Warning: Permanently added '10.128.0.106' (ED25519) to the list of known hosts.
2025/12/02 12:08:23 parsed 1 programs
[   44.903234][   T24] kauditd_printk_skb: 31 callbacks suppressed
[   44.903244][   T24] audit: type=1400 audit(1764677304.080:105): avc:  denied  { unlink } for  pid=414 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   44.936706][  T414] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   45.664425][  T453] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.672296][  T453] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.680812][  T453] device bridge_slave_0 entered promiscuous mode
[   45.688504][  T453] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.696077][  T453] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.703802][  T453] device bridge_slave_1 entered promiscuous mode
[   45.733269][  T453] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.741446][  T453] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.749244][  T453] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.756501][  T453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.772202][  T297] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.779812][  T297] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.787551][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   45.795992][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   45.806484][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.815463][  T297] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.823363][  T297] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.832854][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.841526][  T297] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.849027][  T297] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.868723][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   45.877761][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.886330][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.896857][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   45.905589][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   45.913654][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   45.922386][  T453] device veth0_vlan entered promiscuous mode
[   45.934524][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   45.944858][  T453] device veth1_macvtap entered promiscuous mode
[   45.955518][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   45.965925][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.079061][   T24] audit: type=1401 audit(1764677305.250:106): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   46.187692][   T24] audit: type=1400 audit(1764677305.360:107): avc:  denied  { create } for  pid=473 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1
2025/12/02 12:08:25 executed programs: 0
[   46.376091][   T24] audit: type=1400 audit(1764677305.550:108): avc:  denied  { write } for  pid=405 comm="syz-execprog" path="pipe:[15768]" dev="pipefs" ino=15768 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   46.415256][  T478] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.423348][  T478] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.431965][  T478] device bridge_slave_0 entered promiscuous mode
[   46.442642][  T478] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.450446][  T478] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.458078][  T478] device bridge_slave_1 entered promiscuous mode
[   46.488265][  T478] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.495522][  T478] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.503062][  T478] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.510343][  T478] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.530315][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.538380][  T297] bridge0: port 1(bridge_slave_0) entered disabled state
[   46.545955][  T297] bridge0: port 2(bridge_slave_1) entered disabled state
