Warning: Permanently added '10.128.1.148' (ED25519) to the list of known hosts.
2024/06/21 20:03:01 ignoring optional flag "sandboxArg"="0"
2024/06/21 20:03:01 parsed 1 programs
2024/06/21 20:03:01 executed programs: 0
[ 36.609518][ T30] kauditd_printk_skb: 19 callbacks suppressed
[ 36.609544][ T30] audit: type=1400 audit(1719000181.249:95): avc: denied { unlink } for pid=339 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 36.649389][ T339] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 36.688330][ T345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 36.695571][ T345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 36.702920][ T345] device bridge_slave_0 entered promiscuous mode
[ 36.709522][ T345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 36.716340][ T345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 36.723789][ T345] device bridge_slave_1 entered promiscuous mode
[ 36.755888][ T345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 36.762865][ T345] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 36.770140][ T345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 36.777271][ T345] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 36.792405][ T20] bridge0: port 1(bridge_slave_0) entered disabled state
[ 36.800440][ T20] bridge0: port 2(bridge_slave_1) entered disabled state
[ 36.807724][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 36.815114][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 36.823677][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 36.832352][ T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 36.839322][ T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 36.848020][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 36.856200][ T20] bridge0: port 2(bridge_slave_1) entered blocking state
[ 36.864123][ T20] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 36.875220][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 36.889012][ T345] device veth0_vlan entered promiscuous mode
[ 36.895220][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 36.903768][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 36.911549][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 36.919055][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 36.926510][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 36.937278][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 36.946303][ T345] device veth1_macvtap entered promiscuous mode
[ 36.954924][ T20] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 36.964991][ T60] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 36.982229][ T30] audit: type=1400 audit(1719000181.619:96): avc: denied { mounton } for pid=349 comm="syz-executor.0" path="/root/syzkaller-testdir798862812/syzkaller.n21ISK/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 36.982981][ T350] incfs: ino conflict with backing FS 1
[ 37.011166][ T30] audit: type=1400 audit(1719000181.619:97): avc: denied { mount } for pid=349 comm="syz-executor.0" name="/" dev="tmpfs" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 37.039704][ T345] ------------[ cut here ]------------
[ 37.045164][ T345] WARNING: CPU: 1 PID: 345 at fs/inode.c:307 drop_nlink+0xc1/0x110
[ 37.049476][ T30] audit: type=1400 audit(1719000181.619:98): avc: denied { mounton } for pid=349 comm="syz-executor.0" path="/syzcgroup/unified/syz0" dev="cgroup2" ino=24 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1
[ 37.053918][ T345] Modules linked in:
[ 37.078781][ T30] audit: type=1400 audit(1719000181.649:99): avc: denied { unmount } for pid=345 comm="syz-executor.0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:tmpfs_t tclass=filesystem permissive=1
