Warning: Permanently added '10.128.1.158' (ED25519) to the list of known hosts.
2025/09/21 04:00:28 parsed 1 programs
[ 60.215359][ T30] audit: type=1400 audit(1758427228.987:62): avc: denied { write } for pid=5842 comm="syz-execprog" path="pipe:[4064]" dev="pipefs" ino=4064 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 60.238722][ T30] audit: type=1400 audit(1758427228.987:63): avc: denied { node_bind } for pid=5842 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 62.202824][ T30] audit: type=1400 audit(1758427230.977:64): avc: denied { mounton } for pid=5850 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 62.206626][ T5850] cgroup: Unknown subsys name 'net'
[ 62.225547][ T30] audit: type=1400 audit(1758427230.977:65): avc: denied { mount } for pid=5850 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 62.255169][ T30] audit: type=1400 audit(1758427231.027:66): avc: denied { unmount } for pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 62.442198][ T5850] cgroup: Unknown subsys name 'cpuset'
[ 62.449908][ T5850] cgroup: Unknown subsys name 'rlimit'
[ 62.602169][ T30] audit: type=1400 audit(1758427231.377:67): avc: denied { setattr } for pid=5850 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=820 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 62.639753][ T30] audit: type=1400 audit(1758427231.377:68): avc: denied { create } for pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 62.660424][ T30] audit: type=1400 audit(1758427231.377:69): avc: denied { write } for pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 62.680843][ T30] audit: type=1400 audit(1758427231.377:70): avc: denied { read } for pid=5850 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 62.703766][ T30] audit: type=1400 audit(1758427231.387:71): avc: denied { mounton } for pid=5850 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 62.724115][ T5852] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
[ 63.688775][ T5850] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 65.264733][ T30] kauditd_printk_skb: 6 callbacks suppressed
[ 65.264748][ T30] audit: type=1400 audit(1758427234.037:78): avc: denied { execmem } for pid=5856 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 65.319740][ T30] audit: type=1400 audit(1758427234.037:79): avc: denied { mounton } for pid=5856 comm="syz-executor" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1
[ 65.392038][ T30] audit: type=1400 audit(1758427234.037:80): avc: denied { mount } for pid=5856 comm="syz-executor" name="/" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
[ 65.414306][ T30] audit: type=1400 audit(1758427234.037:81): avc: denied { read } for pid=5856 comm="syz-executor" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 65.435817][ T30] audit: type=1400 audit(1758427234.037:82): avc: denied { open } for pid=5856 comm="syz-executor" path="net:[4026531833]" dev="nsfs" ino=4026531833 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 65.459063][ T30] audit: type=1400 audit(1758427234.037:83): avc: denied { mounton } for pid=5856 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 65.486745][ T30] audit: type=1400 audit(1758427234.097:84): avc: denied { mounton } for pid=5856 comm="syz-executor" path="/dev/binderfs" dev="devtmpfs" ino=2783 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[ 65.522154][ T30] audit: type=1400 audit(1758427234.097:85): avc: denied { mount } for pid=5856 comm="syz-executor" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 65.545166][ T30] audit: type=1401 audit(1758427234.107:86): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 65.625803][ T30] audit: type=1400 audit(1758427234.397:87): avc: denied { mounton } for pid=5859 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 65.691328][ T5859] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 66.317102][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.325167][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 66.349658][ T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 66.357543][ T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 67.368510][ T5909] chnl_net:caif_netlink_parms(): no params data found
