] ? _raw_spin_unlock_irqrestore+0x5c/0x80 [ 39.851714][ T412] ? z_erofs_decompress_kickoff+0x17b/0x320 [ 39.857624][ T412] ? z_erofs_decompressqueue_endio+0x520/0x520 [ 39.863852][ T412] ? submit_bio_noacct+0xa80/0xa80 [ 39.868938][ T412] ? bio_add_page+0x2cc/0x450 [ 39.873600][ T412] z_erofs_runqueue+0x138d/0x1470 [ 39.878632][ T412] ? z_erofs_do_read_page+0x2a50/0x2a50 [ 39.884163][ T412] ? __kasan_check_write+0x14/0x20 [ 39.889269][ T412] ? mutex_unlock+0xa2/0x110 [ 39.893849][ T412] ? __mutex_lock_slowpath+0x10/0x10 [ 39.899121][ T412] z_erofs_readpage+0x2fc/0x5d0 [ 39.903958][ T412] ? z_erofs_rcu_callback+0x160/0x160 [ 39.909315][ T412] ? add_to_page_cache_lru+0x225/0x2c0 [ 39.914753][ T412] ? add_to_page_cache_locked+0x40/0x40 [ 39.920291][ T412] do_read_cache_page+0x68b/0xa70 [ 39.925302][ T412] read_cache_page+0x4d/0x70 [ 39.929889][ T412] erofs_namei+0x178/0x1050 [ 39.934420][ T412] erofs_lookup+0x141/0x3b0 [ 39.938936][ T412] ? erofs_namei+0x1050/0x1050 [ 39.943717][ T412] ? _raw_spin_unlock+0x4d/0x70 [ 39.948568][ T412] ? d_alloc+0x198/0x1d0 [ 39.953306][ T412] __lookup_hash+0x141/0x290 [ 39.957973][ T412] filename_create+0x276/0x4f0 [ 39.962900][ T412] ? kern_path_create+0x1b0/0x1b0 [ 39.968039][ T412] do_mknodat+0x16c/0x5b0 [ 39.972343][ T412] ? strncpy_from_user+0x179/0x2b0 [ 39.977570][ T412] ? may_open+0x440/0x440 [ 39.981873][ T412] ? getname_flags+0x1fb/0x510 [ 39.986614][ T412] __x64_sys_mknodat+0xa9/0xc0 [ 39.991911][ T412] do_syscall_64+0x44/0xd0 [ 39.996319][ T412] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.002220][ T412] RIP: 0033:0x7eff418ab5a9 [ 40.006624][ T412] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 40.026464][ T412] RSP: 002b:00007eff4141f168 EFLAGS: 00000246 ORIG_RAX: 0000000000000103 [ 40.034875][ T412] RAX: ffffffffffffffda RBX: 00007eff419cbf80 RCX: 00007eff418ab5a9 [ 40.043401][ T412] RDX: 0000000000000004 RSI: 0000000020000080 RDI: 0000000000000005 [ 40.051368][ T412] RBP: 00007eff419067b0 R08: 0000000000000000 R09: 0000000000000000 [ 40.059324][ T412] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000 [ 40.067375][ T412] R13: 00007fff4414e2ff R14: 00007eff4141f300 R15: 0000000000022000 [ 40.075351][ T412] [ 40.078401][ T412] Modules linked in: [ 40.082277][ T412] CR2: fffff52100091e3b [ 40.088492][ T412] ---[ end trace 458f84d50fde7507 ]--- [ 40.093942][ T412] RIP: 0010:z_erofs_decompress_queue+0x8b3/0x1ec0 [ 40.100339][ T412] Code: 84 c0 0f 85 27 02 00 00 41 8b 07 c1 f8 02 89 c0 48 8b 4c 24 68 4c 8d 24 c1 4d 89 e7 49 c1 ef 03 48 b8 00 00 00 00 00 fc ff df <41> 80 3c 07 00 74 08 4c 89 e7 e8 8e b2 87 ff 4d 8b 2c 24 4d 85 ed [ 40.120055][ T412] RSP: 0018:ffffc9000048f0a0 EFLAGS: 00010a02 [ 40.126114][ T412] RAX: dffffc0000000000 RBX: ffffea00048e6ac0 RCX: ffffc9000048f1e0 [ 40.134245][ T412] RDX: 0000000000000000 RSI: 0000000000000004 RDI: ffffea00048e6ae8 [ 40.142202][ T412] RBP: ffffc9000048f610 R08: dffffc0000000000 R09: fffff9400091cd5e [ 40.150178][ T412] R10: fffff9400091cd5e R11: 1ffffd400091cd5d R12: ffffc9080048f1d8 [ 40.158153][ T412] R13: ffffea00048e6ac0 R14: 0000000000000000 R15: 1ffff92100091e3b [ 40.166114][ T412] FS: 00007eff4141f700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 40.175030][ T412] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.181598][ T412] CR2: fffff52100091e3b CR3: 0000000105fe3000 CR4: 00000000003506a0 [ 40.189913][ T412] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.197977][ T412] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.206138][ T412] Kernel panic - not syncing: Fatal exception [ 40.212453][ T412] Kernel Offset: disabled [ 40.216869][ T412] Rebooting in 86400 seconds..