[ 37.082441][ T345] CPU: 1 PID: 345 Comm: syz-executor.0 Not tainted 5.15.149-syzkaller-1069274-g85445b5a2107 #0
[ 37.112866][ T345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 37.122869][ T345] RIP: 0010:drop_nlink+0xc1/0x110
[ 37.128066][ T345] Code: 1e 48 8d bb b8 04 00 00 be 08 00 00 00 e8 c7 f8 f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 0f d1 ae ff <0f> 0b eb 88 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 62 ff ff ff 4c
[ 37.148610][ T345] RSP: 0018:ffffc90000b47b28 EFLAGS: 00010293
[ 37.154724][ T345] RAX: ffffffff81c16421 RBX: 0000000000000000 RCX: ffff888117d4bb40
[ 37.162655][ T345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 37.170756][ T345] RBP: ffffc90000b47b50 R08: ffffffff81c163a4 R09: 0000000000000003
[ 37.178497][ T345] R10: fffff52000168f54 R11: dffffc0000000001 R12: dffffc0000000000
[ 37.186749][ T345] R13: 1ffff11024993af8 R14: ffff888124c9d778 R15: ffff888124c9d7c0
[ 37.194819][ T345] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 37.203709][ T345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 37.210184][ T345] CR2: 00007f22b508f000 CR3: 000000000620f000 CR4: 00000000003506b0
[ 37.218201][ T345] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 37.226569][ T345] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 37.234727][ T345] Call Trace:
[ 37.238010][ T345]
[ 37.241075][ T345] ? show_regs+0x58/0x60
[ 37.245310][ T345] ? __warn+0x160/0x2f0
[ 37.249560][ T345] ? drop_nlink+0xc1/0x110
[ 37.254493][ T345] ? report_bug+0x3d9/0x5b0
[ 37.260572][ T345] ? drop_nlink+0xc1/0x110
[ 37.264750][ T345] ? handle_bug+0x41/0x70
[ 37.269003][ T345] ? exc_invalid_op+0x1b/0x50
[ 37.274103][ T345] ? asm_exc_invalid_op+0x1b/0x20
[ 37.278928][ T345] ? drop_nlink+0x44/0x110
[ 37.283427][ T345] ? drop_nlink+0xc1/0x110
[ 37.287872][ T345] ? drop_nlink+0xc1/0x110
[ 37.292414][ T345] ? drop_nlink+0xc1/0x110
[ 37.296877][ T345] shmem_rmdir+0x59/0x90
[ 37.301257][ T345] vfs_rmdir+0x324/0x470
[ 37.305908][ T345] incfs_kill_sb+0x113/0x230
[ 37.310466][ T345] deactivate_locked_super+0xad/0x110
[ 37.315672][ T345] deactivate_super+0xbe/0xf0
[ 37.320226][ T345] cleanup_mnt+0x45c/0x510
[ 37.324512][ T345] __cleanup_mnt+0x19/0x20
[ 37.328776][ T345] task_work_run+0x129/0x190
[ 37.333781][ T345] do_exit+0xc48/0x2ca0
[ 37.338933][ T345] ? put_task_struct+0x80/0x80
[ 37.343949][ T345] ? __kasan_check_write+0x14/0x20
[ 37.349140][ T345] ? switch_fpu_return+0x1ed/0x3d0
[ 37.354124][ T345] ? fpu_flush_thread+0xf0/0xf0
[ 37.359617][ T345] do_group_exit+0x141/0x310
[ 37.364325][ T345] __x64_sys_exit_group+0x3f/0x40
[ 37.369725][ T345] do_syscall_64+0x3d/0xb0
[ 37.370100][ T30] audit: type=1400 audit(1719000182.009:100): avc: denied { read } for pid=82 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 37.373985][ T345] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 37.402356][ T345] RIP: 0033:0x7f22b4f64e69
[ 37.406869][ T345] Code: Unable to access opcode bytes at RIP 0x7f22b4f64e3f.
[ 37.414396][ T345] RSP: 002b:00007fff2854c7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 37.423227][ T345] RAX: ffffffffffffffda RBX: 00007f22b4fb042b RCX: 00007f22b4f64e69
[ 37.431282][ T345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 37.440028][ T345] RBP: 0000000000000010 R08: 00007fff2854a576 R09: 00007fff2854da90
[ 37.447899][ T345] R10: 000000000000000a R11: 0000000000000246 R12: 00007fff2854da90
[ 37.455794][ T345] R13: 00007f22b4fb03b9 R14: 0000555556a3e430 R15: 0000000000000003
[ 37.463815][ T345]
[ 37.466644][ T345] ---[ end trace a945b55698616a23 ]---
[ 37.472167][ T345] ==================================================================