[ 67.426518][ T5909] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.434171][ T5909] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.441296][ T5909] bridge_slave_0: entered allmulticast mode
[ 67.447868][ T5909] bridge_slave_0: entered promiscuous mode
[ 67.456083][ T5909] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.463182][ T5909] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.470310][ T5909] bridge_slave_1: entered allmulticast mode
[ 67.476957][ T5909] bridge_slave_1: entered promiscuous mode
[ 67.500814][ T5909] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 67.512739][ T5909] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 67.537279][ T5909] team0: Port device team_slave_0 added
[ 67.544369][ T5909] team0: Port device team_slave_1 added
[ 67.562675][ T5909] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 67.569586][ T5909] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 67.596007][ T5909] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 67.607598][ T5909] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 67.614536][ T5909] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 67.640400][ T5909] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 67.670461][ T5909] hsr_slave_0: entered promiscuous mode
[ 67.676400][ T5909] hsr_slave_1: entered promiscuous mode
[ 67.773341][ T5909] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 67.783127][ T5909] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 67.791818][ T5909] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 67.800683][ T5909] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 67.822032][ T5909] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.829111][ T5909] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 67.836850][ T5909] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.843920][ T5909] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.884340][ T5909] 8021q: adding VLAN 0 to HW filter on device bond0
[ 67.897676][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 67.906054][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 67.917566][ T5909] 8021q: adding VLAN 0 to HW filter on device team0
[ 67.929722][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 67.936773][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 67.947992][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 67.955064][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 68.073201][ T5909] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 68.102589][ T5909] veth0_vlan: entered promiscuous mode
[ 68.112087][ T5909] veth1_vlan: entered promiscuous mode
[ 68.132227][ T5909] veth0_macvtap: entered promiscuous mode
[ 68.141118][ T5909] veth1_macvtap: entered promiscuous mode
[ 68.154766][ T5909] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 68.166540][ T5909] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 68.178721][ T1340] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.187822][ T1340] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.199417][ T1340] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.209036][ T1340] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 68.320894][ T49] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 68.369106][ T49] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 68.450376][ T49] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 68.511315][ T49] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 68.834164][ T5171] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 68.843501][ T5171] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 68.851236][ T5171] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 68.858824][ T5171] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 68.866610][ T5171] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
