[ 21.398439][ T292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 21.406647][ T35] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 21.415544][ T288] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 21.425588][ T287] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 22.183130][ T9] device bridge_slave_1 left promiscuous mode [ 22.189210][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.196234][ T9] device bridge_slave_0 left promiscuous mode [ 22.202206][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.209359][ T9] device veth1_macvtap left promiscuous mode [ 22.215139][ T9] device veth0_vlan left promiscuous mode Warning: Permanently added '10.128.0.146' (ED25519) to the list of known hosts. 2024/02/29 14:07:43 ignoring optional flag "sandboxArg"="0" 2024/02/29 14:07:43 parsed 1 programs [ 38.550045][ T23] kauditd_printk_skb: 75 callbacks suppressed [ 38.550048][ T23] audit: type=1400 audit(1709215663.530:151): avc: denied { mounton } for pid=332 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 38.581136][ T23] audit: type=1400 audit(1709215663.530:152): avc: denied { mount } for pid=332 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 38.605558][ T23] audit: type=1400 audit(1709215663.530:153): avc: denied { setattr } for pid=332 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=81 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 2024/02/29 14:07:43 executed programs: 0 [ 38.629682][ T23] audit: type=1400 audit(1709215663.530:154): avc: denied { read write } for pid=332 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 38.657094][ T332] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 38.657126][ T23] audit: type=1400 audit(1709215663.530:155): avc: denied { open } for pid=332 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 38.680733][ T338] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.700429][ T338] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.700473][ T23] audit: type=1400 audit(1709215663.560:156): avc: denied { unlink } for pid=332 comm="syz-executor" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 38.707644][ T338] device bridge_slave_0 entered promiscuous mode [ 38.740694][ T23] audit: type=1400 audit(1709215663.570:157): avc: denied { relabelto } for pid=333 comm="mkswap" name="swap-file" dev="sda1" ino=1928 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t" [ 38.740858][ T338] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.767098][ T23] audit: type=1400 audit(1709215663.650:158): avc: denied { mounton } for pid=338 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 38.773900][ T338] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.804981][ T338] device bridge_slave_1 entered promiscuous mode [ 38.817253][ T338] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.824089][ T338] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.831128][ T338] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.838245][ T338] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.848002][ T288] bridge0: port 1(bridge_slave_0) entered disabled state [ 38.854941][ T288] bridge0: port 2(bridge_slave_1) entered disabled state [ 38.861769][ T288] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 38.868809][ T288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 38.876571][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 38.885356][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.892375][ T299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 38.901421][ T338] device veth0_vlan entered promiscuous mode [ 38.907983][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 38.916042][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 38.923828][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 38.931225][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 38.938415][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 38.946403][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 38.953182][ T299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 38.960677][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 38.968327][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 38.976958][ T288] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 38.985032][ T338] device veth1_macvtap entered promiscuous mode [ 38.991665][ T293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.001893][ T288] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.015100][ T23] audit: type=1400 