syzkaller
syzkaller login: [ 20.969825][ T28] kauditd_printk_skb: 31 callbacks suppressed
[ 20.969840][ T28] audit: type=1400 audit(1776400094.245:59): avc: denied { transition } for pid=267 comm="sshd-session" path="/bin/sh" dev="sda1" ino=90 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 20.975554][ T28] audit: type=1400 audit(1776400094.245:60): avc: denied { noatsecure } for pid=267 comm="sshd-session" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 20.979661][ T28] audit: type=1400 audit(1776400094.255:61): avc: denied { write } for pid=267 comm="sh" path="pipe:[14205]" dev="pipefs" ino=14205 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[ 20.984336][ T28] audit: type=1400 audit(1776400094.255:62): avc: denied { rlimitinh } for pid=267 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 20.987497][ T28] audit: type=1400 audit(1776400094.255:63): avc: denied { siginh } for pid=267 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.0.67' (ED25519) to the list of known hosts.
2026/04/17 04:28:23 parsed 1 programs
[ 30.320959][ T28] audit: type=1400 audit(1776400103.605:64): avc: denied { node_bind } for pid=283 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 30.342417][ T28] audit: type=1400 audit(1776400103.605:65): avc: denied { module_request } for pid=283 comm="syz-execprog" kmod="net-pf-2-proto-262-type-1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 31.072481][ T28] audit: type=1400 audit(1776400104.355:66): avc: denied { mounton } for pid=289 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 31.073700][ T289] cgroup: Unknown subsys name 'net'
[ 31.095377][ T28] audit: type=1400 audit(1776400104.355:67): avc: denied { mount } for pid=289 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 31.123004][ T28] audit: type=1400 audit(1776400104.385:68): avc: denied { unmount } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 31.123198][ T289] cgroup: Unknown subsys name 'devices'
[ 31.262430][ T289] cgroup: Unknown subsys name 'hugetlb'
[ 31.268083][ T289] cgroup: Unknown subsys name 'rlimit'
[ 31.409108][ T28] audit: type=1400 audit(1776400104.685:69): avc: denied { setattr } for pid=289 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 31.432345][ T28] audit: type=1400 audit(1776400104.685:70): avc: denied { create } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 31.452877][ T28] audit: type=1400 audit(1776400104.685:71): avc: denied { write } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 31.461908][ T293] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
[ 31.473278][ T28] audit: type=1400 audit(1776400104.685:72): avc: denied { read } for pid=289 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[ 31.502090][ T28] audit: type=1400 audit(1776400104.685:73): avc: denied { mounton } for pid=289 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 31.532597][ T289] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 32.283254][ T296] request_module fs-gadgetfs succeeded, but still no fs?
[ 32.396624][ T301] bridge0: port 1(bridge_slave_0) entered blocking state
[ 32.403860][ T301] bridge0: port 1(bridge_slave_0) entered disabled state
[ 32.411612][ T301] device bridge_slave_0 entered promiscuous mode
[ 32.418933][ T301] bridge0: port 2(bridge_slave_1) entered blocking state
[ 32.426339][ T301] bridge0: port 2(bridge_slave_1) entered disabled state
[ 32.433981][ T301] device bridge_slave_1 entered promiscuous mode
[ 32.472350][ T301] bridge0: port 2(bridge_slave_1) entered blocking state
[ 32.479492][ T301] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 32.486927][ T301] bridge0: port 1(bridge_slave_0) entered blocking state
[ 32.494180][ T301] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 32.514360][ T302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 32.521710][ T302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 32.529248][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 32.537392][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 32.546659][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 32.555224][ T302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 32.562291][ T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 32.572513][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 32.581487][ T302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 32.588514][ T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 32.601702][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 32.612159][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 32.626085][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 32.638036][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 32.646282][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 32.654573][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 32.663290][ T301] device veth0_vlan entered promiscuous mode
[ 32.674923][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 32.684052][ T301] device veth1_macvtap entered promiscuous mode
[ 32.693938][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 32.704540][ T10] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 32.744640][ T301] syz-executor (301) used greatest stack depth: 20928 bytes left
2026/04/17 04:28:26 executed programs: 0
[ 33.474430][ T358] bridge0: port 1(bridge_slave_0) entered blocking state
[ 33.482362][ T358] bridge0: port 1(bridge_slave_0) entered disabled state
[ 33.489876][ T358] device bridge_slave_0 entered promiscuous mode
[ 33.499851][ T358] bridge0: port 2(bridge_slave_1) entered blocking state
[ 33.506932][ T358] bridge0: port 2(bridge_slave_1) entered disabled state
[ 33.514554][ T358] device bridge_slave_1 entered promiscuous mode
[ 33.549634][ T358] bridge0: port 2(bridge_slave_1) entered blocking state
[ 33.556701][ T358] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 33.563976][ T358] bridge0: port 1(bridge_slave_0) entered blocking state
[ 33.571005][ T358] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 33.582970][ T43] device bridge_slave_1 left promiscuous mode
[ 33.589101][ T43] bridge0: port 2(bridge_slave_1) entered disabled state
[ 33.596716][ T43] device bridge_slave_0 left promiscuous mode
[ 33.603094][ T43] bridge0: port 1(bridge_slave_0) entered disabled state
[ 33.611428][ T43] device veth1_macvtap left promiscuous mode
[ 33.617533][ T43] device veth0_vlan left promiscuous mode
