Warning: Permanently added '[localhost]:6495' (ED25519) to the list of known hosts.
2024/04/12 21:25:54 ignoring optional flag "sandboxArg"="0"
2024/04/12 21:25:54 parsed 1 programs
[ 75.305751][ T38] kauditd_printk_skb: 73 callbacks suppressed
[ 75.305764][ T38] audit: type=1400 audit(1712957154.773:207): avc: denied { getattr } for pid=5382 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1
[ 75.343392][ T38] audit: type=1400 audit(1712957154.813:208): avc: denied { mounton } for pid=5396 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 75.354162][ T38] audit: type=1400 audit(1712957154.813:209): avc: denied { mount } for pid=5396 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 75.363771][ T38] audit: type=1400 audit(1712957154.833:210): avc: denied { read write } for pid=5396 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 75.374220][ T38] audit: type=1400 audit(1712957154.833:211): avc: denied { open } for pid=5396 comm="syz-executor" path="/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 75.419822][ T38] audit: type=1400 audit(1712957154.893:212): avc: denied { unlink } for pid=5396 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 75.878926][ T38] audit: type=1400 audit(1712957155.353:213): avc: denied { relabelto } for pid=5411 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 76.664425][ T1354] ieee802154 phy0 wpan0: encryption failed: -22
[ 76.667132][ T1354] ieee802154 phy1 wpan1: encryption failed: -22
[ 77.144521][ T5396] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
2024/04/12 21:25:56 executed programs: 0
[ 77.204570][ T64] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 77.208591][ T64] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 77.212221][ T64] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 77.216365][ T64] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 77.220529][ T64] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 77.223864][ T64] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 77.231153][ T38] audit: type=1400 audit(1712957156.703:214): avc: denied { mounton } for pid=5419 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1
[ 77.369502][ T5419] chnl_net:caif_netlink_parms(): no params data found
[ 77.484057][ T5419] bridge0: port 1(bridge_slave_0) entered blocking state
[ 77.487167][ T5419] bridge0: port 1(bridge_slave_0) entered disabled state
[ 77.490922][ T5419] bridge_slave_0: entered allmulticast mode
[ 77.495054][ T5419] bridge_slave_0: entered promiscuous mode
[ 77.500655][ T5419] bridge0: port 2(bridge_slave_1) entered blocking state
[ 77.503932][ T5419] bridge0: port 2(bridge_slave_1) entered disabled state
[ 77.507290][ T5419] bridge_slave_1: entered allmulticast mode
[ 77.514592][ T5419] bridge_slave_1: entered promiscuous mode
[ 77.577729][ T5419] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 77.585331][ T5419] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 77.599412][ T38] audit: type=1400 audit(1712957157.073:215): avc: denied { search } for pid=4662 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 77.649026][ T5419] team0: Port device team_slave_0 added
[ 77.656003][ T5419] team0: Port device team_slave_1 added
[ 77.711229][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 77.714259][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.727627][ T5419] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 77.734093][ T5419] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 77.737081][ T5419] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 77.748444][ T5419] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 77.804799][ T5419] hsr_slave_0: entered promiscuous mode
[ 77.812747][ T5419] hsr_slave_1: entered promiscuous mode