[   46.561922][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.570590][  T297] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.577783][  T297] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.586924][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.595292][  T297] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.602575][  T297] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.617324][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.627033][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.639262][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.654234][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.662632][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   46.670964][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   46.680200][  T478] device veth0_vlan entered promiscuous mode
[   46.693613][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   46.701933][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.717236][  T478] device veth1_macvtap entered promiscuous mode
[   46.734810][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   46.743219][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.752161][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.764790][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.773915][  T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.793331][   T24] audit: type=1400 audit(1764677305.970:109): avc:  denied  { create } for  pid=506 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   46.817130][   T24] audit: type=1400 audit(1764677305.980:110): avc:  denied  { write } for  pid=506 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   46.842974][   T24] audit: type=1400 audit(1764677305.980:111): avc:  denied  { nlmsg_write } for  pid=506 comm="syz.2.17" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[   47.359576][    C0] ==================================================================
[   47.368811][    C0] BUG: KASAN: stack-out-of-bounds in __xfrm_dst_hash+0x399/0x480
[   47.383718][    C0] Read of size 4 at addr ffffc90000007b18 by task swapper/0/0
[   47.392178][    C0] 
[   47.394594][    C0] CPU: 0 PID: 0 Comm: swapper/0 Not tainted syzkaller #0
[   47.402030][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[   47.412513][    C0] Call Trace:
[   47.416279][    C0]  <IRQ>
[   47.419388][    C0]  __dump_stack+0x21/0x24
[   47.424057][    C0]  dump_stack_lvl+0x169/0x1d8
[   47.429096][    C0]  ? show_regs_print_info+0x18/0x18
[   47.434841][    C0]  ? thaw_kernel_threads+0x220/0x220
[   47.440208][    C0]  print_address_description+0x7f/0x2c0
[   47.445830][    C0]  ? __xfrm_dst_hash+0x399/0x480
[   47.451083][    C0]  kasan_report+0xe2/0x130
[   47.456111][    C0]  ? __xfrm_dst_hash+0x399/0x480
[   47.461228][    C0]  __asan_report_load4_noabort+0x14/0x20
[   47.466854][    C0]  __xfrm_dst_hash+0x399/0x480
[   47.471770][    C0]  xfrm_state_find+0x27e/0x2880
[   47.476601][    C0]  ? unwind_next_frame+0x3d5/0x700
[   47.481883][    C0]  ? xfrm_sad_getinfo+0x170/0x170
[   47.487167][    C0]  ? stack_trace_save+0x98/0xe0
[   47.492012][    C0]  ? stack_trace_snprint+0xf0/0xf0
[   47.497299][    C0]  xfrm_resolve_and_create_bundle+0x626/0x28d0
[   47.504024][    C0]  ? xfrm_sk_policy_lookup+0x470/0x470
[   47.510335][    C0]  ? xfrm_selector_match+0xb7e/0x1030
[   47.515719][    C0]  ? __xfrm_policy_check+0x2920/0x2920
[   47.521864][    C0]  ? __kasan_check_write+0x14/0x20
[   47.527152][    C0]  xfrm_lookup_with_ifid+0x6e5/0x1980
[   47.532936][    C0]  ? percpu_counter_add_batch+0x13c/0x160
[   47.539506][    C0]  ? rt_set_nexthop+0x5ce/0x790
[   47.544634][    C0]  ? __xfrm_sk_clone_policy+0x680/0x680
[   47.550424][    C0]  ? ip_route_output_key_hash_rcu+0x15af/0x20e0
[   47.557109][    C0]  xfrm_lookup_route+0x3c/0x170
[   47.562393][    C0]  ip_route_output_flow+0x1d2/0x2d0
[   47.568005][    C0]  ? igmpv3_newpack+0x156/0xc40
[   47.573931][    C0]  ? ipv4_sk_update_pmtu+0x1320/0x1320
[   47.579580][    C0]  ? make_kuid+0x1ad/0x640
[   47.584098][    C0]  ? __put_user_ns+0x60/0x60
[   47.589002][    C0]  ? __kasan_check_write+0x14/0x20
[   47.594294][    C0]  ? __alloc_skb+0x38b/0x520
[   47.599095][    C0]  igmpv3_newpack+0x264/0xc40
[   47.604404][    C0]  ? igmpv3_sendpack+0x190/0x190
[   47.609470][    C0]  ? __raise_softirq_irqoff+0x1a/0xc0
