Warning: Permanently added '10.128.1.136' (ED25519) to the list of known hosts.
2026/04/07 09:13:19 parsed 1 programs
[   24.770350][   T36] audit: type=1400 audit(1775553199.990:64): avc:  denied  { node_bind } for  pid=291 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   25.804754][   T36] audit: type=1400 audit(1775553201.020:65): avc:  denied  { mounton } for  pid=298 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   25.806046][  T298] cgroup: Unknown subsys name 'net'
[   25.827749][   T36] audit: type=1400 audit(1775553201.020:66): avc:  denied  { mount } for  pid=298 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.857261][   T36] audit: type=1400 audit(1775553201.060:67): avc:  denied  { unmount } for  pid=298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   25.857499][  T298] cgroup: Unknown subsys name 'devices'
[   26.041889][  T298] cgroup: Unknown subsys name 'hugetlb'
[   26.048060][  T298] cgroup: Unknown subsys name 'rlimit'
[   26.208737][   T36] audit: type=1400 audit(1775553201.420:68): avc:  denied  { setattr } for  pid=298 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   26.232979][   T36] audit: type=1400 audit(1775553201.420:69): avc:  denied  { create } for  pid=298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.254456][   T36] audit: type=1400 audit(1775553201.420:70): avc:  denied  { write } for  pid=298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.275836][   T36] audit: type=1400 audit(1775553201.430:71): avc:  denied  { read } for  pid=298 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   26.286352][  T302] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
Setting up swapspace version 1, size = 127995904 bytes
[   26.296848][   T36] audit: type=1400 audit(1775553201.430:72): avc:  denied  { sys_module } for  pid=298 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   26.327769][   T36] audit: type=1400 audit(1775553201.430:73): avc:  denied  { mounton } for  pid=298 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   26.376010][  T298] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   27.286161][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.293510][  T304] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.300791][  T304] bridge_slave_0: entered allmulticast mode
[   27.307600][  T304] bridge_slave_0: entered promiscuous mode
[   27.314752][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.322227][  T304] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.330236][  T304] bridge_slave_1: entered allmulticast mode
[   27.336678][  T304] bridge_slave_1: entered promiscuous mode
[   27.379582][  T304] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.386830][  T304] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.394773][  T304] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.402183][  T304] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.423330][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.431469][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.442192][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   27.449846][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   27.459672][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[   27.467107][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[   27.493489][  T304] veth0_vlan: entered promiscuous mode
[   27.505214][  T304] veth1_macvtap: entered promiscuous mode
[   27.532038][  T304] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   27.571769][   T12] bridge_slave_1: left allmulticast mode
[   27.578050][   T12] bridge_slave_1: left promiscuous mode
[   27.584999][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[   27.593241][   T12] bridge_slave_0: left allmulticast mode
[   27.598925][   T12] bridge_slave_0: left promiscuous mode
[   27.605960][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[   27.721426][   T12] veth1_macvtap: left promiscuous mode
[   27.727435][   T12] veth0_vlan: left promiscuous mode
