Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
2025/09/27 14:11:58 parsed 1 programs
[ 45.326796][ T24] kauditd_printk_skb: 30 callbacks suppressed
[ 45.326808][ T24] audit: type=1400 audit(1758982319.430:104): avc: denied { unlink } for pid=403 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 45.366784][ T403] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 45.786571][ T24] audit: type=1401 audit(1758982319.890:105): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 46.063595][ T24] audit: type=1400 audit(1758982320.170:106): avc: denied { create } for pid=425 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
[ 46.227918][ T437] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.235198][ T437] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.242828][ T437] device bridge_slave_0 entered promiscuous mode
[ 46.249829][ T437] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.256944][ T437] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.264776][ T437] device bridge_slave_1 entered promiscuous mode
[ 46.295319][ T437] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.302562][ T437] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.310016][ T437] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.317048][ T437] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.332631][ T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.340136][ T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.347569][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 46.355256][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 46.375140][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 46.383278][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.390318][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.397925][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 46.406325][ T7] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.413559][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.421282][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 46.430053][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 46.443077][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 46.452005][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 46.460194][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 46.467791][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 46.476121][ T437] device veth0_vlan entered promiscuous mode
[ 46.486958][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 46.496026][ T437] device veth1_macvtap entered promiscuous mode
[ 46.505152][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 46.515303][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/09/27 14:12:00 executed programs: 0
[ 46.802595][ T24] audit: type=1400 audit(1758982320.910:107): avc: denied { write } for pid=395 comm="syz-execprog" path="pipe:[15038]" dev="pipefs" ino=15038 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 46.843371][ T463] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.850750][ T463] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.858566][ T463] device bridge_slave_0 entered promiscuous mode
[ 46.869740][ T463] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.876862][ T463] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.884569][ T463] device bridge_slave_1 entered promiscuous mode
