Warning: Permanently added '[localhost]:6495' (ED25519) to the list of known hosts.
2024/04/12 21:25:54 ignoring optional flag "sandboxArg"="0"
2024/04/12 21:25:54 parsed 1 programs
[   75.305751][   T38] kauditd_printk_skb: 73 callbacks suppressed
[   75.305764][   T38] audit: type=1400 audit(1712957154.773:207): avc:  denied  { getattr } for  pid=5382 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[   75.343392][   T38] audit: type=1400 audit(1712957154.813:208): avc:  denied  { mounton } for  pid=5396 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   75.354162][   T38] audit: type=1400 audit(1712957154.813:209): avc:  denied  { mount } for  pid=5396 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[   75.363771][   T38] audit: type=1400 audit(1712957154.833:210): avc:  denied  { read write } for  pid=5396 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   75.374220][   T38] audit: type=1400 audit(1712957154.833:211): avc:  denied  { open } for  pid=5396 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   75.419822][   T38] audit: type=1400 audit(1712957154.893:212): avc:  denied  { unlink } for  pid=5396 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   75.878926][   T38] audit: type=1400 audit(1712957155.353:213): avc:  denied  { relabelto } for  pid=5411 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   76.664425][ T1354] ieee802154 phy0 wpan0: encryption failed: -22
[   76.667132][ T1354] ieee802154 phy1 wpan1: encryption failed: -22
[   77.144521][ T5396] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2024/04/12 21:25:56 executed programs: 0
[   77.204570][   T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   77.208591][   T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   77.212221][   T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   77.216365][   T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   77.220529][   T64] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   77.223864][   T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   77.231153][   T38] audit: type=1400 audit(1712957156.703:214): avc:  denied  { mounton } for  pid=5419 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[   77.369502][ T5419] chnl_net:caif_netlink_parms(): no params data found
[   77.484057][ T5419] bridge0: port 1(bridge_slave_0) entered blocking state
[   77.487167][ T5419] bridge0: port 1(bridge_slave_0) entered disabled state
[   77.490922][ T5419] bridge_slave_0: entered allmulticast mode
[   77.495054][ T5419] bridge_slave_0: entered promiscuous mode
[   77.500655][ T5419] bridge0: port 2(bridge_slave_1) entered blocking state
[   77.503932][ T5419] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.507290][ T5419] bridge_slave_1: entered allmulticast mode
[   77.514592][ T5419] bridge_slave_1: entered promiscuous mode
[   77.577729][ T5419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   77.585331][ T5419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   77.599412][   T38] audit: type=1400 audit(1712957157.073:215): avc:  denied  { search } for  pid=4662 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[   77.649026][ T5419] team0: Port device team_slave_0 added
[   77.656003][ T5419] team0: Port device team_slave_1 added
[   77.711229][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_0
[   77.714259][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.727627][ T5419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   77.734093][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_1
[   77.737081][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   77.748444][ T5419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   77.804799][ T5419] hsr_slave_0: entered promiscuous mode
[   77.812747][ T5419] hsr_slave_1: entered promiscuous mode
