Warning: Permanently added '10.128.0.88' (ED25519) to the list of known hosts.
2025/01/11 04:09:43 ignoring optional flag "sandboxArg"="0"
2025/01/11 04:09:43 ignoring optional flag "type"="gce"
2025/01/11 04:09:43 parsed 1 programs
[ 37.879846][ T29] kauditd_printk_skb: 20 callbacks suppressed
[ 37.879851][ T29] audit: type=1400 audit(1736568583.885:96): avc: denied { mounton } for pid=336 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 37.910597][ T29] audit: type=1400 audit(1736568583.885:97): avc: denied { read write } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 37.936388][ T29] audit: type=1400 audit(1736568583.885:98): avc: denied { open } for pid=336 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
2025/01/11 04:09:44 executed programs: 0
[ 37.962137][ T29] audit: type=1400 audit(1736568583.945:99): avc: denied { unlink } for pid=336 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 37.987755][ T29] audit: type=1400 audit(1736568583.945:100): avc: denied { relabelto } for pid=337 comm="mkswap" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 38.016353][ T336] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 38.053233][ T345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.060059][ T345] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.067084][ T345] device bridge_slave_0 entered promiscuous mode
[ 38.073648][ T345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.080502][ T345] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.087527][ T345] device bridge_slave_1 entered promiscuous mode
[ 38.093722][ T349] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.100499][ T349] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.107561][ T349] device bridge_slave_0 entered promiscuous mode
[ 38.115254][ T350] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.122100][ T350] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.129010][ T350] device bridge_slave_0 entered promiscuous mode
[ 38.135750][ T349] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.142643][ T349] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.149495][ T349] device bridge_slave_1 entered promiscuous mode
[ 38.156934][ T350] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.163761][ T350] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.170684][ T350] device bridge_slave_1 entered promiscuous mode
[ 38.191626][ T347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.198454][ T347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.205417][ T347] device bridge_slave_0 entered promiscuous mode
[ 38.211863][ T347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.218703][ T347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.225732][ T347] device bridge_slave_1 entered promiscuous mode
[ 38.238793][ T352] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.245696][ T352] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.252707][ T352] device bridge_slave_0 entered promiscuous mode
[ 38.258861][ T352] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.265609][ T352] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.272550][ T352] device bridge_slave_1 entered promiscuous mode
[ 38.282149][ T349] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.288978][ T349] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.296041][ T349] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.302877][ T349] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.317106][ T347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.323941][ T347] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.331062][ T347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.337919][ T347] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.347938][ T345] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.354775][ T345] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.361980][ T345] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.368911][ T345] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.381414][ T350] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.388245][ T350] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.395293][ T350] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.402226][ T350] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.410755][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.417905][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.425220][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.432273][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.439478][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.446497][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.453658][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 38.460708][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 38.467923][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 38.475073][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.484888][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.492008][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.499724][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.506567][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.513839][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.521735][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.528629][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.535764][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.543659][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.550472][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.562949][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.570275][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 