[ 37.480076][ T345] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60
[ 37.486172][ T345] Write of size 4 at addr 0000000000000170 by task syz-executor.0/345
[ 37.494236][ T345]
[ 37.496480][ T345] CPU: 0 PID: 345 Comm: syz-executor.0 Tainted: G W 5.15.149-syzkaller-1069274-g85445b5a2107 #0
[ 37.508111][ T345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 37.518060][ T345] Call Trace:
[ 37.521308][ T345]
[ 37.525153][ T345] dump_stack_lvl+0x151/0x1b7
[ 37.530192][ T345] ? io_uring_drop_tctx_refs+0x190/0x190
[ 37.536539][ T345] ? _raw_spin_lock+0xa4/0x1b0
[ 37.541208][ T345] ? _raw_spin_trylock_bh+0x190/0x190
[ 37.546595][ T345] kasan_report+0x16f/0x1c0
[ 37.551110][ T345] ? ihold+0x20/0x60
[ 37.555003][ T345] ? ihold+0x20/0x60
[ 37.559047][ T345] kasan_check_range+0x293/0x2a0
[ 37.563805][ T345] __kasan_check_write+0x14/0x20
[ 37.568696][ T345] ihold+0x20/0x60
[ 37.572331][ T345] vfs_rmdir+0x201/0x470
[ 37.576591][ T345] incfs_kill_sb+0x113/0x230
[ 37.581008][ T345] deactivate_locked_super+0xad/0x110
[ 37.586318][ T345] deactivate_super+0xbe/0xf0
[ 37.591364][ T345] cleanup_mnt+0x45c/0x510
[ 37.595897][ T345] __cleanup_mnt+0x19/0x20
[ 37.600323][ T345] task_work_run+0x129/0x190
[ 37.605259][ T345] do_exit+0xc48/0x2ca0
[ 37.609394][ T345] ? put_task_struct+0x80/0x80
[ 37.613922][ T345] ? __kasan_check_write+0x14/0x20
[ 37.619042][ T345] ? switch_fpu_return+0x1ed/0x3d0
[ 37.624907][ T345] ? fpu_flush_thread+0xf0/0xf0
[ 37.630151][ T345] do_group_exit+0x141/0x310
[ 37.634832][ T345] __x64_sys_exit_group+0x3f/0x40
[ 37.640039][ T345] do_syscall_64+0x3d/0xb0
[ 37.644215][ T345] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 37.650114][ T345] RIP: 0033:0x7f22b4f64e69
[ 37.654708][ T345] Code: Unable to access opcode bytes at RIP 0x7f22b4f64e3f.
[ 37.661916][ T345] RSP: 002b:00007fff2854c7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 37.670427][ T345] RAX: ffffffffffffffda RBX: 00007f22b4fb042b RCX: 00007f22b4f64e69
[ 37.678326][ T345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 37.686223][ T345] RBP: 0000000000000010 R08: 00007fff2854a576 R09: 00007fff2854da90
[ 37.694305][ T345] R10: 000000000000000a R11: 0000000000000246 R12: 00007fff2854da90
[ 37.702440][ T345] R13: 00007f22b4fb03b9 R14: 0000555556a3e430 R15: 0000000000000003
[ 37.710248][ T345]
[ 37.713194][ T345] ==================================================================
[ 37.721222][ T345] Disabling lock debugging due to kernel taint
[ 37.728398][ T345] BUG: kernel NULL pointer dereference, address: 0000000000000170
[ 37.736288][ T345] #PF: supervisor write access in kernel mode
[ 37.742365][ T345] #PF: error_code(0x0002) - not-present page
[ 37.748851][ T345] PGD 0 P4D 0
[ 37.752101][ T345] Oops: 0002 [#1] PREEMPT SMP KASAN
[ 37.757209][ T345] CPU: 0 PID: 345 Comm: syz-executor.0 Tainted: G B W 5.15.149-syzkaller-1069274-g85445b5a2107 #0
[ 37.768975][ T345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[ 37.779441][ T345] RIP: 0010:ihold+0x25/0x60
[ 37.784045][ T345] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 21 c9 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 a4 cc ae
[ 37.804109][ T345] RSP: 0018:ffffc90000b47b68 EFLAGS: 00010246
[ 37.810013][ T345] RAX: ffff888117d4bb00 RBX: 0000000000000001 RCX: ffff888117d4bb40
[ 37.817918][ T345] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[ 37.825819][ T345] RBP: ffffc90000b47b78 R08: ffffffff8141701b R09: 0000000000000003
[ 37.833806][ T345] R10: fffffbfff0d9284c R11: dffffc0000000001 R12: dffffc0000000000
[ 37.842480][ T345] R13: ffff88811d916220 R14: 0000000000000000 R15: 1ffff11023b22c4a
