Warning: Permanently added '10.128.0.8' (ED25519) to the list of known hosts.
2026/04/20 23:09:26 parsed 1 programs
[ 25.897140][ T28] audit: type=1400 audit(1776726566.671:64): avc: denied { node_bind } for pid=283 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 25.928320][ T28] audit: type=1400 audit(1776726566.671:65): avc: denied { module_request } for pid=283 comm="syz-execprog" kmod="net-pf-2-proto-262-type-1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 27.050376][ T28] audit: type=1400 audit(1776726567.821:66): avc: denied { mounton } for pid=291 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 27.053663][ T291] cgroup: Unknown subsys name 'net'
[ 27.073046][ T28] audit: type=1400 audit(1776726567.821:67): avc: denied { mount } for pid=291 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 27.100433][ T28] audit: type=1400 audit(1776726567.851:68): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 27.100876][ T291] cgroup: Unknown subsys name 'devices'
[ 27.245925][ T291] cgroup: Unknown subsys name 'hugetlb'
[ 27.251587][ T291] cgroup: Unknown subsys name 'rlimit'
[ 27.394643][ T28] audit: type=1400 audit(1776726568.171:69): avc: denied { setattr } for pid=291 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 27.417865][ T28] audit: type=1400 audit(1776726568.171:70): avc: denied { create } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 27.438303][ T28] audit: type=1400 audit(1776726568.171:71): avc: denied { write } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 27.459077][ T28] audit: type=1400 audit(1776726568.171:72): avc: denied { read } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 27.479435][ T28] audit: type=1400 audit(1776726568.171:73): avc: denied { mounton } for pid=291 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 27.482162][ T294] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[ 27.565785][ T291] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 28.311409][ T300] request_module fs-gadgetfs succeeded, but still no fs?
[ 28.864559][ T336] syz-executor (336) used greatest stack depth: 22144 bytes left
[ 28.983405][ T346] bridge0: port 1(bridge_slave_0) entered blocking state
[ 28.990557][ T346] bridge0: port 1(bridge_slave_0) entered disabled state
[ 28.998137][ T346] device bridge_slave_0 entered promiscuous mode
[ 29.009849][ T346] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.016977][ T346] bridge0: port 2(bridge_slave_1) entered disabled state
[ 29.024486][ T346] device bridge_slave_1 entered promiscuous mode
[ 29.077353][ T346] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.084511][ T346] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 29.091965][ T346] bridge0: port 1(bridge_slave_0) entered blocking state
[ 29.099148][ T346] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 29.119949][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 29.128166][ T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 29.135642][ T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 29.149268][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 29.157567][ T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 29.164644][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 29.173463][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 29.181780][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.189025][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 29.208254][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 29.217554][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 29.231865][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 29.247669][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 29.256442][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 29.264109][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 29.272139][ T346] device veth0_vlan entered promiscuous mode
[ 29.282672][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 29.291958][ T346] device veth1_macvtap entered promiscuous mode
[ 29.307815][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 29.317954][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 29.348415][ T346] syz-executor (346) used greatest stack depth: 21472 bytes left
2026/04/20 23:09:30 executed programs: 0
[ 29.595767][ T358] bridge0: port 1(bridge_slave_0) entered blocking state
[ 29.602821][ T358] bridge0: port 1(bridge_slave_0) entered disabled state
[ 29.610757][ T358] device bridge_slave_0 entered promiscuous mode
[ 29.617954][ T358] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.625256][ T358] bridge0: port 2(bridge_slave_1) entered disabled state
[ 29.632666][ T358] device bridge_slave_1 entered promiscuous mode
[ 29.678240][ T358] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.685369][ T358] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 29.692667][ T358] bridge0: port 1(bridge_slave_0) entered blocking state
[ 29.699959][ T358] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 29.720604][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 29.728400][ T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 29.735958][ T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 29.745109][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 29.753374][ T10] bridge0: port 1(bridge_slave_0) entered blocking state
[ 29.760482][ T10] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 29.769348][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 29.777777][ T10] bridge0: port 2(bridge_slave_1) entered blocking state
[ 29.784903][ T10] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 29.797975][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 29.807940][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 29.828913][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 29.840401][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 29.848491][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 29.862503][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 29.870416][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 29.878400][ T358] device veth0_vlan entered promiscuous mode
[ 29.894178][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 29.902429][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 29.911844][ T358] device veth1_macvtap entered promiscuous mode
[ 29.921221][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 29.929173][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 29.937658][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 29.952137][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 29.960675][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 29.989758][ T362] loop2: detected capacity change from 0 to 1024
[ 29.999044][ T362] =======================================================
[ 29.999044][ T362] WARNING: The mand mount option has been deprecated and
[ 29.999044][ T362] and is ignored by this kernel. Remove the mand
[ 29.999044][ T362] option from the mount to silence this warning.