[ 46.918617][ T463] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.925774][ T463] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.933068][ T463] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.940216][ T463] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.959814][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 46.967534][ T7] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.974789][ T7] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.989587][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 46.997924][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.004974][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.013419][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 47.021772][ T7] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.028911][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.045003][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 47.054646][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 47.070403][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 47.081276][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 47.089689][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 47.097290][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 47.105811][ T463] device veth0_vlan entered promiscuous mode
[ 47.120418][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 47.129364][ T463] device veth1_macvtap entered promiscuous mode
[ 47.139099][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 47.149599][ T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 47.210387][ T476] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 47.225537][ T476] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 47.237851][ T476] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2815: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 47.251309][ T476] EXT4-fs (loop2): 1 truncate cleaned up
[ 47.257170][ T476] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue
[ 47.276762][ T24] audit: type=1400 audit(1758982321.390:108): avc: denied { mount } for pid=474 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 47.300639][ T24] audit: type=1400 audit(1758982321.410:109): avc: denied { write } for pid=474 comm="syz.2.16" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.301789][ T476] ==================================================================
[ 47.322742][ T24] audit: type=1400 audit(1758982321.410:110): avc: denied { open } for pid=474 comm="syz.2.16" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.330600][ T476] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x1339/0x36c0
[ 47.330610][ T476] Read of size 18446744073709551540 at addr ffff888116bd6070 by task syz.2.16/476
[ 47.330621][ T476]
[ 47.352610][ T24] audit: type=1400 audit(1758982321.410:111): avc: denied { setattr } for pid=474 comm="syz.2.16" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.360177][ T476] CPU: 0 PID: 476 Comm: syz.2.16 Not tainted syzkaller #0
[ 47.360183][ T476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 47.360186][ T476] Call Trace:
[ 47.360206][ T476] __dump_stack+0x21/0x24
[ 47.418991][ T476] dump_stack_lvl+0x169/0x1d8
[ 47.423745][ T476] ? show_regs_print_info+0x18/0x18
[ 47.429060][ T476] ? thaw_kernel_threads+0x220/0x220
[ 47.434448][ T476] print_address_description+0x7f/0x2c0
