[ 22.865977][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 22.873115][ T10] device bridge_slave_0 left promiscuous mode [ 22.878975][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 22.886458][ T10] device veth1_macvtap left promiscuous mode [ 22.892572][ T10] device veth0_vlan left promiscuous mode [ 33.513439][ T27] kauditd_printk_skb: 72 callbacks suppressed [ 33.513442][ T27] audit: type=1400 audit(1710138639.365:148): avc: denied { transition } for pid=322 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 33.541140][ T27] audit: type=1400 audit(1710138639.375:149): avc: denied { noatsecure } for pid=322 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 33.560503][ T27] audit: type=1400 audit(1710138639.395:150): avc: denied { rlimitinh } for pid=322 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 33.579816][ T27] audit: type=1400 audit(1710138639.395:151): avc: denied { siginh } for pid=322 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 Warning: Permanently added '10.128.10.37' (ED25519) to the list of known hosts. 2024/03/11 06:30:45 ignoring optional flag "sandboxArg"="0" 2024/03/11 06:30:45 parsed 1 programs 2024/03/11 06:30:45 executed programs: 0 [ 39.498852][ T27] audit: type=1400 audit(1710138645.345:152): avc: denied { mounton } for pid=339 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 39.523657][ T27] audit: type=1400 audit(1710138645.345:153): avc: denied { mount } for pid=339 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 39.570479][ T343] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.577736][ T343] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.585302][ T343] device bridge_slave_0 entered promiscuous mode [ 39.592441][ T350] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.599355][ T350] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.606710][ T350] device bridge_slave_0 entered promiscuous mode [ 39.616845][ T343] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.624282][ T343] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.631265][ T343] device bridge_slave_1 entered promiscuous mode [ 39.639158][ T358] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.646154][ T358] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.653185][ T358] device bridge_slave_0 entered promiscuous mode [ 39.660225][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.667237][ T354] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.674474][ T354] device bridge_slave_0 entered promiscuous mode [ 39.680873][ T350] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.687611][ T350] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.695483][ T350] device bridge_slave_1 entered promiscuous mode [ 39.702471][ T349] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.709672][ T349] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.716867][ T349] device bridge_slave_0 entered promiscuous mode [ 39.725220][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.732128][ T355] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.739235][ T355] device bridge_slave_0 entered promiscuous mode [ 39.745733][ T358] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.752734][ T358] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.759916][ T358] device bridge_slave_1 entered promiscuous mode [ 39.766785][ T354] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.774187][ T354] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.781469][ T354] device bridge_slave_1 entered promiscuous mode [ 39.790172][ T349] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.796995][ T349] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.804304][ T349] device bridge_slave_1 entered promiscuous mode [ 39.810542][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.817401][ T355] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.824953][ T355] device bridge_slave_1 entered promiscuous mode [ 39.838359][ T27] audit: type=1400 audit(1710138645.695:154): avc: denied { write } for pid=343 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 39.859828][ T27] audit: type=1400 audit(1710138645.715:155): avc: denied { read } for pid=343 comm="syz-executor.2" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 39.882889][ T343] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.890495][ T343] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.897525][ T343] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.904482][ T343] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.930860][ T354] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.937787][ T354] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.945024][ T354] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.952121][ T354] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.967406][ T350] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.974238][ T350] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.981557][ T350] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.988467][ T350] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.001575][ T355] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.008739][ T355] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.016834][ T355] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.023941][ T355] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.033276][ T358] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.040191][ T358] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.047323][ T358] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.054175][ T358] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.062286][ T349] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.069191][ T349] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.076260][ T349] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.083204][ T349] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.096688][ T343] device veth0_vlan entered promiscuous mode [ 40.102803][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.110134][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.118366][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.126789][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.134151][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.141013][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.147859][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.155991][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.163051][ T36] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.170429][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.177466][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.185483][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.192664][ T36] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.199549][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.207043][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.214845][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.222753][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.230197][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.237594][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.244779][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.252690][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.260464][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.267535][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.277233][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.285650][ T354] device veth0_vlan entered promiscuous mode [ 40.293710][ T354] device veth1_macvtap entered promiscuous mode [ 40.300461][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.308393][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.316387][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.323615][ T297] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.333791][ T355] device veth0_vlan entered promiscuous mode [ 40.340390][ T343] device veth1_macvtap entered promiscuous mode [ 40.355436][ T27] audit: type=1400 audit(1710138646.205:156): avc: denied { mounton } for pid=354 comm="syz-executor.4" path="/dev/binderfs" dev="devtmpfs" ino=207 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1 [ 40.378343][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.386281][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.393609][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.401480][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.410136][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.418075][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.426527][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.434699][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.443089][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.451253][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.458627][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.465784][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.472773][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.480858][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.487920][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.495211][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.502993][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.509813][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.517215][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.524998][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.532898][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.540780][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.548011][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.555207][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.563085][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.569983][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.577132][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.584747][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.592545][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.599539][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.607900][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.614884][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.622860][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.630878][ T36] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.637835][ T36] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.645133][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.652968][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.659866][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.667973][ T355] device veth1_macvtap entered promiscuous mode [ 40.676623][ T350] device veth0_vlan entered promiscuous mode [ 40.688108][ T27] audit: type=1400 audit(1710138646.535:157): avc: denied { bpf } for pid=381 comm="syz-executor.4" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 40.709440][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.717850][ T27] audit: type=1400 audit(1710138646.535:158): avc: denied { map_create } for pid=381 comm="syz-executor.4" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 40.721687][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.745827][ T27] audit: type=1400 audit(1710138646.605:159): avc: denied { mounton } for pid=381 comm="syz-executor.4" path="/root/syzkaller-testdir1346042960/syzkaller.Bac4ei/0/file0" dev="sda1" ino=1947 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 40.757233][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 40.780475][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 40.788764][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.797280][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.805344][ T36] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.812268][ T36] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.819877][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.827678][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.835870][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.843846][ T36] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.854342][ T358] device veth0_vlan entered promiscuous mode [ 40.863261][ T349] device veth0_vlan entered promiscuous mode [ 40.870249][ T350] device veth1_macvtap entered promiscuous mode [ 40.876874][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.885799][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.894198][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.903422][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.911223][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.919840][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.927845][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.936141][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.944246][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.952395][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.961564][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.969210][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.977220][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.985510][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.993547][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 41.003273][ T358] device veth1_macvtap entered promiscuous mode [ 41.011155][ T349] device veth1_macvtap entered promiscuous mode [ 41.022921][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.043075][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.055565][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.068528][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.082443][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 41.097142][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.113083][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 41.127477][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 41.143382][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.159137][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 41.174316][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 41.191436][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.207217][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 41.224484][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.241305][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.257230][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.274041][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.289665][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.319321][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 