38.577415][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.584508][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.592421][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.599242][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.606481][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.614327][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.621105][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.628211][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.635809][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.643300][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.651085][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.657921][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.665105][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.673009][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.679784][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.686887][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.694789][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.701579][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.708664][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.716369][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 38.724880][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.732489][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.741234][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 38.751291][ T352] device veth0_vlan entered promiscuous mode
[ 38.757768][ T347] device veth0_vlan entered promiscuous mode
[ 38.764000][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 38.772113][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 38.779626][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 38.786718][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 38.793909][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 38.801959][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 38.809458][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 38.816735][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 38.823822][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.831310][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.839078][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 38.846665][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 38.854926][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 38.862748][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 38.869553][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 38.877502][ T349] device veth0_vlan entered promiscuous mode
[ 38.884635][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 38.892210][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 38.899238][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 38.906481][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 38.914391][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 38.921206][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 38.929145][ T352] device veth1_macvtap entered promiscuous mode
[ 38.937488][ T345] device veth0_vlan entered promiscuous mode
[ 38.943783][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 38.951755][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 38.959336][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 38.966679][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 38.974113][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 38.981949][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 38.989779][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 38.997384][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 39.005346][ T347] device veth1_macvtap entered promiscuous mode
[ 39.013492][ T350] device veth0_vlan entered promiscuous mode
[ 39.019554][ T345] device veth1_macvtap entered promiscuous mode
[ 39.026375][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.034322][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 39.042468][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 39.049983][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 39.057168][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 39.064411][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.072501][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.080668][ T349] device veth1_macvtap entered promiscuous mode
[ 39.088167][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.096045][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.104028][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.111935][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.119854][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.127773][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.136436][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.144409][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.154943][ T350] device veth1_macvtap entered promiscuous mode