[ 29.999044][ T362] =======================================================
[ 30.048889][ T362] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.065530][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.080810][ T367] loop2: detected capacity change from 0 to 1024
[ 30.097913][ T367] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.111745][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.130021][ T370] loop2: detected capacity change from 0 to 1024
[ 30.145624][ T370] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.157975][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.173614][ T373] loop2: detected capacity change from 0 to 1024
[ 30.187106][ T373] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.199500][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.215625][ T376] loop2: detected capacity change from 0 to 1024
[ 30.225002][ T376] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.239418][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.271553][ T380] loop2: detected capacity change from 0 to 1024
[ 30.278427][ T8] device bridge_slave_1 left promiscuous mode
[ 30.286761][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 30.294537][ T8] device bridge_slave_0 left promiscuous mode
[ 30.300712][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 30.309181][ T8] device veth1_macvtap left promiscuous mode
[ 30.315828][ T8] device veth0_vlan left promiscuous mode
[ 30.319441][ T380] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.339753][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.356417][ T383] loop2: detected capacity change from 0 to 1024
[ 30.385451][ T383] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.406518][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.425040][ T386] loop2: detected capacity change from 0 to 1024
[ 30.437755][ T386] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.456243][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.471724][ T389] loop2: detected capacity change from 0 to 1024
[ 30.490158][ T389] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.503337][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.524652][ T392] loop2: detected capacity change from 0 to 1024
[ 30.535155][ T392] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.550326][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.575303][ T395] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.588174][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.675008][ T398] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.688100][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.720804][ T401] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.737299][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.765154][ T404] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.777622][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.805418][ T407] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.817492][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.855198][ T410] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.867905][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.895463][ T413] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.907916][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.945141][ T416] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.959178][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 30.985554][ T419] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 30.998415][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.035156][ T422] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.050621][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.075723][ T425] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.088866][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.115231][ T428] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.128828][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.157716][ T431] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.170534][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.195104][ T434] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.208569][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.235366][ T437] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.247708][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.275185][ T440] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.290913][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.325117][ T443] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.338793][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.365080][ T446] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.377996][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.405551][ T449] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.419491][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.445552][ T452] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.458383][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.485061][ T455] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 31.497650][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 31.526292][ T458] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 32.386629][ T566] ==================================================================
