[ 77.291664][ T1382] ieee802154 phy0 wpan0: encryption failed: -22 [ 77.295114][ T1382] ieee802154 phy1 wpan1: encryption failed: -22 Warning: Permanently added '[localhost]:57214' (ED25519) to the list of known hosts. 2024/08/15 23:32:43 ignoring optional flag "sandboxArg"="0" 2024/08/15 23:32:44 parsed 1 programs [ 80.661207][ T39] audit: type=1400 audit(1723764764.259:132): avc: denied { getattr } for pid=5454 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 80.672120][ T39] audit: type=1400 audit(1723764764.259:133): avc: denied { read } for pid=5454 comm="syz-execprog" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 80.679804][ T39] audit: type=1400 audit(1723764764.269:134): avc: denied { open } for pid=5454 comm="syz-execprog" path="user:[4026531837]" dev="nsfs" ino=4026531837 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 80.793532][ T39] audit: type=1400 audit(1723764764.389:135): avc: denied { unlink } for pid=5463 comm="syz-executor" name="swap-file" dev="sda1" ino=1931 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 82.793068][ T5463] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/08/15 23:32:46 executed programs: 0 [ 82.863298][ T5352] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 82.866715][ T5352] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 82.870214][ T5352] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 82.876322][ T5352] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 82.882596][ T5352] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 82.885930][ T5352] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 82.895493][ T39] audit: type=1400 audit(1723764766.499:136): avc: denied { mounton } for pid=5469 comm="syz-executor.0" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 83.049784][ T5469] chnl_net:caif_netlink_parms(): no params data found [ 83.160683][ T5469] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.165079][ T5469] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.168113][ T5469] bridge_slave_0: entered allmulticast mode [ 83.172077][ T5469] bridge_slave_0: entered promiscuous mode [ 83.178164][ T5469] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.181506][ T5469] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.185352][ T5469] bridge_slave_1: entered allmulticast mode [ 83.190168][ T5469] bridge_slave_1: entered promiscuous mode [ 83.252924][ T5469] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 83.264442][ T5469] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 83.329936][ T5469] team0: Port device team_slave_0 added [ 83.340197][ T5469] team0: Port device team_slave_1 added [ 83.397671][ T5469] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 83.401117][ T5469] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.412613][ T5469] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 83.419669][ T5469] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 83.422745][ T5469] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 83.433597][ T5469] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 83.507204][ T5469] hsr_slave_0: entered promiscuous mode [ 83.510882][ T5469] hsr_slave_1: entered promiscuous mode [ 84.428974][ T5469] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 84.434861][ T5469] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 84.441434][ T5469] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 84.462964][ T5469] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 84.543172][ T5469] 8021q: adding VLAN 0 to HW filter on device bond0 [ 84.562162][ T5469] 8021q: adding VLAN 0 to HW filter on device team0 [ 84.574255][ T1172] bridge0: port 1(bridge_slave_0) entered blocking state [ 84.577153][ T1172] bridge0: port 1(bridge_slave_0) entered forwarding state [ 84.585584][ T1172] bridge0: port 2(bridge_slave_1) entered blocking state [ 84.592302][ T1172] bridge0: port 2(bridge_slave_1) entered forwarding state [ 84.642213][ T5469] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 84.648149][ T5469] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 84.806857][ T5469] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 84.843515][ T5469] veth0_vlan: entered promiscuous mode [ 84.859132][ T5469] veth1_vlan: entered promiscuous mode [ 84.900232][ T5469] veth0_macvtap: entered promiscuous mode [ 84.915687][ T5469] veth1_macvtap: entered promiscuous mode [ 84.930448][ T5469] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 84.941265][ T5469] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 84.949215][ T5469] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.954597][ T5469] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.954879][ T5352] Bluetooth: hci0: command tx timeout [ 84.959584][ T5469] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 84.966623][ T5469] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 85.063652][ T1172] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.067124][ T1172] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.103071][ T104] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 85.106893][ T104] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 85.160196][ T5526] loop0: detected capacity change from 0 to 2048 [ 85.166067][ T39] audit: type=1400 audit(1723764768.769:137): avc: denied { mounton } for pid=5524 comm="syz-executor.0" path="/syzkaller-testdir1015977605/syzkaller.F9WvQZ/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1 [ 85.251695][ T5526] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 85.259364][ T39] audit: type=1400 audit(1723764768.869:138): avc: denied { mount } for pid=5524 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 85.269172][ T39] audit: type=1400 audit(1723764768.869:139): avc: denied { write } for pid=5524 comm="syz-executor.0" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 85.275474][ T5524] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, [ 85.283057][ T39] audit: type=1400 audit(1723764768.869:140): avc: denied { add_name } for pid=5524 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 85.283100][ T39] audit: type=1400 audit(1723764768.869:141): avc: denied { create } for pid=5524 comm="syz-executor.0" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 85.286762][ T5524] block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 85.315673][ T5526] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #18: block 62218: comm syz-executor.0: lblock 0 mapped to illegal pblock 62218 (length 1) [ 85.325782][ T5526] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 117 [ 85.332644][ T5526] EXT4-fs (loop0): This should not happen!! Data will be lost [ 85.332644][ T5526] [ 85.348679][ T1172] ------------[ cut here ]------------ [ 85.351417][ T1172] kernel BUG at fs/ext4/inode.c:2637! [ 85.356512][ T1172] Oops: invalid opcode: 0000 [#1] PREEMPT SMP KASAN NOPTI [ 85.361531][ T1172] CPU: 0 UID: 0 PID: 1172 Comm: kworker/u32:11 Not tainted 6.11.0-rc3-syzkaller-00144-ge724918b3786 #0 [ 85.367613][ T1172] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014 [ 85.372727][ T1172] Workqueue: writeback wb_workfn (flush-7:0) [ 85.375807][ T1172] RIP: 0010:ext4_do_writepages+0x2572/0x3250 [ 85.378398][ T1172] Code: 48 c1 ea 03 80 3c 02 00 0f 85 44 0c 00 00 48 c7 44 24 28 0c db 03 00 48 8b 44 24 08 48 8b 18 e9 c3 dc ff ff e8 3f 04 45 ff 90 <0f> 0b e8 37 04 45 ff 48 8b 4c 24 70 41 89 dc 48 b8 00 00 00 00 00 [ 85.387351][ T1172] RSP: 0018:ffffc90005e272a8 EFLAGS: 00010293 [ 85.390315][ T1172] RAX: 0000000000000000 RBX: ffff88803016edf8 RCX: ffffffff82455f9a [ 85.394521][ T1172] RDX: ffff888022f3c880 RSI: ffffffff824573e1 RDI: 0000000000000007 [ 85.398251][ T1172] RBP: ffffc90005e274b8 R08: 0000000000000007 R09: 0000000000000000 [ 85.401770][ T1172] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001 [ 85.405321][ T1172] R13: ffff88801f514638 R14: 0000000000000001 R15: 0000000004208060 [ 85.408942][ T1172] FS: 0000000000000000(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 85.414130][ T1172] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.418055][ T1172] CR2: 00007fb5e9a32d58 CR3: 0000000020388000 CR4: 0000000000350ef0 [ 85.422829][ T1172] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.427591][ T1172] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.432104][ T1172] Call Trace: [ 85.433477][ T1172] [ 85.434801][ T1172] ? show_regs+0x8c/0xa0 [ 85.437192][ T1172] ? die+0x36/0xa0 [ 85.439495][ T1172] ? do_trap+0x232/0x430 [ 85.442064][ T1172] ? ext4_do_writepages+0x2572/0x3250 [ 85.445300][ T1172] ? ext4_do_writepages+0x2572/0x3250 [ 85.448353][ T1172] ? do_error_trap+0xf4/0x230 [ 85.450426][ T1172] ? ext4_do_writepages+0x2572/0x3250 [ 85.453399][ T1172] ? handle_invalid_op+0x34/0x40 [ 85.456505][ T1172] ? ext4_do_writepages+0x2572/0x3250 [ 85.458899][ T1172] ? exc_invalid_op+0x2e/0x50 [ 85.460936][ T1172] ? asm_exc_invalid_op+0x1a/0x20 [ 85.463137][ T1172] ? ext4_do_writepages+0x112a/0x3250 [ 85.465212][ T1172] ? ext4_do_writepages+0x2571/0x3250 [ 85.467349][ T1172] ? ext4_do_writepages+0x2572/0x3250 [ 85.469628][ T1172] ? ext4_do_writepages+0x2571/0x3250 [ 85.471951][ T1172] ? hlock_conflict+0x58/0x200 [ 85.474146][ T1172] ? __pfx_ext4_do_writepages+0x10/0x10 [ 85.476469][ T1172] ext4_writepages+0x303/0x730 [ 85.478254][ T1172] ? __pfx_ext4_writepages+0x10/0x10 [ 85.481026][ T1172] ? __pfx_ext4_writepages+0x10/0x10 [ 85.483629][ T1172] do_writepages+0x1a3/0x7f0 [ 85.485503][ T1172] ? __pfx_do_writepages+0x10/0x10 [ 85.487519][ T1172] ? reacquire_held_locks+0x20b/0x4c0 [ 85.489629][ T1172] ? writeback_sb_inodes+0x3b5/0x1150 [ 85.492000][ T1172] ? find_held_lock+0x2d/0x110 [ 85.494302][ T1172] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 85.497030][ T1172] ? __pfx_lock_release+0x10/0x10 [ 85.499481][ T1172] __writeback_single_inode+0x163/0xf90 [ 85.502139][ T1172] ? __pfx___writeback_single_inode+0x10/0x10 [ 85.505801][ T1172] ? _raw_spin_unlock+0x28/0x50 [ 85.508776][ T1172] ? wbc_attach_and_unlock_inode+0x597/0x940 [ 85.512150][ T1172] writeback_sb_inodes+0x611/0x1150 [ 85.514723][ T1172] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 85.517247][ T1172] ? find_held_lock+0x2d/0x110 [ 85.519408][ T1172] ? do_raw_spin_lock+0x12d/0x2c0 [ 85.521954][ T1172] ? rcu_is_watching+0x12/0xc0 [ 85.524133][ T1172] ? queue_io+0x3f8/0x520 [ 85.526005][ T1172] wb_writeback+0x199/0xb50 [ 85.527869][ T1172] ? __pfx_wb_writeback+0x10/0x10 [ 85.529773][ T1172] ? __pfx_lock_release+0x10/0x10 [ 85.532364][ T1172] ? mark_held_locks+0x9f/0xe0 [ 85.534791][ T1172] wb_workfn+0x28d/0xf40 [ 85.536949][ T1172] ? __pfx_wb_workfn+0x10/0x10 [ 85.539113][ T1172] ? __pfx_lock_acquire+0x10/0x10 [ 85.541279][ T1172] ? __pfx_lock_release+0x10/0x10 [ 85.543530][ T1172] process_one_work+0x9c5/0x1b40 [ 85.545171][ T1172] ? __pfx_lock_acquire+0x10/0x10 [ 85.547148][ T1172] ? __pfx_process_one_work+0x10/0x10 [ 85.549377][ T1172] ? assign_work+0x1a0/0x250 [ 85.551320][ T1172] worker_thread+0x6c8/0xf20 [ 85.553227][ T1172] ? __kthread_parkme+0x148/0x220 [ 85.555627][ T1172] ? __pfx_worker_thread+0x10/0x10 [ 85.558360][ T1172] kthread+0x2c1/0x3a0 [ 85.560443][ T1172] ? _raw_spin_unlock_irq+0x23/0x50 [ 85.562745][ T1172] ? __pfx_kthread+0x10/0x10 [ 85.564637][ T1172] ret_from_fork+0x45/0x80 [ 85.566384][ T1172] ? __pfx_kthread+0x10/0x10 [ 85.568192][ T1172] ret_from_fork_asm+0x1a/0x30 [ 85.570030][ T1172] [ 85.571205][ T1172] Modules linked in: [ 85.574524][ T1172] ---[ end trace 0000000000000000 ]--- [ 85.576617][ T1172] RIP: 0010:ext4_do_writepages+0x2572/0x3250 [ 85.579017][ T1172] Code: 48 c1 ea 03 80 3c 02 00 0f 85 44 0c 00 00 48 c7 44 24 28 0c db 03 00 48 8b 44 24 08 48 8b 18 e9 c3 dc ff ff e8 3f 04 45 ff 90 <0f> 0b e8 37 04 45 ff 48 8b 4c 24 70 41 89 dc 48 b8 00 00 00 00 00 [ 85.586653][ T1172] RSP: 0018:ffffc90005e272a8 EFLAGS: 00010293 [ 85.588857][ T1172] RAX: 0000000000000000 RBX: ffff88803016edf8 RCX: ffffffff82455f9a [ 85.592160][ T1172] RDX: ffff888022f3c880 RSI: ffffffff824573e1 RDI: 0000000000000007 [ 85.595122][ T1172] RBP: ffffc90005e274b8 R08: 0000000000000007 R09: 0000000000000000 [ 85.598039][ T1172] R10: 0000000000000001 R11: 0000000000000001 R12: 0000000000000001 [ 85.601103][ T1172] R13: ffff88801f514638 R14: 0000000000000001 R15: 0000000004208060 [ 85.604073][ T1172] FS: 0000000000000000(0000) GS:ffff88806b000000(0000) knlGS:0000000000000000 [ 85.607498][ T1172] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 85.610424][ T1172] CR2: 00007fb5e9a32d58 CR3: 000000001dc16000 CR4: 0000000000350ef0 [ 85.614084][ T1172] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 85.617712][ T1172] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 85.621062][ T1172] Kernel panic - not syncing: Fatal exception [ 85.624295][ T1172] Kernel Offset: disabled [ 85.626257][ T1172] Rebooting in 86400 seconds..