2026/04/07 09:13:23 executed programs: 0
[   28.716932][  T364] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.724566][  T364] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.732590][  T364] bridge_slave_0: entered allmulticast mode
[   28.738978][  T364] bridge_slave_0: entered promiscuous mode
[   28.746781][  T364] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.754261][  T364] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.761577][  T364] bridge_slave_1: entered allmulticast mode
[   28.768220][  T364] bridge_slave_1: entered promiscuous mode
[   28.807181][  T364] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.815007][  T364] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.822809][  T364] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.830184][  T364] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.851791][  T128] bridge0: port 1(bridge_slave_0) entered disabled state
[   28.859293][  T128] bridge0: port 2(bridge_slave_1) entered disabled state
[   28.870513][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   28.877858][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   28.887452][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   28.895185][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   28.920742][  T364] veth0_vlan: entered promiscuous mode
[   28.932498][  T364] veth1_macvtap: entered promiscuous mode
[   28.975692][  T364] ------------[ cut here ]------------
[   28.981357][  T364] WARNING: CPU: 1 PID: 364 at fs/inode.c:340 drop_nlink+0xce/0x110
[   28.989676][  T364] Modules linked in:
[   28.993624][  T364] CPU: 1 UID: 0 PID: 364 Comm: syz-executor Not tainted syzkaller #0 916f3d974aa0fa32e8d6ac226cea77ce335b314b
[   29.006308][  T364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.016711][  T364] RIP: 0010:drop_nlink+0xce/0x110
[   29.021853][  T364] Code: 04 00 00 be 08 00 00 00 e8 df 15 ee ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 98 d4 b1 03 cc e8 d2 dc 95 ff <0f> 0b eb 81 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 59 ff ff ff 4c
[   29.042125][  T364] RSP: 0018:ffffc9000132fc60 EFLAGS: 00010293
[   29.048506][  T364] RAX: ffffffff81f1ce0e RBX: ffff888103b81e30 RCX: ffff88812c4d4c00
[   29.056774][  T364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   29.064990][  T364] RBP: ffffc9000132fc88 R08: 0000000000000003 R09: 0000000000000004
[   29.073053][  T364] R10: dffffc0000000000 R11: fffff52000265f7c R12: dffffc0000000000
[   29.081442][  T364] R13: 1ffff110207703cf R14: ffff888103b81e78 R15: 0000000000000000
[   29.090253][  T364] FS:  000055555d14f500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   29.099572][  T364] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.106260][  T364] CR2: 000055555d172948 CR3: 0000000129474000 CR4: 00000000003526b0
[   29.114562][  T364] Call Trace:
[   29.118060][  T364]  <TASK>
[   29.121096][  T364]  shmem_rmdir+0x5f/0x90
[   29.125542][  T364]  vfs_rmdir+0x3e3/0x560
[   29.130057][  T364]  incfs_kill_sb+0x109/0x230
[   29.134665][  T364]  deactivate_locked_super+0xd8/0x2a0
[   29.140152][  T364]  deactivate_super+0xb8/0xe0
[   29.145134][  T364]  cleanup_mnt+0x406/0x4a0
[   29.149962][  T364]  __cleanup_mnt+0x1d/0x40
[   29.154416][  T364]  task_work_run+0x1e8/0x260
[   29.159109][  T364]  ? __cfi_task_work_run+0x10/0x10
[   29.164623][  T364]  ? __x64_sys_umount+0x12e/0x180
[   29.170198][  T364]  ? __cfi___x64_sys_umount+0x10/0x10
[   29.175636][  T364]  ? __kasan_check_read+0x15/0x20
[   29.181196][  T364]  resume_user_mode_work+0x35/0x50
[   29.186331][  T364]  syscall_exit_to_user_mode+0x63/0xb0
[   29.192055][  T364]  do_syscall_64+0x63/0xf0
[   29.196691][  T364]  ? clear_bhb_loop+0x50/0xa0
[   29.201490][  T364]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   29.207601][  T364] RIP: 0033:0x7facf819da57
[   29.212232][  T364] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   29.232338][  T364] RSP: 002b:00007ffcee8ef2a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   29.240849][  T364] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007facf819da57