[ 32.394840][ T566] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x979/0x21d0
[ 32.402623][ T566] Read of size 18446744073709551588 at addr ffff8881103e2840 by task syz.2.87/566
[ 32.411843][ T566]
[ 32.414210][ T566] CPU: 1 PID: 566 Comm: syz.2.87 Not tainted syzkaller #0
[ 32.421444][ T566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 32.431540][ T566] Call Trace:
[ 32.434939][ T566]
[ 32.437938][ T566] __dump_stack+0x21/0x24
[ 32.442313][ T566] dump_stack_lvl+0x110/0x170
[ 32.447037][ T566] ? __cfi_dump_stack_lvl+0x8/0x8
[ 32.452088][ T566] ? kasan_save_alloc_info+0x25/0x30
[ 32.457424][ T566] ? ext4_xattr_block_set+0x9d5/0x3260
[ 32.462923][ T566] ? ext4_xattr_set+0x242/0x320
[ 32.467830][ T566] ? ext4_xattr_security_set+0x3c/0x50
[ 32.473418][ T566] ? ext4_xattr_set_entry+0x979/0x21d0
[ 32.478919][ T566] print_address_description+0x71/0x200
[ 32.484692][ T566] print_report+0x4a/0x60
[ 32.489071][ T566] kasan_report+0x122/0x150
[ 32.493610][ T566] ? ext4_xattr_set_entry+0x979/0x21d0
[ 32.499356][ T566] ? ext4_xattr_set_entry+0x979/0x21d0
[ 32.504838][ T566] kasan_check_range+0x249/0x2a0
[ 32.509782][ T566] ? ext4_xattr_set_entry+0x979/0x21d0
[ 32.515259][ T566] memmove+0x2d/0x70
[ 32.519150][ T566] ext4_xattr_set_entry+0x979/0x21d0
[ 32.524460][ T566] ext4_xattr_block_set+0xad3/0x3260
[ 32.529765][ T566] ? __kasan_check_write+0x14/0x20
[ 32.534889][ T566] ? iput+0x620/0x670
[ 32.538957][ T566] ? ext4_xattr_block_find+0x310/0x310
[ 32.544428][ T566] ext4_xattr_set_handle+0xe3b/0x1570
[ 32.549806][ T566] ? __cfi_ext4_xattr_set_handle+0x10/0x10
[ 32.555620][ T566] ? __kasan_check_read+0x11/0x20
[ 32.560649][ T566] ? __ext4_journal_start_sb+0x2ed/0x4a0
[ 32.566279][ T566] ext4_xattr_set+0x242/0x320
[ 32.570959][ T566] ? ns_capable+0x8c/0xf0
[ 32.575292][ T566] ? __cfi_ext4_xattr_set+0x10/0x10
[ 32.580495][ T566] ? selinux_inode_setxattr+0x5cf/0xbf0
[ 32.586057][ T566] ext4_xattr_security_set+0x3c/0x50
[ 32.591342][ T566] ? __cfi_ext4_xattr_security_set+0x10/0x10
[ 32.597354][ T566] __vfs_setxattr+0x3f2/0x440
[ 32.602040][ T566] __vfs_setxattr_noperm+0x12a/0x5e0
[ 32.607516][ T566] __vfs_setxattr_locked+0x212/0x230
[ 32.612812][ T566] vfs_setxattr+0x167/0x2e0
[ 32.617349][ T566] ? __cfi_vfs_setxattr+0x10/0x10
[ 32.622399][ T566] ? copy_user_enhanced_fast_string+0xa/0x40
[ 32.628398][ T566] setxattr+0x346/0x360
[ 32.632566][ T566] ? path_setxattr+0x290/0x290
[ 32.637347][ T566] ? __mnt_want_write+0x1e6/0x260
[ 32.642389][ T566] ? mnt_want_write+0x220/0x300
[ 32.647253][ T566] path_setxattr+0x147/0x290
[ 32.652305][ T566] ? simple_xattr_list_add+0x120/0x120
[ 32.657781][ T566] __x64_sys_setxattr+0xc5/0xe0
[ 32.662642][ T566] x64_sys_call+0x633/0x9a0
[ 32.667156][ T566] do_syscall_64+0x4c/0xa0
[ 32.671599][ T566] ? clear_bhb_loop+0x30/0x80
[ 32.676472][ T566] ? clear_bhb_loop+0x30/0x80
[ 32.681153][ T566] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 32.687132][ T566] RIP: 0033:0x7f4d7719c819
[ 32.691557][ T566] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 32.711426][ T566] RSP: 002b:00007fff43653ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 32.720301][ T566] RAX: ffffffffffffffda RBX: 00007f4d77415fa0 RCX: 00007f4d7719c819
[ 32.728291][ T566] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[ 32.736298][ T566] RBP: 00007f4d77232c91 R08: 0000000000000000 R09: 0000000000000000
[ 32.744311][ T566] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[ 32.752299][ T566] R13: 00007f4d77415fac R14: 00007f4d77415fa0 R15: 00007f4d77415fa0
[ 32.760305][ T566]
[ 32.763349][ T566]
[ 32.765682][ T566] Allocated by task 566:
[ 32.769939][ T566] kasan_set_track+0x4b/0x70
[ 32.774584][ T566] kasan_save_alloc_info+0x25/0x30
[ 32.779715][ T566] __kasan_kmalloc+0x95/0xb0
[ 32.784322][ T566] __kmalloc_node_track_caller+0xb1/0x1e0
[ 32.790058][ T566] kmemdup+0x2b/0x60
[ 32.793994][ T566] ext4_xattr_block_set+0x9d5/0x3260
[ 32.799304][ T566] ext4_xattr_set_handle+0xe3b/0x1570
[ 32.804730][ T566] ext4_xattr_set+0x242/0x320
[ 32.809430][ T566] ext4_xattr_security_set+0x3c/0x50
[ 32.814726][ T566] __vfs_setxattr+0x3f2/0x440
[ 32.819421][ T566] __vfs_setxattr_noperm+0x12a/0x5e0
[ 32.824720][ T566] __vfs_setxattr_locked+0x212/0x230
[ 32.830066][ T566] vfs_setxattr+0x167/0x2e0
[ 32.834590][ T566] setxattr+0x346/0x360
[ 32.838771][ T566] path_setxattr+0x147/0x290
[ 32.843381][ T566] __x64_sys_setxattr+0xc5/0xe0
[ 32.848249][ T566] x64_sys_call+0x633/0x9a0
[ 32.852766][ T566] do_syscall_64+0x4c/0xa0