[ 47.440090][ T476] ? ext4_xattr_set_entry+0x1339/0x36c0
[ 47.445715][ T476] kasan_report+0xe2/0x130
[ 47.450132][ T476] ? ext4_xattr_set_entry+0x1339/0x36c0
[ 47.455856][ T476] ? ext4_xattr_set_entry+0x1339/0x36c0
[ 47.461582][ T476] kasan_check_range+0x280/0x290
[ 47.466520][ T476] memmove+0x2d/0x70
[ 47.470410][ T476] ext4_xattr_set_entry+0x1339/0x36c0
[ 47.475795][ T476] ? fscrypt_drop_inode+0xad/0x110
[ 47.481014][ T476] ? ext4_xattr_ibody_set+0x360/0x360
[ 47.486378][ T476] ? slab_post_alloc_hook+0x7d/0x2f0
[ 47.491660][ T476] ? ext4_xattr_block_set+0x847/0x2a50
[ 47.497204][ T476] ? ext4_xattr_block_set+0x847/0x2a50
[ 47.502827][ T476] ? __kmalloc_track_caller+0x181/0x320
[ 47.508534][ T476] ? memcpy+0x56/0x70
[ 47.512512][ T476] ext4_xattr_block_set+0x92f/0x2a50
[ 47.517906][ T476] ? __kasan_check_read+0x11/0x20
[ 47.522919][ T476] ? __ext4_xattr_check_block+0x265/0x8e0
[ 47.528637][ T476] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 47.534265][ T476] ? __kasan_check_write+0x14/0x20
[ 47.539540][ T476] ext4_xattr_set_handle+0xba5/0x12a0
[ 47.545029][ T476] ? ext4_xattr_set_entry+0x36c0/0x36c0
[ 47.550570][ T476] ? __kasan_check_read+0x11/0x20
[ 47.555677][ T476] ? __ext4_journal_start_sb+0x2e2/0x490
[ 47.561299][ T476] ext4_xattr_set+0x1ec/0x320
[ 47.566049][ T476] ? ext4_xattr_set_credits+0x290/0x290
[ 47.571675][ T476] ext4_xattr_trusted_set+0x3b/0x50
[ 47.576951][ T476] ? ext4_xattr_trusted_get+0x40/0x40
[ 47.582498][ T476] __vfs_setxattr+0x42a/0x480
[ 47.587302][ T476] __vfs_setxattr_noperm+0x11e/0x4e0
[ 47.592605][ T476] __vfs_setxattr_locked+0x203/0x220
[ 47.597925][ T476] vfs_setxattr+0x8d/0x1c0
[ 47.602350][ T476] setxattr+0x1a9/0x370
[ 47.606608][ T476] ? path_setxattr+0x210/0x210
[ 47.611646][ T476] ? __mnt_want_write+0x1e6/0x260
[ 47.616661][ T476] ? mnt_want_write+0x19d/0x270
[ 47.621705][ T476] path_setxattr+0x110/0x210
[ 47.626371][ T476] ? simple_xattr_list_add+0x120/0x120
[ 47.631942][ T476] ? do_sys_truncate+0x12f/0x190
[ 47.636884][ T476] __x64_sys_lsetxattr+0xc2/0xe0
[ 47.641907][ T476] do_syscall_64+0x31/0x40
[ 47.646402][ T476] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 47.652373][ T476] RIP: 0033:0x7f51defa3169
[ 47.656887][ T476] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 47.676598][ T476] RSP: 002b:00007f51dea15038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 47.685001][ T476] RAX: ffffffffffffffda RBX: 00007f51df1bbfa0 RCX: 00007f51defa3169
[ 47.693325][ T476] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 47.701286][ T476] RBP: 00007f51df024990 R08: 0000000000000000 R09: 0000000000000000
[ 47.709299][ T476] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 47.717562][ T476] R13: 0000000000000000 R14: 00007f51df1bbfa0 R15: 00007ffe3685f448
[ 47.725717][ T476]
[ 47.728038][ T476] Allocated by task 0:
[ 47.732227][ T476] (stack is not available)
[ 47.736712][ T476]
[ 47.739031][ T476] The buggy address belongs to the object at ffff888116bd6000
[ 47.739031][ T476] which belongs to the cache kmalloc-1k of size 1024
[ 47.753524][ T476] The buggy address is located 112 bytes inside of
[ 47.753524][ T476] 1024-byte region [ffff888116bd6000, ffff888116bd6400)
[ 47.767060][ T476] The buggy address belongs to the page:
[ 47.772870][ T476] page:ffffea00045af400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x116bd0