[ 78.475180][ T5419] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 78.481765][ T5419] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 78.488268][ T5419] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 78.494677][ T5419] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 78.579874][ T5419] 8021q: adding VLAN 0 to HW filter on device bond0
[ 78.593235][ T5419] 8021q: adding VLAN 0 to HW filter on device team0
[ 78.603493][ T825] bridge0: port 1(bridge_slave_0) entered blocking state
[ 78.606779][ T825] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 78.619444][ T29] bridge0: port 2(bridge_slave_1) entered blocking state
[ 78.622862][ T29] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 78.700466][ T38] audit: type=1400 audit(1712957158.173:216): avc: denied { sys_module } for pid=5419 comm="syz-executor.0" capability=16 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[ 78.787379][ T5419] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 78.832537][ T5419] veth0_vlan: entered promiscuous mode
[ 78.841138][ T5419] veth1_vlan: entered promiscuous mode
[ 78.869051][ T5419] veth0_macvtap: entered promiscuous mode
[ 78.875846][ T5419] veth1_macvtap: entered promiscuous mode
[ 78.892949][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 78.903243][ T5419] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 78.911956][ T5419] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.915901][ T5419] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.921926][ T5419] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.925825][ T5419] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 78.986411][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 78.990352][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 79.016579][ T1091] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 79.019998][ T1091] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 79.074452][ T5473] loop0: detected capacity change from 0 to 1024
[ 79.102142][ T5473] hfsplus: request for non-existent node 184549376 in B*Tree
[ 79.105388][ T5473] hfsplus: request for non-existent node 184549376 in B*Tree
[ 79.110477][ T5473] ==================================================================
[ 79.114194][ T5473] BUG: KASAN: slab-out-of-bounds in hfsplus_bnode_read+0x22a/0x240
[ 79.117837][ T5473] Read of size 8 at addr ffff88801c82ecc0 by task syz-executor.0/5473
[ 79.123185][ T5473]
[ 79.124303][ T5473] CPU: 0 PID: 5473 Comm: syz-executor.0 Not tainted 6.9.0-rc3-syzkaller-00344-g8f2c057754b2 #0
[ 79.128945][ T5473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 79.133354][ T5473] Call Trace:
[ 79.134882][ T5473]
[ 79.136217][ T5473] dump_stack_lvl+0x116/0x1f0
[ 79.138380][ T5473] print_report+0xc3/0x620
[ 79.140471][ T5473] ? __virt_addr_valid+0x5e/0x580
[ 79.142780][ T5473] ? __phys_addr+0xc6/0x150
[ 79.144865][ T5473] kasan_report+0xd9/0x110
[ 79.146956][ T5473] ? hfsplus_bnode_read+0x22a/0x240
[ 79.149398][ T5473] ? hfsplus_bnode_read+0x22a/0x240
[ 79.151818][ T5473] hfsplus_bnode_read+0x22a/0x240
[ 79.154141][ T5473] hfsplus_bnode_dump+0x2a2/0x3e0
[ 79.156413][ T5473] ? __pfx_hfsplus_bnode_dump+0x10/0x10
[ 79.158952][ T5473] ? hfsplus_bnode_write_u16+0x84/0xb0
[ 79.161419][ T5473] ? hfsplus_bnode_move+0x2a/0x930
[ 79.163743][ T5473] ? __mark_inode_dirty+0x2a6/0xe70
[ 79.166091][ T5473] hfsplus_brec_remove+0x3e2/0x4f0
[ 79.168436][ T5473] __hfsplus_delete_attr+0x2a2/0x3b0
[ 79.170819][ T5473] ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[ 79.173557][ T5473] ? __pfx___hfsplus_delete_attr+0x10/0x10
[ 79.176189][ T5473] hfsplus_delete_all_attrs+0x271/0x330
[ 79.178695][ T5473] ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[ 79.181405][ T5473] ? rcu_is_watching+0x12/0xc0
[ 79.183594][ T5473] ? __mark_inode_dirty+0x5c1/0xe70
[ 79.185975][ T5473] hfsplus_delete_cat+0x844/0xdd0
[ 79.188264][ T5473] ? __pfx_hfsplus_delete_cat+0x10/0x10