[   29.248835][  T364] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcee8ef360
[   29.257216][  T364] RBP: 00007ffcee8ef360 R08: 00007ffcee8f0360 R09: 00000000ffffffff
[   29.265259][  T364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcee8f03f0
[   29.273383][  T364] R13: 00007facf8232048 R14: 0000000000007106 R15: 00007ffcee8f0430
[   29.281580][  T364]  </TASK>
[   29.284713][  T364] ---[ end trace 0000000000000000 ]---
[   29.291033][  T364] ==================================================================
[   29.299241][  T364] BUG: KASAN: null-ptr-deref in ihold+0x24/0x70
[   29.305753][  T364] Write of size 4 at addr 0000000000000168 by task syz-executor/364
[   29.314173][  T364] 
[   29.316699][  T364] CPU: 0 UID: 0 PID: 364 Comm: syz-executor Tainted: G        W          syzkaller #0 916f3d974aa0fa32e8d6ac226cea77ce335b314b
[   29.316719][  T364] Tainted: [W]=WARN
[   29.316723][  T364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.316731][  T364] Call Trace:
[   29.316737][  T364]  <TASK>
[   29.316745][  T364]  __dump_stack+0x21/0x30
[   29.316772][  T364]  dump_stack_lvl+0x140/0x1c0
[   29.316785][  T364]  ? __cfi_dump_stack_lvl+0x10/0x10
[   29.316800][  T364]  print_report+0x3d/0x70
[   29.316814][  T364]  kasan_report+0x162/0x1a0
[   29.316827][  T364]  ? ihold+0x24/0x70
[   29.316837][  T364]  ? _raw_spin_unlock+0x45/0x60
[   29.316854][  T364]  ? ihold+0x24/0x70
[   29.316863][  T364]  kasan_check_range+0x25a/0x2b0
[   29.316958][  T364]  __kasan_check_write+0x18/0x20
[   29.316973][  T364]  ihold+0x24/0x70
[   29.316982][  T364]  vfs_rmdir+0x26a/0x560
[   29.316994][  T364]  incfs_kill_sb+0x109/0x230
[   29.317011][  T364]  deactivate_locked_super+0xd8/0x2a0
[   29.317025][  T364]  deactivate_super+0xb8/0xe0
[   29.317036][  T364]  cleanup_mnt+0x406/0x4a0
[   29.317047][  T364]  __cleanup_mnt+0x1d/0x40
[   29.317056][  T364]  task_work_run+0x1e8/0x260
[   29.317070][  T364]  ? __cfi_task_work_run+0x10/0x10
[   29.317081][  T364]  ? __x64_sys_umount+0x12e/0x180
[   29.317095][  T364]  ? __cfi___x64_sys_umount+0x10/0x10
[   29.317114][  T364]  ? __kasan_check_read+0x15/0x20
[   29.317128][  T364]  resume_user_mode_work+0x35/0x50
[   29.317145][  T364]  syscall_exit_to_user_mode+0x63/0xb0
[   29.317159][  T364]  do_syscall_64+0x63/0xf0
[   29.317174][  T364]  ? clear_bhb_loop+0x50/0xa0
[   29.317185][  T364]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   29.317201][  T364] RIP: 0033:0x7facf819da57
[   29.317214][  T364] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   29.317223][  T364] RSP: 002b:00007ffcee8ef2a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   29.317236][  T364] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007facf819da57
[   29.317244][  T364] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcee8ef360
[   29.317251][  T364] RBP: 00007ffcee8ef360 R08: 00007ffcee8f0360 R09: 00000000ffffffff
[   29.317258][  T364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcee8f03f0
[   29.317265][  T364] R13: 00007facf8232048 R14: 0000000000007106 R15: 00007ffcee8f0430
[   29.317274][  T364]  </TASK>
[   29.317278][  T364] ==================================================================
[   29.570376][  T364] Disabling lock debugging due to kernel taint
[   29.576907][  T364] BUG: kernel NULL pointer dereference, address: 0000000000000168
[   29.585186][  T364] #PF: supervisor write access in kernel mode
[   29.591339][  T364] #PF: error_code(0x0002) - not-present page
[   29.597782][  T364] PGD 800000010438b067 P4D 800000010438b067 PUD 0 
[   29.604738][  T364] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI
[   29.610994][  T364] CPU: 0 UID: 0 PID: 364 Comm: syz-executor Tainted: G    B   W          syzkaller #0 916f3d974aa0fa32e8d6ac226cea77ce335b314b
[   29.625075][  T364] Tainted: [B]=BAD_PAGE, [W]=WARN