[ 39.162533][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.170459][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.178471][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 39.186398][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 39.194293][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 39.201721][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.209558][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.217531][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.225790][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.237997][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 39.245910][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 39.253902][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 39.261888][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 39.277029][ T29] audit: type=1400 audit(1736568585.285:101): avc: denied { read write } for pid=372 comm="syz-executor.0" name="fuse" dev="devtmpfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[ 39.305724][ T29] audit: type=1400 audit(1736568585.285:102): avc: denied { open } for pid=372 comm="syz-executor.0" path="/dev/fuse" dev="devtmpfs" ino=20 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[ 39.329593][ T29] audit: type=1400 audit(1736568585.285:103): avc: denied { mounton } for pid=372 comm="syz-executor.0" path="/root/syzkaller-testdir3860104831/syzkaller.Mkonxw/0/file0" dev="sda1" ino=1954 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[ 39.406915][ T393] BUG: kernel NULL pointer dereference, address: 0000000000000038
[ 39.414612][ T393] #PF: supervisor read access in kernel mode
[ 39.420536][ T393] #PF: error_code(0x0000) - not-present page
[ 39.426562][ T393] PGD 10d85b067 P4D 10d85b067 PUD 10e18d067 PMD 0
[ 39.433075][ T393] Oops: 0000 [#1] PREEMPT SMP
[ 39.437583][ T393] CPU: 0 PID: 393 Comm: syz-executor.4 Not tainted 5.15.175-syzkaller #0
[ 39.445826][ T393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 39.455735][ T393] RIP: 0010:open_or_create_special_dir+0x27/0xd0
[ 39.461967][ T393] Code: 00 00 00 55 48 89 e5 41 56 41 55 41 54 53 48 89 d3 4c 8b 6f 30 e8 09 98 ff ff 48 85 c0 74 76 48 3d 00 f0 ff ff 49 89 c4 77 0a <48> 83 78 30 00 74 0f c6 03 00 5b 4c 89 e0 41 5c 41 5d 41 5e 5d c3
[ 39.481525][ T393] RSP: 0018:ffffc90000553da8 EFLAGS: 00010203
[ 39.487425][ T393] RAX: 0000000000000008 RBX: ffffc90000553ddf RCX: 0000000000000000
[ 39.495233][ T393] RDX: 0000000000000001 RSI: ffff8881113f8000 RDI: 00000000ffffffff
[ 39.503047][ T393] RBP: ffffc90000553dc8 R08: 0000000000000008 R09: 0000000000000064
[ 39.510962][ T393] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000008
[ 39.518749][ T393] R13: ffff88810ad8a000 R14: ffff88810d5a2000 R15: ffff88810d406180
[ 39.526564][ T393] FS: 00007f353c7936c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[ 39.535448][ T393] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 39.541864][ T393] CR2: 0000000000000038 CR3: 000000010e17a000 CR4: 00000000003506b0
[ 39.549675][ T393] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 39.557485][ T393] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 39.565295][ T393] Call Trace:
[ 39.568421][ T393] <TASK>
[ 39.571200][ T393] ? show_regs.part.0+0x1e/0x20
[ 39.575886][ T393] ? __die+0x5d/0x9e
[ 39.579624][ T393] ? page_fault_oops+0x12d/0x280
[ 39.584406][ T393] ? do_user_addr_fault+0x43d/0x6e0
[ 39.589427][ T393] ? preempt_count_add+0x77/0xa0
[ 39.594208][ T393] ? debug_smp_processor_id+0x17/0x20
[ 39.599409][ T393] ? __call_rcu_common.constprop.0+0x19b/0x540
[ 39.605398][ T393] ? call_rcu+0x9/0x10
[ 39.609303][ T393] ? dentry_free+0x3d/0x60
[ 39.613664][ T393] ? __dentry_kill+0x148/0x1c0
[ 39.618263][ T393] ? exc_page_fault+0x67/0x160
[ 39.622844][ T393] ? asm_exc_page_fault+0x27/0x30
[ 39.627705][ T393] ? open_or_create_special_dir+0x27/0xd0
[ 39.633331][ T393] ? open_or_create_special_dir+0x17/0xd0
[ 39.638816][ T393] incfs_mount_fs+0x1ad/0x2f0
[ 39.643415][ T393] legacy_get_tree+0x26/0x50
[ 39.647851][ T393] vfs_get_tree+0x1a/0x70
[ 39.652004][ T393] path_mount+0x307/0xba0
[ 39.656256][ T393] ? putname+0x50/0x60
[ 39.660164][ T393] __x64_sys_mount+0x103/0x140
[ 39.664770][ T393] x64_sys_call+0x50d/0x990
[ 39.669108][ T393] do_syscall_64+0x33/0xb0
[ 39.673356][ T393] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 39.679084][ T393] RIP: 0033:0x7f353cc32da9
[ 39.683426][ T393] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 39.703246][ T393] RSP: 002b:00007f353c7930c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 39.711466][ T393] RAX: ffffffffffffffda RBX: 00007f353cd61050 RCX: 00007f353cc32da9
[ 39.719273][ T393] RDX: 0000000020000180 RSI: 00000000200000c0 RDI: 0000000020000080
[ 39.727195][ T393] RBP: 00007f353cc7f47a R08: 0000000000000000 R09: 0000000000000000
[ 39.735002][ T393] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 39.742810][ T393] R13: 000000000000006e R14: 00007f353cd61050 R15: 00007ffd9fa05a08
[ 39.750623][ T393] </TASK>
[ 39.753484][ T393] Modules linked in:
[ 39.757232][ T393] CR2: 0000000000000038
[ 39.761218][ T393] ---[ end trace cf8d820e0d0ef545 ]---
[ 39.761262][ T392] BUG: kernel NULL pointer dereference, address: 0000000000000038
[ 39.766506][ T393] RIP: 0010:open_or_create_special_dir+0x27/0xd0
[ 39.774234][ T392] #PF: supervisor read access in kernel mode
[ 39.780394][ T393] Code: 00 00 00 55 48 89 e5 41 56 41 55 41 54 53 48 89 d3 4c 8b 6f 30 e8 09 98 ff ff 48 85 c0 74 76 48 3d 00 f0 ff ff 49 89 c4 77 0a <48> 83 78 30 00 74 0f c6 03 00 5b 4c 89 e0 41 5c 41 5d 41 5e 5d c3
[ 39.786208][ T392] #PF: error_code(0x0000) - not-present page
[ 39.805734][ T393] RSP: 0018:ffffc90000553da8 EFLAGS: 00010203
[ 39.811553][ T392] PGD 10e14b067 P4D 10e14b067 PUD 10e14e067 PMD 0
[ 39.817555][ T393] RAX: 0000000000000008 RBX: ffffc90000553ddf RCX: 0000000000000000
[ 39.817557][ T392]
