Warning: Permanently added '10.128.1.142' (ED25519) to the list of known hosts.
2025/10/13 17:08:01 parsed 1 programs
[ 45.414418][ T28] audit: type=1400 audit(1760375282.666:106): avc: denied { unlink } for pid=394 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 45.481523][ T394] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 46.398879][ T28] audit: type=1401 audit(1760375283.646:107): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[ 46.442198][ T426] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.449306][ T426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.456835][ T426] device bridge_slave_0 entered promiscuous mode
[ 46.463539][ T426] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.470596][ T426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.478151][ T426] device bridge_slave_1 entered promiscuous mode
[ 46.517382][ T426] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.524448][ T426] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.531714][ T426] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.538776][ T426] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.556677][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 46.564461][ T302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 46.571661][ T302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 46.580602][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 46.588931][ T302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 46.595983][ T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 46.608660][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 46.616850][ T302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 46.623890][ T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 46.632958][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 46.643346][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 46.656280][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 46.667109][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 46.675523][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 46.682940][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 46.691210][ T426] device veth0_vlan entered promiscuous mode
[ 46.701246][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 46.710449][ T426] device veth1_macvtap entered promiscuous mode
[ 46.719464][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 46.729236][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/10/13 17:08:04 executed programs: 0
[ 47.174694][ T461] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.181732][ T461] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.189243][ T461] device bridge_slave_0 entered promiscuous mode
[ 47.200533][ T461] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.207646][ T461] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.215020][ T461] device bridge_slave_1 entered promiscuous mode
[ 47.261270][ T461] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.268509][ T461] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.275801][ T461] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.282820][ T461] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.291327][ T302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 47.298928][ T302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 47.318174][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 47.325865][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 47.333295][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 47.341762][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 47.350090][ T302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 47.357282][ T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 47.374923][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 47.383692][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 47.392215][ T302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 47.399333][ T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 47.406772][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 47.414807][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 47.422700][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 47.431156][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 47.443316][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 47.451767][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 47.464849][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 47.472832][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 47.481579][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 47.489283][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 47.497349][ T461] device veth0_vlan entered promiscuous mode
[ 47.507089][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 47.515354][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 47.524548][ T461] device veth1_macvtap entered promiscuous mode