[ 37.850466][ T345] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 37.859510][ T345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 37.866200][ T345] CR2: 0000000000000170 CR3: 000000000620f000 CR4: 00000000003506b0
[ 37.874055][ T345] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 37.881937][ T345] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 37.889823][ T345] Call Trace:
[ 37.892953][ T345]
[ 37.895826][ T345] ? __die_body+0x62/0xb0
[ 37.900249][ T345] ? __die+0x7e/0x90
[ 37.904066][ T345] ? page_fault_oops+0x7f9/0xa90
[ 37.908836][ T345] ? _raw_spin_unlock+0x4d/0x70
[ 37.913523][ T345] ? kernelmode_fixup_or_oops+0x270/0x270
[ 37.919263][ T345] ? __schedule+0xcd4/0x1590
[ 37.923682][ T345] ? exc_page_fault+0x521/0x830
[ 37.928370][ T345] ? asm_exc_page_fault+0x27/0x30
[ 37.933236][ T345] ? check_panic_on_warn+0x5b/0xb0
[ 37.938695][ T345] ? ihold+0x25/0x60
[ 37.942450][ T345] ? ihold+0x20/0x60
[ 37.946302][ T345] vfs_rmdir+0x201/0x470
[ 37.950327][ T345] incfs_kill_sb+0x113/0x230
[ 37.954760][ T345] deactivate_locked_super+0xad/0x110
[ 37.960001][ T345] deactivate_super+0xbe/0xf0
[ 37.964476][ T345] cleanup_mnt+0x45c/0x510
[ 37.968729][ T345] __cleanup_mnt+0x19/0x20
[ 37.973070][ T345] task_work_run+0x129/0x190
[ 37.977505][ T345] do_exit+0xc48/0x2ca0
[ 37.981496][ T345] ? put_task_struct+0x80/0x80
[ 37.986101][ T345] ? __kasan_check_write+0x14/0x20
[ 37.991306][ T345] ? switch_fpu_return+0x1ed/0x3d0
[ 37.996379][ T345] ? fpu_flush_thread+0xf0/0xf0
[ 38.001046][ T345] do_group_exit+0x141/0x310
[ 38.005815][ T345] __x64_sys_exit_group+0x3f/0x40
[ 38.010683][ T345] do_syscall_64+0x3d/0xb0
[ 38.014930][ T345] entry_SYSCALL_64_after_hwframe+0x61/0xcb
[ 38.020690][ T345] RIP: 0033:0x7f22b4f64e69
[ 38.025114][ T345] Code: Unable to access opcode bytes at RIP 0x7f22b4f64e3f.
[ 38.032413][ T345] RSP: 002b:00007fff2854c7d8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 38.040719][ T345] RAX: ffffffffffffffda RBX: 00007f22b4fb042b RCX: 00007f22b4f64e69
[ 38.048530][ T345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 38.056515][ T345] RBP: 0000000000000010 R08: 00007fff2854a576 R09: 00007fff2854da90
[ 38.064413][ T345] R10: 000000000000000a R11: 0000000000000246 R12: 00007fff2854da90
[ 38.072236][ T345] R13: 00007f22b4fb03b9 R14: 0000555556a3e430 R15: 0000000000000003
[ 38.080039][ T345]
[ 38.082925][ T345] Modules linked in:
[ 38.086736][ T345] CR2: 0000000000000170
[ 38.090718][ T345] ---[ end trace a945b55698616a24 ]---
[ 38.096017][ T345] RIP: 0010:ihold+0x25/0x60
[ 38.100349][ T345] Code: 00 00 00 00 00 55 48 89 e5 41 56 53 49 89 fe e8 21 c9 ae ff 49 8d be 70 01 00 00 be 04 00 00 00 e8 b0 f0 f0 ff bb 01 00 00 00 41 0f c1 9e 70 01 00 00 ff c3 bf 02 00 00 00 89 de e8 a4 cc ae
[ 38.121722][ T345] RSP: 0018:ffffc90000b47b68 EFLAGS: 00010246
[ 38.128405][ T345] RAX: ffff888117d4bb00 RBX: 0000000000000001 RCX: ffff888117d4bb40
[ 38.136201][ T345] RDX: 0000000000000000 RSI: 0000000000000286 RDI: 00000000ffffffff
[ 38.144100][ T345] RBP: ffffc90000b47b78 R08: ffffffff8141701b R09: 0000000000000003
[ 38.152165][ T345] R10: fffffbfff0d9284c R11: dffffc0000000001 R12: dffffc0000000000
[ 38.160181][ T345] R13: ffff88811d916220 R14: 0000000000000000 R15: 1ffff11023b22c4a
[ 38.167987][ T345] FS: 0000000000000000(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000
[ 38.176826][ T345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 38.183250][ T345] CR2: 0000000000000170 CR3: 000000000620f000 CR4: 00000000003506b0
[ 38.191065][ T345] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 38.198968][ T345] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 38.206867][ T345] Kernel panic - not syncing: Fatal exception
[ 38.213311][ T345] Kernel Offset: disabled
[ 38.217636][ T345] Rebooting in 86400 seconds..