[ 32.857193][ T566] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 32.863100][ T566]
[ 32.865459][ T566] The buggy address belongs to the object at ffff8881103e2800
[ 32.865459][ T566] which belongs to the cache kmalloc-1k of size 1024
[ 32.879526][ T566] The buggy address is located 64 bytes inside of
[ 32.879526][ T566] 1024-byte region [ffff8881103e2800, ffff8881103e2c00)
[ 32.892811][ T566]
[ 32.895148][ T566] The buggy address belongs to the physical page:
[ 32.901569][ T566] page:ffffea000440f800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1103e0
[ 32.911829][ T566] head:ffffea000440f800 order:3 compound_mapcount:0 compound_pincount:0
[ 32.920166][ T566] flags: 0x4000000000010200(slab|head|zone=1)
[ 32.926273][ T566] raw: 4000000000010200 ffffea000440fa00 dead000000000002 ffff888100043080
[ 32.934867][ T566] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 32.943481][ T566] page dumped because: kasan: bad access detected
[ 32.949921][ T566] page_owner tracks the page as allocated
[ 32.955825][ T566] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 92, tgid 92 (klogd), ts 5366539290, free_ts 0
[ 32.975313][ T566] post_alloc_hook+0x1f5/0x210
[ 32.980104][ T566] prep_new_page+0x1c/0x110
[ 32.984632][ T566] get_page_from_freelist+0x2d12/0x2d80
[ 32.990217][ T566] __alloc_pages+0x1fa/0x610
[ 32.994827][ T566] alloc_slab_page+0x6e/0xf0
[ 32.999439][ T566] new_slab+0x98/0x3d0
[ 33.003533][ T566] ___slab_alloc+0x6bd/0xb20
[ 33.008137][ T566] __slab_alloc+0x5e/0xa0
[ 33.012494][ T566] __kmem_cache_alloc_node+0x203/0x2c0
[ 33.017976][ T566] kmalloc_trace+0x29/0xb0
[ 33.022412][ T566] syslog_print+0x11f/0x600
[ 33.026933][ T566] do_syslog+0x6e1/0x7a0
[ 33.031190][ T566] __x64_sys_syslog+0x7c/0x90
[ 33.035888][ T566] x64_sys_call+0x610/0x9a0
[ 33.040503][ T566] do_syscall_64+0x4c/0xa0
[ 33.044933][ T566] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 33.050845][ T566] page_owner free stack trace missing
[ 33.056221][ T566]
[ 33.058560][ T566] Memory state around the buggy address:
[ 33.064374][ T566] ffff8881103e2700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 33.072444][ T566] ffff8881103e2780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 33.080513][ T566] >ffff8881103e2800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 33.088754][ T566] ^
[ 33.094968][ T566] ffff8881103e2880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 33.103048][ T566] ffff8881103e2900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 33.111117][ T566] ==================================================================
[ 33.119703][ T566] Disabling lock debugging due to kernel taint
[ 33.129930][ T28] kauditd_printk_skb: 33 callbacks suppressed
[ 33.129943][ T28] audit: type=1400 audit(1776726573.901:107): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 33.160281][ T28] audit: type=1400 audit(1776726573.931:108): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 33.184406][ T28] audit: type=1400 audit(1776726573.931:109): avc: denied { write } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 33.206312][ T28] audit: type=1400 audit(1776726573.931:110): avc: denied { add_name } for pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 33.227545][ T28] audit: type=1400 audit(1776726573.931:111): avc: denied { create } for pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 33.248125][ T28] audit: type=1400 audit(1776726573.931:112): avc: denied { append open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 33.271221][ T28] audit: type=1400 audit(1776726573.931:113): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 34.134498][ T301] SELinux: Invalid class 0
[ 34.139280][ T301] ------------[ cut here ]------------
[ 34.144920][ T301] WARNING: CPU: 0 PID: 301 at security/selinux/avc.c:785 slow_avc_audit+0x229/0x240
[ 34.147554][ T92] general protection fault, probably for non-canonical address 0xf9edbf798959e38: 0000 [#1] PREEMPT SMP KASAN
[ 34.154700][ T301] Modules linked in:
[ 34.165991][ T92] CPU: 1 PID: 92 Comm: klogd Tainted: G B syzkaller #0
[ 34.166016][ T92] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 34.166027][ T92] RIP: 0010:__kmem_cache_alloc_node+0x123/0x2c0
[ 34.166061][ T92] Code: 08 48 8b 38 48 85 ff 0f 84 e8 00 00 00 48 83 78 10 00 0f 84 dd 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 34.166078][ T92] RSP: 0018:ffffc900007af7c0 EFLAGS: 00010286
[ 34.166097][ T92] RAX: 0000000000000200 RBX: 0f4c96ef191d63c7 RCX: 389e9598f7db9e0f
[ 34.166111][ T92] RDX: 000000000000e699 RSI: 0000000000000400 RDI: 0f9edbf798959c38
[ 34.170020][ T301]
[ 34.170028][ T301] CPU: 0 PID: 301 Comm: udevd Tainted: G B syzkaller #0
[ 34.178260][ T92] RBP: ffffc900007af810 R08: ffffffff83ef0188 R09: ffffffff83ef0188
[ 34.178277][ T92] R10: 00000000c7133e3a R11: 00000000ffffffff R12: 0000000000482cc0
[ 34.178290][ T92] R13: 0000000000000000 R14: ffffffff83ef0188 R15: ffff888100043080
