Warning: Permanently added '10.128.10.2' (ED25519) to the list of known hosts. 2023/12/15 12:18:06 ignoring optional flag "sandboxArg"="0" 2023/12/15 12:18:06 parsed 1 programs [ 42.869016][ T29] kauditd_printk_skb: 78 callbacks suppressed [ 42.869019][ T29] audit: type=1400 audit(1702642686.158:154): avc: denied { mounton } for pid=340 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 42.900277][ T29] audit: type=1400 audit(1702642686.158:155): avc: denied { mount } for pid=340 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 42.924597][ T29] audit: type=1400 audit(1702642686.158:156): avc: denied { setattr } for pid=340 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=82 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 42.950844][ T29] audit: type=1400 audit(1702642686.158:157): avc: denied { read write } for pid=340 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 42.972499][ T340] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 42.977211][ T29] audit: type=1400 audit(1702642686.158:158): avc: denied { open } for pid=340 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" 2023/12/15 12:18:06 executed programs: 0 [ 43.012890][ T29] audit: type=1400 audit(1702642686.258:159): avc: denied { unlink } for pid=340 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 43.039125][ T29] audit: type=1400 audit(1702642686.258:160): avc: denied { relabelto } for pid=341 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 43.067899][ T345] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.074975][ T345] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.081871][ T345] device bridge_slave_0 entered promiscuous mode [ 43.088206][ T345] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.095575][ T345] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.102697][ T345] device bridge_slave_1 entered promiscuous mode [ 43.116268][ T345] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.123466][ T345] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.130697][ T345] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.137762][ T345] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.147022][ T299] bridge0: port 1(bridge_slave_0) entered disabled state [ 43.154147][ T299] bridge0: port 2(bridge_slave_1) entered disabled state [ 43.161032][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 43.168277][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 43.177075][ T345] device veth0_vlan entered promiscuous mode [ 43.183746][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 43.191890][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 43.200019][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 43.207228][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 43.214703][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 43.223114][ T38] bridge0: port 1(bridge_slave_0) entered blocking state [ 43.230121][ T38] bridge0: port 1(bridge_slave_0) entered forwarding state [ 43.237227][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 43.245497][ T38] bridge0: port 2(bridge_slave_1) entered blocking state [ 43.252368][ T38] bridge0: port 2(bridge_slave_1) entered forwarding state [ 43.259692][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 43.267720][ T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 43.276073][ T345] device veth1_macvtap entered promiscuous mode [ 43.282728][ T303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 43.291548][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.299731][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 43.311501][ T29] audit: type=1400 audit(1702642686.598:161): avc: denied { mounton } for pid=353 comm="syz-executor.0" path="/root/syzkaller-testdir732662840/syzkaller.Pl6aZd/0/file0" dev="sda1" ino=1939 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 43.413936][ T354] BUG: kernel NULL pointer dereference, address: 0000000000000040 [ 43.421876][ T354] #PF: supervisor read access in kernel mode [ 43.428615][ T354] #PF: error_code(0x0000) - not-present page [ 43.434618][ T354] PGD 1017dc067 P4D 1017dc067 PUD 1015e5067 PMD 0 [ 43.440961][ T354] Oops: 0000 [#1] PREEMPT SMP [ 43.445558][ T354] CPU: 0 PID: 354 Comm: syz-executor.0 Not tainted 5.15.139-syzkaller #0 [ 