[ 47.533150][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 47.540916][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 47.549405][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 47.559226][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 47.567983][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 47.592731][ T473] loop2: detected capacity change from 0 to 512
[ 47.600168][ T473] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 47.613430][ T473] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 47.625519][ T473] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 47.639344][ T473] EXT4-fs (loop2): 1 truncate cleaned up
[ 47.645218][ T473] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 47.654524][ T28] audit: type=1400 audit(1760375284.906:108): avc: denied { mount } for pid=472 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1
[ 47.672932][ T473] ==================================================================
[ 47.676225][ T28] audit: type=1400 audit(1760375284.916:109): avc: denied { setattr } for pid=472 comm="syz.2.16" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.684091][ T473] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x979/0x21d0
[ 47.684137][ T473] Read of size 18446744073709551572 at addr ffff88811bb60050 by task syz.2.16/473
[ 47.684151][ T473]
[ 47.684155][ T473] CPU: 0 PID: 473 Comm: syz.2.16 Not tainted syzkaller #0
[ 47.684172][ T473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 47.706518][ T28] audit: type=1400 audit(1760375284.916:110): avc: denied { write } for pid=472 comm="syz.2.16" name="/" dev="loop2" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 47.713824][ T473] Call Trace:
[ 47.713837][ T473]
[ 47.713844][ T473] __dump_stack+0x21/0x24
[ 47.713867][ T473] dump_stack_lvl+0xee/0x150
[ 47.723373][ T28] audit: type=1400 audit(1760375284.916:111): avc: denied { add_name } for pid=472 comm="syz.2.16" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 47.725335][ T473] ? __cfi_dump_stack_lvl+0x8/0x8
[ 47.725353][ T473] ? ext4_xattr_block_set+0x9dc/0x3270
[ 47.725371][ T473] ? __ext4_unlink+0x673/0xb00
[ 47.725388][ T473] ? ext4_xattr_set_entry+0x979/0x21d0
[ 47.732772][ T28] audit: type=1400 audit(1760375284.916:112): avc: denied { create } for pid=472 comm="syz.2.16" name="file2" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 47.742905][ T473] print_address_description+0x71/0x200
[ 47.742935][ T473] print_report+0x4a/0x60
[ 47.742954][ T473] kasan_report+0x122/0x150
[ 47.742972][ T473] ? ext4_xattr_set_entry+0x979/0x21d0
[ 47.742993][ T473] ? ext4_xattr_set_entry+0x979/0x21d0
[ 47.765365][ T28] audit: type=1400 audit(1760375284.916:113): avc: denied { write } for pid=472 comm="syz.2.16" name="file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.767522][ T473] kasan_check_range+0x280/0x290
[ 47.770446][ T28] audit: type=1400 audit(1760375284.916:114): avc: denied { open } for pid=472 comm="syz.2.16" path="/0/file2/file2" dev="loop2" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 47.774827][ T473] memmove+0x2d/0x70
[ 47.774843][ T473] ext4_xattr_set_entry+0x979/0x21d0
[ 47.774865][ T473] ext4_xattr_block_set+0xada/0x3270
[ 47.779907][ T28] audit: type=1400 audit(1760375284.916:115): avc: denied { remove_name } for pid=472 comm="syz.2.16" name="file1" dev="loop2" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 47.799888][ T473] ? __getblk_gfp+0x3b/0x7d0
[ 47.799919][ T473] ? xattr_find_entry+0x24c/0x300
[ 47.799938][ T473] ? ext4_xattr_block_find+0x310/0x310
[ 47.967848][ T473] ? ext4_xattr_block_find+0x295/0x310
[ 47.973308][ T473] ext4_expand_extra_isize_ea+0xf30/0x1990
[ 47.979309][ T473] __ext4_expand_extra_isize+0x2fe/0x3e0
[ 47.984989][ T473] __ext4_mark_inode_dirty+0x3cf/0x600
[ 47.990559][ T473] __ext4_unlink+0x673/0xb00
[ 47.995139][ T473] ? memcpy+0x56/0x70
[ 47.999216][ T473] ? __cfi___ext4_unlink+0x10/0x10
[ 48.004375][ T473] ? dquot_initialize+0x20/0x20
[ 48.009299][ T473] ? clear_nonspinnable+0x60/0x60
[ 48.014336][ T473] ext4_unlink+0x13a/0x3a0
[ 48.018743][ T473] vfs_unlink+0x39f/0x630
[ 48.023243][ T473] do_unlinkat+0x31f/0x6b0
[ 48.027639][ T473] ? __cfi_do_unlinkat+0x10/0x10
[ 48.032641][ T473] ? getname_flags+0x206/0x500
[ 48.037385][ T473] __x64_sys_unlink+0x49/0x50
[ 48.042038][ T473] x64_sys_call+0x958/0x9a0
[ 48.046576][ T473] do_syscall_64+0x4c/0xa0
[ 48.051064][ T473] ? clear_bhb_loop+0x30/0x80
[ 48.055738][ T473] ? clear_bhb_loop+0x30/0x80
[ 48.060423][ T473] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 48.066680][ T473] RIP: 0033:0x7f83a4d8e929
[ 48.071090][ T473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 48.090852][ T473] RSP: 002b:00007f83a5b39038 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 48.099351][ T473] RAX: ffffffffffffffda RBX: 00007f83a4fb5fa0 RCX: 00007f83a4d8e929
