Warning: Permanently added '10.128.0.96' (ED25519) to the list of known hosts. 2023/10/26 04:46:21 ignoring optional flag "sandboxArg"="0" 2023/10/26 04:46:21 parsed 1 programs [ 47.363383][ T23] kauditd_printk_skb: 75 callbacks suppressed [ 47.363385][ T23] audit: type=1400 audit(1698295581.699:151): avc: denied { mounton } for pid=341 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 2023/10/26 04:46:21 executed programs: 0 [ 47.393976][ T23] audit: type=1400 audit(1698295581.699:152): avc: denied { mount } for pid=341 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 47.417338][ T341] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 47.417455][ T23] audit: type=1400 audit(1698295581.699:153): avc: denied { setattr } for pid=341 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 47.436558][ T346] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.448786][ T23] audit: type=1400 audit(1698295581.699:154): avc: denied { read write } for pid=341 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 47.455897][ T346] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.481771][ T23] audit: type=1400 audit(1698295581.699:155): avc: denied { open } for pid=341 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 47.488527][ T346] device bridge_slave_0 entered promiscuous mode [ 47.514512][ T23] audit: type=1400 audit(1698295581.729:156): avc: denied { unlink } for pid=341 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 47.520842][ T346] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.553912][ T23] audit: type=1400 audit(1698295581.729:157): avc: denied { relabelto } for pid=342 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 47.553950][ T346] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.586250][ T23] audit: type=1400 audit(1698295581.759:158): avc: denied { mounton } for pid=346 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 47.586281][ T346] device bridge_slave_1 entered promiscuous mode [ 47.620065][ T346] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.626883][ T346] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.636037][ T346] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.642946][ T346] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.651376][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 47.658437][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 47.665587][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 47.672566][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 47.681152][ T346] device veth0_vlan entered promiscuous mode [ 47.687464][ T346] device veth1_macvtap entered promiscuous mode [ 47.694383][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 47.702604][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 47.710134][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 47.717225][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 47.724328][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 47.732000][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 47.739826][ T49] bridge0: port 1(bridge_slave_0) entered blocking state [ 47.747051][ T49] bridge0: port 1(bridge_slave_0) entered forwarding state [ 47.754132][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 47.762019][ T49] bridge0: port 2(bridge_slave_1) entered blocking state [ 47.768836][ T49] bridge0: port 2(bridge_slave_1) entered forwarding state [ 47.775936][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 47.783463][ T49] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 47.791972][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 47.800131][ T303] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 47.811921][ T23] audit: type=1400 audit(1698295582.149:159): avc: denied { mounton } for pid=352 comm="syz-executor.0" path="/root/syzkaller-testdir35297743/syzkaller.xrlqu4/0/file0" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 47.863031][ T355] BUG: kernel NULL pointer dereference, address: 0000000000000039 [ 47.870626][ T355] #PF: supervisor read access in kernel mode [ 47.876723][ T355] #PF: error_code(0x0000) - not-present page [ 47.882527][ T355] PGD 10fcc4067 P4D 10fcc4067 PUD 10d47e067 PMD 0 [ 47.888870][ T355] Oops: 0000 [#1] PREEMPT SMP [ 47.893376][ T355] CPU: 1 PID: 355 Comm: syz-executor.0 Not tainted 5.10.194-syzkaller #0 [ 47.901801][ T355] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/06/2023 [ 47.911692][ T355] RIP: 0010:fuse_atomic_open+0x4e/0x130 [ 47.917095][ T355] Code: 00 48 85 db 74 03 48 8b 1b 49 8b 85 50 03 00 00 a8 08 0f 85 d7 00 00 00 45 31 ff 41 f7 04 24 00 00 00 10 75 6d f6 c1 40 74 08 <49> 83 7c 24 30 00 74 1a 4c 89 fe 4c 89 f7 e8 cf 0d eb ff 48 83 c4 [ 47.936513][ T355] RSP: 0018:ffffc900005bfc90 EFLAGS: 00010202 [ 47.942421][ T355] RAX: 0000000000000009 RBX: ffff88810d6cec00 RCX: 0000000000008241 [ 47.950223][ T355] RDX: ffff8881015c4a00 RSI: 0000000000000001 RDI: ffff888110c5bb58 [ 47.958037][ T355] RBP: ffffc900005bfcc0 R08: 0000000000008000 R09: ffff8881111cb9f8 [ 47.965845][ T355] R10: ffff888100fca020 R11: 0000000000000000 R12: 0000000000000009 [ 47.973662][ T355] R13: ffff888110c5b800 R14: ffff8881011a0c80 R15: 0000000000000009 [ 47.981471][ T355] FS: 00007fdff92b16c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 47.990238][ T355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 47.996662][ T355] CR2: 0000000000000039 CR3: 0000000111149000 CR4: 00000000003506a0 [ 48.004474][ T355] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.012378][ T355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.020181][ T355] Call Trace: [ 48.023315][ T355] ? show_regs.part.0+0x1e/0x20 [ 48.028000][ T355] ? __die+0x5d/0x9e [ 48.031725][ T355] ? no_context+0x1f2/0x380 [ 48.036064][ T355] ? __bad_area_nosemaphore+0x4b/0x1a0 [ 48.041357][ T355] ? bad_area_nosemaphore+0x11/0x20 [ 48.046408][ T355] ? exc_page_fault+0x2c9/0x5a0 [ 48.051080][ T355] ? avc_has_perm+0x84/0x1a0 [ 48.055514][ T355] ? asm_exc_page_fault+0x1e/0x30 [ 48.060368][ T355] ? fuse_atomic_open+0x4e/0x130 [ 48.065141][ T355] path_openat+0x6d2/0x10d0 [ 48.069486][ T355] do_filp_open+0x9d/0x140 [ 48.073738][ T355] ? _raw_spin_unlock+0x1f/0x40 [ 48.078609][ T355] do_sys_openat2+0x9c/0x210 [ 48.083046][ T355] __x64_sys_creat+0x46/0x60 [ 48.087539][ T355] do_syscall_64+0x32/0x80 [ 48.091786][ T355] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 48.097790][ T355] RIP: 0033:0x7fdff974fb29 [ 48.102386][ T355] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 48.121910][ T355] RSP: 002b:00007fdff92b10c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 48.130250][ T355] RAX: ffffffffffffffda RBX: 00007fdff986f050 RCX: 00007fdff974fb29 [ 48.138046][ T355] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000000 [ 48.145859][ T355] RBP: 00007fdff979b47a R08: 0000000000000000 R09: 0000000000000000 [ 48.153671][ T355] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 48.161486][ T355] R13: 000000000000006e R14: 00007fdff986f050 R15: 00007ffe0aae0748 [ 48.169297][ T355] Modules linked in: [ 48.173026][ T355] CR2: 0000000000000039 [ 48.177139][ T355] ---[ end trace 02c69adde5631820 ]--- [ 48.182584][ T355] RIP: 0010:fuse_atomic_open+0x4e/0x130 [ 48.188145][ T355] Code: 00 48 85 db 74 03 48 8b 1b 49 8b 85 50 03 00 00 a8 08 0f 85 d7 00 00 00 45 31 ff 41 f7 04 24 00 00 00 10 75 6d f6 c1 40 74 08 <49> 83 7c 24 30 00 74 1a 4c 89 fe 4c 89 f7 e8 cf 0d eb ff 48 83 c4 [ 48.207764][ T355] RSP: 0018:ffffc900005bfc90 EFLAGS: 00010202 [ 48.213669][ T355] RAX: 0000000000000009 RBX: ffff88810d6cec00 RCX: 0000000000008241 [ 48.221476][ T355] RDX: ffff8881015c4a00 RSI: 0000000000000001 RDI: ffff888110c5bb58 [ 48.229496][ T355] RBP: ffffc900005bfcc0 R08: 0000000000008000 R09: ffff8881111cb9f8 [ 48.237469][ T355] R10: ffff888100fca020 R11: 0000000000000000 R12: 0000000000000009 [ 48.245367][ T355] R13: ffff888110c5b800 R14: ffff8881011a0c80 R15: 0000000000000009 [ 48.253179][ T355] FS: 00007fdff92b16c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 48.261949][ T355] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 48.268369][ T355] CR2: 0000000000000039 CR3: 0000000111149000 CR4: 00000000003506a0 [ 48.276179][ T355] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 48.283988][ T355] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 48.291804][ T355] Kernel panic - not syncing: Fatal exception [ 48.297854][ T355] Kernel Offset: disabled [ 48.301972][ T355] Rebooting in 86400 seconds..