[   39.453387][    T7] device bridge_slave_0 left promiscuous mode
[   39.459573][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   39.468437][    T7] device veth1_macvtap left promiscuous mode
[   39.474695][    T7] device veth0_vlan left promiscuous mode
[   41.038645][    T7] device bridge_slave_1 left promiscuous mode
[   41.045250][    T7] bridge0: port 2(bridge_slave_1) entered disabled state
[   41.053779][    T7] device bridge_slave_0 left promiscuous mode
[   41.060464][    T7] bridge0: port 1(bridge_slave_0) entered disabled state
[   41.068118][    T7] device veth1_macvtap left promiscuous mode
[   41.074025][    T7] device veth0_vlan left promiscuous mode
Warning: Permanently added '10.128.1.148' (ED25519) to the list of known hosts.
2025/01/31 01:31:26 ignoring optional flag "sandboxArg"="0"
2025/01/31 01:31:26 parsed 1 programs
[   57.628296][   T23] kauditd_printk_skb: 26 callbacks suppressed
[   57.628302][   T23] audit: type=1400 audit(1738287086.800:102): avc:  denied  { module_request } for  pid=417 comm="syz-executor" kmod="netdev-wpan0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[   57.655898][   T23] audit: type=1400 audit(1738287086.800:103): avc:  denied  { read write } for  pid=417 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   57.681838][   T23] audit: type=1400 audit(1738287086.800:104): avc:  denied  { open } for  pid=417 comm="syz-executor" path="/root/swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   57.707753][   T23] audit: type=1400 audit(1738287086.830:105): avc:  denied  { unlink } for  pid=417 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   57.733330][   T23] audit: type=1400 audit(1738287086.830:106): avc:  denied  { relabelto } for  pid=423 comm="mkswap" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   57.759992][  T417] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   58.307900][   T23] audit: type=1401 audit(1738287087.470:107): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
[   58.345732][  T453] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.352775][  T453] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.360168][  T453] device bridge_slave_0 entered promiscuous mode
[   58.367467][  T453] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.375455][  T453] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.382670][  T453] device bridge_slave_1 entered promiscuous mode
[   58.417847][  T453] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.424747][  T453] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.431899][  T453] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.438769][  T453] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.454420][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.461919][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.469120][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.477593][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.486076][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.492994][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.502855][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.511044][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.517904][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.529613][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.538709][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.551954][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.562654][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.570481][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.577761][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.586459][  T453] device veth0_vlan entered promiscuous mode
[   58.596597][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.605871][  T453] device veth1_macvtap entered promiscuous mode
[   58.615726][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   58.625458][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
2025/01/31 01:31:27 executed programs: 0