[ 48.107310][ T473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000200000000180
[ 48.115335][ T473] RBP: 00007f83a4e10b39 R08: 0000000000000000 R09: 0000000000000000
[ 48.123390][ T473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 48.131371][ T473] R13: 0000000000000000 R14: 00007f83a4fb5fa0 R15: 00007ffc6f859728
[ 48.139343][ T473]
[ 48.142419][ T473]
[ 48.144815][ T473] Allocated by task 473:
[ 48.149059][ T473] kasan_set_track+0x4b/0x70
[ 48.153708][ T473] kasan_save_alloc_info+0x25/0x30
[ 48.158913][ T473] __kasan_kmalloc+0x95/0xb0
[ 48.163576][ T473] __kmalloc_node_track_caller+0xb1/0x1e0
[ 48.169306][ T473] kmemdup+0x2b/0x60
[ 48.173195][ T473] ext4_xattr_block_set+0x9dc/0x3270
[ 48.178471][ T473] ext4_expand_extra_isize_ea+0xf30/0x1990
[ 48.184271][ T473] __ext4_expand_extra_isize+0x2fe/0x3e0
[ 48.189896][ T473] __ext4_mark_inode_dirty+0x3cf/0x600
[ 48.195346][ T473] __ext4_unlink+0x673/0xb00
[ 48.199917][ T473] ext4_unlink+0x13a/0x3a0
[ 48.204394][ T473] vfs_unlink+0x39f/0x630
[ 48.208814][ T473] do_unlinkat+0x31f/0x6b0
[ 48.213322][ T473] __x64_sys_unlink+0x49/0x50
[ 48.217989][ T473] x64_sys_call+0x958/0x9a0
[ 48.222478][ T473] do_syscall_64+0x4c/0xa0
[ 48.227058][ T473] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 48.232940][ T473]
[ 48.235253][ T473] The buggy address belongs to the object at ffff88811bb60000
[ 48.235253][ T473] which belongs to the cache kmalloc-1k of size 1024
[ 48.249392][ T473] The buggy address is located 80 bytes inside of
[ 48.249392][ T473] 1024-byte region [ffff88811bb60000, ffff88811bb60400)
[ 48.262657][ T473]
[ 48.264971][ T473] The buggy address belongs to the physical page:
[ 48.271525][ T473] page:ffffea00046ed800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11bb60
[ 48.281780][ T473] head:ffffea00046ed800 order:3 compound_mapcount:0 compound_pincount:0
[ 48.290545][ T473] flags: 0x4000000000010200(slab|head|zone=1)
[ 48.296633][ T473] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888100043080
[ 48.305212][ T473] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 48.313768][ T473] page dumped because: kasan: bad access detected
[ 48.320191][ T473] page_owner tracks the page as allocated
[ 48.325906][ T473] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 323, tgid 323 (kworker/0:2), ts 47638938234, free_ts 47581267191
[ 48.347846][ T473] post_alloc_hook+0x1f5/0x210
[ 48.352610][ T473] prep_new_page+0x1c/0x110
[ 48.357134][ T473] get_page_from_freelist+0x2c7b/0x2cf0
[ 48.362660][ T473] __alloc_pages+0x1c3/0x450
[ 48.367750][ T473] alloc_slab_page+0x6e/0xf0
[ 48.372333][ T473] new_slab+0x98/0x3d0
[ 48.376378][ T473] ___slab_alloc+0x6bd/0xb20
[ 48.380947][ T473] __slab_alloc+0x5e/0xa0
[ 48.385278][ T473] __kmem_cache_alloc_node+0x203/0x2c0
[ 48.390718][ T473] __kmalloc_node_track_caller+0xa0/0x1e0
[ 48.396421][ T473] __alloc_skb+0x236/0x4b0
[ 48.400812][ T473] ndisc_send_rs+0x304/0x870
[ 48.405395][ T473] addrconf_dad_completed+0x95a/0xe80
[ 48.410745][ T473] addrconf_dad_work+0xc25/0x14b0
[ 48.415751][ T473] process_one_work+0x71f/0xc40
[ 48.420588][ T473] worker_thread+0xa29/0x11f0
[ 48.425243][ T473] page last free stack trace:
[ 48.429896][ T473] free_unref_page_prepare+0x742/0x750
[ 48.435350][ T473] free_unref_page+0x8f/0x530
[ 48.440020][ T473] __free_pages+0x67/0x100
[ 48.444447][ T473] __free_slab+0xca/0x1a0
[ 48.448958][ T473] __unfreeze_partials+0x160/0x190
[ 48.454187][ T473] put_cpu_partial+0xa9/0x100
[ 48.458856][ T473] __slab_free+0x1c4/0x280
[ 48.463258][ T473] ___cache_free+0xbf/0xd0
[ 48.467671][ T473] qlist_free_all+0xc6/0x140
[ 48.472254][ T473] kasan_quarantine_reduce+0x14a/0x170
[ 48.477762][ T473] __kasan_slab_alloc+0x24/0x80
[ 48.482607][ T473] slab_post_alloc_hook+0x4f/0x2d0
[ 48.487708][ T473] kmem_cache_alloc_node+0x181/0x340
[ 48.493077][ T473] __alloc_skb+0xea/0x4b0
[ 48.497400][ T473] netlink_ack+0x372/0x1100
[ 48.501893][ T473] netlink_rcv_skb+0x277/0x440
[ 48.506656][ T473]
[ 48.509043][ T473] Memory state around the buggy address:
[ 48.514762][ T473] ffff88811bb5ff00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 48.522838][ T473] ffff88811bb5ff80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 48.530897][ T473] >ffff88811bb60000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.539106][ T473] ^
[ 48.545763][ T473] ffff88811bb60080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.553819][ T473] ffff88811bb60100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 48.562311][ T473] ==================================================================
[ 48.575081][ T473] Disabling lock debugging due to kernel taint
[ 48.585423][ T461] EXT4-fs (loop2): unmounting filesystem.