[ 47.783370][ T476] head:ffffea00045af400 order:3 compound_mapcount:0 compound_pincount:0
[ 47.791873][ T476] flags: 0x4000000000010200(slab|head)
[ 47.797324][ T476] raw: 4000000000010200 dead000000000100 dead000000000122 ffff888100042f00
[ 47.805987][ T476] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 47.815078][ T476] page dumped because: kasan: bad access detected
[ 47.821566][ T476] page_owner tracks the page as allocated
[ 47.827371][ T476] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 463, ts 47169965046, free_ts 47160954404
[ 47.847860][ T476] prep_new_page+0x179/0x180
[ 47.852547][ T476] get_page_from_freelist+0x2235/0x23d0
[ 47.858348][ T476] __alloc_pages_nodemask+0x268/0x5f0
[ 47.863804][ T476] new_slab+0x84/0x3f0
[ 47.867860][ T476] ___slab_alloc+0x2a6/0x450
[ 47.872443][ T476] __slab_alloc+0x63/0xa0
[ 47.876761][ T476] __kmalloc+0x201/0x330
[ 47.881096][ T476] kvmalloc_node+0x88/0x130
[ 47.885688][ T476] xt_alloc_table_info+0x3b/0xa0
[ 47.890735][ T476] do_ip6t_set_ctl+0x86a/0xcf0
[ 47.895574][ T476] nf_setsockopt+0x272/0x2a0
[ 47.900154][ T476] ipv6_setsockopt+0x2551/0x3860
[ 47.905093][ T476] tcp_setsockopt+0x1f8/0x1c30
[ 47.909961][ T476] sock_common_setsockopt+0xa0/0xb0
[ 47.915166][ T476] __sys_setsockopt+0x2ed/0x460
[ 47.920007][ T476] __x64_sys_setsockopt+0xbf/0xd0
[ 47.925113][ T476] page last free stack trace:
[ 47.929870][ T476] __free_pages_ok+0x7fc/0x820
[ 47.934622][ T476] __free_pages+0xdd/0x380
[ 47.939122][ T476] __free_slab+0xcf/0x190
[ 47.943440][ T476] unfreeze_partials+0x15f/0x190
[ 47.948380][ T476] put_cpu_partial+0xc1/0x180
[ 47.953426][ T476] __slab_free+0x2c9/0x3a0
[ 47.957928][ T476] ___cache_free+0x111/0x130
[ 47.962597][ T476] qlink_free+0x50/0x90
[ 47.966835][ T476] qlist_free_all+0x5f/0xb0
[ 47.971341][ T476] kasan_quarantine_reduce+0x14a/0x160
[ 47.977076][ T476] __kasan_slab_alloc+0x2f/0xf0
[ 47.981918][ T476] slab_post_alloc_hook+0x5d/0x2f0
[ 47.987190][ T476] __kmalloc+0x183/0x330
[ 47.991530][ T476] fib_create_info+0x8f0/0x1fc0
[ 47.996469][ T476] fib_table_insert+0xc5/0x1bb0
[ 48.001349][ T476] fib_add_ifaddr+0x9ba/0xed0
[ 48.006098][ T476]
[ 48.008604][ T476] Memory state around the buggy address:
[ 48.014406][ T476] ffff888116bd5f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 48.022551][ T476] ffff888116bd5f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 48.030698][ T476] >ffff888116bd6000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.038916][ T476] ^
[ 48.046716][ T476] ffff888116bd6080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.054957][ T476] ffff888116bd6100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.063356][ T476] ==================================================================
[ 48.071911][ T476] Disabling lock debugging due to kernel taint
[ 48.085726][ T24] audit: type=1400 audit(1758982322.190:112): avc: denied { read } for pid=77 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 48.108716][ T24] audit: type=1400 audit(1758982322.190:113): avc: denied { search } for pid=77 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 48.244335][ T486] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 48.255741][ T486] EXT4-fs (loop2): 1 truncate cleaned up
[ 48.261708][ T486] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000000,debug_want_extra_isize=0x0000000000000068,nobarrier,nodiscard,quota,,errors=continue