43.454247][ T354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 43.464429][ T354] RIP: 0010:vfs_rename+0x2f/0x9c0 [ 43.469526][ T354] Code: 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 70 4c 8b 7f 10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 4c 8b 67 28 49 8b 47 30 <4d> 8b 6c 24 30 48 89 45 88 4c 39 e8 0f 84 fd 00 00 00 48 8b 47 30 [ 43.489164][ T354] RSP: 0018:ffffc900003fbd78 EFLAGS: 00010246 [ 43.495131][ T354] RAX: ffff88810aa61000 RBX: 0000000000000000 RCX: 0000000000000000 [ 43.503117][ T354] RDX: ffff8881083c2031 RSI: 0000000000000000 RDI: ffffc900003fbea0 [ 43.511014][ T354] RBP: ffffc900003fbe10 R08: 0000000000000007 R09: 0000000000000010 [ 43.518871][ T354] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000010 [ 43.527453][ T354] R13: ffff8881083c2000 R14: ffff88810a91b000 R15: ffff88810a91b000 [ 43.536355][ T354] FS: 00007f8988e756c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 43.545275][ T354] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.552222][ T354] CR2: 0000000000000040 CR3: 00000001015f7000 CR4: 00000000003506b0 [ 43.560199][ T354] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.568187][ T354] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.576631][ T354] Call Trace: [ 43.579742][ T354] [ 43.582811][ T354] ? show_regs.part.0+0x1e/0x20 [ 43.587765][ T354] ? __die+0x5d/0x9e [ 43.592014][ T354] ? page_fault_oops+0x12d/0x280 [ 43.596867][ T354] ? do_user_addr_fault+0x44b/0x730 [ 43.602075][ T354] ? debug_smp_processor_id+0x17/0x20 [ 43.607369][ T354] ? get_nohz_timer_target+0x25/0x220 [ 43.612753][ T354] ? _raw_spin_unlock_irqrestore+0x28/0x40 [ 43.618568][ T354] ? __mod_timer+0x251/0x3a0 [ 43.623085][ T354] ? exc_page_fault+0x67/0x160 [ 43.627807][ T354] ? asm_exc_page_fault+0x27/0x30 [ 43.632895][ T354] ? vfs_rename+0x2f/0x9c0 [ 43.637313][ T354] ? __dentry_kill+0x148/0x1c0 [ 43.641909][ T354] ? dput+0x62/0x3e0 [ 43.646946][ T354] ? __lookup_hash+0x76/0xa0 [ 43.651402][ T354] do_renameat2+0x395/0x560 [ 43.655720][ T354] __x64_sys_rename+0x40/0x50 [ 43.660758][ T354] do_syscall_64+0x35/0xb0 [ 43.665199][ T354] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 43.671273][ T354] RIP: 0033:0x7f89892f2ae9 [ 43.675514][ T354] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 43.695686][ T354] RSP: 002b:00007f8988e750c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 43.705350][ T354] RAX: ffffffffffffffda RBX: 00007f8989411f80 RCX: 00007f89892f2ae9 [ 43.713410][ T354] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000020000100 [ 43.721520][ T354] RBP: 00007f898933e47a R08: 0000000000000000 R09: 0000000000000000 [ 43.729770][ T354] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 43.737763][ T354] R13: 000000000000000b R14: 00007f8989411f80 R15: 00007ffcfadf5768 [ 43.745568][ T354] [ 43.748541][ T354] Modules linked in: [ 43.752246][ T354] CR2: 0000000000000040 [ 43.756255][ T354] ---[ end trace 3c8677b29d8b06db ]--- [ 43.761735][ T354] RIP: 0010:vfs_rename+0x2f/0x9c0 [ 43.766571][ T354] Code: 89 e5 41 57 41 56 41 55 41 54 53 48 83 ec 70 4c 8b 7f 10 65 48 8b 04 25 28 00 00 00 48 89 45 d0 31 c0 4c 8b 67 28 49 8b 47 30 <4d> 8b 6c 24 30 48 89 45 88 4c 39 e8 0f 84 fd 00 00 00 48 8b 47 30 [ 43.786358][ T354] RSP: 0018:ffffc900003fbd78 EFLAGS: 00010246 [ 43.792781][ T354] RAX: ffff88810aa61000 RBX: 0000000000000000 RCX: 0000000000000000 [ 43.801230][ T354] RDX: ffff8881083c2031 RSI: 0000000000000000 RDI: ffffc900003fbea0 [ 43.809531][ T354] RBP: ffffc900003fbe10 R08: 0000000000000007 R09: 0000000000000010 [ 43.817515][ T354] R10: 0000000000000000 R11: 0000000000000002 R12: 0000000000000010 [ 43.825444][ T354] R13: ffff8881083c2000 R14: ffff88810a91b000 R15: ffff88810a91b000 [ 43.833728][ T354] FS: 00007f8988e756c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 43.842655][ T354] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 43.849076][ T354] CR2: 0000000000000040 CR3: 00000001015f7000 CR4: 00000000003506b0 [ 43.856896][ T354] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 43.864782][ T354] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.873306][ T354] Kernel panic - not syncing: Fatal exception [ 43.879528][ T354] Kernel Offset: disabled [ 43.883844][ T354] Rebooting in 86400 seconds..