[ 34.178304][ T92] FS: 00007f9c9c7cbc80(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 34.178322][ T92] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 34.178336][ T92] CR2: 000000000048eec0 CR3: 0000000110125000 CR4: 00000000003506a0
[ 34.178353][ T92] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 34.178364][ T92] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 34.178376][ T92] Call Trace:
[ 34.188780][ T301] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 34.194679][ T92]
[ 34.194691][ T92] ? alloc_skb_with_frags+0xa8/0x620
[ 34.194725][ T92] ? alloc_skb_with_frags+0xa8/0x620
[ 34.194750][ T92] __kmalloc_node_track_caller+0xa0/0x1e0
[ 34.194770][ T92] ? alloc_skb_with_frags+0xa8/0x620
[ 34.194795][ T92] __alloc_skb+0x236/0x4b0
[ 34.194820][ T92] alloc_skb_with_frags+0xa8/0x620
[ 34.194844][ T92] ? memcpy+0x56/0x70
[ 34.194864][ T92] sock_alloc_send_pskb+0x87f/0x9a0
[ 34.194889][ T92] ? __cfi_sock_alloc_send_pskb+0x10/0x10
[ 34.194909][ T92] ? __kasan_check_write+0x14/0x20
[ 34.194928][ T92] ? _raw_spin_lock+0x94/0xf0
[ 34.194946][ T92] ? __cfi__raw_spin_lock+0x10/0x10
[ 34.194966][ T92] unix_dgram_sendmsg+0x539/0x16f0
[ 34.194992][ T92] ? __cfi_selinux_socket_sendmsg+0x10/0x10
[ 34.195021][ T92] ? __cfi_unix_dgram_sendmsg+0x10/0x10
[ 34.195047][ T92] ? security_socket_sendmsg+0x93/0xb0
[ 34.195071][ T92] __sys_sendto+0x4ac/0x660
[ 34.215104][ T301] RIP: 0010:slow_avc_audit+0x229/0x240
[ 34.220796][ T92] ? __cfi___sys_sendto+0x10/0x10
[ 34.229114][ T301] Code: 00 00 00 65 48 8b 0c 25 28 00 00 00 48 3b 8c 24 e0 00 00 00 75 1d 48 8d 65 d8 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 d7 c8 37 ff <0f> 0b b8 ea ff ff ff eb 94 e8 19 09 c1 02 66 0f 1f 84 00 00 00 00
[ 34.236755][ T92] ? __cfi_do_syslog+0x10/0x10
[ 34.236782][ T92] ? __this_cpu_preempt_check+0x13/0x20
[ 34.236811][ T92] ? xfd_validate_state+0x70/0x150
[ 34.236839][ T92] __x64_sys_sendto+0xe5/0x100
[ 34.239212][ T301] RSP: 0018:ffffc900016a7800 EFLAGS: 00010293
[ 34.247545][ T92] x64_sys_call+0x83/0x9a0
[ 34.247578][ T92] do_syscall_64+0x4c/0xa0
[ 34.247601][ T92] ? clear_bhb_loop+0x30/0x80
[ 34.247626][ T92] ? clear_bhb_loop+0x30/0x80
[ 34.247651][ T92] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 34.247674][ T92] RIP: 0033:0x7f9c9c91b407
[ 34.255969][ T301]
[ 34.263637][ T92] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 34.271869][ T301] RAX: ffffffff8239a629 RBX: ffffffff87bd9ca0 RCX: ffff88810e5fa880
[ 34.280553][ T92] RSP: 002b:00007fff40d60470 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 34.280578][ T92] RAX: ffffffffffffffda RBX: 00007f9c9c7cbc80 RCX: 00007f9c9c91b407
[ 34.280592][ T92] RDX: 0000000000000083 RSI: 00007fff40d605b0 RDI: 0000000000000003
[ 34.280605][ T92] RBP: 00007fff40d609e0 R08: 0000000000000000 R09: 0000000000000000
[ 34.280617][ T92] R10: 0000000000004000 R11: 0000000000000202 R12: 00007fff40d609f8
[ 34.280630][ T92] R13: 00007fff40d605b0 R14: 0000000000000068 R15: 00007fff40d605b0
[ 34.287258][ T301] RDX: 0000000000000000 RSI: 000000000000ff9e RDI: 000000000000ff9f
[ 34.295223][ T92]
[ 34.295231][ T92] Modules linked in:
[ 34.295429][ C1] general protection fault, probably for non-canonical address 0xf9edbf798959e38: 0000 [#2] PREEMPT SMP KASAN
[ 34.303215][ T301] RBP: ffffc900016a7938 R08: ffffc900016a789f R09: ffffc900016a7888
[ 34.311197][ C1] CPU: 1 PID: 92 Comm: klogd Tainted: G B D syzkaller #0
[ 34.311219][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 34.314518][ T301] R10: dffffc0000000000 R11: fffff520002d4f14 R12: dffffc0000000000
[ 34.324584][ C1] RIP: 0010:__kmem_cache_alloc_node+0x123/0x2c0
[ 34.327540][ T301] R13: 1ffff920002d4f04 R14: 000000000000ff9e R15: ffffc900016a7840
[ 34.327557][ T301] FS: 00007fa3aa154880(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 34.332843][ C1] Code: 08 48 8b 38 48 85 ff 0f 84 e8 00 00 00 48 83 78 10 00 0f 84 dd 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 34.338181][ T301] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 34.343959][ C1] RSP: 0018:ffffc900001b0be0 EFLAGS: 00010286
[ 34.343983][ C1] RAX: 0000000000000200 RBX: 0f4c96ef191d63c7 RCX: 389e9598f7db9e0f
[ 34.349360][ T301] CR2: 00007fa3a9874000 CR3: 000000010f299000 CR4: 00000000003506b0
[ 34.353786][ C1] RDX: 000000000000e699 RSI: 0000000000000400 RDI: 0f9edbf798959c38
[ 34.353802][ C1] RBP: ffffc900001b0c30 R08: ffffffff8304e002 R09: ffffffff8304e002
[ 34.353817][ C1] R10: 00000000804601df R11: 00000000ffffffff R12: 0000000000082a20
[ 34.353829][ C1] R13: 0000000000000000 R14: ffffffff8304e002 R15: ffff888100043080
[ 34.359042][ T301] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 34.363057][ C1] FS: 00007f9c9c7cbc80(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 34.368419][ T301] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 34.374250][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 34.374268][ C1] CR2: 000000000048eec0 CR3: 0000000110125000 CR4: 00000000003506a0