[ 48.601963][ T477] loop2: detected capacity change from 0 to 512
[ 48.608903][ T477] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 48.621588][ T477] EXT4-fs (loop2): 1 truncate cleaned up
[ 48.627938][ T477] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[ 48.645137][ T401] general protection fault, probably for non-canonical address 0x16c123a96111ecb8: 0000 [#1] PREEMPT SMP KASAN
[ 48.656898][ T401] CPU: 1 PID: 401 Comm: udevd Tainted: G B syzkaller #0
[ 48.665228][ T401] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 48.675296][ T401] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 48.680832][ T401] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 48.700507][ T401] RSP: 0018:ffffc90000a97c70 EFLAGS: 00010286
[ 48.706553][ T401] RAX: 0000000000000800 RBX: 16495db5e0991b47 RCX: b8ec1161a923c116
[ 48.714595][ T401] RDX: 0000000000026a99 RSI: 0000000000001000 RDI: 16c123a96111e4b8
[ 48.722550][ T401] RBP: ffffc90000a97cb8 R08: 0000000000000000 R09: ffffc90000a97da0
[ 48.730671][ T401] R10: 0000000000000000 R11: 1ffff92000152fb4 R12: 0000000000001000
[ 48.738668][ T401] R13: ffffffff81bfa699 R14: 0000000000000cc0 R15: ffff8881001ed800
[ 48.746740][ T401] FS: 00007f5ebb3b2880(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 48.755665][ T401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 48.762319][ T401] CR2: 00007f5ebb3a4000 CR3: 00000001140fc000 CR4: 00000000003506a0
[ 48.770307][ T401] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 48.778283][ T401] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 48.786356][ T401] Call Trace:
[ 48.789649][ T401]
[ 48.792588][ T401] ? getname_flags+0xb9/0x500
[ 48.797255][ T401] getname_flags+0xb9/0x500
[ 48.801741][ T401] user_path_at_empty+0x30/0x1c0
[ 48.806653][ T401] do_utimes+0x138/0x2a0
[ 48.810954][ T401] ? __cfi_do_utimes+0x10/0x10
[ 48.815793][ T401] __x64_sys_utimensat+0x14c/0x230
[ 48.821028][ T401] ? __cfi___x64_sys_utimensat+0x10/0x10
[ 48.826695][ T401] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 48.832779][ T401] x64_sys_call+0x3e0/0x9a0
[ 48.837283][ T401] do_syscall_64+0x4c/0xa0
[ 48.841717][ T401] ? clear_bhb_loop+0x30/0x80
[ 48.846399][ T401] ? clear_bhb_loop+0x30/0x80
[ 48.851346][ T401] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 48.857316][ T401] RIP: 0033:0x7f5ebad15a1a
[ 48.861721][ T401] Code: 77 06 c3 0f 1f 44 00 00 48 8b 15 d9 b3 0d 00 f7 d8 64 89 02 b8 ff ff ff ff c3 66 0f 1f 44 00 00 41 89 ca b8 18 01 00 00 0f 05 <48> 3d 00 f0 ff ff 77 06 c3 0f 1f 44 00 00 48 8b 15 a9 b3 0d 00 f7
[ 48.881400][ T401] RSP: 002b:00007ffed6d46878 EFLAGS: 00000246 ORIG_RAX: 0000000000000118
[ 48.889975][ T401] RAX: ffffffffffffffda RBX: 0000000000006180 RCX: 00007f5ebad15a1a
[ 48.897920][ T401] RDX: 0000000000000000 RSI: 000055fe7cb506f0 RDI: 00000000ffffff9c
[ 48.905863][ T401] RBP: 0000000000000000 R08: 0000000000000000 R09: 000055fe7cb43960
[ 48.913915][ T401] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 48.921859][ T401] R13: 0000000000000000 R14: 000055fe7cb506f0 R15: 000055fe7cbc23e0
[ 48.929821][ T401]
[ 48.932835][ T401] Modules linked in:
[ 48.936751][ T323] general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#2] PREEMPT SMP KASAN
[ 48.945320][ T401] ---[ end trace 0000000000000000 ]---
[ 48.948463][ T323] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f]
[ 48.954049][ T401] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 48.962294][ T323] CPU: 0 PID: 323 Comm: kworker/0:2 Tainted: G B D syzkaller #0