audit(1709215664.000:159): avc: denied { mounton } for pid=344 comm="syz-executor.0" path="/root/syzkaller-testdir2624471012/syzkaller.rVRo7i/0/file0" dev="sda1" ino=1938 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 39.066053][ T345] BUG: kernel NULL pointer dereference, address: 0000000000000002 [ 39.073664][ T345] #PF: supervisor read access in kernel mode [ 39.079474][ T345] #PF: error_code(0x0000) - not-present page [ 39.085291][ T345] PGD 10d5f1067 P4D 10d5f1067 PUD 109547067 PMD 0 [ 39.091631][ T345] Oops: 0000 [#1] PREEMPT SMP [ 39.096140][ T345] CPU: 1 PID: 345 Comm: syz-executor.0 Not tainted 5.10.209-syzkaller #0 [ 39.104475][ T345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 39.114971][ T345] RIP: 0010:do_unlinkat+0x13f/0x2b0 [ 39.120471][ T345] Code: 81 c7 a0 00 00 00 e8 e0 d8 a1 00 48 8b 75 b8 48 8d 7d c0 44 89 ea e8 70 91 ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 34 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 39.141724][ T345] RSP: 0018:ffffc900005b7eb0 EFLAGS: 00010203 [ 39.147721][ T345] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 39.155523][ T345] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff888105380000 [ 39.164018][ T345] RBP: ffffc900005b7f18 R08: 0000000000000004 R09: 0000000000000064 [ 39.171772][ T345] R10: ffff88810965cda0 R11: 0000000000000001 R12: ffff8881073c1000 [ 39.179683][ T345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000002 [ 39.187572][ T345] FS: 00007f0fa53536c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 39.197516][ T345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.204032][ T345] CR2: 0000000000000002 CR3: 0000000110de6000 CR4: 00000000003506a0 [ 39.212357][ T345] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.220683][ T345] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.228763][ T345] Call Trace: [ 39.232320][ T345] ? show_regs.part.0+0x1e/0x20 [ 39.237192][ T345] ? __die+0x5d/0x9e [ 39.240906][ T345] ? no_context+0x1f2/0x380 [ 39.246301][ T345] ? __bad_area_nosemaphore+0x4b/0x1a0 [ 39.251754][ T345] ? bad_area_nosemaphore+0x11/0x20 [ 39.257051][ T345] ? exc_page_fault+0x2c9/0x5a0 [ 39.261746][ T345] ? asm_exc_page_fault+0x1e/0x30 [ 39.266686][ T345] ? do_unlinkat+0x13f/0x2b0 [ 39.271112][ T345] __x64_sys_unlink+0x3d/0x60 [ 39.275625][ T345] do_syscall_64+0x32/0x80 [ 39.279876][ T345] entry_SYSCALL_64_after_hwframe+0x61/0xc6 [ 39.285602][ T345] RIP: 0033:0x7f0fa57d0b29 [ 39.289948][ T345] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 39.309818][ T345] RSP: 002b:00007f0fa53530c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 39.318542][ T345] RAX: ffffffffffffffda RBX: 00007f0fa58eff80 RCX: 00007f0fa57d0b29 [ 39.327075][ T345] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000020000100 [ 39.335229][ T345] RBP: 00007f0fa581c47a R08: 0000000000000000 R09: 0000000000000000 [ 39.343138][ T345] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 39.351128][ T345] R13: 000000000000000b R14: 00007f0fa58eff80 R15: 00007fff3c48cc28 [ 39.359204][ T345] Modules linked in: [ 39.362969][ T345] CR2: 0000000000000002 [ 39.367120][ T345] ---[ end trace 534edb7ae2b260ed ]--- [ 39.372482][ T345] RIP: 0010:do_unlinkat+0x13f/0x2b0 [ 39.377609][ T345] Code: 81 c7 a0 00 00 00 e8 e0 d8 a1 00 48 8b 75 b8 48 8d 7d c0 44 89 ea e8 70 91 ff ff 48 3d 00 f0 ff ff 49 89 c7 0f 87 34 01 00 00 <8b> 00 8b 4d c4 48 8b 75 c8 89 c2 81 e2 00 00 70 00 80 3c 0e 00 0f [ 39.397403][ T345] RSP: 0018:ffffc900005b7eb0 EFLAGS: 00010203 [ 39.403299][ T345] RAX: 0000000000000002 RBX: 0000000000000000 RCX: 0000000400000000 [ 39.411470][ T345] RDX: 0000000000000003 RSI: 0000000300000000 RDI: ffff888105380000 [ 39.420058][ T345] RBP: ffffc900005b7f18 R08: 0000000000000004 R09: 0000000000000064 [ 39.428310][ T345] R10: ffff88810965cda0 R11: 0000000000000001 R12: ffff8881073c1000 [ 39.436219][ T345] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000002 [ 39.444214][ T345] FS: 00007f0fa53536c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 39.453243][ T345] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 39.459988][ T345] CR2: 0000000000000002 CR3: 0000000110de6000 CR4: 00000000003506a0 [ 39.468005][ T345] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 39.475926][ T345] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 39.483828][ T345] Kernel panic - not syncing: Fatal exception [ 39.490135][ T345] Kernel Offset: disabled [ 39.494259][ T345] Rebooting in 86400 seconds..