Warning: Permanently added '10.128.1.157' (ECDSA) to the list of known hosts. 2023/05/20 10:14:44 ignoring optional flag "sandboxArg"="0" 2023/05/20 10:14:44 parsed 1 programs 2023/05/20 10:14:44 executed programs: 0 [ 36.140267][ T23] audit: type=1400 audit(1684577684.460:151): avc: denied { mounton } for pid=407 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 36.165528][ T23] audit: type=1400 audit(1684577684.460:152): avc: denied { mount } for pid=407 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 36.178584][ T410] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.195540][ T410] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.202605][ T410] device bridge_slave_0 entered promiscuous mode [ 36.209062][ T410] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.215942][ T410] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.222960][ T410] device bridge_slave_1 entered promiscuous mode [ 36.245743][ T23] audit: type=1400 audit(1684577684.560:153): avc: denied { write } for pid=410 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 36.249571][ T410] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.266296][ T23] audit: type=1400 audit(1684577684.560:154): avc: denied { read } for pid=410 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 36.273081][ T410] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.300456][ T410] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.307338][ T410] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.321519][ T113] bridge0: port 1(bridge_slave_0) entered disabled state [ 36.328502][ T113] bridge0: port 2(bridge_slave_1) entered disabled state [ 36.335576][ T113] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 36.343107][ T113] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 36.358406][ T410] device veth0_vlan entered promiscuous mode [ 36.365091][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 36.374002][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 36.381772][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 36.389015][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 36.396578][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 36.404574][ T368] bridge0: port 1(bridge_slave_0) entered blocking state [ 36.411409][ T368] bridge0: port 1(bridge_slave_0) entered forwarding state [ 36.418696][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 36.426793][ T368] bridge0: port 2(bridge_slave_1) entered blocking state [ 36.433702][ T368] bridge0: port 2(bridge_slave_1) entered forwarding state [ 36.441106][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 36.448639][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 36.458916][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 36.467358][ T410] device veth1_macvtap entered promiscuous mode [ 36.475768][ T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 36.486701][ T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 36.497778][ T23] audit: type=1400 audit(1684577684.810:155): avc: denied { mounton } for pid=410 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=357 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 36.527540][ T23] audit: type=1400 audit(1684577684.840:156): avc: denied { mounton } for pid=415 comm="syz-executor.0" path="/root/syzkaller-testdir2011697276/syzkaller.W7hzp5/0/file1" dev="sda1" ino=1937 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 36.528208][ T416] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 36.567215][ T416] EXT4-fs (loop0): 1 truncate cleaned up [ 36.572830][ T416] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000000000,errors=continue,debug_want_extra_isize=0x0000000000000040,dioread_nolock,max_batch_time=0x0000000000000008,nombcache,,errors=continue [ 36.595819][ T23] audit: type=1400 audit(1684577684.910:157): avc: denied { mount } for pid=415 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 36.601002][ T416] ------------[ cut here ]------------ [ 36.617671][ T23] audit: type=1400 audit(1684577684.920:158): avc: denied { setattr } for pid=415 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 36.617678][ T23] audit: type=1400 audit(1684577684.920:159): avc: denied { write } for pid=415 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 36.617684][ T23] audit: type=1400 audit(1684577684.920:160): avc: denied { remove_name } for pid=415 comm="syz-executor.0" name="file1" dev="loop0" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 36.689252][ T416] kernel BUG at mm/slub.c:4118! [ 36.693952][ T416] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 36.699888][ T416] CPU: 0 PID: 416 Comm: syz-executor.0 Not tainted 5.10.172-syzkaller #0 [ 36.708135][ T416] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/28/2023 [ 36.718033][ T416] RIP: 0010:kfree+0x269/0x270 [ 36.722548][ T416] Code: 08 4c 89 ee 48 89 da e8 a5 8b f5 ff 65 ff 0d aa db 78 7e 0f 85 d2 fd ff ff e8 c2 d5 76 ff e9 c8 fd ff ff e8 89 b4 7a 02 0f 0b <0f> 0b 0f 1f 44 00 00 55 48 89 e5 53 48 83 ec 18 89 f2 65 48 8b 04 [ 36.742243][ T416] RSP: 0018:ffffc900008c79f8 EFLAGS: 00010246 [ 36.748334][ T416] RAX: ffffea00044fda88 RBX: ffff8881073125a4 RCX: ffffea00041cc480 [ 36.756214][ T416] RDX: dffffc0000000000 RSI: ffffffff84bda360 RDI: ffff8881073125a4 [ 36.764025][ T416] RBP: ffffc900008c7a50 R08: dffffc0000000000 R09: fffff52000118ed0 [ 36.771940][ T416] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000020 [ 36.779836][ T416] R13: ffffffff817d9d00 R14: 0000000000000000 R15: ffffea00041cc480 [ 36.787654][ T416] FS: 00007f7876a08700(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000 [ 36.796417][ T416] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 36.802859][ T416] CR2: 0000563321356ca0 CR3: 0000000107e3a000 CR4: 00000000003506b0 [ 36.810651][ T416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 36.818543][ T416] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 36.826364][ T416] Call Trace: [ 36.829492][ T416] ? kfree+0xc3/0x270 [ 36.833390][ T416] kvfree+0x20/0x30 [ 36.837034][ T416] ext4_expand_extra_isize_ea+0xf47/0x1bc0 [ 36.842683][ T416] __ext4_expand_extra_isize+0x217/0x360 [ 36.848158][ T416] __ext4_mark_inode_dirty+0x334/0x550 [ 36.853439][ T416] __ext4_unlink+0x56c/0x8a0 [ 36.857864][ T416] ext4_unlink+0xfc/0x2a0 [ 36.862035][ T416] vfs_unlink+0x268/0x3e0 [ 36.866194][ T416] do_unlinkat+0x365/0x710 [ 36.870462][ T416] __x64_sys_unlinkat+0x97/0xb0 [ 36.875138][ T416] do_syscall_64+0x34/0x70 [ 36.879477][ T416] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 36.885207][ T416] RIP: 0033:0x7f7876e95169 [ 36.889465][ T416] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 36.908907][ T416] RSP: 002b:00007f7876a08168 EFLAGS: 00000246 ORIG_RAX: 0000000000000107 [ 36.917156][ T416] RAX: ffffffffffffffda RBX: 00007f7876fb4f80 RCX: 00007f7876e95169 [ 36.924961][ T416] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 36.932768][ T416] RBP: 00007f7876ef0ca1 R08: 0000000000000000 R09: 0000000000000000 [ 36.940580][ T416] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 36.948652][ T416] R13: 00007ffeea74074f R14: 00007f7876a08300 R15: 0000000000022000 [ 36.956460][ T416] Modules linked in: [ 36.960770][ T416] ---[ end trace 2edb7ee0deba0882 ]--- [ 36.966112][ T416] RIP: 0010:kfree+0x269/0x270 [ 36.970750][ T416] Code: 08 4c 89 ee 48 89 da e8 a5 8b f5 ff 65 ff 0d aa db 78 7e 0f 85 d2 fd ff ff e8 c2 d5 76 ff e9 c8 fd ff ff e8 89 b4 7a 02 0f 0b <0f> 0b 0f 1f 44 00 00 55 48 89 e5 53 48 83 ec 18 89 f2 65 48 8b 04 [ 36.990765][ T416] RSP: 0018:ffffc900008c79f8 EFLAGS: 00010246 [ 36.996622][ T416] RAX: ffffea00044fda88 RBX: ffff8881073125a4 RCX: ffffea00041cc480 [ 37.004608][ T416] RDX: dffffc0000000000 RSI: ffffffff84bda360 RDI: ffff8881073125a4 [ 37.012609][ T416] RBP: ffffc900008c7a50 R08: dffffc0000000000 R09: fffff52000118ed0 [ 37.020409][ T416] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000020 [ 37.028268][ T416] R13: ffffffff817d9d00 R14: 0000000000000000 R15: ffffea00041cc480 [ 37.036241][ T416] FS: 00007f7876a08700(0000) GS:ffff8881f7200000(0000) knlGS:0000000000000000 [ 37.045149][ T416] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 37.051670][ T416] CR2: 0000563321356ca0 CR3: 0000000107e3a000 CR4: 00000000003506b0 [ 37.059461][ T416] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 37.067306][ T416] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 37.075175][ T416] Kernel panic - not syncing: Fatal exception [ 37.081204][ T416] Kernel Offset: disabled [ 37.085322][ T416] Rebooting in 86400 seconds..