Warning: Permanently added '10.128.15.201' (ED25519) to the list of known hosts. 2024/05/13 02:00:11 ignoring optional flag "sandboxArg"="0" 2024/05/13 02:00:11 parsed 1 programs [ 42.310421][ T27] audit: type=1400 audit(1715565611.683:156): avc: denied { mounton } for pid=344 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 42.335119][ T27] audit: type=1400 audit(1715565611.683:157): avc: denied { mount } for pid=344 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 42.363202][ T27] audit: type=1400 audit(1715565611.743:158): avc: denied { unlink } for pid=344 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2024/05/13 02:00:11 executed programs: 0 [ 42.427450][ T344] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 42.447388][ T350] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.454433][ T350] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.461330][ T350] device bridge_slave_0 entered promiscuous mode [ 42.467588][ T350] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.474490][ T350] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.481419][ T350] device bridge_slave_1 entered promiscuous mode [ 42.492804][ T27] audit: type=1400 audit(1715565611.863:159): avc: denied { write } for pid=350 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 42.494362][ T350] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.513331][ T27] audit: type=1400 audit(1715565611.863:160): avc: denied { read } for pid=350 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 42.520152][ T350] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.547548][ T350] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.554387][ T350] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.563750][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 42.570664][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 42.577695][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 42.584788][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 42.594078][ T350] device veth0_vlan entered promiscuous mode [ 42.600652][ T350] device veth1_macvtap entered promiscuous mode [ 42.607319][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.615438][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.622901][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 42.629967][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 42.637174][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.644958][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 42.652818][ T23] bridge0: port 1(bridge_slave_0) entered blocking state [ 42.659639][ T23] bridge0: port 1(bridge_slave_0) entered forwarding state [ 42.666718][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 42.674717][ T23] bridge0: port 2(bridge_slave_1) entered blocking state [ 42.681591][ T23] bridge0: port 2(bridge_slave_1) entered forwarding state [ 42.688840][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.696388][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.705868][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.713930][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.722669][ T27] audit: type=1400 audit(1715565612.103:161): avc: denied { mounton } for pid=350 comm="syz-executor.0" path="/dev/binderfs" dev="devtmpfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 42.748850][ T27] audit: type=1400 audit(1715565612.133:162): avc: denied { mounton } for pid=355 comm="syz-executor.0" path="/root/syzkaller-testdir1586990603/syzkaller.1Imv0N/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 42.850129][ T357] BUG: kernel NULL pointer dereference, address: 000000000000000a [ 42.857925][ T357] #PF: supervisor read access in kernel mode [ 42.863930][ T357] #PF: error_code(0x0000) - not-present page [ 42.869751][ T357] PGD 110fe3067 P4D 110fe3067 PUD 110fe8067 PMD 0 [ 42.876237][ T357] Oops: 0000 [#1] PREEMPT SMP [ 42.880681][ T357] CPU: 0 PID: 357 Comm: syz-executor.0 Not tainted 