[ 48.286986][ T410] general protection fault, probably for non-canonical address 0x8c5c5e69c47b9472: 0000 [#1] PREEMPT SMP KASAN
[ 48.298971][ T410] CPU: 0 PID: 410 Comm: udevd Tainted: G B syzkaller #0
[ 48.307350][ T410] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 48.317514][ T410] RIP: 0010:kmem_cache_alloc+0x112/0x2e0
[ 48.323137][ T410] Code: 8b 38 48 85 ff 0f 84 ab 00 00 00 48 83 78 10 00 0f 84 a0 00 00 00 41 8b 44 24 28 48 8d 0c 07 49 8b 9c 24 d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 89 d1 48 83 c1 08 4d 8b 04 24 48 89 f8 65
[ 48.343025][ T410] RSP: 0018:ffffc90000c278f0 EFLAGS: 00010282
[ 48.349084][ T410] RAX: 0000000000000008 RBX: 2f8b87b545f36bca RCX: 72947bc4695e5c8c
[ 48.357262][ T410] RDX: 00000000000119b8 RSI: 0000000000000010 RDI: 8c5c5e69c47b946a
[ 48.365436][ T410] RBP: ffffc90000c27938 R08: dffffc0000000000 R09: ffffed1021f751e1
[ 48.373403][ T410] R10: 0000000000000000 R11: 1ffff11021f751e0 R12: ffff888100189800
[ 48.381363][ T410] R13: ffffffff82150123 R14: 0000000000000dc0 R15: 0000000000000dc0
[ 48.389520][ T410] FS: 00007f26baf91880(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 48.398539][ T410] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 48.405223][ T410] CR2: 00007f26bade0000 CR3: 0000000129915000 CR4: 00000000003506b0
[ 48.413378][ T410] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 48.421822][ T410] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 48.429953][ T410] Call Trace:
[ 48.433381][ T410] ? security_file_alloc+0x33/0x120
[ 48.438590][ T410] security_file_alloc+0x33/0x120
[ 48.443685][ T410] __alloc_file+0xb5/0x320
[ 48.448083][ T410] alloc_empty_file+0x97/0x180
[ 48.452842][ T410] path_openat+0xf2/0x3160
[ 48.457270][ T410] ? __kasan_slab_alloc+0xcf/0xf0
[ 48.462304][ T410] ? __kasan_slab_alloc+0xbd/0xf0
[ 48.467312][ T410] ? kmem_cache_alloc+0x165/0x2e0
[ 48.472314][ T410] ? getname_flags+0xb9/0x500
[ 48.476987][ T410] ? getname+0x19/0x20
[ 48.481034][ T410] ? __x64_sys_openat+0x136/0x160
[ 48.486049][ T410] ? do_syscall_64+0x31/0x40
[ 48.490618][ T410] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 48.496662][ T410] ? do_filp_open+0x3e0/0x3e0
[ 48.501337][ T410] ? expand_files+0xde/0x8e0
[ 48.505906][ T410] do_filp_open+0x1b3/0x3e0
[ 48.510386][ T410] ? vfs_tmpfile+0x2c0/0x2c0
[ 48.515068][ T410] ? get_unused_fd_flags+0x92/0xa0
[ 48.520190][ T410] do_sys_openat2+0x14c/0x6d0
[ 48.524857][ T410] ? do_sys_open+0xe0/0xe0
[ 48.529340][ T410] __x64_sys_openat+0x136/0x160
[ 48.534184][ T410] do_syscall_64+0x31/0x40
[ 48.538620][ T410] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 48.544492][ T410] RIP: 0033:0x7f26bb07f407
[ 48.549322][ T410] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 48.569336][ T410] RSP: 002b:00007ffc59e153f0 EFLAGS: 00000202 ORIG_RAX: 0000000000000101
[ 48.577840][ T410] RAX: ffffffffffffffda RBX: 00007f26baf91880 RCX: 00007f26bb07f407
[ 48.585791][ T410] RDX: 00000000000a0241 RSI: 00007ffc59e160b0 RDI: ffffffffffffff9c
[ 48.593741][ T410] RBP: 000055930b0b42e0 R08: 0000000000000000 R09: 0000000000000000
[ 48.601995][ T410] R10: 0000000000000124 R11: 0000000000000202 R12: 000055930b09d310
[ 48.610170][ T410] R13: 00007ffc59e160b0 R14: 00007ffc59e15cb0 R15: 00007ffc59e158b0
[ 48.618232][ T410] Modules linked in:
[ 48.622168][ C1] general protection fault, probably for non-canonical address 0xdffffc000000001e: 0000 [#2] PREEMPT SMP KASAN
[ 48.622371][ T9] list_del corruption. next->prev should be ffff888100210000, but was ffff888116d8fd28
[ 48.634062][ C1] KASAN: null-ptr-deref in range [0x00000000000000f0-0x00000000000000f7]
[ 48.643743][ T9] ------------[ cut here ]------------
[ 48.652175][ C1] CPU: 1 PID: 486 Comm: syz.2.17 Tainted: G B D syzkaller #0
[ 48.657822][ T9] kernel BUG at lib/list_debug.c:64!
[ 48.666474][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 48.682298][ C1] RIP: 0010:cpuacct_account_field+0x94/0xe0
[ 48.688276][ C1] Code: 63 ff eb 0c 4d 8b 36 49 81 fe 20 9f 2f 86 74 51 48 c7 c7 c0 39 c8 84 e8 0a b8 28 03 49 8d be f0 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 c0 79 53 00 49 8b 86 f0 00 00 00 65 4a 01
[ 48.708748][ C1] RSP: 0018:ffffc90000170bf0 EFLAGS: 00010006
[ 48.714992][ C1] RAX: 000000000000001e RBX: 0000000000947da8 RCX: 38e4270ed6eb2300
[ 48.723141][ C1] RDX: 0000000000000000 RSI: ffffffff84c839c0 RDI: 00000000000000f0
[ 48.731095][ C1] RBP: ffffc90000170c10 R08: dffffc0000000000 R09: fffffbfff0d94364
[ 48.739050][ C1] R10: 0000000000000000 R11: 0000000000000018 R12: dffffc0000000000
[ 48.747472][ C1] R13: ffff88811280de00 R14: 0000000000000000 R15: 0000000000000002
[ 48.755561][ C1] FS: 00007f51dea156c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 48.764776][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 48.771804][ C1] CR2: 000020000000f000 CR3: 00000001173b4000 CR4: 00000000003506a0
[ 48.779858][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 48.788007][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 48.796258][ C1] Call Trace:
[ 48.799548][ C1]
[ 48.802451][ C1] account_system_index_time+0xe6/0x1b0
[ 48.808001][ C1] irqtime_account_process_tick+0x107/0x4f0
[ 48.813879][ C1] account_process_tick+0x76/0x420
[ 48.819255][ C1] update_process_times+0x7d/0x200
[ 48.824412][ C1] tick_sched_timer+0x17c/0x240
[ 48.829266][ C1] ? tick_setup_sched_timer+0x450/0x450
[ 48.834797][ C1] __hrtimer_run_queues+0x37a/0x960
[ 48.839977][ C1] ? process_backlog+0x5e0/0x600
[ 48.844983][ C1] ? hrtimer_interrupt+0xdc0/0xdc0
[ 48.850097][ C1] ? ktime_get_update_offsets_now+0x293/0x2b0
[ 48.856452][ C1] hrtimer_interrupt+0x3a6/0xdc0
[ 48.861554][ C1] ? sched_clock_cpu+0x1b/0x3d0
[ 48.866407][ C1] __sysvec_apic_timer_interrupt+0xfa/0x3f0
[ 48.872385][ C1] asm_call_irq_on_stack+0xf/0x20
[ 48.877404][ C1]
[ 48.880347][ C1] sysvec_apic_timer_interrupt+0x85/0xe0
[ 48.885978][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20
[ 48.892049][ C1] RIP: 0010:__memmove+0x19c/0x1a0
[ 48.897141][ C1] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 00 eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 48.916827][ C1] RSP: 0018:ffffc90002f67380 EFLAGS: 00010282
[ 48.922965][ C1] RAX: ffff888116d57850 RBX: ffffffffffffffb4 RCX: ffffffffffce22ab
[ 48.931111][ C1] RDX: ffffffffffffffb4 RSI: ffff888117075579 RDI: ffff888117075559
[ 48.939217][ C1] RBP: ffffc90002f673b0 R08: ffff888116d57804 R09: ffffed1022daaf80
[ 48.947548][ C1] R10: 0000000000000000 R11: 0000000000000080 R12: 0000000000000000
[ 48.955985][ C1] R13: ffffffff81ddd5a9 R14: ffff888116d57870 R15: ffff888116d57850
[ 48.964250][ C1] ? ext4_xattr_set_entry+0x1339/0x36c0
[ 48.969906][ C1] ? memmove+0x56/0x70