2025/09/21 04:00:37 executed programs: 0
[ 69.215712][ T51] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 69.223089][ T51] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 69.231165][ T51] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 69.238884][ T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 69.247655][ T51] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 69.351308][ T5959] chnl_net:caif_netlink_parms(): no params data found
[ 69.403068][ T5959] bridge0: port 1(bridge_slave_0) entered blocking state
[ 69.410234][ T5959] bridge0: port 1(bridge_slave_0) entered disabled state
[ 69.417301][ T5959] bridge_slave_0: entered allmulticast mode
[ 69.424303][ T5959] bridge_slave_0: entered promiscuous mode
[ 69.431977][ T5959] bridge0: port 2(bridge_slave_1) entered blocking state
[ 69.439038][ T5959] bridge0: port 2(bridge_slave_1) entered disabled state
[ 69.446214][ T5959] bridge_slave_1: entered allmulticast mode
[ 69.453373][ T5959] bridge_slave_1: entered promiscuous mode
[ 69.477089][ T5959] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 69.490223][ T5959] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 69.515699][ T5959] team0: Port device team_slave_0 added
[ 69.523398][ T5959] team0: Port device team_slave_1 added
[ 69.543112][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 69.550131][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.576089][ T5959] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 69.588117][ T5959] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 69.595174][ T5959] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 69.621094][ T5959] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 69.660366][ T5959] hsr_slave_0: entered promiscuous mode
[ 69.666294][ T5959] hsr_slave_1: entered promiscuous mode
[ 69.672813][ T5959] debugfs: 'hsr0' already exists in 'hsr'
[ 69.678554][ T5959] Cannot create hsr debugfs directory
[ 70.871767][ T1299] ieee802154 phy0 wpan0: encryption failed: -22
[ 70.878067][ T1299] ieee802154 phy1 wpan1: encryption failed: -22
[ 71.270250][ T51] Bluetooth: hci0: command tx timeout
[ 71.303173][ T30] kauditd_printk_skb: 21 callbacks suppressed
[ 71.303186][ T30] audit: type=1400 audit(1758427240.067:109): avc: denied { search } for pid=5516 comm="dhcpcd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.330754][ T30] audit: type=1400 audit(1758427240.077:110): avc: denied { search } for pid=5516 comm="dhcpcd" name="udev" dev="tmpfs" ino=9 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.353308][ T30] audit: type=1400 audit(1758427240.077:111): avc: denied { search } for pid=5516 comm="dhcpcd" name="data" dev="tmpfs" ino=14 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.376262][ T49] bridge_slave_1: left allmulticast mode
[ 71.382769][ T49] bridge_slave_1: left promiscuous mode
[ 71.388923][ T49] bridge0: port 2(bridge_slave_1) entered disabled state
[ 71.399255][ T49] bridge_slave_0: left allmulticast mode
[ 71.408732][ T49] bridge_slave_0: left promiscuous mode
[ 71.414685][ T49] bridge0: port 1(bridge_slave_0) entered disabled state