[   47.615016][    C0]  ? __raise_softirq_irqoff+0xc0/0xc0
[   47.620566][    C0]  ? kvm_sched_clock_read+0x18/0x40
[   47.626029][    C0]  ? sched_clock_cpu+0x1b/0x3d0
[   47.631094][    C0]  add_grhead+0x75/0x2e0
[   47.635600][    C0]  ? trigger_load_balance+0xef/0x870
[   47.642193][    C0]  add_grec+0x116b/0x1410
[   47.647585][    C0]  ? _nohz_idle_balance+0x460/0x460
[   47.653252][    C0]  ? __kasan_check_write+0x14/0x20
[   47.658627][    C0]  igmp_ifc_timer_expire+0x89e/0xf80
[   47.664579][    C0]  ? __next_timer_interrupt+0x21d/0x2a0
[   47.670841][    C0]  ? igmp_gq_timer_expire+0xe0/0xe0
[   47.676984][    C0]  call_timer_fn+0x38/0x290
[   47.681579][    C0]  ? igmp_gq_timer_expire+0xe0/0xe0
[   47.687016][    C0]  __run_timers+0x639/0x9a0
[   47.692028][    C0]  ? calc_index+0x200/0x200
[   47.696641][    C0]  ? sched_clock_cpu+0x1b/0x3d0
[   47.701912][    C0]  run_timer_softirq+0x6a/0xf0
[   47.707139][    C0]  __do_softirq+0x255/0x563
[   47.711718][    C0]  asm_call_irq_on_stack+0xf/0x20
[   47.717243][    C0]  </IRQ>
[   47.720551][    C0]  do_softirq_own_stack+0x60/0x80
[   47.725813][    C0]  __irq_exit_rcu+0x128/0x150
[   47.731915][    C0]  irq_exit_rcu+0x9/0x10
[   47.736983][    C0]  sysvec_apic_timer_interrupt+0xbf/0xe0
[   47.743228][    C0]  asm_sysvec_apic_timer_interrupt+0x12/0x20
[   47.754001][    C0] RIP: 0010:default_idle+0x12/0x20
[   47.759730][    C0] Code: 48 8b 7c 24 10 e8 be 29 00 00 e9 71 ff ff ff e8 b4 fe fa ff 00 00 cc cc 55 48 89 e5 0f 1f 44 00 00 0f 00 2d 30 b6 4c 00 fb f4 <5d> c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 55 48 89 e5 41 57 41 56
[   47.780988][    C0] RSP: 0018:ffffffff86207d58 EFLAGS: 00000242
[   47.787032][    C0] RAX: ffff8881f7000000 RBX: ffffffff8621c100 RCX: 00000000000090f6
[   47.795904][    C0] RDX: 0000000000000001 RSI: ffffffff85202c00 RDI: ffffffff85202bc0
[   47.804879][    C0] RBP: ffffffff86207d58 R08: dffffc0000000000 R09: ffffed103ee0ae7b
[   47.813470][    C0] R10: ffffed103ee0ae7b R11: 1ffff1103ee0ae7a R12: 0000000000000000
[   47.821625][    C0] R13: 1ffffffff0c43820 R14: 0000000000000000 R15: dffffc0000000000
[   47.829796][    C0]  arch_cpu_idle+0xa/0x10
[   47.834199][    C0]  default_idle_call+0x71/0x1d0
[   47.839039][    C0]  do_idle+0x1df/0x530
[   47.843095][    C0]  ? idle_inject_timer_fn+0x60/0x60
[   47.848672][    C0]  ? radix_tree_lookup+0x183/0x1d0
[   47.853891][    C0]  ? debug_smp_processor_id+0x17/0x20
[   47.859501][    C0]  cpu_startup_entry+0x18/0x20
[   47.864429][    C0]  rest_init+0xe8/0xf0
[   47.868793][    C0]  ? time_init+0x38/0x38
[   47.873307][    C0]  arch_call_rest_init+0xe/0x10
[   47.878828][    C0]  start_kernel+0x42e/0x49c
[   47.883401][    C0]  x86_64_start_reservations+0x2a/0x2c
[   47.889610][    C0]  x86_64_start_kernel+0x60/0x63
[   47.894997][    C0]  secondary_startup_64_no_verify+0xad/0xbb
[   47.901316][    C0] 
[   47.903621][    C0] 
[   47.906128][    C0] Memory state around the buggy address:
[   47.911917][    C0]  ffffc90000007a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   47.920048][    C0]  ffffc90000007a80: 00 00 00 00 00 00 00 00 f1 f1 f1 f1 00 00 00 00
[   47.928384][    C0] >ffffc90000007b00: 00 00 00 f3 f3 f3 f3 f3 00 00 00 00 00 00 00 00
[   47.936778][    C0]                             ^
[   47.941822][    C0]  ffffc90000007b80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   47.950056][    C0]  ffffc90000007c00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   47.958218][    C0] ==================================================================
[   47.966432][    C0] Disabling lock debugging due to kernel taint
[   48.044420][    T9] device bridge_slave_1 left promiscuous mode
[   48.051051][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[   48.059013][    T9] device bridge_slave_0 left promiscuous mode
[   48.065802][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[   48.074034][    T9] device veth1_macvtap left promiscuous mode
[   48.081102][    T9] device veth0_vlan left promiscuous mode
2025/12/02 12:08:30 executed programs: 237
2025/12/02 12:08:35 executed programs: 537