[   58.733942][  T467] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.740932][  T467] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.748206][  T467] device bridge_slave_0 entered promiscuous mode
[   58.755134][  T467] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.762066][  T467] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.769300][  T467] device bridge_slave_1 entered promiscuous mode
[   58.803955][  T467] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.810867][  T467] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.818093][  T467] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.824838][  T467] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.841572][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.849239][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.856192][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.865107][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.873189][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.880051][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.888829][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.896902][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.904573][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.915042][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.923699][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.935315][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.945668][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.953453][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.960705][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.968883][  T467] device veth0_vlan entered promiscuous mode
[   58.977541][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   58.991684][  T467] device veth1_macvtap entered promiscuous mode
[   59.000138][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.009457][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.028143][   T23] audit: type=1400 audit(1738287088.190:108): avc:  denied  { sys_module } for  pid=472 comm="syz.0.15" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   59.029599][  T473] ==================================================================
[   59.049323][   T23] audit: type=1400 audit(1738287088.200:109): avc:  denied  { module_load } for  pid=472 comm="syz.0.15" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=system permissive=1
[   59.056621][  T473] BUG: KASAN: vmalloc-out-of-bounds in load_module+0x93be/0xa5c0
[   59.083095][  T473] Read of size 1 at addr ffffc90000240fff by task syz.0.15/473
[   59.090467][  T473] 
[   59.092628][  T473] CPU: 1 PID: 473 Comm: syz.0.15 Not tainted 5.10.233-syzkaller #0
[   59.100519][  T473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   59.110508][  T473] Call Trace:
[   59.113629][  T473]  dump_stack_lvl+0x81/0xac
[   59.117966][  T473]  print_address_description.constprop.0+0x24/0x160
[   59.124483][  T473]  ? load_module+0x93be/0xa5c0
[   59.129073][  T473]  kasan_report.cold+0x82/0xdb
[   59.133775][  T473]  ? load_module+0x93be/0xa5c0
[   59.138390][  T473]  __asan_report_load1_noabort+0x14/0x20
[   59.143850][  T473]  load_module+0x93be/0xa5c0
[   59.148282][  T473]  ? __alloc_pages_nodemask+0x2ae/0x23d0
[   59.153742][  T473]  ? kasan_poison+0x60/0x60
[   59.158095][  T473]  ? apply_to_page_range+0xf/0x20
[   59.162949][  T473]  ? kasan_populate_vmalloc+0x66/0x70
[   59.168332][  T473]  ? module_frob_arch_sections+0x20/0x20
[   59.173805][  T473]  ? vm_unmap_ram+0x350/0x350
[   59.178335][  T473]  ? __kmalloc+0x1cd/0x360
[   59.182570][  T473]  ? kasan_poison+0x55/0x60
[   59.186996][  T473]  ? kasan_unpoison+0x46/0x70
[   59.191518][  T473]  ? __kasan_unpoison_vmalloc+0x24/0x30
[   59.196890][  T473]  ? __vmalloc_node_range+0x61c/0x980
[   59.202110][  T473]  ? vfree_atomic+0x90/0x90
[   59.206446][  T473]  ? __kasan_check_write+0x14/0x20
[   59.211418][  T473]  __do_sys_init_module+0x1fb/0x230
[   59.216416][  T473]  ? load_module+0xa5c0/0xa5c0