[   29.630189][  T364] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[   29.641621][  T364] RIP: 0010:ihold+0x2a/0x70
[   29.646333][  T364] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 bd d3 95 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 9c 0c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 cd
[   29.666383][  T364] RSP: 0018:ffffc9000132fca0 EFLAGS: 00010246
[   29.673267][  T364] RAX: ffff88812c4d4c00 RBX: 0000000000000000 RCX: ffff88812c4d4c00
[   29.682489][  T364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   29.691001][  T364] RBP: ffffc9000132fcb0 R08: ffffffff88b98947 R09: 1ffffffff1173128
[   29.699855][  T364] R10: dffffc0000000000 R11: fffffbfff1173129 R12: ffff888103b81e3c
[   29.708684][  T364] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   29.717041][  T364] FS:  000055555d14f500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   29.726601][  T364] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   29.735206][  T364] CR2: 0000000000000168 CR3: 0000000129474000 CR4: 00000000003526b0
[   29.743462][  T364] Call Trace:
[   29.746948][  T364]  <TASK>
[   29.749979][  T364]  vfs_rmdir+0x26a/0x560
[   29.754338][  T364]  incfs_kill_sb+0x109/0x230
[   29.759045][  T364]  deactivate_locked_super+0xd8/0x2a0
[   29.764482][  T364]  deactivate_super+0xb8/0xe0
[   29.769839][  T364]  cleanup_mnt+0x406/0x4a0
[   29.774366][  T364]  __cleanup_mnt+0x1d/0x40
[   29.778816][  T364]  task_work_run+0x1e8/0x260
[   29.783400][  T364]  ? __cfi_task_work_run+0x10/0x10
[   29.788613][  T364]  ? __x64_sys_umount+0x12e/0x180
[   29.793843][  T364]  ? __cfi___x64_sys_umount+0x10/0x10
[   29.799616][  T364]  ? __kasan_check_read+0x15/0x20
[   29.805033][  T364]  resume_user_mode_work+0x35/0x50
[   29.810382][  T364]  syscall_exit_to_user_mode+0x63/0xb0
[   29.816289][  T364]  do_syscall_64+0x63/0xf0
[   29.821383][  T364]  ? clear_bhb_loop+0x50/0xa0
[   29.826635][  T364]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   29.833286][  T364] RIP: 0033:0x7facf819da57
[   29.838163][  T364] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   29.859561][  T364] RSP: 002b:00007ffcee8ef2a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   29.868787][  T364] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007facf819da57
[   29.877389][  T364] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcee8ef360
[   29.886070][  T364] RBP: 00007ffcee8ef360 R08: 00007ffcee8f0360 R09: 00000000ffffffff
[   29.895316][  T364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcee8f03f0
[   29.903967][  T364] R13: 00007facf8232048 R14: 0000000000007106 R15: 00007ffcee8f0430
[   29.912394][  T364]  </TASK>
[   29.915678][  T364] Modules linked in:
[   29.919752][  T364] CR2: 0000000000000168
[   29.924093][  T364] ---[ end trace 0000000000000000 ]---
[   29.929645][  T364] RIP: 0010:ihold+0x2a/0x70
[   29.935037][  T364] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 bd d3 95 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 9c 0c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 cd
[   29.956216][  T364] RSP: 0018:ffffc9000132fca0 EFLAGS: 00010246
[   29.962395][  T364] RAX: ffff88812c4d4c00 RBX: 0000000000000000 RCX: ffff88812c4d4c00
[   29.970565][  T364] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   29.978818][  T364] RBP: ffffc9000132fcb0 R08: ffffffff88b98947 R09: 1ffffffff1173128
[   29.986842][  T364] R10: dffffc0000000000 R11: fffffbfff1173129 R12: ffff888103b81e3c
[   29.995069][  T364] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   30.003249][  T364] FS:  000055555d14f500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   30.012364][  T364] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   30.019134][  T364] CR2: 0000000000000168 CR3: 0000000129474000 CR4: 00000000003526b0
[   30.027295][  T364] Kernel panic - not syncing: Fatal exception
[   30.034220][  T364] Kernel Offset: disabled
[   30.038728][  T364] Rebooting in 86400 seconds..