[ 33.700413][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 33.708451][ T302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 33.716118][ T302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 33.725670][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 33.735205][ T302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 33.742354][ T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 33.751317][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 33.759503][ T302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 33.766737][ T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 33.779105][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 33.788590][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 33.801937][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 33.813046][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 33.821426][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 33.828891][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 33.837217][ T358] device veth0_vlan entered promiscuous mode
[ 33.847142][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 33.856386][ T358] device veth1_macvtap entered promiscuous mode
[ 33.865579][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 33.878387][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 33.905618][ T362] loop2: detected capacity change from 0 to 1024
[ 33.912484][ T362] =======================================================
[ 33.912484][ T362] WARNING: The mand mount option has been deprecated and
[ 33.912484][ T362] and is ignored by this kernel. Remove the mand
[ 33.912484][ T362] option from the mount to silence this warning.
[ 33.912484][ T362] =======================================================
[ 33.952769][ T362] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 33.968283][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 33.983646][ T367] loop2: detected capacity change from 0 to 1024
[ 34.003234][ T367] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.015520][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.029765][ T370] loop2: detected capacity change from 0 to 1024
[ 34.041769][ T370] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.054173][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.068995][ T373] loop2: detected capacity change from 0 to 1024
[ 34.082040][ T373] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.095840][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.111107][ T376] loop2: detected capacity change from 0 to 1024
[ 34.123045][ T376] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.135607][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.151736][ T379] loop2: detected capacity change from 0 to 1024
[ 34.173409][ T379] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.186347][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.200686][ T382] loop2: detected capacity change from 0 to 1024
[ 34.213137][ T382] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.228037][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.242431][ T385] loop2: detected capacity change from 0 to 1024
[ 34.261990][ T385] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.275357][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.295005][ T388] loop2: detected capacity change from 0 to 1024
[ 34.323682][ T388] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.336177][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.350751][ T391] loop2: detected capacity change from 0 to 1024
[ 34.361643][ T391] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.374523][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.402304][ T394] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.416896][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.443763][ T397] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.456464][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.491722][ T400] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.503922][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.522145][ T403] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.534310][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.562709][ T406] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.575492][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.603937][ T409] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.616624][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.642480][ T412] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.657493][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.682389][ T415] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.694926][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.721682][ T418] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.734687][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.771352][ T421] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.784372][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.805987][ T424] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.824236][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.842851][ T427] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.856324][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.892533][ T430] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.907455][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.932017][ T433] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.944686][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 34.964504][ T436] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 34.976267][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.002820][ T439] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.016369][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.041975][ T442] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.054966][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.082727][ T445] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.097344][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.121742][ T448] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.135366][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.161961][ T451] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.177354][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.212574][ T454] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.226206][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.251878][ T457] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.264586][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.292186][ T460] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.307978][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.332637][ T463] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.345918][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.371587][ T466] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.384966][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.411688][ T469] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[ 35.424399][ T358] EXT4-fs (loop2): unmounting filesystem.