6.1.75-syzkaller #0 [ 42.888839][ T357] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 42.898733][ T357] RIP: 0010:filename_create+0xf1/0x1a0 [ 42.904030][ T357] Code: 7d c0 44 89 f2 e8 7f d4 ff ff 49 89 c6 48 3d 00 f0 ff ff 76 05 8b 5d b4 eb 41 80 7d bb 00 0f 95 c0 41 f6 c5 02 0f 94 c1 20 c1 <41> 0f b6 56 02 f6 c2 70 0f 95 c0 08 c8 49 c7 c7 ef ff ff ff f6 c2 [ 42.923908][ T357] RSP: 0018:ffffc900007dfe58 EFLAGS: 00010246 [ 42.929912][ T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 42.937727][ T357] RDX: 00000000ffffff9c RSI: 0000000400000000 RDI: ffff8881002fdf00 [ 42.945847][ T357] RBP: ffffc900007dfea8 R08: ffff8881127de540 R09: ffffffff81545e4c [ 42.953736][ T357] R10: ffff8881127de540 R11: ffff888100041400 R12: ffffc900007dfec0 [ 42.961587][ T357] R13: 0000000000000002 R14: 0000000000000008 R15: 00000000000000a0 [ 42.969443][ T357] FS: 00007f6b76ca36c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 42.978212][ T357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.984717][ T357] CR2: 000000000000000a CR3: 0000000110fd4000 CR4: 00000000003506b0 [ 42.992643][ T357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.000437][ T357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.008249][ T357] Call Trace: [ 43.011365][ T357] [ 43.014143][ T357] ? __die_body+0x62/0xb0 [ 43.018308][ T357] ? __die+0x7e/0x90 [ 43.022039][ T357] ? page_fault_oops+0x369/0x3d0 [ 43.026818][ T357] ? exc_page_fault+0x4dc/0x670 [ 43.031501][ T357] ? asm_exc_page_fault+0x27/0x30 [ 43.036363][ T357] ? fuse_lookup_name+0x37c/0x3e0 [ 43.041241][ T357] ? filename_create+0xf1/0x1a0 [ 43.045908][ T357] ? filename_create+0xd1/0x1a0 [ 43.050597][ T357] do_mkdirat+0xb7/0x150 [ 43.054673][ T357] __x64_sys_mkdirat+0x2c/0x40 [ 43.059273][ T357] do_syscall_64+0x3d/0xb0 [ 43.063523][ T357] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.069253][ T357] RIP: 0033:0x7f6b75e7dda9 [ 43.073509][ T357] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 43.092950][ T357] RSP: 002b:00007f6b76ca30c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 43.101558][ T357] RAX: ffffffffffffffda RBX: 00007f6b75fac050 RCX: 00007f6b75e7dda9 [ 43.109543][ T357] RDX: 0000000000000100 RSI: 0000000020000000 RDI: 0000000000000004 [ 43.117422][ T357] RBP: 00007f6b75eca47a R08: 0000000000000000 R09: 0000000000000000 [ 43.125233][ T357] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 43.133044][ T357] R13: 000000000000006e R14: 00007f6b75fac050 R15: 00007fff0b5fa268 [ 43.140863][ T357] [ 43.143720][ T357] Modules linked in: [ 43.147467][ T357] CR2: 000000000000000a [ 43.151454][ T357] ---[ end trace 0000000000000000 ]--- [ 43.156740][ T357] RIP: 0010:filename_create+0xf1/0x1a0 [ 43.162034][ T357] Code: 7d c0 44 89 f2 e8 7f d4 ff ff 49 89 c6 48 3d 00 f0 ff ff 76 05 8b 5d b4 eb 41 80 7d bb 00 0f 95 c0 41 f6 c5 02 0f 94 c1 20 c1 <41> 0f b6 56 02 f6 c2 70 0f 95 c0 08 c8 49 c7 c7 ef ff ff ff f6 c2 [ 43.181567][ T357] RSP: 0018:ffffc900007dfe58 EFLAGS: 00010246 [ 43.187469][ T357] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000 [ 43.195273][ T357] RDX: 00000000ffffff9c RSI: 0000000400000000 RDI: ffff8881002fdf00 [ 43.203178][ T357] RBP: ffffc900007dfea8 R08: ffff8881127de540 R09: ffffffff81545e4c [ 43.210993][ T357] R10: ffff8881127de540 R11: ffff888100041400 R12: ffffc900007dfec0 [ 43.218802][ T357] R13: 0000000000000002 R14: 0000000000000008 R15: 00000000000000a0 [ 43.226779][ T357] FS: 00007f6b76ca36c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 43.235548][ T357] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.242059][ T357] CR2: 000000000000000a CR3: 0000000110fd4000 CR4: 00000000003506b0 [ 43.250052][ T357] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.257854][ T357] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.265748][ T357] Kernel panic - not syncing: Fatal exception [ 43.271941][ T357] Kernel Offset: disabled [ 43.276164][ T357] Rebooting in 86400 seconds..