[   78.475180][ T5419] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   78.481765][ T5419] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   78.488268][ T5419] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   78.494677][ T5419] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   78.579874][ T5419] 8021q: adding VLAN 0 to HW filter on device bond0
[   78.593235][ T5419] 8021q: adding VLAN 0 to HW filter on device team0
[   78.603493][  T825] bridge0: port 1(bridge_slave_0) entered blocking state
[   78.606779][  T825] bridge0: port 1(bridge_slave_0) entered forwarding state
[   78.619444][   T29] bridge0: port 2(bridge_slave_1) entered blocking state
[   78.622862][   T29] bridge0: port 2(bridge_slave_1) entered forwarding state
[   78.700466][   T38] audit: type=1400 audit(1712957158.173:216): avc:  denied  { sys_module } for  pid=5419 comm="syz-executor.0" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   78.787379][ T5419] 8021q: adding VLAN 0 to HW filter on device batadv0
[   78.832537][ T5419] veth0_vlan: entered promiscuous mode
[   78.841138][ T5419] veth1_vlan: entered promiscuous mode
[   78.869051][ T5419] veth0_macvtap: entered promiscuous mode
[   78.875846][ T5419] veth1_macvtap: entered promiscuous mode
[   78.892949][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_0
[   78.903243][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_1
[   78.911956][ T5419] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   78.915901][ T5419] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   78.921926][ T5419] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   78.925825][ T5419] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   78.986411][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   78.990352][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.016579][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   79.019998][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   79.074452][ T5473] loop0: detected capacity change from 0 to 1024
[   79.102142][ T5473] hfsplus: request for non-existent node 184549376 in B*Tree
[   79.105388][ T5473] hfsplus: request for non-existent node 184549376 in B*Tree
[   79.110477][ T5473] ==================================================================
[   79.114194][ T5473] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0x22a/0x240
[   79.117837][ T5473] Read of size 8 at addr ffff88801c82ecc0 by task syz-executor.0/5473
[   79.123185][ T5473] 
[   79.124303][ T5473] CPU: 0 PID: 5473 Comm: syz-executor.0 Not tainted 6.9.0-rc3-syzkaller-00344-g8f2c057754b2 #0
[   79.128945][ T5473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   79.133354][ T5473] Call Trace:
[   79.134882][ T5473]  <TASK>
[   79.136217][ T5473]  dump_stack_lvl+0x116/0x1f0
[   79.138380][ T5473]  print_report+0xc3/0x620
[   79.140471][ T5473]  ? __virt_addr_valid+0x5e/0x580
[   79.142780][ T5473]  ? __phys_addr+0xc6/0x150
[   79.144865][ T5473]  kasan_report+0xd9/0x110
[   79.146956][ T5473]  ? hfsplus_bnode_read+0x22a/0x240
[   79.149398][ T5473]  ? hfsplus_bnode_read+0x22a/0x240
[   79.151818][ T5473]  hfsplus_bnode_read+0x22a/0x240
[   79.154141][ T5473]  hfsplus_bnode_dump+0x2a2/0x3e0
[   79.156413][ T5473]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   79.158952][ T5473]  ? hfsplus_bnode_write_u16+0x84/0xb0
[   79.161419][ T5473]  ? hfsplus_bnode_move+0x2a/0x930
[   79.163743][ T5473]  ? __mark_inode_dirty+0x2a6/0xe70
[   79.166091][ T5473]  hfsplus_brec_remove+0x3e2/0x4f0
[   79.168436][ T5473]  __hfsplus_delete_attr+0x2a2/0x3b0
[   79.170819][ T5473]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[   79.173557][ T5473]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   79.176189][ T5473]  hfsplus_delete_all_attrs+0x271/0x330
[   79.178695][ T5473]  ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[   79.181405][ T5473]  ? rcu_is_watching+0x12/0xc0
[   79.183594][ T5473]  ? __mark_inode_dirty+0x5c1/0xe70
[   79.185975][ T5473]  hfsplus_delete_cat+0x844/0xdd0
[   79.188264][ T5473]  ? __pfx_hfsplus_delete_cat+0x10/0x10
[   79.190787][ T5473]  ? __pfx___mutex_lock+0x10/0x10
