[ 21.016273][ T415] device veth1_macvtap entered promiscuous mode [ 21.025919][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.034188][ T84] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.173220][ T415] syz-executor.0 (415) used greatest stack depth: 21824 bytes left [ 21.583236][ T8] device bridge_slave_1 left promiscuous mode [ 21.589284][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 21.597048][ T8] device bridge_slave_0 left promiscuous mode [ 21.603448][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 21.611637][ T8] device veth1_macvtap left promiscuous mode [ 21.617806][ T8] device veth0_vlan left promiscuous mode Warning: Permanently added '10.128.0.93' (ECDSA) to the list of known hosts. 2022/12/14 15:07:52 ignoring optional flag "sandboxArg"="0" 2022/12/14 15:07:52 parsed 1 programs 2022/12/14 15:07:52 executed programs: 0 [ 38.410369][ T30] kauditd_printk_skb: 65 callbacks suppressed [ 38.410385][ T30] audit: type=1400 audit(1671030472.689:137): avc: denied { mounton } for pid=459 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 38.441058][ T30] audit: type=1400 audit(1671030472.689:138): avc: denied { mount } for pid=459 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 38.470852][ T462] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.477715][ T462] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.484994][ T462] device bridge_slave_0 entered promiscuous mode [ 38.491473][ T462] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.498314][ T462] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.505398][ T462] device bridge_slave_1 entered promiscuous mode [ 38.538144][ T462] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.544995][ T462] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.552049][ T462] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.558899][ T462] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.574941][ T20] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.582050][ T20] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.589902][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.597240][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.605795][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 38.613903][ T26] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.620821][ T26] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.637760][ T462] device veth0_vlan entered promiscuous mode [ 38.644699][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 38.652877][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 38.660515][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 38.668081][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 38.675482][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 38.683376][ T26] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.690108][ T26] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.697591][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 38.705725][ T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 38.717357][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 38.725909][ T462] device veth1_macvtap entered promiscuous mode [ 38.736665][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 38.744807][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 38.756961][ T30] audit: type=1400 audit(1671030473.039:139): avc: denied { mount } for pid=462 comm="syz-executor.0" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 38.792247][ T469] loop0: detected capacity change from 0 to 2048 [ 38.800166][ T30] audit: type=1400 audit(1671030473.079:140): avc: denied { mounton } for pid=467 comm="syz-executor.0" path="/root/syzkaller-testdir3543170128/syzkaller.RYmXN3/0/file0" dev="sda1" ino=1148 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 38.809347][ T469] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none. [ 38.837457][ T30] audit: type=1400 audit(1671030473.119:141): avc: denied { mount } for pid=467 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 38.843834][ T467] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1148: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 38.859756][ T30] audit: type=1400 audit(1671030473.119:142): avc: denied { write } for pid=467 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 38.874971][ T469] ------------[ cut here ]------------ [ 38.895738][ T30] audit: type=1400 audit(1671030473.119:143): avc: denied { add_name } for pid=467 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 38.901148][ T469] kernel BUG at fs/ext4/ext4_jbd2.c:53! [ 38.922908][ T30] audit: type=1400 audit(1671030473.119:144): avc: denied { create } for pid=467 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 38.928233][ T469] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 38.948265][ T30] audit: type=1400 audit(1671030473.129:145): avc: denied { read write open } for pid=467 comm="syz-executor.0" path="/root/syzkaller-testdir3543170128/syzkaller.RYmXN3/0/file0/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 38.953859][ T469] CPU: 1 PID: 469 Comm: syz-executor.0 Not tainted 5.15.78-syzkaller-04941-gc73b4619ad86-dirty #0 [ 38.953879][ T469] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/26/2022 [ 38.953887][ T469] RIP: 0010:__ext4_journal_stop+0x1b3/0x1c0 [ 38.953910][ T469] Code: c3 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c f8 fe ff ff e8 31 2e cc ff 48 ba 00 00 00 00 00 fc ff df e9 e4 fe ff ff e8 cd db 89 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 41 [ 38.953923][ T469] RSP: 0018:ffffc9000059f6b8 EFLAGS: 00010293 [ 38.982178][ T30] audit: type=1400 audit(1671030473.129:146): avc: denied { map } for pid=467 comm="syz-executor.0" path="/root/syzkaller-testdir3543170128/syzkaller.RYmXN3/0/file0/bus" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 38.992214][ T469] [ 38.992220][ T469] RAX: ffffffff81e7c153 RBX: ffffffff860395bd RCX: ffff888100173b40 [ 38.992232][ T469] RDX: 0000000000000000 RSI: 0000000000000331 RDI: ffffffff860395bd [ 38.992243][ T469] RBP: ffffc9000059f6f0 R08: ffffffff81ed4fd8 R09: ffffed1023be14b5 [ 38.992254][ T469] R10: ffffed1023be14b5 R11: 1ffff11023be14b4 R12: ffff888109779330 [ 39.094466][ T469] R13: 0000000000000000 R14: 0000000000000012 R15: 0000000000000331 [ 39.102276][ T469] FS: 00007f18b250d700(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 39.111128][ T469] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.117555][ T469] CR2: 00007f18aa1ec718 CR3: 00000001249a9000 CR4: 00000000003506a0 [ 39.125834][ T469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.133891][ T469] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.142029][ T469] Call Trace: [ 39.145164][ T469] [ 39.148191][ T469] ext4_write_inline_data_end+0xa50/0xe10 [ 39.153747][ T469] ? ext4_set_page_dirty+0x1a0/0x1a0 [ 39.158868][ T469] ? put_page+0xa0/0xa0 [ 39.162957][ T469] ? pipe_zero+0x4d0/0x4d0 [ 39.167202][ T469] ext4_da_write_end+0x3d7/0xa70 [ 39.172085][ T469] ? ext4_da_write_begin+0xbf0/0xbf0 [ 39.177295][ T469] generic_perform_write+0x3c7/0x5d0 [ 39.182629][ T469] ? grab_cache_page_write_begin+0xa0/0xa0 [ 39.188308][ T469] ? down_write+0xdd/0x140 [ 39.192649][ T469] ? down_read_killable+0x250/0x250 [ 39.197675][ T469] ? generic_write_checks+0x3d8/0x490 [ 39.203060][ T469] ext4_buffered_write_iter+0x49b/0x630 [ 39.208440][ T469] ext4_file_write_iter+0x448/0x1cc0 [ 39.213852][ T469] ? follow_page+0x220/0x220 [ 39.218421][ T469] ? find_extend_vma+0xc8/0x260 [ 39.223062][ T469] ? avc_policy_seqno+0x1b/0x70 [ 39.228097][ T469] ? selinux_file_permission+0x2ae/0x520 [ 39.233568][ T469] ? ext4_file_read_iter+0x4b0/0x4b0 [ 39.238686][ T469] ? iov_iter_init+0x53/0x180 [ 39.243289][ T469] vfs_write+0xc8d/0x1050 [ 39.247551][ T469] ? file_end_write+0x1b0/0x1b0 [ 39.252226][ T469] ? mutex_lock+0xb6/0x130 [ 39.256482][ T469] ? wait_for_completion_killable_timeout+0x10/0x10 [ 39.262992][ T469] ? __fdget_pos+0x26d/0x310 [ 39.267771][ T469] ? ksys_write+0x77/0x2c0 [ 39.272026][ T469] ksys_write+0x198/0x2c0 [ 39.276190][ T469] ? __kasan_check_write+0x14/0x20 [ 39.281312][ T469] ? __ia32_sys_read+0x90/0x90 [ 39.285906][ T469] ? fput+0x1a/0x20 [ 39.289651][ T469] __x64_sys_write+0x7b/0x90 [ 39.294187][ T469] do_syscall_64+0x44/0xd0 [ 39.298438][ T469] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 39.304350][ T469] RIP: 0033:0x7f18b299a0d9 [ 39.309793][ T469] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 f1 19 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 39.329955][ T469] RSP: 002b:00007f18b250d168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 39.338437][ T469] RAX: ffffffffffffffda RBX: 00007f18b2ab9f80 RCX: 00007f18b299a0d9 [ 39.346418][ T469] RDX: 0000000000000009 RSI: 0000000020000f80 RDI: 0000000000000004 [ 39.354315][ T469] RBP: 00007f18b29f5ae9 R08: 0000000000000000 R09: 0000000000000000 [ 39.362222][ T469] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 39.370112][ T469] R13: 00007ffe620cdc0f R14: 00007f18b250d300 R15: 0000000000022000 [ 39.378098][ T469] [ 39.381219][ T469] Modules linked in: [ 39.386430][ T469] ---[ end trace 0e1c0c243b89f43e ]--- [ 39.391913][ T469] RIP: 0010:__ext4_journal_stop+0x1b3/0x1c0 [ 39.397765][ T469] Code: c3 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c f8 fe ff ff e8 31 2e cc ff 48 ba 00 00 00 00 00 fc ff df e9 e4 fe ff ff e8 cd db 89 ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 90 55 48 89 e5 41 57 41 56 41 [ 39.417729][ T469] RSP: 0018:ffffc9000059f6b8 EFLAGS: 00010293 [ 39.423674][ T469] RAX: ffffffff81e7c153 RBX: ffffffff860395bd RCX: ffff888100173b40 [ 39.432307][ T469] RDX: 0000000000000000 RSI: 0000000000000331 RDI: ffffffff860395bd [ 39.440436][ T469] RBP: ffffc9000059f6f0 R08: ffffffff81ed4fd8 R09: ffffed1023be14b5 [ 39.448651][ T469] R10: ffffed1023be14b5 R11: 1ffff11023be14b4 R12: ffff888109779330 [ 39.457297][ T469] R13: 0000000000000000 R14: 0000000000000012 R15: 0000000000000331 [ 39.465371][ T469] FS: 00007f18b250d700(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000 [ 39.474099][ T469] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.480670][ T469] CR2: 00007f18aa1ec718 CR3: 00000001249a9000 CR4: 00000000003506a0 [ 39.488518][ T469] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.496408][ T469] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.504213][ T469] Kernel panic - not syncing: Fatal exception [ 39.510335][ T469] Kernel Offset: disabled [ 39.514436][ T469] Rebooting in 86400 seconds..