[ 71.426798][ T30] audit: type=1400 audit(1758427240.197:112): avc: denied { read open } for pid=5970 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1836 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.481838][ T30] audit: type=1400 audit(1758427240.197:113): avc: denied { getattr } for pid=5970 comm="dhcpcd-run-hook" path="/run/dhcpcd/hook-state/resolv.conf" dev="tmpfs" ino=1836 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.622351][ T30] audit: type=1400 audit(1758427240.397:114): avc: denied { add_name } for pid=5969 comm="dhcpcd-run-hook" name="resolv.conf.eth2.link" scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.685669][ T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 71.696554][ T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 71.702461][ T30] audit: type=1400 audit(1758427240.467:115): avc: denied { remove_name } for pid=5980 comm="rm" name="resolv.conf.eth2.link" dev="tmpfs" ino=2023 scontext=system_u:system_r:dhcpc_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 71.730160][ T49] bond0 (unregistering): Released all slaves
[ 71.835299][ T49] hsr_slave_0: left promiscuous mode
[ 71.843499][ T49] hsr_slave_1: left promiscuous mode
[ 71.849317][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 71.862407][ T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 71.872226][ T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 71.879592][ T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 71.896282][ T49] veth1_macvtap: left promiscuous mode
[ 71.903044][ T49] veth0_macvtap: left promiscuous mode
[ 71.908632][ T49] veth1_vlan: left promiscuous mode
[ 71.915317][ T49] veth0_vlan: left promiscuous mode
[ 72.186971][ T49] team0 (unregistering): Port device team_slave_1 removed
[ 72.211821][ T49] team0 (unregistering): Port device team_slave_0 removed
[ 72.512136][ T5959] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 72.526317][ T5959] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 72.544351][ T5959] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 72.556357][ T5959] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 72.665120][ T5959] 8021q: adding VLAN 0 to HW filter on device bond0
[ 72.854695][ T5959] 8021q: adding VLAN 0 to HW filter on device team0
[ 72.868129][ T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 72.875259][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 72.891065][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 72.898180][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 73.196126][ T5959] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 73.224596][ T5959] veth0_vlan: entered promiscuous mode
[ 73.234957][ T5959] veth1_vlan: entered promiscuous mode
[ 73.254329][ T5959] veth0_macvtap: entered promiscuous mode
[ 73.263698][ T5959] veth1_macvtap: entered promiscuous mode
[ 73.276355][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 73.288010][ T5959] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 73.299642][ T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.308501][ T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.324139][ T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.333041][ T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 73.351463][ T51] Bluetooth: hci0: command tx timeout
[ 73.375084][ T1340] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.385853][ T1340] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.404915][ T190] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 73.414357][ T190] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 73.441446][ T30] audit: type=1400 audit(1758427242.217:116): avc: denied { read } for pid=6034 comm="syz.0.17" name="comedi3" dev="devtmpfs" ino=1279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 73.443111][ T6034] comedi comedi1: c6xdigio: I/O port conflict (0x401,3)
[ 73.473555][ T30] audit: type=1400 audit(1758427242.217:117): avc: denied { open } for pid=6034 comm="syz.0.17" path="/dev/comedi3" dev="devtmpfs" ino=1279 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 73.497906][ T30] audit: type=1400 audit(1758427242.217:118): avc: denied { ioctl } for pid=6034 comm="syz.0.17" path="/dev/comedi3" dev="devtmpfs" ino=1279 ioctlcmd=0x6400 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 73.527813][ T6035] comedi comedi1: c6xdigio: I/O port conflict (0x401,3)