[ 34.379378][ T301] Call Trace:
[ 34.379386][ T301]
[ 34.384168][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 34.384183][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 34.389398][ T301] ? __cfi_slow_avc_audit+0x10/0x10
[ 34.394510][ C1] Call Trace:
[ 34.394519][ C1]
[ 34.394526][ C1] ? wg_packet_send_keepalive+0x62/0x1d0
[ 34.400426][ T301] ? avc_has_perm_noaudit+0x30b/0x490
[ 34.405984][ C1] ? wg_packet_send_keepalive+0x62/0x1d0
[ 34.406015][ C1] __kmalloc_node_track_caller+0xa0/0x1e0
[ 34.411470][ T301] avc_has_perm+0x1fb/0x250
[ 34.416063][ C1] ? wg_packet_send_keepalive+0x62/0x1d0
[ 34.421553][ T301] ? __cfi_avc_has_perm+0x10/0x10
[ 34.426594][ C1] __alloc_skb+0x236/0x4b0
[ 34.446362][ T301] ? memcpy+0x56/0x70
[ 34.451093][ C1] wg_packet_send_keepalive+0x62/0x1d0
[ 34.456683][ T301] selinux_inode_getattr+0x2c3/0x3d0
[ 34.461758][ C1] ? wg_expired_send_persistent_keepalive+0x44/0x80
[ 34.466623][ T301] ? __cfi_selinux_inode_getattr+0x10/0x10
[ 34.472586][ C1] wg_expired_send_persistent_keepalive+0x53/0x80
[ 34.477045][ T301] security_inode_getattr+0xe7/0x140
[ 34.481427][ C1] ? __cfi_wg_expired_send_persistent_keepalive+0x10/0x10
[ 34.486142][ T301] vfs_statx+0x19d/0x670
[ 34.490798][ C1] call_timer_fn+0x46/0x2a0
[ 34.496721][ T301] ? vfs_fstatat+0x80/0x80
[ 34.501106][ C1] ? __cfi_wg_expired_send_persistent_keepalive+0x10/0x10
[ 34.503436][ T301] __se_sys_newfstatat+0x142/0x440
[ 34.523038][ C1] __run_timers+0x65b/0x9f0
[ 34.531111][ T301] ? __x64_sys_newfstatat+0xb0/0xb0
[ 34.539457][ C1] ? calc_index+0x200/0x200
[ 34.547498][ T301] ? mntput+0x5f/0xc0
[ 34.555540][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 34.563814][ T301] ? path_put+0x57/0x60
[ 34.571842][ C1] run_timer_softirq+0x6a/0xf0
[ 34.579868][ T301] ? __x64_sys_inotify_add_watch+0x90/0x90
[ 34.587795][ C1] handle_softirqs+0x1d7/0x600
[ 34.590843][ T301] __x64_sys_newfstatat+0x9b/0xb0
[ 34.595094][ C1] __irq_exit_rcu+0x52/0xf0
[ 34.606987][ T301] x64_sys_call+0x77c/0x9a0
[ 34.615029][ C1] irq_exit_rcu+0x9/0x10
[ 34.623461][ T301] do_syscall_64+0x4c/0xa0
[ 34.633524][ C1] sysvec_apic_timer_interrupt+0xa9/0xc0
[ 34.633553][ C1]
[ 34.633560][ C1]
[ 34.641549][ T301] ? clear_bhb_loop+0x30/0x80
[ 34.647779][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 34.655887][ T301] ? clear_bhb_loop+0x30/0x80
[ 34.664780][ C1] RIP: 0010:oops_exit+0x0/0x30
[ 34.685002][ T301] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 34.691171][ C1] Code: 0f 8c 0f ff ff ff 48 89 df e8 2c 8d c0 fc e9 02 ff ff ff 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 b8 0c 67 40 a5 <55> 48 89 e5 e8 27 31 7b fc e8 82 c9 4b fc 48 c7 c7 a0 e6 68 85 31
[ 34.697278][ T301] RIP: 0033:0x7fa3a9b11b0a
[ 34.705226][ C1] RSP: 0018:ffffc900007af600 EFLAGS: 00000206
[ 34.705248][ C1] RAX: 0000000000000001 RBX: 000000000000000b RCX: ffff88810fcf8000
[ 34.713232][ T301] Code: 48 8b 15 f1 f2 0d 00 f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 41 89 ca b8 06 01 00 00 0f 05 <3d> 00 f0 ff ff 77 07 31 c0 c3 0f 1f 40 00 48 8b 15 b9 f2 0d 00 f7
[ 34.721211][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff87b5ff60
[ 34.721225][ C1] RBP: ffffc900007af618 R08: ffffffff87b747e7 R09: 1ffffffff0f6e8fc
[ 34.729230][ T301] RSP: 002b:00007ffeb60a6238 EFLAGS: 00000246
[ 34.737442][ C1] R10: dffffc0000000000 R11: fffffbfff0f6e8fd R12: ffffc900007af670
[ 34.737459][ C1] R13: 0f9edbf798959e38 R14: 0000000000000293 R15: 0000000000000000
[ 34.737477][ C1] ? oops_end+0x46/0xd0
[ 34.737510][ C1] die_addr+0x61/0x70
[ 34.737532][ C1] exc_general_protection+0x13a/0x1e0
[ 34.737555][ C1] asm_exc_general_protection+0x27/0x30
[ 34.737578][ C1] RIP: 0010:__kmem_cache_alloc_node+0x123/0x2c0
[ 34.737608][ C1] Code: 08 48 8b 38 48 85 ff 0f 84 e8 00 00 00 48 83 78 10 00 0f 84 dd 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 34.745963][ T301] ORIG_RAX: 0000000000000106
[ 34.753605][ C1] RSP: 0018:ffffc900007af7c0 EFLAGS: 00010286
[ 34.762572][ T301] RAX: ffffffffffffffda RBX: 000000000000000f RCX: 00007fa3a9b11b0a
[ 34.770518][ C1]
[ 34.770524][ C1] RAX: 0000000000000200 RBX: 0f4c96ef191d63c7 RCX: 389e9598f7db9e0f
[ 34.777128][ T301] RDX: 00007ffeb60a6240 RSI: 00007ffeb60a6310 RDI: 00000000ffffff9c
[ 34.785100][ C1] RDX: 000000000000e699 RSI: 0000000000000400 RDI: 0f9edbf798959c38
[ 34.785121][ C1] RBP: ffffc900007af810 R08: ffffffff83ef0188 R09: ffffffff83ef0188
[ 34.785138][ C1] R10: 00000000c7133e3a R11: 00000000ffffffff R12: 0000000000482cc0
[ 34.788414][ T301] RBP: 00007ffeb60a7350 R08: 0000000000000064 R09: 0000000000000000
[ 34.791368][ C1] R13: 0000000000000000 R14: ffffffff83ef0188 R15: ffff888100043080
[ 34.799365][ T301] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffeb60a7360