[   59.221003][  T473]  ? __kasan_check_write+0x14/0x20
[   59.225955][  T473]  ? debug_smp_processor_id+0x17/0x20
[   59.231176][  T473]  ? fpregs_assert_state_consistent+0x3f/0x60
[   59.237252][  T473]  ? exit_to_user_mode_prepare+0x32/0x120
[   59.242815][  T473]  __x64_sys_init_module+0x6e/0xb0
[   59.247757][  T473]  ? exc_page_fault+0x71/0xc0
[   59.252259][  T473]  do_syscall_64+0x32/0x80
[   59.256505][  T473]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   59.262239][  T473] RIP: 0033:0x7ff16f87bf39
[   59.266513][  T473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.286044][  T473] RSP: 002b:00007ff16f2fd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000af
[   59.294540][  T473] RAX: ffffffffffffffda RBX: 00007ff16fa33f80 RCX: 00007ff16f87bf39
[   59.302353][  T473] RDX: 0000000000000000 RSI: 0000000000000578 RDI: 0000000020000040
[   59.310318][  T473] RBP: 00007ff16f8ee216 R08: 0000000000000000 R09: 0000000000000000
[   59.318114][  T473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   59.326037][  T473] R13: 0000000000000001 R14: 00007ff16fa33f80 R15: 00007ffeb6aa17f8
[   59.333847][  T473] 
[   59.336020][  T473] 
[   59.338177][  T473] Memory state around the buggy address:
[   59.343649][  T473]  ffffc90000240e80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   59.351654][  T473]  ffffc90000240f00: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   59.359719][  T473] >ffffc90000240f80: f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8 f8
[   59.367608][  T473]                                                                 ^
[   59.375423][  T473]  ffffc90000241000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   59.383320][  T473]  ffffc90000241080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[   59.391218][  T473] ==================================================================
[   59.399205][  T473] Disabling lock debugging due to kernel taint
[   59.406846][  T473] BUG: unable to handle page fault for address: ffffc90000240fff
[   59.414360][  T473] #PF: supervisor read access in kernel mode
[   59.420184][  T473] #PF: error_code(0x0000) - not-present page
[   59.425991][  T473] PGD 100000067 P4D 100000067 PUD 100112067 PMD 1083d9067 PTE 0
[   59.433466][  T473] Oops: 0000 [#1] PREEMPT SMP KASAN
[   59.438493][  T473] CPU: 1 PID: 473 Comm: syz.0.15 Tainted: G    B             5.10.233-syzkaller #0
[   59.447613][  T473] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[   59.457505][  T473] RIP: 0010:load_module+0x376/0xa5c0
[   59.462620][  T473] Code: 00 00 00 00 fc ff df 4f 8d 64 0d ff 4c 89 e6 48 c1 ee 03 0f b6 04 06 4c 89 e6 83 e6 07 40 38 f0 7f 08 84 c0 0f 85 24 90 00 00 <41> 80 3c 24 00 0f 85 e8 01 00 00 48 8d 7b 04 48 b8 00 00 00 00 00
[   59.482154][  T473] RSP: 0018:ffffc90000a87a00 EFLAGS: 00010286
[   59.488195][  T473] RAX: 0000000000000001 RBX: ffffc900002413c2 RCX: 0000000000000578
[   59.496214][  T473] RDX: ffffc90000241000 RSI: 0000000000000004 RDI: ffffffff856bb9e0
[   59.504109][  T473] RBP: ffffc90000a87da8 R08: ffffc9000024103c R09: 0000000000000000
[   59.512147][  T473] R10: fffffbfff0ad773c R11: 0000000000000001 R12: ffffc90000240fff
[   59.520482][  T473] R13: ffffc90000241000 R14: 0000000000000000 R15: 0000000000000578
[   59.528462][  T473] FS:  00007ff16f2fd6c0(0000) GS:ffff8881f7500000(0000) knlGS:0000000000000000
[   59.537479][  T473] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.543903][  T473] CR2: ffffc90000240fff CR3: 0000000110412000 CR4: 00000000003506a0
[   59.551706][  T473] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   59.559505][  T473] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   59.567409][  T473] Call Trace:
[   59.570554][  T473]  ? show_regs.part.0+0x1e/0x20
[   59.575216][  T473]  ? __die+0x5d/0x9e
[   59.578953][  T473]  ? no_context.constprop.0+0x304/0x6a0
[   59.584334][  T473]  ? is_prefetch.constprop.0+0x330/0x330
[   59.589803][  T473]  ? __schedule+0x707/0x19d0