[ 35.894421][ T531] ==================================================================
[ 35.902791][ T531] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x979/0x21d0
[ 35.910644][ T531] Read of size 18446744073709551588 at addr ffff88811f4eb040 by task syz.2.73/531
[ 35.919939][ T531]
[ 35.922284][ T531] CPU: 1 PID: 531 Comm: syz.2.73 Not tainted syzkaller #0
[ 35.929540][ T531] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 35.939775][ T531] Call Trace:
[ 35.943306][ T531]
[ 35.946363][ T531] __dump_stack+0x21/0x24
[ 35.950706][ T531] dump_stack_lvl+0x110/0x170
[ 35.955680][ T531] ? __cfi_dump_stack_lvl+0x8/0x8
[ 35.960902][ T531] ? kasan_save_alloc_info+0x25/0x30
[ 35.966194][ T531] ? ext4_xattr_block_set+0x9d5/0x3260
[ 35.971725][ T531] ? ext4_xattr_set+0x242/0x320
[ 35.976556][ T531] ? ext4_xattr_security_set+0x3c/0x50
[ 35.982093][ T531] ? ext4_xattr_set_entry+0x979/0x21d0
[ 35.987550][ T531] print_address_description+0x71/0x200
[ 35.993140][ T531] print_report+0x4a/0x60
[ 35.997543][ T531] kasan_report+0x122/0x150
[ 36.002025][ T531] ? ext4_xattr_set_entry+0x979/0x21d0
[ 36.007645][ T531] ? ext4_xattr_set_entry+0x979/0x21d0
[ 36.013218][ T531] kasan_check_range+0x249/0x2a0
[ 36.018257][ T531] ? ext4_xattr_set_entry+0x979/0x21d0
[ 36.023723][ T531] memmove+0x2d/0x70
[ 36.027751][ T531] ext4_xattr_set_entry+0x979/0x21d0
[ 36.033033][ T531] ext4_xattr_block_set+0xad3/0x3260
[ 36.038308][ T531] ? __kasan_check_write+0x14/0x20
[ 36.043424][ T531] ? iput+0x620/0x670
[ 36.047419][ T531] ? ext4_xattr_block_find+0x310/0x310
[ 36.052868][ T531] ext4_xattr_set_handle+0xe3b/0x1570
[ 36.058235][ T531] ? __cfi_ext4_xattr_set_handle+0x10/0x10
[ 36.064042][ T531] ? __kasan_check_read+0x11/0x20
[ 36.069181][ T531] ? __ext4_journal_start_sb+0x2ed/0x4a0
[ 36.075077][ T531] ext4_xattr_set+0x242/0x320
[ 36.079755][ T531] ? ns_capable+0x8c/0xf0
[ 36.084082][ T531] ? __cfi_ext4_xattr_set+0x10/0x10
[ 36.089499][ T531] ? selinux_inode_setxattr+0x5cf/0xbf0
[ 36.095039][ T531] ext4_xattr_security_set+0x3c/0x50
[ 36.100308][ T531] ? __cfi_ext4_xattr_security_set+0x10/0x10
[ 36.106358][ T531] __vfs_setxattr+0x3f2/0x440
[ 36.111025][ T531] __vfs_setxattr_noperm+0x12a/0x5e0
[ 36.116292][ T531] __vfs_setxattr_locked+0x212/0x230
[ 36.121585][ T531] vfs_setxattr+0x167/0x2e0
[ 36.126275][ T531] ? __cfi_vfs_setxattr+0x10/0x10
[ 36.131388][ T531] ? copy_user_enhanced_fast_string+0xa/0x40
[ 36.137570][ T531] setxattr+0x346/0x360
[ 36.141908][ T531] ? path_setxattr+0x290/0x290
[ 36.146861][ T531] ? __mnt_want_write+0x1e6/0x260
[ 36.151991][ T531] ? mnt_want_write+0x220/0x300
[ 36.156846][ T531] path_setxattr+0x147/0x290
[ 36.161439][ T531] ? simple_xattr_list_add+0x120/0x120
[ 36.166917][ T531] __x64_sys_setxattr+0xc5/0xe0
[ 36.171863][ T531] x64_sys_call+0x633/0x9a0
[ 36.176371][ T531] do_syscall_64+0x4c/0xa0
[ 36.180780][ T531] ? clear_bhb_loop+0x30/0x80
[ 36.185443][ T531] ? clear_bhb_loop+0x30/0x80
[ 36.190362][ T531] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 36.196238][ T531] RIP: 0033:0x7f1738b9c819
[ 36.200913][ T531] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 36.220760][ T531] RSP: 002b:00007ffec664ed98 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 36.229544][ T531] RAX: ffffffffffffffda RBX: 00007f1738e15fa0 RCX: 00007f1738b9c819