[ 34.807321][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 34.812532][ T301] R13: 0000000000000000 R14: 0000000000000008 R15: 000056336adeb2d0
[ 34.815822][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 34.818696][ T301]
[ 34.824318][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 34.829698][ T301] ---[ end trace 0000000000000000 ]---
[ 34.835335][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 35.300597][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 35.305980][ C1] __kmalloc_node_track_caller+0xa0/0x1e0
[ 35.311720][ C1] ? alloc_skb_with_frags+0xa8/0x620
[ 35.317005][ C1] __alloc_skb+0x236/0x4b0
[ 35.321439][ C1] alloc_skb_with_frags+0xa8/0x620
[ 35.326555][ C1] ? memcpy+0x56/0x70
[ 35.330540][ C1] sock_alloc_send_pskb+0x87f/0x9a0
[ 35.335736][ C1] ? __cfi_sock_alloc_send_pskb+0x10/0x10
[ 35.341544][ C1] ? __kasan_check_write+0x14/0x20
[ 35.346652][ C1] ? _raw_spin_lock+0x94/0xf0
[ 35.351318][ C1] ? __cfi__raw_spin_lock+0x10/0x10
[ 35.356506][ C1] unix_dgram_sendmsg+0x539/0x16f0
[ 35.361615][ C1] ? __cfi_selinux_socket_sendmsg+0x10/0x10
[ 35.367504][ C1] ? __cfi_unix_dgram_sendmsg+0x10/0x10
[ 35.373066][ C1] ? security_socket_sendmsg+0x93/0xb0
[ 35.378538][ C1] __sys_sendto+0x4ac/0x660
[ 35.383056][ C1] ? __cfi___sys_sendto+0x10/0x10
[ 35.388090][ C1] ? __cfi_do_syslog+0x10/0x10
[ 35.392953][ C1] ? __this_cpu_preempt_check+0x13/0x20
[ 35.398607][ C1] ? xfd_validate_state+0x70/0x150
[ 35.403727][ C1] __x64_sys_sendto+0xe5/0x100
[ 35.408498][ C1] x64_sys_call+0x83/0x9a0
[ 35.413018][ C1] do_syscall_64+0x4c/0xa0
[ 35.417451][ C1] ? clear_bhb_loop+0x30/0x80
[ 35.422130][ C1] ? clear_bhb_loop+0x30/0x80
[ 35.426809][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 35.432714][ C1] RIP: 0033:0x7f9c9c91b407
[ 35.437132][ C1] Code: 48 89 fa 4c 89 df e8 38 aa 00 00 8b 93 08 03 00 00 59 5e 48 83 f8 fc 74 1a 5b c3 0f 1f 84 00 00 00 00 00 48 8b 44 24 10 0f 05 <5b> c3 0f 1f 80 00 00 00 00 83 e2 39 83 fa 08 75 de e8 23 ff ff ff
[ 35.456892][ C1] RSP: 002b:00007fff40d60470 EFLAGS: 00000202 ORIG_RAX: 000000000000002c
[ 35.465308][ C1] RAX: ffffffffffffffda RBX: 00007f9c9c7cbc80 RCX: 00007f9c9c91b407
[ 35.473369][ C1] RDX: 0000000000000083 RSI: 00007fff40d605b0 RDI: 0000000000000003
[ 35.481336][ C1] RBP: 00007fff40d609e0 R08: 0000000000000000 R09: 0000000000000000
[ 35.489305][ C1] R10: 0000000000004000 R11: 0000000000000202 R12: 00007fff40d609f8
[ 35.497371][ C1] R13: 00007fff40d605b0 R14: 0000000000000068 R15: 00007fff40d605b0
[ 35.505512][ C1]
[ 35.508550][ C1] Modules linked in:
[ 35.512497][ T358] BUG: unable to handle page fault for address: ffffed1121e76fff
[ 35.512630][ C1] ---[ end trace 0000000000000000 ]---
[ 35.520240][ T358] #PF: supervisor read access in kernel mode
[ 35.520254][ T358] #PF: error_code(0x0000) - not-present page
[ 35.520265][ T358] PGD 23fff2067 P4D 23fff2067 PUD 0
[ 35.525777][ C1] RIP: 0010:__kmem_cache_alloc_node+0x123/0x2c0
[ 35.531737][ T358]
[ 35.531744][ T358] Oops: 0000 [#3] PREEMPT SMP KASAN
[ 35.537871][ C1] Code: 08 48 8b 38 48 85 ff 0f 84 e8 00 00 00 48 83 78 10 00 0f 84 dd 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 35.543095][ T358] CPU: 0 PID: 358 Comm: syz-executor Tainted: G B D W syzkaller #0
[ 35.549380][ C1] RSP: 0018:ffffc900007af7c0 EFLAGS: 00010286
[ 35.551667][ T358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 35.556899][ C1]
[ 35.576476][ T358] RIP: 0010:context_struct_to_string+0x266/0x830
[ 35.585460][ C1] RAX: 0000000000000200 RBX: 0f4c96ef191d63c7 RCX: 389e9598f7db9e0f
[ 35.591500][ T358] Code: c1 e8 03 48 89 44 24 50 42 0f b6 04 28 84 c0 0f 85 67 04 00 00 4c 89 64 24 70 41 8b 07 ff c8 4d 8d 34 c6 4c 89 f0 48 c1 e8 03 <42> 80 3c 28 00 74 08 4c 89 f7 e8 eb cc 75 ff 49 8b 3e e8 83 71 b1
[ 35.601693][ C1] RDX: 000000000000e699 RSI: 0000000000000400 RDI: 0f9edbf798959c38
[ 35.603907][ T358] RSP: 0000:ffffc90000766ea0 EFLAGS: 00010a06
[ 35.603925][ T358] RAX: 1ffff11121e76fff RBX: ffffc90000767100 RCX: ffff88811321d100
[ 35.603940][ T358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 35.610262][ C1] RBP: ffffc900007af810 R08: ffffffff83ef0188 R09: ffffffff83ef0188
[ 35.618262][ T358] RBP: ffffc90000766fb0 R08: ffff88811321d100 R09: 0000000000000002
[ 35.618280][ T358] R10: 00000000fffffffe R11: 0000000000000000 R12: ffff88810f3078f8
[ 35.618294][ T358] R13: dffffc0000000000 R14: ffff88890f3b7ff8 R15: ffff88811c856bd0
[ 35.637938][ C1] R10: 00000000c7133e3a R11: 00000000ffffffff R12: 0000000000482cc0
[ 35.645880][ T358] FS: 00005555561a9500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 35.645901][ T358] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 35.651982][ C1] R13: 0000000000000000 R14: ffffffff83ef0188 R15: ffff888100043080
[ 35.659958][ T358] CR2: ffffed1121e76fff CR3: 000000012c160000 CR4: 00000000003506b0