[ 73.535341][ T6035] ==================================================================
[ 73.543388][ T6035] BUG: KASAN: slab-use-after-free in sysfs_remove_file_ns+0x63/0x70
[ 73.551341][ T6035] Read of size 8 at addr ffff88807d7e6e30 by task syz.0.18/6035
[ 73.558933][ T6035]
[ 73.561228][ T6035] CPU: 1 UID: 0 PID: 6035 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 73.561242][ T6035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 73.561248][ T6035] Call Trace:
[ 73.561252][ T6035]
[ 73.561257][ T6035] dump_stack_lvl+0x116/0x1f0
[ 73.561273][ T6035] print_report+0xcd/0x630
[ 73.561285][ T6035] ? __virt_addr_valid+0x81/0x610
[ 73.561300][ T6035] ? __phys_addr+0xe8/0x180
[ 73.561314][ T6035] ? sysfs_remove_file_ns+0x63/0x70
[ 73.561325][ T6035] kasan_report+0xe0/0x110
[ 73.561338][ T6035] ? sysfs_remove_file_ns+0x63/0x70
[ 73.561351][ T6035] sysfs_remove_file_ns+0x63/0x70
[ 73.561363][ T6035] driver_remove_file+0x4a/0x60
[ 73.561379][ T6035] bus_remove_driver+0x224/0x2c0
[ 73.561391][ T6035] driver_unregister+0x76/0xb0
[ 73.561406][ T6035] comedi_device_detach_locked+0x12f/0xa50
[ 73.561422][ T6035] comedi_device_detach+0x67/0xb0
[ 73.561435][ T6035] comedi_device_attach+0x43d/0x900
[ 73.561450][ T6035] do_devconfig_ioctl+0x1b1/0x710
[ 73.561468][ T6035] ? __mutex_lock+0x1c5/0x1060
[ 73.561484][ T6035] ? __pfx_do_devconfig_ioctl+0x10/0x10
[ 73.561504][ T6035] ? find_held_lock+0x2b/0x80
[ 73.561522][ T6035] comedi_unlocked_ioctl+0x165d/0x2f00
[ 73.561534][ T6035] ? futex_wake+0x1ad/0x530
[ 73.561547][ T6035] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 73.561559][ T6035] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 73.561572][ T6035] ? do_vfs_ioctl+0x128/0x14f0
[ 73.561589][ T6035] ? __pfx_do_vfs_ioctl+0x10/0x10
[ 73.561605][ T6035] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 73.561624][ T6035] ? find_held_lock+0x2b/0x80
[ 73.561637][ T6035] ? hook_file_ioctl_common+0x145/0x410
[ 73.561649][ T6035] ? selinux_file_ioctl+0x180/0x270
[ 73.561665][ T6035] ? selinux_file_ioctl+0xb4/0x270
[ 73.561680][ T6035] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 73.561692][ T6035] __x64_sys_ioctl+0x18e/0x210
[ 73.561708][ T6035] do_syscall_64+0xcd/0x4e0
[ 73.561724][ T6035] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 73.561735][ T6035] RIP: 0033:0x7f623a78ec29
[ 73.561743][ T6035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 73.561754][ T6035] RSP: 002b:00007ffe5ded2158 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 73.561764][ T6035] RAX: ffffffffffffffda RBX: 00007f623a9d5fa0 RCX: 00007f623a78ec29
[ 73.561771][ T6035] RDX: 0000200000000080 RSI: 0000000040946400 RDI: 0000000000000004
[ 73.561777][ T6035] RBP: 00007f623a811e41 R08: 0000000000000000 R09: 0000000000000000
[ 73.561784][ T6035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 73.561790][ T6035] R13: 00007f623a9d5fa0 R14: 00007f623a9d5fa0 R15: 0000000000000003
[ 73.561799][ T6035]
[ 73.561803][ T6035]
[ 73.831823][ T6035] Allocated by task 6034:
[ 73.836125][ T6035] kasan_save_stack+0x33/0x60
[ 73.840780][ T6035] kasan_save_track+0x14/0x30
[ 73.845431][ T6035] __kasan_kmalloc+0xaa/0xb0
[ 73.849994][ T6035] bus_add_driver+0x92/0x690
[ 73.854559][ T6035] driver_register+0x15c/0x4b0
[ 73.859302][ T6035] c6xdigio_attach+0xa3/0x4b0
[ 73.863963][ T6035] comedi_device_attach+0x3b0/0x900
[ 73.869141][ T6035] do_devconfig_ioctl+0x1b1/0x710
[ 73.874147][ T6035] comedi_unlocked_ioctl+0x165d/0x2f00
[ 73.879579][ T6035] __x64_sys_ioctl+0x18e/0x210
[ 73.884325][ T6035] do_syscall_64+0xcd/0x4e0
[ 73.888808][ T6035] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 73.894674][ T6035]
[ 73.896971][ T6035] Freed by task 6034:
[ 73.900922][ T6035] kasan_save_stack+0x33/0x60