[   79.193080][ T5473]  hfsplus_unlink+0x213/0x7f0
[   79.195286][ T5473]  ? __pfx_hfsplus_unlink+0x10/0x10
[   79.197650][ T5473]  ? __pfx___might_resched+0x10/0x10
[   79.200036][ T5473]  vfs_unlink+0x2fb/0x910
[   79.202031][ T5473]  do_unlinkat+0x5c0/0x750
[   79.204085][ T5473]  ? __pfx_do_unlinkat+0x10/0x10
[   79.206351][ T5473]  ? __check_object_size+0x322/0x730
[   79.208764][ T5473]  ? getname_flags.part.0+0x1e1/0x4f0
[   79.211226][ T5473]  __x64_sys_unlink+0xc7/0x110
[   79.213321][ T5473]  do_syscall_64+0xcf/0x260
[   79.215406][ T5473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.218082][ T5473] RIP: 0033:0x7f22c607dda9
[   79.220122][ T5473] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   79.228866][ T5473] RSP: 002b:00007f22c5bff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   79.232644][ T5473] RAX: ffffffffffffffda RBX: 00007f22c61abf80 RCX: 00007f22c607dda9
[   79.236154][ T5473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[   79.239626][ T5473] RBP: 00007f22c60ca47a R08: 0000000000000000 R09: 0000000000000000
[   79.243099][ T5473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.246615][ T5473] R13: 000000000000000b R14: 00007f22c61abf80 R15: 00007fff48cdc748
[   79.250159][ T5473]  </TASK>
[   79.251556][ T5473] 
[   79.252659][ T5473] Allocated by task 5473:
[   79.254675][ T5473]  kasan_save_stack+0x33/0x60
[   79.256856][ T5473]  kasan_save_track+0x14/0x30
[   79.259020][ T5473]  __kasan_kmalloc+0xaa/0xb0
[   79.261120][ T5473]  __kmalloc+0x1f9/0x440
[   79.263046][ T5473]  __hfs_bnode_create+0x108/0x870
[   79.265330][ T5473]  hfsplus_bnode_find+0x2c8/0xcb0
[   79.267640][ T5473]  hfsplus_brec_find+0x2b9/0x520
[   79.269824][ T5473]  hfsplus_delete_all_attrs+0x24a/0x330
[   79.272153][ T5473]  hfsplus_delete_cat+0x844/0xdd0
[   79.274384][ T5473]  hfsplus_unlink+0x213/0x7f0
[   79.276501][ T5473]  vfs_unlink+0x2fb/0x910
[   79.278361][ T5473]  do_unlinkat+0x5c0/0x750
[   79.280395][ T5473]  __x64_sys_unlink+0xc7/0x110
[   79.282528][ T5473]  do_syscall_64+0xcf/0x260
[   79.284595][ T5473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.287290][ T5473] 
[   79.288391][ T5473] The buggy address belongs to the object at ffff88801c82ec00
[   79.288391][ T5473]  which belongs to the cache kmalloc-192 of size 192
[   79.294534][ T5473] The buggy address is located 40 bytes to the right of
[   79.294534][ T5473]  allocated 152-byte region [ffff88801c82ec00, ffff88801c82ec98)
[   79.300962][ T5473] 
[   79.302068][ T5473] The buggy address belongs to the physical page:
[   79.304953][ T5473] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1c82e
[   79.308784][ T5473] anon flags: 0xfff80000000800(slab|node=0|zone=1|lastcpupid=0xfff)
[   79.312258][ T5473] page_type: 0xffffffff()
[   79.314088][ T5473] raw: 00fff80000000800 ffff888015042a00 0000000000000000 dead000000000001
[   79.317702][ T5473] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   79.321399][ T5473] page dumped because: kasan: bad access detected
[   79.324236][ T5473] page_owner tracks the page as allocated
[   79.326748][ T5473] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 6485155550, free_ts 0
[   79.334241][ T5473]  post_alloc_hook+0x2d4/0x350
[   79.336432][ T5473]  get_page_from_freelist+0xa28/0x3780
[   79.338910][ T5473]  __alloc_pages+0x22b/0x2460
[   79.341069][ T5473]  new_slab+0xcc/0x3a0
[   79.342959][ T5473]  ___slab_alloc+0x66d/0x1790
[   79.345107][ T5473]  __slab_alloc.constprop.0+0x56/0xb0
[   79.347548][ T5473]  kmalloc_node_trace+0x113/0x380
[   79.349814][ T5473]  mempool_create+0x54/0xd0
[   79.351887][ T5473]  init_cifs+0x4c6/0xa60
[   79.353819][ T5473]  do_one_initcall+0x128/0x700
[   79.355770][ T5473]  kernel_init_freeable+0x69d/0xca0
[   79.357898][ T5473]  kernel_init+0x1c/0x2b0
[   79.359659][ T5473]  ret_from_fork+0x45/0x80
[   79.361456][ T5473]  ret_from_fork_asm+0x1a/0x30
[   79.363641][ T5473] page_owner free stack trace missing
[   79.366018][ T5473] 
