Warning: Permanently added '10.128.0.10' (ED25519) to the list of known hosts. 2023/12/31 14:32:05 ignoring optional flag "sandboxArg"="0" 2023/12/31 14:32:05 parsed 1 programs [ 40.188706][ T29] kauditd_printk_skb: 78 callbacks suppressed [ 40.188710][ T29] audit: type=1400 audit(1704033125.217:154): avc: denied { mounton } for pid=339 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 40.220092][ T29] audit: type=1400 audit(1704033125.217:155): avc: denied { mount } for pid=339 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 40.243967][ T29] audit: type=1400 audit(1704033125.217:156): avc: denied { setattr } for pid=339 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 40.267915][ T29] audit: type=1400 audit(1704033125.217:157): avc: denied { read write } for pid=339 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.294627][ T29] audit: type=1400 audit(1704033125.217:158): avc: denied { open } for pid=339 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2023/12/31 14:32:05 executed programs: 0 [ 40.321188][ T29] audit: type=1400 audit(1704033125.327:159): avc: denied { unlink } for pid=339 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.346924][ T29] audit: type=1400 audit(1704033125.357:160): avc: denied { relabelto } for pid=340 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 40.376706][ T339] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 40.396396][ T345] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.403822][ T345] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.410768][ T345] device bridge_slave_0 entered promiscuous mode [ 40.417896][ T345] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.425004][ T345] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.431926][ T345] device bridge_slave_1 entered promiscuous mode [ 40.445107][ T345] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.452197][ T345] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.459968][ T345] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.466999][ T345] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.476035][ T41] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.483380][ T41] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.490592][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.498477][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.508723][ T345] device veth0_vlan entered promiscuous mode [ 40.516122][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.524752][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.532832][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.541408][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.548890][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.557084][ T54] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.564018][ T54] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.571716][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.579747][ T54] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.586726][ T54] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.593951][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.601889][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.610245][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.618532][ T345] device veth1_macvtap entered promiscuous mode [ 40.625719][ T54] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.635589][ T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.647400][ T29] audit: type=1400 audit(1704033125.677:161): avc: denied { mounton } for pid=349 comm="syz-executor.0" path="/root/syzkaller-testdir3042583885/syzkaller.9uaN2o/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 40.706116][ T350] BUG: kernel NULL pointer dereference, address: 0000000000000010 [ 40.714006][ T350] #PF: supervisor read access in kernel mode [ 40.719813][ T350] #PF: error_code(0x0000) - not-present page [ 40.725628][ T350] PGD 10f178067 P4D 10f178067 PUD 109674067 PMD 0 [ 40.731964][ T350] Oops: 0000 [#1] PREEMPT SMP [ 40.736621][ T350] CPU: 0 PID: 350 Comm: syz-executor.0 Not tainted 5.15.141-syzkaller #0 [ 40.744865][ T350] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 40.754791][ T350] RIP: 0010:do_renameat2+0x28f/0x560 [ 40.760277][ T350] Code: 48 8b b5 58 ff ff ff 89 da 48 8d bd 70 ff ff ff 49 89 c4 e8 03 7e ff ff 48 3d 00 f0 ff ff 49 89 c6 41 89 c7 0f 87 20 01 00 00 00 00 00 70 00 41 bf fe ff ff ff 0f 84 06 01 00 00 8b 95 20 ff [ 40.779722][ T350] RSP: 0018:ffffc9000039be20 EFLAGS: 00010203 [ 40.785634][ T350] RAX: 0000000000000010 RBX: 0000000000000000 RCX: 0000000500000000 [ 40.793818][ T350] RDX: 0000000000000004 RSI: 0000000400000000 RDI: ffff888109632500 [ 40.801798][ T350] RBP: ffffc9000039bf10 R08: 0000000000000005 R09: 0000000000000064 [ 40.809813][ T350] R10: ffff888100b93420 R11: 0000000000000000 R12: 0000000000000000 [ 40.817866][ T350] R13: ffff8881002c5000 R14: 0000000000000010 R15: 0000000000000010 [ 40.826122][ T350] FS: 00007f5e7aa5d6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 40.835505][ T350] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 40.842340][ T350] CR2: 0000000000000010 CR3: 0000000111bbb000 CR4: 00000000003506b0 [ 40.850241][ T350] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 40.858275][ T350] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 40.866224][ T350] Call Trace: [ 40.869731][ T350] [ 40.872711][ T350] ? show_regs.part.0+0x1e/0x20 [ 40.877739][ T350] ? __die+0x5d/0x9e [ 40.881553][ T350] ? page_fault_oops+0x12d/0x280 [ 40.886421][ T350] ? do_user_addr_fault+0x44b/0x730 [ 40.891629][ T350] ? _raw_spin_unlock_irqrestore+0x28/0x40 [ 40.897383][ T350] ? __mod_timer+0x251/0x3a0 [ 40.901889][ T350] ? add_timer+0x1b/0x20 [ 40.905966][ T350] ? debug_smp_processor_id+0x17/0x20 [ 40.911367][ T350] ? call_rcu+0x194/0x640 [ 40.916497][ T350] ? exc_page_fault+0x67/0x160 [ 40.921088][ T350] ? asm_exc_page_fault+0x27/0x30 [ 40.926050][ T350] ? do_renameat2+0x28f/0x560 [ 40.930687][ T350] ? getname_flags.part.0+0x47/0x1a0 [ 40.936037][ T350] __x64_sys_rename+0x40/0x50 [ 40.940629][ T350] do_syscall_64+0x35/0xb0 [ 40.945292][ T350] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 40.951016][ T350] RIP: 0033:0x7f5e7aedaae9 [ 40.955261][ T350] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 40.974853][ T350] RSP: 002b:00007f5e7aa5d0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 40.983186][ T350] RAX: ffffffffffffffda RBX: 00007f5e7aff9f80 RCX: 00007f5e7aedaae9 [ 40.991865][ T350] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000100 [ 41.000020][ T350] RBP: 00007f5e7af2647a R08: 0000000000000000 R09: 0000000000000000 [ 41.008182][ T350] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 41.016524][ T350] R13: 000000000000000b R14: 00007f5e7aff9f80 R15: 00007ffe9f244658 [ 41.024491][ T350] [ 41.027383][ T350] Modules linked in: [ 41.031369][ T350] CR2: 0000000000000010 [ 41.035573][ T350] ---[ end trace fb39296ebfc4b262 ]--- [ 41.041227][ T350] RIP: 0010:do_renameat2+0x28f/0x560 [ 41.046342][ T350] Code: 48 8b b5 58 ff ff ff 89 da 48 8d bd 70 ff ff ff 49 89 c4 e8 03 7e ff ff 48 3d 00 f0 ff ff 49 89 c6 41 89 c7 0f 87 20 01 00 00 00 00 00 70 00 41 bf fe ff ff ff 0f 84 06 01 00 00 8b 95 20 ff [ 41.066668][ T350] RSP: 0018:ffffc9000039be20 EFLAGS: 00010203 [ 41.072704][ T350] RAX: 0000000000000010 RBX: 0000000000000000 RCX: 0000000500000000 [ 41.080655][ T350] RDX: 0000000000000004 RSI: 0000000400000000 RDI: ffff888109632500 [ 41.088787][ T350] RBP: ffffc9000039bf10 R08: 0000000000000005 R09: 0000000000000064 [ 41.096686][ T350] R10: ffff888100b93420 R11: 0000000000000000 R12: 0000000000000000 [ 41.104496][ T350] R13: ffff8881002c5000 R14: 0000000000000010 R15: 0000000000000010 [ 41.112303][ T350] FS: 00007f5e7aa5d6c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 41.121161][ T350] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.128259][ T350] CR2: 0000000000000010 CR3: 0000000111bbb000 CR4: 00000000003506b0 [ 41.136524][ T350] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.144427][ T350] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.152960][ T350] Kernel panic - not syncing: Fatal exception [ 41.160662][ T350] Kernel Offset: disabled [ 41.168497][ T350] Rebooting in 86400 seconds..