[ 73.905572][ T6035] kasan_save_track+0x14/0x30
[ 73.910224][ T6035] kasan_save_free_info+0x3b/0x60
[ 73.915226][ T6035] __kasan_slab_free+0x60/0x70
[ 73.919964][ T6035] kfree+0x2b4/0x4d0
[ 73.923841][ T6035] kobject_put+0x1e7/0x5a0
[ 73.928238][ T6035] bus_remove_driver+0x16e/0x2c0
[ 73.933151][ T6035] driver_unregister+0x76/0xb0
[ 73.937893][ T6035] comedi_device_detach_locked+0x12f/0xa50
[ 73.943677][ T6035] comedi_device_detach+0x67/0xb0
[ 73.948680][ T6035] comedi_device_attach+0x43d/0x900
[ 73.953853][ T6035] do_devconfig_ioctl+0x1b1/0x710
[ 73.958858][ T6035] comedi_unlocked_ioctl+0x165d/0x2f00
[ 73.964290][ T6035] __x64_sys_ioctl+0x18e/0x210
[ 73.969037][ T6035] do_syscall_64+0xcd/0x4e0
[ 73.973520][ T6035] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 73.979386][ T6035]
[ 73.981686][ T6035] The buggy address belongs to the object at ffff88807d7e6e00
[ 73.981686][ T6035] which belongs to the cache kmalloc-256 of size 256
[ 73.995711][ T6035] The buggy address is located 48 bytes inside of
[ 73.995711][ T6035] freed 256-byte region [ffff88807d7e6e00, ffff88807d7e6f00)
[ 74.009393][ T6035]
[ 74.011691][ T6035] The buggy address belongs to the physical page:
[ 74.018070][ T6035] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7d7e6
[ 74.026800][ T6035] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 74.035274][ T6035] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 74.042790][ T6035] page_type: f5(slab)
[ 74.046745][ T6035] raw: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[ 74.055302][ T6035] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 74.063857][ T6035] head: 00fff00000000040 ffff88801b841b40 dead000000000122 0000000000000000
[ 74.072500][ T6035] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 74.081147][ T6035] head: 00fff00000000001 ffffea0001f5f981 00000000ffffffff 00000000ffffffff
[ 74.089790][ T6035] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 74.098427][ T6035] page dumped because: kasan: bad access detected
[ 74.104810][ T6035] page_owner tracks the page as allocated
[ 74.110493][ T6035] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5959, tgid 5959 (syz-executor), ts 73428545830, free_ts 73053846504
[ 74.131826][ T6035] post_alloc_hook+0x1c0/0x230
[ 74.136576][ T6035] get_page_from_freelist+0x132b/0x38e0
[ 74.142095][ T6035] __alloc_frozen_pages_noprof+0x261/0x23f0
[ 74.147961][ T6035] alloc_pages_mpol+0x1fb/0x550
[ 74.152789][ T6035] new_slab+0x247/0x330
[ 74.156925][ T6035] ___slab_alloc+0xcf2/0x1750
[ 74.161580][ T6035] __slab_alloc.constprop.0+0x56/0xb0
[ 74.166933][ T6035] __kmalloc_noprof+0x2f2/0x510
[ 74.171756][ T6035] __list_lru_init+0xe8/0x4c0
[ 74.176405][ T6035] alloc_super+0x904/0xbd0
[ 74.180797][ T6035] sget_fc+0x116/0xc20
[ 74.184842][ T6035] get_tree_nodev+0x28/0x190
[ 74.189405][ T6035] vfs_get_tree+0x8e/0x340
[ 74.193801][ T6035] path_mount+0x1513/0x2000
[ 74.198284][ T6035] __x64_sys_mount+0x28d/0x310
[ 74.203025][ T6035] do_syscall_64+0xcd/0x4e0
[ 74.207508][ T6035] page last free pid 6026 tgid 6026 stack trace:
[ 74.213802][ T6035] __free_frozen_pages+0x7d5/0x10f0
[ 74.218979][ T6035] __put_partials+0x165/0x1c0
[ 74.223635][ T6035] qlist_free_all+0x4d/0x120
[ 74.228198][ T6035] kasan_quarantine_reduce+0x195/0x1e0
[ 74.233631][ T6035] __kasan_slab_alloc+0x69/0x90
[ 74.238457][ T6035] kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 74.243892][ T6035] vm_area_dup+0x27/0x8d0
[ 74.248203][ T6035] __split_vma+0x18e/0x1070
[ 74.252679][ T6035] vms_gather_munmap_vmas+0x1d2/0x1340
[ 74.258109][ T6035] __mmap_region+0x436/0x27b0
[ 74.262766][ T6035] mmap_region+0x1ab/0x3f0
[ 74.267157][ T6035] do_mmap+0xa3e/0x1210
[ 74.271293][ T6035] vm_mmap_pgoff+0x29e/0x470
[ 74.275861][ T6035] ksys_mmap_pgoff+0x32c/0x5c0
[ 74.280610][ T6035] __x64_sys_mmap+0x125/0x190