[ 36.237611][ T531] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[ 36.245667][ T531] RBP: 00007f1738c32c91 R08: 0000000000000000 R09: 0000000000000000
[ 36.253717][ T531] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[ 36.261934][ T531] R13: 00007f1738e15fac R14: 00007f1738e15fa0 R15: 00007f1738e15fa0
[ 36.269899][ T531]
[ 36.272987][ T531]
[ 36.275379][ T531] Allocated by task 531:
[ 36.279597][ T531] kasan_set_track+0x4b/0x70
[ 36.284359][ T531] kasan_save_alloc_info+0x25/0x30
[ 36.289909][ T531] __kasan_kmalloc+0x95/0xb0
[ 36.294494][ T531] __kmalloc_node_track_caller+0xb1/0x1e0
[ 36.300224][ T531] kmemdup+0x2b/0x60
[ 36.304136][ T531] ext4_xattr_block_set+0x9d5/0x3260
[ 36.309427][ T531] ext4_xattr_set_handle+0xe3b/0x1570
[ 36.314791][ T531] ext4_xattr_set+0x242/0x320
[ 36.319456][ T531] ext4_xattr_security_set+0x3c/0x50
[ 36.324813][ T531] __vfs_setxattr+0x3f2/0x440
[ 36.329496][ T531] __vfs_setxattr_noperm+0x12a/0x5e0
[ 36.334966][ T531] __vfs_setxattr_locked+0x212/0x230
[ 36.340236][ T531] vfs_setxattr+0x167/0x2e0
[ 36.344816][ T531] setxattr+0x346/0x360
[ 36.348975][ T531] path_setxattr+0x147/0x290
[ 36.353563][ T531] __x64_sys_setxattr+0xc5/0xe0
[ 36.358682][ T531] x64_sys_call+0x633/0x9a0
[ 36.363282][ T531] do_syscall_64+0x4c/0xa0
[ 36.367864][ T531] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 36.373745][ T531]
[ 36.376051][ T531] The buggy address belongs to the object at ffff88811f4eb000
[ 36.376051][ T531] which belongs to the cache kmalloc-1k of size 1024
[ 36.390265][ T531] The buggy address is located 64 bytes inside of
[ 36.390265][ T531] 1024-byte region [ffff88811f4eb000, ffff88811f4eb400)
[ 36.403707][ T531]
[ 36.406030][ T531] The buggy address belongs to the physical page:
[ 36.412423][ T531] page:ffffea00047d3a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x11f4e8
[ 36.422658][ T531] head:ffffea00047d3a00 order:3 compound_mapcount:0 compound_pincount:0
[ 36.430960][ T531] flags: 0x4000000000010200(slab|head|zone=1)
[ 36.437025][ T531] raw: 4000000000010200 0000000000000000 dead000000000001 ffff888100043080
[ 36.446024][ T531] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[ 36.454581][ T531] page dumped because: kasan: bad access detected
[ 36.460983][ T531] page_owner tracks the page as allocated
[ 36.466684][ T531] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 274, tgid 274 (sshd-session), ts 23284656473, free_ts 23276056243
[ 36.488037][ T531] post_alloc_hook+0x1f5/0x210
[ 36.492905][ T531] prep_new_page+0x1c/0x110
[ 36.498043][ T531] get_page_from_freelist+0x2d12/0x2d80
[ 36.503767][ T531] __alloc_pages+0x1fa/0x610
[ 36.508394][ T531] alloc_slab_page+0x6e/0xf0
[ 36.513170][ T531] new_slab+0x98/0x3d0
[ 36.517234][ T531] ___slab_alloc+0x6bd/0xb20
[ 36.521811][ T531] __slab_alloc+0x5e/0xa0
[ 36.526223][ T531] __kmem_cache_alloc_node+0x203/0x2c0
[ 36.531685][ T531] __kmalloc_node_track_caller+0xa0/0x1e0
[ 36.537404][ T531] __alloc_skb+0x236/0x4b0
[ 36.541904][ T531] tcp_stream_alloc_skb+0x47/0x360
[ 36.547384][ T531] tcp_sendmsg_locked+0xe02/0x3a90
[ 36.552483][ T531] tcp_sendmsg+0x2f/0x50