[ 79.190787][ T5473] ? __pfx___mutex_lock+0x10/0x10
[ 79.193080][ T5473] hfsplus_unlink+0x213/0x7f0
[ 79.195286][ T5473] ? __pfx_hfsplus_unlink+0x10/0x10
[ 79.197650][ T5473] ? __pfx___might_resched+0x10/0x10
[ 79.200036][ T5473] vfs_unlink+0x2fb/0x910
[ 79.202031][ T5473] do_unlinkat+0x5c0/0x750
[ 79.204085][ T5473] ? __pfx_do_unlinkat+0x10/0x10
[ 79.206351][ T5473] ? __check_object_size+0x322/0x730
[ 79.208764][ T5473] ? getname_flags.part.0+0x1e1/0x4f0
[ 79.211226][ T5473] __x64_sys_unlink+0xc7/0x110
[ 79.213321][ T5473] do_syscall_64+0xcf/0x260
[ 79.215406][ T5473] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 79.218082][ T5473] RIP: 0033:0x7f22c607dda9
[ 79.220122][ T5473] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 79.228866][ T5473] RSP: 002b:00007f22c5bff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 79.232644][ T5473] RAX: ffffffffffffffda RBX: 00007f22c61abf80 RCX: 00007f22c607dda9
[ 79.236154][ T5473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[ 79.239626][ T5473] RBP: 00007f22c60ca47a R08: 0000000000000000 R09: 0000000000000000
[ 79.243099][ T5473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 79.246615][ T5473] R13: 000000000000000b R14: 00007f22c61abf80 R15: 00007fff48cdc748
[ 79.250159][ T5473]
[ 79.251556][ T5473]
[ 79.252659][ T5473] Allocated by task 5473:
[ 79.254675][ T5473] kasan_save_stack+0x33/0x60
[ 79.256856][ T5473] kasan_save_track+0x14/0x30
[ 79.259020][ T5473] __kasan_kmalloc+0xaa/0xb0
[ 79.261120][ T5473] __kmalloc+0x1f9/0x440
[ 79.263046][ T5473] __hfs_bnode_create+0x108/0x870
[ 79.265330][ T5473] hfsplus_bnode_find+0x2c8/0xcb0
[ 79.267640][ T5473] hfsplus_brec_find+0x2b9/0x520
[ 79.269824][ T5473] hfsplus_delete_all_attrs+0x24a/0x330
[ 79.272153][ T5473] hfsplus_delete_cat+0x844/0xdd0
[ 79.274384][ T5473] hfsplus_unlink+0x213/0x7f0
[ 79.276501][ T5473] vfs_unlink+0x2fb/0x910
[ 79.278361][ T5473] do_unlinkat+0x5c0/0x750
[ 79.280395][ T5473] __x64_sys_unlink+0xc7/0x110
[ 79.282528][ T5473] do_syscall_64+0xcf/0x260
[ 79.284595][ T5473] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 79.287290][ T5473]
[ 79.288391][ T5473] The buggy address belongs to the object at ffff88801c82ec00
[ 79.288391][ T5473] which belongs to the cache kmalloc-192 of size 192
[ 79.294534][ T5473] The buggy address is located 40 bytes to the right of
[ 79.294534][ T5473] allocated 152-byte region [ffff88801c82ec00, ffff88801c82ec98)
[ 79.300962][ T5473]
[ 79.302068][ T5473] The buggy address belongs to the physical page:
[ 79.304953][ T5473] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1c82e
[ 79.308784][ T5473] anon flags: 0xfff80000000800(slab|node=0|zone=1|lastcpupid=0xfff)
[ 79.312258][ T5473] page_type: 0xffffffff()
[ 79.314088][ T5473] raw: 00fff80000000800 ffff888015042a00 0000000000000000 dead000000000001
[ 79.317702][ T5473] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[ 79.321399][ T5473] page dumped because: kasan: bad access detected
[ 79.324236][ T5473] page_owner tracks the page as allocated
[ 79.326748][ T5473] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 1, tgid 1 (swapper/0), ts 6485155550, free_ts 0
[ 79.334241][ T5473] post_alloc_hook+0x2d4/0x350
[ 79.336432][ T5473] get_page_from_freelist+0xa28/0x3780
[ 79.338910][ T5473] __alloc_pages+0x22b/0x2460
[ 79.341069][ T5473] new_slab+0xcc/0x3a0
[ 79.342959][ T5473] ___slab_alloc+0x66d/0x1790
[ 79.345107][ T5473] __slab_alloc.constprop.0+0x56/0xb0
[ 79.347548][ T5473] kmalloc_node_trace+0x113/0x380
[ 79.349814][ T5473] mempool_create+0x54/0xd0
[ 79.351887][ T5473] init_cifs+0x4c6/0xa60
[ 79.353819][ T5473] do_one_initcall+0x128/0x700
[ 79.355770][ T5473] kernel_init_freeable+0x69d/0xca0
[ 79.357898][ T5473] kernel_init+0x1c/0x2b0
[ 79.359659][ T5473] ret_from_fork+0x45/0x80
[ 79.361456][ T5473] ret_from_fork_asm+0x1a/0x30