[ 74.285270][ T6035] do_syscall_64+0xcd/0x4e0
[ 74.289753][ T6035]
[ 74.292051][ T6035] Memory state around the buggy address:
[ 74.297651][ T6035] ffff88807d7e6d00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.305684][ T6035] ffff88807d7e6d80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.313716][ T6035] >ffff88807d7e6e00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 74.321748][ T6035] ^
[ 74.327350][ T6035] ffff88807d7e6e80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 74.335383][ T6035] ffff88807d7e6f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 74.343415][ T6035] ==================================================================
[ 74.372544][ T6035] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 74.379744][ T6035] CPU: 0 UID: 0 PID: 6035 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 74.388833][ T6035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 74.398857][ T6035] Call Trace:
[ 74.402108][ T6035]
[ 74.405010][ T6035] dump_stack_lvl+0x3d/0x1f0
[ 74.409588][ T6035] vpanic+0x6e8/0x7a0
[ 74.413545][ T6035] ? __pfx_vpanic+0x10/0x10
[ 74.418022][ T6035] ? sysfs_remove_file_ns+0x63/0x70
[ 74.423190][ T6035] panic+0xca/0xd0
[ 74.426880][ T6035] ? __pfx_panic+0x10/0x10
[ 74.431271][ T6035] ? sysfs_remove_file_ns+0x63/0x70
[ 74.436442][ T6035] ? preempt_schedule_common+0x44/0xc0
[ 74.441876][ T6035] ? preempt_schedule_thunk+0x16/0x30
[ 74.447222][ T6035] ? check_panic_on_warn+0x1f/0xb0
[ 74.452299][ T6035] check_panic_on_warn+0xab/0xb0
[ 74.457203][ T6035] end_report+0x107/0x170
[ 74.461504][ T6035] kasan_report+0xee/0x110
[ 74.465894][ T6035] ? sysfs_remove_file_ns+0x63/0x70
[ 74.471068][ T6035] sysfs_remove_file_ns+0x63/0x70
[ 74.476067][ T6035] driver_remove_file+0x4a/0x60
[ 74.480890][ T6035] bus_remove_driver+0x224/0x2c0
[ 74.485799][ T6035] driver_unregister+0x76/0xb0
[ 74.490536][ T6035] comedi_device_detach_locked+0x12f/0xa50
[ 74.496316][ T6035] comedi_device_detach+0x67/0xb0
[ 74.501314][ T6035] comedi_device_attach+0x43d/0x900
[ 74.506490][ T6035] do_devconfig_ioctl+0x1b1/0x710
[ 74.511487][ T6035] ? __mutex_lock+0x1c5/0x1060
[ 74.516222][ T6035] ? __pfx_do_devconfig_ioctl+0x10/0x10
[ 74.521743][ T6035] ? find_held_lock+0x2b/0x80
[ 74.526391][ T6035] comedi_unlocked_ioctl+0x165d/0x2f00
[ 74.531820][ T6035] ? futex_wake+0x1ad/0x530
[ 74.536296][ T6035] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 74.542072][ T6035] ? __sanitizer_cov_trace_switch+0x54/0x90
[ 74.547936][ T6035] ? do_vfs_ioctl+0x128/0x14f0
[ 74.552674][ T6035] ? __pfx_do_vfs_ioctl+0x10/0x10
[ 74.557676][ T6035] ? __pfx_ioctl_has_perm.constprop.0.isra.0+0x10/0x10
[ 74.564499][ T6035] ? find_held_lock+0x2b/0x80
[ 74.569148][ T6035] ? hook_file_ioctl_common+0x145/0x410
[ 74.574665][ T6035] ? selinux_file_ioctl+0x180/0x270
[ 74.579838][ T6035] ? selinux_file_ioctl+0xb4/0x270
[ 74.584922][ T6035] ? __pfx_comedi_unlocked_ioctl+0x10/0x10
[ 74.590697][ T6035] __x64_sys_ioctl+0x18e/0x210
[ 74.595436][ T6035] do_syscall_64+0xcd/0x4e0
[ 74.599937][ T6035] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 74.605802][ T6035] RIP: 0033:0x7f623a78ec29
[ 74.610187][ T6035] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 74.629771][ T6035] RSP: 002b:00007ffe5ded2158 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 74.638171][ T6035] RAX: ffffffffffffffda RBX: 00007f623a9d5fa0 RCX: 00007f623a78ec29
[ 74.646114][ T6035] RDX: 0000200000000080 RSI: 0000000040946400 RDI: 0000000000000004
[ 74.654055][ T6035] RBP: 00007f623a811e41 R08: 0000000000000000 R09: 0000000000000000
[ 74.661998][ T6035] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 74.669941][ T6035] R13: 00007f623a9d5fa0 R14: 00007f623a9d5fa0 R15: 0000000000000003
[ 74.677898][ T6035]
[ 74.681072][ T6035] Kernel Offset: disabled
[ 74.685366][ T6035] Rebooting in 86400 seconds..