[ 48.968164][ T401] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 48.976654][ T323] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 48.976666][ T323] Workqueue: ipv6_addrconf addrconf_dad_work
[ 48.976693][ T323] RIP: 0010:fib6_walk_continue+0x3d5/0x710
[ 48.997229][ T401] RSP: 0018:ffffc90000a97c70 EFLAGS: 00010286
[ 49.006488][ T323] Code: 03 00 00 48 89 d8 48 c1 e8 03 42 80 3c 30 00 74 08 48 89 df e8 7c 85 5e fd 48 8b 1b 48 8d 7b 08 48 89 f8 48 c1 e8 03 4d 89 f7 <42> 80 3c 30 00 74 05 e8 5f 85 5e fd 4c 8b 63 08 4c 8d 73 10 4c 89
[ 49.006508][ T323] RSP: 0018:ffffc900013978a8 EFLAGS: 00010202
[ 49.006522][ T323] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffff88810fa13cc0
[ 49.012663][ T401]
[ 49.018318][ T323] RDX: 0000000000000000 RSI: ffffffff875fc620 RDI: 0000000000000008
[ 49.018329][ T323] RBP: ffffc90001397948 R08: ffff88810fa13cc0 R09: 0000000000000004
[ 49.018339][ T323] R10: 0000000000000003 R11: 0000000000000000 R12: ffffc90001397a10
[ 49.024787][ T401] RAX: 0000000000000800 RBX: 16495db5e0991b47 RCX: b8ec1161a923c116
[ 49.044160][ T323] R13: ffffc90001397a28 R14: dffffc0000000000 R15: dffffc0000000000
[ 49.044176][ T323] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 49.044193][ T323] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.050385][ T401] RDX: 0000000000026a99 RSI: 0000000000001000 RDI: 16c123a96111e4b8
[ 49.058377][ T323] CR2: 0000200000010000 CR3: 000000012ef38000 CR4: 00000000003506b0
[ 49.058392][ T323] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.058400][ T323] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.058409][ T323] Call Trace:
[ 49.058414][ T323]
[ 49.058422][ T323] fib6_walk+0x153/0x290
[ 49.058445][ T323] fib6_flush_trees+0x1e9/0x2b0
[ 49.061593][ T401] RBP: ffffc90000a97cb8 R08: 0000000000000000 R09: ffffc90000a97da0
[ 49.068825][ T323] ? __cfi_fib6_flush_trees+0x10/0x10
[ 49.068855][ T323] ? __cfi_fib6_clean_node+0x10/0x10
[ 49.068874][ T323] ? __cfi_fib6_flush_trees+0x10/0x10
[ 49.077094][ T401] R10: 0000000000000000 R11: 1ffff92000152fb4 R12: 0000000000001000
[ 49.084789][ T323] addrconf_dad_completed+0x8db/0xe80
[ 49.084818][ T323] ? addrconf_dad_stop+0x450/0x450
[ 49.092922][ T401] R13: ffffffff81bfa699 R14: 0000000000000cc0 R15: ffff8881001ed800
[ 49.101290][ T323] addrconf_dad_work+0xc25/0x14b0
[ 49.101325][ T323] ? __cfi_addrconf_dad_work+0x10/0x10
[ 49.110708][ T401] FS: 00007f5ebb3b2880(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 49.116912][ T323] ? __schedule+0xb8f/0x14e0
[ 49.116939][ T323] ? __cfi__raw_spin_lock_irq+0x10/0x10
[ 49.116956][ T323] process_one_work+0x71f/0xc40
[ 49.125299][ T401] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 49.132899][ T323] worker_thread+0xa29/0x11f0
[ 49.141425][ T401] CR2: 00007f5ebb3a4000 CR3: 00000001140fc000 CR4: 00000000003506a0
[ 49.149144][ T323] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 49.149171][ T323] ? __kthread_parkme+0x142/0x180
[ 49.152748][ T401] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 49.155394][ T323] kthread+0x281/0x320
[ 49.155420][ T323] ? __cfi_worker_thread+0x10/0x10
[ 49.155435][ T323] ? __cfi_kthread+0x10/0x10
[ 49.155448][ T323] ret_from_fork+0x1f/0x30
[ 49.155467][ T323]
[ 49.155472][ T323] Modules linked in:
[ 49.155519][ T323] ---[ end trace 0000000000000000 ]---
[ 49.164712][ T401] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 49.172535][ T323] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 49.188707][ T401] Kernel panic - not syncing: Fatal exception
[ 49.196814][ T401] Kernel Offset: disabled
[ 49.341149][ T401] Rebooting in 86400 seconds..