[   59.594228][  T473]  ? wake_up_klogd.part.0+0x71/0xa0
[   59.599267][  T473]  ? io_schedule_timeout+0x150/0x150
[   59.604378][  T473]  ? __bad_area_nosemaphore+0x6a/0x330
[   59.609683][  T473]  ? __kasan_check_read+0x11/0x20
[   59.614530][  T473]  ? preempt_schedule_common+0x5e/0xe0
[   59.619825][  T473]  ? bad_area_nosemaphore+0x11/0x20
[   59.624857][  T473]  ? do_kern_addr_fault+0x30/0x40
[   59.629728][  T473]  ? exc_page_fault+0xb1/0xc0
[   59.634232][  T473]  ? asm_exc_page_fault+0x1e/0x30
[   59.639188][  T473]  ? load_module+0x376/0xa5c0
[   59.643700][  T473]  ? __alloc_pages_nodemask+0x2ae/0x23d0
[   59.649159][  T473]  ? kasan_poison+0x60/0x60
[   59.653508][  T473]  ? apply_to_page_range+0xf/0x20
[   59.658378][  T473]  ? kasan_populate_vmalloc+0x66/0x70
[   59.663593][  T473]  ? module_frob_arch_sections+0x20/0x20
[   59.669307][  T473]  ? vm_unmap_ram+0x350/0x350
[   59.673917][  T473]  ? __kmalloc+0x1cd/0x360
[   59.678167][  T473]  ? kasan_poison+0x55/0x60
[   59.682508][  T473]  ? kasan_unpoison+0x46/0x70
[   59.687023][  T473]  ? __kasan_unpoison_vmalloc+0x24/0x30
[   59.692408][  T473]  ? __vmalloc_node_range+0x61c/0x980
[   59.697607][  T473]  ? vfree_atomic+0x90/0x90
[   59.701947][  T473]  ? __kasan_check_write+0x14/0x20
[   59.706891][  T473]  __do_sys_init_module+0x1fb/0x230
[   59.711926][  T473]  ? load_module+0xa5c0/0xa5c0
[   59.716601][  T473]  ? __kasan_check_write+0x14/0x20
[   59.721484][  T473]  ? debug_smp_processor_id+0x17/0x20
[   59.726687][  T473]  ? fpregs_assert_state_consistent+0x3f/0x60
[   59.732590][  T473]  ? exit_to_user_mode_prepare+0x32/0x120
[   59.738229][  T473]  __x64_sys_init_module+0x6e/0xb0
[   59.743174][  T473]  ? exc_page_fault+0x71/0xc0
[   59.747687][  T473]  do_syscall_64+0x32/0x80
[   59.751940][  T473]  entry_SYSCALL_64_after_hwframe+0x61/0xcb
[   59.757676][  T473] RIP: 0033:0x7ff16f87bf39
[   59.761924][  T473] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   59.781360][  T473] RSP: 002b:00007ff16f2fd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000af
[   59.789607][  T473] RAX: ffffffffffffffda RBX: 00007ff16fa33f80 RCX: 00007ff16f87bf39
[   59.797425][  T473] RDX: 0000000000000000 RSI: 0000000000000578 RDI: 0000000020000040
[   59.805235][  T473] RBP: 00007ff16f8ee216 R08: 0000000000000000 R09: 0000000000000000
[   59.813155][  T473] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   59.820939][  T473] R13: 0000000000000001 R14: 00007ff16fa33f80 R15: 00007ffeb6aa17f8
[   59.828881][  T473] Modules linked in:
[   59.832607][  T473] CR2: ffffc90000240fff
[   59.836594][  T473] ---[ end trace e844d31163eecd66 ]---
[   59.841987][  T473] RIP: 0010:load_module+0x376/0xa5c0
[   59.847349][  T473] Code: 00 00 00 00 fc ff df 4f 8d 64 0d ff 4c 89 e6 48 c1 ee 03 0f b6 04 06 4c 89 e6 83 e6 07 40 38 f0 7f 08 84 c0 0f 85 24 90 00 00 <41> 80 3c 24 00 0f 85 e8 01 00 00 48 8d 7b 04 48 b8 00 00 00 00 00
[   59.867231][  T473] RSP: 0018:ffffc90000a87a00 EFLAGS: 00010286
[   59.873139][  T473] RAX: 0000000000000001 RBX: ffffc900002413c2 RCX: 0000000000000578
[   59.880944][  T473] RDX: ffffc90000241000 RSI: 0000000000000004 RDI: ffffffff856bb9e0
[   59.888920][  T473] RBP: ffffc90000a87da8 R08: ffffc9000024103c R09: 0000000000000000
[   59.896731][  T473] R10: fffffbfff0ad773c R11: 0000000000000001 R12: ffffc90000240fff
[   59.904540][  T473] R13: ffffc90000241000 R14: 0000000000000000 R15: 0000000000000578
[   59.912358][  T473] FS:  00007ff16f2fd6c0(0000) GS:ffff8881f7500000(0000) knlGS:0000000000000000
[   59.921122][  T473] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   59.927542][  T473] CR2: ffffc90000240fff CR3: 0000000110412000 CR4: 00000000003506a0
[   59.935359][  T473] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[   59.943175][  T473] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[   59.950973][  T473] Kernel panic - not syncing: Fatal exception
[   59.957089][  T473] Kernel Offset: disabled
[   59.961218][  T473] Rebooting in 86400 seconds..