41.335032][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.359985][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.384780][ T23] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.521794][ T406] BUG: unable to handle page fault for address: ffff888251c09fff [ 41.529434][ T406] #PF: supervisor write access in kernel mode [ 41.535564][ T406] #PF: error_code(0x0002) - not-present page [ 41.541614][ T406] PGD 3401067 P4D 3401067 PUD 0 [ 41.546388][ T406] Oops: 0002 [#1] PREEMPT SMP [ 41.551725][ T406] CPU: 1 PID: 406 Comm: syz-executor.3 Not tainted 6.1.68-syzkaller #0 [ 41.559856][ T406] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 41.570098][ T406] RIP: 0010:fuse_dev_do_write+0xec8/0x14e0 [ 41.575823][ T406] Code: 00 00 00 41 8b 44 24 3c 3d e0 07 00 00 4c 8b ad 68 ff ff ff 75 35 83 7d 94 00 75 2f 49 8b 44 24 20 48 8b 78 70 8b 40 68 ff c8 04 07 00 49 8b 44 24 20 48 8b 90 a0 00 00 00 31 f6 e8 41 6c eb [ 41.596273][ T406] RSP: 0018:ffffc900c0f3fcf8 EFLAGS: 00010296 [ 41.602222][ T406] RAX: 00000000ffffffff RBX: ffff88811692ce80 RCX: 0000000000000000 [ 41.610180][ T406] RDX: 0000000000000000 RSI: ffff888151c0a000 RDI: ffff888151c0a000 [ 41.618081][ T406] RBP: ffffc900c0f3fdb8 R08: 0000000000000000 R09: ffffc900c0f6fda8 [ 41.626324][ T406] R10: 0000000000001000 R11: 0000000000000000 R12: ffff88811184a720 [ 41.634649][ T406] R13: ffff88811692ce8c R14: 0000000000000000 R15: ffffc900c0f3fe00 [ 41.642836][ T406] FS: 00007fef63d096c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 41.651663][ T406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.658216][ T406] CR2: ffff888251c09fff CR3: 0000000141e7c000 CR4: 00000000003506a0 [ 41.665989][ T406] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 41.674240][ T406] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 41.682140][ T406] Call Trace: [ 41.685291][ T406] [ 41.688126][ T406] ? __die_body+0x62/0xb0 [ 41.692377][ T406] ? __die+0x7e/0x90 [ 41.696108][ T406] ? page_fault_oops+0x369/0x3d0 [ 41.700970][ T406] ? stack_depot_save+0x13/0x20 [ 41.705657][ T406] ? internal_get_user_pages_fast+0x4f7/0xdd0 [ 41.711563][ T406] ? kernelmode_fixup_or_oops+0xc2/0xf0 [ 41.717159][ T406] ? __bad_area_nosemaphore+0x63/0x210 [ 41.722452][ T406] ? bad_area_nosemaphore+0x11/0x20 [ 41.727764][ T406] ? do_kern_addr_fault+0x2f/0x40 [ 41.733125][ T406] ? exc_page_fault+0x4b9/0x670 [ 41.737812][ T406] ? asm_exc_page_fault+0x27/0x30 [ 41.742678][ T406] ? fuse_dev_do_write+0xec8/0x14e0 [ 41.747706][ T406] ? fuse_dev_do_write+0xe8d/0x14e0 [ 41.752741][ T406] ? futex_wait_queue+0x77/0xd0 [ 41.757430][ T406] fuse_dev_write+0x83/0xb0 [ 41.761768][ T406] vfs_write+0x331/0x3f0 [ 41.765847][ T406] ksys_write+0x6c/0xd0 [ 41.769839][ T406] __x64_sys_write+0x16/0x20 [ 41.774436][ T406] do_syscall_64+0x3d/0xb0 [ 41.778776][ T406] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 41.784505][ T406] RIP: 0033:0x7fef6307c959 [ 41.788758][ T406] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 41.808212][ T406] RSP: 002b:00007fef63d090c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 41.816535][ T406] RAX: ffffffffffffffda RBX: 00007fef6319c050 RCX: 00007fef6307c959 [ 41.824471][ T406] RDX: 0000000000000010 RSI: 00000000200042c0 RDI: 0000000000000003 [ 41.832421][ T406] RBP: 00007fef630d8c88 R08: 0000000000000000 R09: 0000000000000000 [ 41.840346][ T406] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 41.848245][ T406] R13: 000000000000006e R14: 00007fef6319c050 R15: 00007ffc2f5ead18 [ 41.856154][ T406] [ 41.859187][ T406] Modules linked in: [ 41.862920][ T406] CR2: ffff888251c09fff [ 41.866927][ T406] ---[ end trace 0000000000000000 ]--- [ 41.866961][ T407] BUG: unable to handle page fault for address: ffff888253a48fff [ 41.872204][ T406] RIP: 0010:fuse_dev_do_write+0xec8/0x14e0 [ 41.879760][ T407] #PF: supervisor write access in kernel mode [ 41.885398][ T406] Code: 00 00 00 41 8b 44 24 3c 3d e0 07 00 00 4c 8b ad 68 ff ff ff 75 35 83 7d 94 00 75 2f 49 8b 44 24 20 48 8b 78 70 8b 40 68 ff c8 04 07 00 49 8b 44 24 20 48 8b 90 a0 00 00 00 31 f6 e8 41 6c eb [ 41.891301][ T407] #PF: error_code(0x0002) - not-present page [ 41.910838][ T406] RSP: 0018:ffffc900c0f3fcf8 EFLAGS: 00010296 [ 41.916907][ T407] PGD 3401067 [ 41.916907][ T406] [ 41.916909][ T406] RAX: 00000000ffffffff RBX: ffff88811692ce80 RCX: 0000000000000000 [ 41.922805][ T407] P4D 3401067 [ 41.926017][ T406] RDX: 0000000000000000 RSI: ffff888151c0a000 RDI: ffff888151c0a000 [ 41.928361][ T407] PUD 0 [ 41.936345][ T406] RBP: ffffc900c0f3fdb8 R08: 0000000000000000 R09: ffffc900c0f6fda8 [ 41.939555][ T407] [ 41.939557][ T407] Oops: 0002 [#2] PREEMPT SMP [ 41.947457][ T406] R10: 0000000000001000 R11: 0000000000000000 R12: ffff88811184a720 [ 41.950151][ T407] CPU: 0 PID: 407 Comm: syz-executor.5 Tainted: G D 6.1.68-syzkaller #0 [ 41.958392][ T406] R13: ffff88811692ce8c R14: 0000000000000000 R15: ffffc900c0f3fe00 [ 41.960562][ T407] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 [ 41.965163][ T406] FS: 00007fef63d096c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 41.973930][ T407] RIP: 0010:fuse_dev_do_write+0xec8/0x14e0 [ 41.983650][ T406] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 41.992341][ T407] Code: 00 00 00 41 8b 44 24 3c 3d e0 07 00 00 4c 8b ad 68 ff ff ff 75 35 83 7d 94 00 75 2f 49 8b 44 24 20 48 8b 78 70 8b 40 68 ff c8 04 07 00 49 8b 44 24 20 48 8b 90 a0 00 00 00 31 f6 e8 41 6c eb [ 42.002313][ T406] CR2: ffff888251c09fff CR3: 0000000141e7c000 CR4: 00000000003506a0 [ 42.011163][ T407] RSP: 0018:ffffc900c0f47cf8 EFLAGS: 00010296 [ 42.016804][ T406] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.023318][ T407] [ 42.023320][ T407] RAX: 00000000ffffffff RBX: ffff88812856d880 RCX: 0000000000000000 [ 42.043884][ T406] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.051779][ T407] RDX: 0000000000000000 RSI: ffff888153a49000 RDI: ffff888153a49000 [ 42.058119][ T406] Kernel panic - not syncing: Fatal exception [ 42.065929][ T407] RBP: ffffc900c0f47db8 R08: 0000000000000000 R09: ffffc900c0f77da8 [ 42.065931][ T407] R10: 0000000000001000 R11: 0000000000000000 R12: ffff888118e02688 [ 42.065933][ T407] R13: ffff88812856d88c R14: 0000000000000000 R15: ffffc900c0f47e00 [ 42.065935][ T407] FS: 00007f45c7a616c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 42.065938][ T407] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.065940][ T407] CR2: ffff888253a48fff CR3: 00000001423d6000 CR4: 00000000003506b0 [ 42.065945][ T407] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.065947][ T407] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 42.065949][ T407] Call Trace: [ 42.065951][ T407] [ 42.065954][ T407] ? __die_body+0x62/0xb0 [ 42.065961][ T407] ? __die+0x7e/0x90 [ 42.065966][ T407] ? page_fault_oops+0x369/0x3d0 [ 42.065969][ T407] ? stack_depot_save+0x13/0x20 [ 42.065975][ T407] ? internal_get_user_pages_fast+0x4f7/0xdd0 [ 42.065981][ T407] ? kernelmode_fixup_or_oops+0xc2/0xf0 [ 42.065985][ T407] ? __bad_area_nosemaphore+0x63/0x210 [ 42.065988][ T407] ? bad_area_nosemaphore+0x11/0x20 [ 42.065991][ T407] ? do_kern_addr_fault+0x2f/0x40 [ 42.065994][ T407] ? exc_page_fault+0x4b9/0x670 [ 42.066001][ T407] ? asm_exc_page_fault+0x27/0x30 [ 42.066006][ T407] ? fuse_dev_do_write+0xec8/0x14e0 [ 42.066011][ T407] ? fuse_dev_do_write+0xe8d/0x14e0 [ 42.066015][ T407] ? futex_wait_queue+0x77/0xd0 [ 42.066022][ T407] fuse_dev_write+0x83/0xb0 [ 42.066027][ T407] vfs_write+0x331/0x3f0 [ 42.066034][ T407] ksys_write+0x6c/0xd0 [ 42.066038][ T407] __x64_sys_write+0x16/0x20 [ 42.066042][ T407] do_syscall_64+0x3d/0xb0 [ 42.066046][ T407] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 42.066049][ T407] RIP: 0033:0x7f45c6c7c959 [ 42.066053][ T407] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 42.066056][ T407] RSP: 002b:00007f45c7a610c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 42.066059][ T407] RAX: ffffffffffffffda RBX: 00007f45c6d9c050 RCX: 00007f45c6c7c959 [ 42.066061][ T407] RDX: 0000000000000010 RSI: 00000000200042c0 RDI: 0000000000000003 [ 42.066063][ T407] RBP: 00007f45c6cd8c88 R08: 0000000000000000 R09: 0000000000000000 [ 42.066065][ T407] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 42.066067][ T407] R13: 000000000000006e R14: 00007f45c6d9c050 R15: 00007ffd11a67ff8 [ 42.066071][ T407] [ 42.066072][ T407] Modules linked in: [ 42.066075][ T407] CR2: ffff888253a48fff [ 42.068210][ T407] ---[ end trace 0000000000000000 ]--- [ 42.068212][ T407] RIP: 0010:fuse_dev_do_write+0xec8/0x14e0 [ 42.068216][ T407] Code: 00 00 00 41 8b 44 24 3c 3d e0 07 00 00 4c 8b ad 68 ff ff ff 75 35 83 7d 94 00 75 2f 49 8b 44 24 20 48 8b 78 70 8b 40 68 ff c8 04 07 00 49 8b 44 24 20 48 8b 90 a0 00 00 00 31 f6 e8 41 6c eb [ 42.068219][ T407] RSP: 0018:ffffc900c0f3fcf8 EFLAGS: 00010296 [ 42.068221][ T407] RAX: 00000000ffffffff RBX: ffff88811692ce80 RCX: 0000000000000000 [ 42.068223][ T407] RDX: 0000000000000000 RSI: ffff888151c0a000 RDI: ffff888151c0a000 [ 42.068225][ T407] RBP: ffffc900c0f3fdb8 R08: 0000000000000000 R09: ffffc900c0f6fda8 [ 42.068227][ T407] R10: 0000000000001000 R11: 0000000000000000 R12: ffff88811184a720 [ 42.068228][ T407] R13: ffff88811692ce8c R14: 0000000000000000 R15: ffffc900c0f3fe00 [ 42.068230][ T407] FS: 00007f45c7a616c0(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000 [ 42.068233][ T407] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 42.068235][ T407] CR2: ffff888253a48fff CR3: 00000001423d6000 CR4: 00000000003506b0 [ 42.068239][ T407] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 42.068241][ T407] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 43.178074][ T406] Shutting down cpus with NMI [ 43.580667][ T406] Kernel Offset: disabled [ 43.584865][ T406] Rebooting in 86400 seconds..