[ 79.363641][ T5473] page_owner free stack trace missing
[ 79.366018][ T5473]
[ 79.367031][ T5473] Memory state around the buggy address:
[ 79.369561][ T5473] ffff88801c82eb80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 79.373148][ T5473] ffff88801c82ec00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 79.376737][ T5473] >ffff88801c82ec80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 79.380233][ T5473] ^
[ 79.383014][ T5473] ffff88801c82ed00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 79.386590][ T5473] ffff88801c82ed80: 00 00 00 fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 79.390210][ T5473] ==================================================================
[ 79.394714][ T5473] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 79.397505][ T5473] CPU: 1 PID: 5473 Comm: syz-executor.0 Not tainted 6.9.0-rc3-syzkaller-00344-g8f2c057754b2 #0
[ 79.401901][ T5473] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.2-debian-1.16.2-1 04/01/2014
[ 79.406392][ T5473] Call Trace:
[ 79.407924][ T5473]
[ 79.409250][ T5473] dump_stack_lvl+0x3d/0x1f0
[ 79.411363][ T5473] panic+0x6f5/0x7a0
[ 79.413138][ T5473] ? __pfx_panic+0x10/0x10
[ 79.415167][ T5473] ? preempt_schedule_thunk+0x1a/0x30
[ 79.417605][ T5473] ? preempt_schedule_common+0x44/0xc0
[ 79.419947][ T5473] ? check_panic_on_warn+0x1f/0xb0
[ 79.422025][ T5473] check_panic_on_warn+0xab/0xb0
[ 79.424013][ T5473] end_report+0x117/0x180
[ 79.425764][ T5473] kasan_report+0xe9/0x110
[ 79.427538][ T5473] ? hfsplus_bnode_read+0x22a/0x240
[ 79.429650][ T5473] ? hfsplus_bnode_read+0x22a/0x240
[ 79.431970][ T5473] hfsplus_bnode_read+0x22a/0x240
[ 79.434292][ T5473] hfsplus_bnode_dump+0x2a2/0x3e0
[ 79.436581][ T5473] ? __pfx_hfsplus_bnode_dump+0x10/0x10
[ 79.439078][ T5473] ? hfsplus_bnode_write_u16+0x84/0xb0
[ 79.441506][ T5473] ? hfsplus_bnode_move+0x2a/0x930
[ 79.443833][ T5473] ? __mark_inode_dirty+0x2a6/0xe70
[ 79.446154][ T5473] hfsplus_brec_remove+0x3e2/0x4f0
[ 79.448430][ T5473] __hfsplus_delete_attr+0x2a2/0x3b0
[ 79.450817][ T5473] ? __pfx_hfs_find_1st_rec_by_cnid+0x10/0x10
[ 79.453563][ T5473] ? __pfx___hfsplus_delete_attr+0x10/0x10
[ 79.456213][ T5473] hfsplus_delete_all_attrs+0x271/0x330
[ 79.458722][ T5473] ? __pfx_hfsplus_delete_all_attrs+0x10/0x10
[ 79.461467][ T5473] ? rcu_is_watching+0x12/0xc0
[ 79.463623][ T5473] ? __mark_inode_dirty+0x5c1/0xe70
[ 79.465954][ T5473] hfsplus_delete_cat+0x844/0xdd0
[ 79.468196][ T5473] ? __pfx_hfsplus_delete_cat+0x10/0x10
[ 79.470670][ T5473] ? __pfx___mutex_lock+0x10/0x10
[ 79.472904][ T5473] hfsplus_unlink+0x213/0x7f0
[ 79.475032][ T5473] ? __pfx_hfsplus_unlink+0x10/0x10
[ 79.477318][ T5473] ? __pfx___might_resched+0x10/0x10
[ 79.479664][ T5473] vfs_unlink+0x2fb/0x910
[ 79.481647][ T5473] do_unlinkat+0x5c0/0x750
[ 79.483637][ T5473] ? __pfx_do_unlinkat+0x10/0x10
[ 79.485857][ T5473] ? __check_object_size+0x322/0x730
[ 79.488171][ T5473] ? getname_flags.part.0+0x1e1/0x4f0
[ 79.490522][ T5473] __x64_sys_unlink+0xc7/0x110
[ 79.492149][ T5473] do_syscall_64+0xcf/0x260
[ 79.494163][ T5473] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 79.496759][ T5473] RIP: 0033:0x7f22c607dda9
[ 79.498681][ T5473] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 79.506285][ T5473] RSP: 002b:00007f22c5bff0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057
[ 79.510009][ T5473] RAX: ffffffffffffffda RBX: 00007f22c61abf80 RCX: 00007f22c607dda9
[ 79.513334][ T5473] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000140
[ 79.516822][ T5473] RBP: 00007f22c60ca47a R08: 0000000000000000 R09: 0000000000000000
[ 79.520112][ T5473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 79.523485][ T5473] R13: 000000000000000b R14: 00007f22c61abf80 R15: 00007fff48cdc748
[ 79.526848][ T5473]
[ 79.529021][ T5473] Kernel Offset: disabled
[ 79.530951][ T5473] Rebooting in 86400 seconds..