[ 36.556832][ T531] inet_sendmsg+0xb6/0xd0
[ 36.561163][ T531] sock_write_iter+0x2ee/0x3f0
[ 36.565922][ T531] page last free stack trace:
[ 36.570590][ T531] free_unref_page_prepare+0x742/0x750
[ 36.576055][ T531] free_unref_page+0x95/0x540
[ 36.580738][ T531] free_compound_page+0x99/0xd0
[ 36.585571][ T531] destroy_large_folio+0x68/0xa0
[ 36.590511][ T531] __folio_put+0xd1/0xe0
[ 36.594931][ T531] page_to_skb+0x4e4/0xb50
[ 36.599368][ T531] receive_buf+0x466/0x4960
[ 36.603895][ T531] virtnet_poll+0x5d3/0x1180
[ 36.608475][ T531] __napi_poll+0xd0/0x5e0
[ 36.612794][ T531] net_rx_action+0x4b6/0xac0
[ 36.617367][ T531] handle_softirqs+0x1d7/0x600
[ 36.622244][ T531] __irq_exit_rcu+0x52/0xf0
[ 36.626970][ T531] irq_exit_rcu+0x9/0x10
[ 36.631209][ T531] common_interrupt+0xbe/0xe0
[ 36.635880][ T531] asm_common_interrupt+0x27/0x40
[ 36.641063][ T531]
[ 36.643505][ T531] Memory state around the buggy address:
[ 36.649707][ T531] ffff88811f4eaf00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 36.658320][ T531] ffff88811f4eaf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 36.666398][ T531] >ffff88811f4eb000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 36.674811][ T531] ^
[ 36.680974][ T531] ffff88811f4eb080: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 36.689037][ T531] ffff88811f4eb100: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 36.697182][ T531] ==================================================================
[ 36.706230][ T531] Disabling lock debugging due to kernel taint
[ 36.715560][ T28] kauditd_printk_skb: 34 callbacks suppressed
[ 36.715574][ T28] audit: type=1400 audit(1776400109.995:108): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 36.748596][ T28] audit: type=1400 audit(1776400109.995:109): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 36.771186][ T28] audit: type=1400 audit(1776400109.995:110): avc: denied { write } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 36.792904][ T28] audit: type=1400 audit(1776400109.995:111): avc: denied { add_name } for pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 36.813910][ T28] audit: type=1400 audit(1776400109.995:112): avc: denied { create } for pid=85 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 36.834737][ T28] audit: type=1400 audit(1776400109.995:113): avc: denied { append open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 36.858163][ T28] audit: type=1400 audit(1776400109.995:114): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 37.113969][ T103] general protection fault, probably for non-canonical address 0xa7f4b1065d2f2a38: 0000 [#1] PREEMPT SMP KASAN
[ 37.125932][ T103] CPU: 1 PID: 103 Comm: udevd Tainted: G B syzkaller #0
[ 37.134337][ T103] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 37.144477][ T103] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 37.150215][ T103] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 37.169819][ T103] RSP: 0018:ffffc90000a07d10 EFLAGS: 00010286
[ 37.176050][ T103] RAX: 0000000000000800 RBX: a7de1314dca7ddc7 RCX: 382a2f5d06b1f4a7
[ 37.184017][ T103] RDX: 000000000003ec69 RSI: 0000000000001000 RDI: a7f4b1065d2f2238