[   79.367031][ T5473] Memory state around the buggy address:
[   79.369561][ T5473]  ffff88801c82eb80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   79.373148][ T5473]  ffff88801c82ec00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   79.376737][ T5473] >ffff88801c82ec80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   79.380233][ T5473]                                            ^
[   79.383014][ T5473]  ffff88801c82ed00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   79.386590][ T5473]  ffff88801c82ed80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[   79.390210][ T5473] ==================================================================
[   79.394714][ T5473] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   79.397505][ T5473] CPU: 1 PID: 5473 Comm: syz-executor.0 Not tainted 6.9.0-rc3-syzkaller-00344-g8f2c057754b2 #0
[   79.401901][ T5473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[   79.406392][ T5473] Call Trace:
[   79.407924][ T5473]  <TASK>
[   79.409250][ T5473]  dump_stack_lvl+0x3d/0x1f0
[   79.411363][ T5473]  panic+0x6f5/0x7a0
[   79.413138][ T5473]  ? __pfx_panic+0x10/0x10
[   79.415167][ T5473]  ? preempt_schedule_thunk+0x1a/0x30
[   79.417605][ T5473]  ? preempt_schedule_common+0x44/0xc0
[   79.419947][ T5473]  ? check_panic_on_warn+0x1f/0xb0
[   79.422025][ T5473]  check_panic_on_warn+0xab/0xb0
[   79.424013][ T5473]  end_report+0x117/0x180
[   79.425764][ T5473]  kasan_report+0xe9/0x110
[   79.427538][ T5473]  ? hfsplus_bnode_read+0x22a/0x240
[   79.429650][ T5473]  ? hfsplus_bnode_read+0x22a/0x240
[   79.431970][ T5473]  hfsplus_bnode_read+0x22a/0x240
[   79.434292][ T5473]  hfsplus_bnode_dump+0x2a2/0x3e0
[   79.436581][ T5473]  ? __pfx_hfsplus_bnode_dump+0x10/0x10
[   79.439078][ T5473]  ? hfsplus_bnode_write_u16+0x84/0xb0
[   79.441506][ T5473]  ? hfsplus_bnode_move+0x2a/0x930
[   79.443833][ T5473]  ? __mark_inode_dirty+0x2a6/0xe70
[   79.446154][ T5473]  hfsplus_brec_remove+0x3e2/0x4f0
[   79.448430][ T5473]  __hfsplus_delete_attr+0x2a2/0x3b0
[   79.450817][ T5473]  ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[   79.453563][ T5473]  ? __pfx___hfsplus_delete_attr+0x10/0x10
[   79.456213][ T5473]  hfsplus_delete_all_attrs+0x271/0x330
[   79.458722][ T5473]  ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[   79.461467][ T5473]  ? rcu_is_watching+0x12/0xc0
[   79.463623][ T5473]  ? __mark_inode_dirty+0x5c1/0xe70
[   79.465954][ T5473]  hfsplus_delete_cat+0x844/0xdd0
[   79.468196][ T5473]  ? __pfx_hfsplus_delete_cat+0x10/0x10
[   79.470670][ T5473]  ? __pfx___mutex_lock+0x10/0x10
[   79.472904][ T5473]  hfsplus_unlink+0x213/0x7f0
[   79.475032][ T5473]  ? __pfx_hfsplus_unlink+0x10/0x10
[   79.477318][ T5473]  ? __pfx___might_resched+0x10/0x10
[   79.479664][ T5473]  vfs_unlink+0x2fb/0x910
[   79.481647][ T5473]  do_unlinkat+0x5c0/0x750
[   79.483637][ T5473]  ? __pfx_do_unlinkat+0x10/0x10
[   79.485857][ T5473]  ? __check_object_size+0x322/0x730
[   79.488171][ T5473]  ? getname_flags.part.0+0x1e1/0x4f0
[   79.490522][ T5473]  __x64_sys_unlink+0xc7/0x110
[   79.492149][ T5473]  do_syscall_64+0xcf/0x260
[   79.494163][ T5473]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   79.496759][ T5473] RIP: 0033:0x7f22c607dda9
[   79.498681][ T5473] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   79.506285][ T5473] RSP: 002b:00007f22c5bff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[   79.510009][ T5473] RAX: ffffffffffffffda RBX: 00007f22c61abf80 RCX: 00007f22c607dda9
[   79.513334][ T5473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[   79.516822][ T5473] RBP: 00007f22c60ca47a R08: 0000000000000000 R09: 0000000000000000
[   79.520112][ T5473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   79.523485][ T5473] R13: 000000000000000b R14: 00007f22c61abf80 R15: 00007fff48cdc748
[   79.526848][ T5473]  </TASK>
[   79.529021][ T5473] Kernel Offset: disabled
[   79.530951][ T5473] Rebooting in 86400 seconds..