[ 48.973966][ C1] ext4_xattr_set_entry+0x1339/0x36c0
[ 48.979424][ C1] ? fscrypt_drop_inode+0xad/0x110
[ 48.984548][ C1] ? ___slab_alloc+0xa6/0x450
[ 48.989249][ C1] ? ext4_xattr_ibody_set+0x360/0x360
[ 48.994794][ C1] ? slab_post_alloc_hook+0x7d/0x2f0
[ 49.000244][ C1] ? ext4_xattr_block_set+0x847/0x2a50
[ 49.005698][ C1] ? __kmalloc_track_caller+0x181/0x320
[ 49.011241][ C1] ? memcpy+0x56/0x70
[ 49.015320][ C1] ext4_xattr_block_set+0x92f/0x2a50
[ 49.020815][ C1] ? __kasan_check_read+0x11/0x20
[ 49.025854][ C1] ? __ext4_xattr_check_block+0x265/0x8e0
[ 49.031671][ C1] ? ext4_xattr_block_find+0x4f0/0x4f0
[ 49.037127][ C1] ? __kasan_check_write+0x14/0x20
[ 49.042232][ C1] ext4_xattr_set_handle+0xba5/0x12a0
[ 49.047589][ C1] ? ext4_xattr_set_entry+0x36c0/0x36c0
[ 49.053359][ C1] ? __kasan_check_read+0x11/0x20
[ 49.058804][ C1] ? __ext4_journal_start_sb+0x2e2/0x490
[ 49.064678][ C1] ext4_xattr_set+0x1ec/0x320
[ 49.069346][ C1] ? ext4_xattr_set_credits+0x290/0x290
[ 49.075315][ C1] ext4_xattr_trusted_set+0x3b/0x50
[ 49.080644][ C1] ? ext4_xattr_trusted_get+0x40/0x40
[ 49.086368][ C1] __vfs_setxattr+0x42a/0x480
[ 49.091035][ C1] __vfs_setxattr_noperm+0x11e/0x4e0
[ 49.096526][ C1] __vfs_setxattr_locked+0x203/0x220
[ 49.102075][ C1] vfs_setxattr+0x8d/0x1c0
[ 49.106682][ C1] setxattr+0x1a9/0x370
[ 49.110841][ C1] ? path_setxattr+0x210/0x210
[ 49.115820][ C1] ? __mnt_want_write+0x1e6/0x260
[ 49.120955][ C1] ? mnt_want_write+0x19d/0x270
[ 49.125901][ C1] path_setxattr+0x110/0x210
[ 49.130597][ C1] ? simple_xattr_list_add+0x120/0x120
[ 49.136046][ C1] ? do_sys_truncate+0x12f/0x190
[ 49.140982][ C1] __x64_sys_lsetxattr+0xc2/0xe0
[ 49.146055][ C1] do_syscall_64+0x31/0x40
[ 49.150557][ C1] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 49.156437][ C1] RIP: 0033:0x7f51defa3169
[ 49.160849][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 49.180822][ C1] RSP: 002b:00007f51dea15038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[ 49.189484][ C1] RAX: ffffffffffffffda RBX: 00007f51df1bbfa0 RCX: 00007f51defa3169
[ 49.197636][ C1] RDX: 0000200000000040 RSI: 00002000000000c0 RDI: 0000200000000100
[ 49.205863][ C1] RBP: 00007f51df024990 R08: 0000000000000000 R09: 0000000000000000
[ 49.213920][ C1] R10: 000000000000fe37 R11: 0000000000000246 R12: 0000000000000000
[ 49.221868][ C1] R13: 0000000000000000 R14: 00007f51df1bbfa0 R15: 00007ffe3685f448
[ 49.230002][ C1] Modules linked in:
[ 49.234062][ C1] ---[ end trace 1a287bc983b2e669 ]---
[ 49.234098][ T9] invalid opcode: 0000 [#3] PREEMPT SMP KASAN
[ 49.239814][ C1] RIP: 0010:kmem_cache_alloc+0x112/0x2e0
[ 49.245867][ T9] CPU: 0 PID: 9 Comm: kworker/u4:1 Tainted: G B D syzkaller #0
[ 49.251614][ C1] Code: 8b 38 48 85 ff 0f 84 ab 00 00 00 48 83 78 10 00 0f 84 a0 00 00 00 41 8b 44 24 28 48 8d 0c 07 49 8b 9c 24 d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 89 d1 48 83 c1 08 4d 8b 04 24 48 89 f8 65
[ 49.260361][ T9] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 49.280263][ C1] RSP: 0018:ffffc90000c278f0 EFLAGS: 00010282
[ 49.291098][ T9] Workqueue: 0x0
[ 49.291114][ C1]
[ 49.297556][ T9] (events_unbound)
[ 49.301224][ C1] RAX: 0000000000000008 RBX: 2f8b87b545f36bca RCX: 72947bc4695e5c8c
[ 49.303560][ T9] RIP: 0010:__list_del_entry_valid+0x11d/0x120
[ 49.307432][ C1] RDX: 00000000000119b8 RSI: 0000000000000010 RDI: 8c5c5e69c47b946a