[ 35.659978][ T358] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 35.667991][ C1] FS: 00007f9c9c7cbc80(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 35.675946][ T358] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 35.675960][ T358] Call Trace:
[ 35.675967][ T358]
[ 35.683986][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 35.691925][ T358] ? mls_compute_sid+0x1e4/0x9e0
[ 35.699947][ C1] CR2: 000000000048eec0 CR3: 0000000110125000 CR4: 00000000003506a0
[ 35.707890][ T358] ? security_sid_mls_copy+0x880/0x880
[ 35.716868][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 35.723437][ T358] ? sidtab_sid2str_get+0x1cd/0x2c0
[ 35.731528][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 35.739411][ T358] security_compute_sid+0xcb2/0x14d0
[ 35.739461][ T358] ? security_transition_sid+0x90/0x90
[ 35.747442][ C1] Kernel panic - not syncing: Fatal exception in interrupt
[ 35.756447][ T358] ? __cfi_avc_has_perm_noaudit+0x10/0x10
[ 35.756470][ T358] ? kasan_save_alloc_info+0x25/0x30
[ 35.756499][ T358] ? avc_has_perm+0x163/0x250
[ 35.756516][ T358] ? __cfi_avc_has_perm+0x10/0x10
[ 35.756533][ T358] security_transition_sid+0x7d/0x90
[ 35.756553][ T358] may_create+0x56b/0x810
[ 35.756577][ T358] ? show_sid+0x1d0/0x1d0
[ 35.756600][ T358] ? __cfi_from_kgid+0x10/0x10
[ 35.756619][ T358] selinux_inode_create+0x22/0x30
[ 35.756640][ T358] security_inode_create+0xc2/0x120
[ 35.756662][ T358] path_openat+0xc67/0x2f80
[ 35.756687][ T358] ? irqentry_exit_to_user_mode+0x9/0x10
[ 35.756713][ T358] ? do_filp_open+0x430/0x430
[ 35.756735][ T358] do_filp_open+0x1f1/0x430
[ 35.756756][ T358] ? __cfi_do_filp_open+0x10/0x10
[ 35.756780][ T358] ? getname_kernel+0x59/0x2e0
[ 35.756796][ T358] ? getname_kernel+0x145/0x2e0
[ 35.756818][ T358] ? memcpy+0x56/0x70
[ 35.756835][ T358] filp_open+0x17c/0x1e0
[ 35.756857][ T358] ? __cfi_filp_open+0x10/0x10
[ 35.756880][ T358] ? getname_kernel+0x201/0x2e0
[ 35.756896][ T358] do_coredump+0x1ac2/0x2240
[ 35.756926][ T358] ? __cfi_do_coredump+0x10/0x10
[ 35.756950][ T358] ? kmem_cache_free+0x12d/0x300
[ 35.756973][ T358] ? ____kasan_slab_free+0x13d/0x180
[ 35.756996][ T358] ? get_signal+0xa6c/0x1520
[ 35.757021][ T358] ? kmem_cache_free+0x12d/0x300
[ 35.757044][ T358] get_signal+0x11db/0x1520
[ 35.757073][ T358] arch_do_signal_or_restart+0xd1/0x1140
[ 35.757096][ T358] ? page_fault_oops+0x8e0/0x8e0
[ 35.757118][ T358] ? down_read_trylock+0x27f/0x660
[ 35.757147][ T358] ? find_vma+0x89/0xd0
[ 35.757169][ T358] ? __cfi_arch_do_signal_or_restart+0x10/0x10
[ 35.757191][ T358] ? __bad_area_nosemaphore+0x303/0x620
[ 35.757216][ T358] ? do_user_addr_fault+0xd36/0x1050
[ 35.757240][ T358] exit_to_user_mode_loop+0x7a/0xb0
[ 35.757259][ T358] exit_to_user_mode_prepare+0x87/0xd0
[ 35.757278][ T358] irqentry_exit_to_user_mode+0x9/0x10
[ 35.757300][ T358] irqentry_exit+0x12/0x40
[ 35.757322][ T358] exc_page_fault+0x5e/0xb0
[ 35.757343][ T358] asm_exc_page_fault+0x27/0x30
[ 35.757364][ T358] RIP: 0033:0x7f4d770527f0
[ 35.757379][ T358] Code: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 <00> 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 35.757393][ T358] RSP: 002b:00007fff43555078 EFLAGS: 00010246
[ 35.757409][ T358] RAX: 0000000000000000 RBX: 000000000000006f RCX: 00007f4d77157997
[ 35.757420][ T358] RDX: 00007fff43555080 RSI: 00007fff435551b0 RDI: 000000000000000b
[ 35.757432][ T358] RBP: 00007fff43653dbc R08: 0000000000000000 R09: 0000000000000000
[ 35.757443][ T358] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000001388
[ 35.757453][ T358] R13: 00000000000927c0 R14: 0000000000008535 R15: 00007fff43653e10
[ 35.757468][ T358]
[ 35.757480][ T358] Modules linked in:
[ 35.757489][ T358] CR2: ffffed1121e76fff
[ 35.765476][ T358] ---[ end trace 0000000000000000 ]---
[ 35.765485][ T358] RIP: 0010:__kmem_cache_alloc_node+0x123/0x2c0
[ 35.765511][ T358] Code: 08 48 8b 38 48 85 ff 0f 84 e8 00 00 00 48 83 78 10 00 0f 84 dd 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 35.765524][ T358] RSP: 0018:ffffc900007af7c0 EFLAGS: 00010286
[ 35.765538][ T358] RAX: 0000000000000200 RBX: 0f4c96ef191d63c7 RCX: 389e9598f7db9e0f
[ 35.765550][ T358] RDX: 000000000000e699 RSI: 0000000000000400 RDI: 0f9edbf798959c38
[ 35.765562][ T358] RBP: ffffc900007af810 R08: ffffffff83ef0188 R09: ffffffff83ef0188
[ 35.765575][ T358] R10: 00000000c7133e3a R11: 00000000ffffffff R12: 0000000000482cc0
[ 35.765586][ T358] R13: 0000000000000000 R14: ffffffff83ef0188 R15: ffff888100043080
[ 35.765598][ T358] FS: 00005555561a9500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 35.765614][ T358] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 35.765626][ T358] CR2: ffffed1121e76fff CR3: 000000012c160000 CR4: 00000000003506b0
[ 35.765642][ T358] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 35.765652][ T358] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 36.948347][ C1] Shutting down cpus with NMI
[ 37.425266][ C1] Kernel Offset: disabled
[ 37.429596][ C1] Rebooting in 86400 seconds..