[ 39.817558][ T393] RDX: 0000000000000001 RSI: ffff8881113f8000 RDI: 00000000ffffffff
[ 39.823910][ T392] Oops: 0000 [#2] PREEMPT SMP
[ 39.831724][ T393] RBP: ffffc90000553dc8 R08: 0000000000000008 R09: 0000000000000064
[ 39.833874][ T392] CPU: 1 PID: 392 Comm: syz-executor.3 Tainted: G D 5.15.175-syzkaller #0
[ 39.841849][ T393] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000008
[ 39.846356][ T392] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 39.854182][ T393] R13: ffff88810ad8a000 R14: ffff88810d5a2000 R15: ffff88810d406180
[ 39.863794][ T392] RIP: 0010:open_or_create_special_dir+0x27/0xd0
[ 39.871629][ T393] FS: 00007f353c7936c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[ 39.881499][ T392] Code: 00 00 00 55 48 89 e5 41 56 41 55 41 54 53 48 89 d3 4c 8b 6f 30 e8 09 98 ff ff 48 85 c0 74 76 48 3d 00 f0 ff ff 49 89 c4 77 0a <48> 83 78 30 00 74 0f c6 03 00 5b 4c 89 e0 41 5c 41 5d 41 5e 5d c3
[ 39.889312][ T393] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 39.895473][ T392] RSP: 0018:ffffc9000054bda8 EFLAGS: 00010203
[ 39.904244][ T393] CR2: 0000000000000038 CR3: 000000010e17a000 CR4: 00000000003506b0
[ 39.923693][ T392]
[ 39.930118][ T393] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 39.936006][ T392] RAX: 0000000000000008 RBX: ffffc9000054bddf RCX: 0000000000000000
[ 39.943816][ T393] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 39.946001][ T392] RDX: 0000000000000007 RSI: ffff88810be1a500 RDI: 00000000ffffffff
[ 39.953810][ T393] Kernel panic - not syncing: Fatal exception
[ 39.961608][ T392] RBP: ffffc9000054bdc8 R08: 0000000000000008 R09: 0000000000000064
[ 39.991031][ T392] R10: ffff88810cffc6c0 R11: 0000000000000001 R12: 0000000000000008
[ 39.998851][ T392] R13: ffff88810ad88800 R14: ffff88810d5a2400 R15: ffff88810d4060c0
[ 40.006656][ T392] FS: 00007f05c28ab6c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[ 40.015424][ T392] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.021847][ T392] CR2: 0000000000000038 CR3: 000000010d601000 CR4: 00000000003506a0
[ 40.029866][ T392] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 40.037680][ T392] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 40.045486][ T392] Call Trace:
[ 40.048608][ T392] <TASK>
[ 40.051388][ T392] ? show_regs.part.0+0x1e/0x20
[ 40.056070][ T392] ? __die+0x5d/0x9e
[ 40.059805][ T392] ? page_fault_oops+0x12d/0x280
[ 40.064592][ T392] ? do_user_addr_fault+0x43d/0x6e0
[ 40.069609][ T392] ? preempt_count_add+0x77/0xa0
[ 40.074394][ T392] ? debug_smp_processor_id+0x17/0x20
[ 40.079599][ T392] ? __call_rcu_common.constprop.0+0x19b/0x540
[ 40.085579][ T392] ? call_rcu+0x9/0x10
[ 40.089486][ T392] ? dentry_free+0x3d/0x60
[ 40.093741][ T392] ? __dentry_kill+0x148/0x1c0
[ 40.098435][ T392] ? exc_page_fault+0x67/0x160
[ 40.103113][ T392] ? asm_exc_page_fault+0x27/0x30
[ 40.108061][ T392] ? open_or_create_special_dir+0x27/0xd0
[ 40.113616][ T392] ? open_or_create_special_dir+0x17/0xd0
[ 40.119169][ T392] incfs_mount_fs+0x1ad/0x2f0
[ 40.123683][ T392] legacy_get_tree+0x26/0x50
[ 40.128113][ T392] vfs_get_tree+0x1a/0x70
[ 40.132282][ T392] path_mount+0x307/0xba0
[ 40.136440][ T392] ? putname+0x50/0x60
[ 40.140347][ T392] __x64_sys_mount+0x103/0x140
[ 40.145034][ T392] x64_sys_call+0x50d/0x990
[ 40.149374][ T392] do_syscall_64+0x33/0xb0
[ 40.153626][ T392] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 40.159353][ T392] RIP: 0033:0x7f05c2d4ada9
[ 40.163609][ T392] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 40.183249][ T392] RSP: 002b:00007f05c28ab0c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[ 40.191518][ T392] RAX: ffffffffffffffda RBX: 00007f05c2e79050 RCX: 00007f05c2d4ada9
[ 40.199306][ T392] RDX: 0000000020000180 RSI: 00000000200000c0 RDI: 0000000020000080
[ 40.207218][ T392] RBP: 00007f05c2d9747a R08: 0000000000000000 R09: 0000000000000000
[ 40.215012][ T392] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 40.222826][ T392] R13: 000000000000006e R14: 00007f05c2e79050 R15: 00007ffd09cb2c78
[ 40.230641][ T392] </TASK>
[ 40.233501][ T392] Modules linked in:
[ 40.237238][ T392] CR2: 0000000000000038
[ 40.241231][ T392] ---[ end trace cf8d820e0d0ef546 ]---
[ 40.246518][ T392] RIP: 0010:open_or_create_special_dir+0x27/0xd0
[ 40.252684][ T392] Code: 00 00 00 55 48 89 e5 41 56 41 55 41 54 53 48 89 d3 4c 8b 6f 30 e8 09 98 ff ff 48 85 c0 74 76 48 3d 00 f0 ff ff 49 89 c4 77 0a <48> 83 78 30 00 74 0f c6 03 00 5b 4c 89 e0 41 5c 41 5d 41 5e 5d c3
[ 40.272126][ T392] RSP: 0018:ffffc90000553da8 EFLAGS: 00010203
[ 40.278027][ T392] RAX: 0000000000000008 RBX: ffffc90000553ddf RCX: 0000000000000000
[ 40.285926][ T392] RDX: 0000000000000001 RSI: ffff8881113f8000 RDI: 00000000ffffffff
[ 40.293741][ T392] RBP: ffffc90000553dc8 R08: 0000000000000008 R09: 0000000000000064
[ 40.301550][ T392] R10: 0000000000000000 R11: 0000000000000001 R12: 0000000000000008
[ 40.309358][ T392] R13: ffff88810ad8a000 R14: ffff88810d5a2000 R15: ffff88810d406180
[ 40.317272][ T392] FS: 00007f05c28ab6c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000
[ 40.326249][ T392] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 40.332630][ T392] CR2: 0000000000000038 CR3: 000000010d601000 CR4: 00000000003506a0
[ 40.340447][ T392] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 40.348252][ T392] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 41.081668][ T393] Shutting down cpus with NMI
[ 41.086385][ T393] Kernel Offset: disabled
[ 41.090496][ T393] Rebooting in 86400 seconds..