[ 49.315489][ T9] Code: 48 89 de e8 55 fe 31 02 0f 0b 48 c7 c7 40 25 20 85 48 89 de e8 44 fe 31 02 0f 0b 48 c7 c7 a0 25 20 85 48 89 de e8 33 fe 31 02 <0f> 0b 00 55 48 89 e5 41 56 53 48 89 fb e8 11 5c 26 ff 48 85 db 74
[ 49.321796][ C1] RBP: ffffc90000c27938 R08: dffffc0000000000 R09: ffffed1021f751e1
[ 49.329752][ T9] RSP: 0018:ffffc90000097da8 EFLAGS: 00010046
[ 49.349345][ C1] R10: 0000000000000000 R11: 1ffff11021f751e0 R12: ffff888100189800
[ 49.357388][ T9]
[ 49.363439][ C1] R13: ffffffff82150123 R14: 0000000000000dc0 R15: 0000000000000dc0
[ 49.371422][ T9] RAX: 0000000000000054 RBX: ffff888100210000 RCX: 411c381097064600
[ 49.373827][ C1] FS: 00007f51dea156c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 49.381780][ T9] RDX: 0000000000000000 RSI: 0000000080000001 RDI: 0000000000000000
[ 49.389738][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.398731][ T9] RBP: ffffc90000097dc8 R08: 0000000000000004 R09: 0000000000000003
[ 49.406678][ C1] CR2: 000020000000f000 CR3: 00000001173b4000 CR4: 00000000003506a0
[ 49.406691][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.413256][ T9] R10: fffff52000012efc R11: 1ffff92000012efc R12: dffffc0000000000
[ 49.421304][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.429505][ T9] R13: dffffc0000000000 R14: ffff888116d8fd08 R15: ffff888100071838
[ 49.437559][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 49.469142][ T9] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 49.478287][ T9] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.485049][ T9] CR2: 00007f26bade0000 CR3: 000000011410b000 CR4: 00000000003506b0
[ 49.493706][ T9] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.501854][ T9] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.509906][ T9] Call Trace:
[ 49.513195][ T9] worker_thread+0x245/0x13b0
[ 49.517956][ T9] kthread+0x346/0x3d0
[ 49.522017][ T9] ? worker_clr_flags+0x190/0x190
[ 49.527217][ T9] ? kthread_blkcg+0xd0/0xd0
[ 49.531816][ T9] ret_from_fork+0x1f/0x30
[ 49.536392][ T9] Modules linked in:
[ 49.540297][ T9] ---[ end trace 1a287bc983b2e66a ]---
[ 49.545839][ T9] RIP: 0010:kmem_cache_alloc+0x112/0x2e0
[ 49.551477][ T9] Code: 8b 38 48 85 ff 0f 84 ab 00 00 00 48 83 78 10 00 0f 84 a0 00 00 00 41 8b 44 24 28 48 8d 0c 07 49 8b 9c 24 d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 89 d1 48 83 c1 08 4d 8b 04 24 48 89 f8 65
[ 49.571855][ T9] RSP: 0018:ffffc90000c278f0 EFLAGS: 00010282
[ 49.578282][ T9] RAX: 0000000000000008 RBX: 2f8b87b545f36bca RCX: 72947bc4695e5c8c
[ 49.586349][ T9] RDX: 00000000000119b8 RSI: 0000000000000010 RDI: 8c5c5e69c47b946a
[ 49.594505][ T9] RBP: ffffc90000c27938 R08: dffffc0000000000 R09: ffffed1021f751e1
[ 49.602684][ T9] R10: 0000000000000000 R11: 1ffff11021f751e0 R12: ffff888100189800
[ 49.611720][ T9] R13: ffffffff82150123 R14: 0000000000000dc0 R15: 0000000000000dc0
[ 49.619969][ T9] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 49.628918][ T9] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.635680][ T9] CR2: 00007f26bade0000 CR3: 000000011410b000 CR4: 00000000003506b0
[ 49.643862][ T9] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.651924][ T9] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 50.564664][ C1] Shutting down cpus with NMI
[ 50.569639][ C1] Kernel Offset: disabled
[ 50.573953][ C1] Rebooting in 86400 seconds..