[ 37.191962][ T103] RBP: ffffc90000a07d58 R08: ffffc90000a07e60 R09: ffffc90000a07e40
[ 37.200090][ T103] R10: 0000000000000000 R11: fffff52000140fca R12: 0000000000001000
[ 37.208121][ T103] R13: ffffffff81c20ff9 R14: 0000000000000cc0 R15: ffff8881001ed380
[ 37.216155][ T103] FS: 00007f1540286880(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 37.225194][ T103] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 37.231766][ T103] CR2: 00002000000013c0 CR3: 00000001104f4000 CR4: 00000000003506a0
[ 37.239736][ T103] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 37.247717][ T103] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 37.255699][ T103] Call Trace:
[ 37.258964][ T103]
[ 37.261877][ T103] ? mntput+0xc0/0xc0
[ 37.265870][ T103] ? getname_flags+0xb9/0x500
[ 37.270616][ T103] getname_flags+0xb9/0x500
[ 37.275248][ T103] user_path_at_empty+0x30/0x1c0
[ 37.280266][ T103] do_readlinkat+0xd9/0x490
[ 37.284757][ T103] ? cp_old_stat+0x4a0/0x4a0
[ 37.289357][ T103] ? __cfi_ksys_read+0x10/0x10
[ 37.294110][ T103] ? debug_smp_processor_id+0x17/0x20
[ 37.299638][ T103] __x64_sys_readlink+0x7f/0x90
[ 37.304478][ T103] x64_sys_call+0x87f/0x9a0
[ 37.308962][ T103] do_syscall_64+0x4c/0xa0
[ 37.313377][ T103] ? clear_bhb_loop+0x30/0x80
[ 37.318033][ T103] ? clear_bhb_loop+0x30/0x80
[ 37.322690][ T103] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 37.328563][ T103] RIP: 0033:0x7f153fb153a7
[ 37.333161][ T103] Code: 00 00 90 48 83 ec 10 48 63 ff 45 31 c9 45 31 c0 6a 00 31 c9 e8 8a 20 f9 ff 48 83 c4 18 c3 0f 1f 44 00 00 b8 59 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 21 ba 0d 00 f7 d8 64 89 02 48
[ 37.352936][ T103] RSP: 002b:00007ffdda336508 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[ 37.361589][ T103] RAX: ffffffffffffffda RBX: 00007ffdda3369e0 RCX: 00007f153fb153a7
[ 37.369558][ T103] RDX: 0000000000000400 RSI: 00007ffdda336510 RDI: 00007ffdda3369e0
[ 37.377521][ T103] RBP: 00007ffdda336510 R08: 0000000000000075 R09: 0000000000000000
[ 37.385469][ T103] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000400
[ 37.393433][ T103] R13: 00005587727ba100 R14: 0000000000000001 R15: 00007ffdda3382e0
[ 37.401401][ T103]
[ 37.404516][ T103] Modules linked in:
[ 37.408454][ C0] general protection fault, probably for non-canonical address 0xdffffc000000001e: 0000 [#2] PREEMPT SMP KASAN
[ 37.420272][ C0] KASAN: null-ptr-deref in range [0x00000000000000f0-0x00000000000000f7]
[ 37.428709][ C0] CPU: 0 PID: 566 Comm: syz.2.86 Tainted: G B D syzkaller #0
[ 37.437303][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 37.447361][ C0] RIP: 0010:cpuacct_account_field+0x8f/0xd0
[ 37.453343][ C0] Code: 63 ff eb 0c 4d 8b 36 49 81 fe 00 f2 10 87 74 51 48 c7 c7 00 95 69 85 e8 5f a2 a7 03 49 8d be f0 00 00 00 48 89 f8 48 c1 e8 03 <42> 80 3c 20 00 74 05 e8 f5 f3 63 00 49 8b 86 f0 00 00 00 65 4a 01
[ 37.473294][ C0] RSP: 0018:ffffc90000007b40 EFLAGS: 00010006
[ 37.479348][ C0] RAX: 000000000000001e RBX: 000000000097f95a RCX: 92e00d4100a5dc00
[ 37.487500][ C0] RDX: 000000000097f95a RSI: ffffffff85699500 RDI: 00000000000000f0
[ 37.495478][ C0] RBP: ffffc90000007b60 R08: 0000000000000003 R09: 0000000000000004
[ 37.503717][ C0] R10: 0000000000000000 R11: ffffffff812e9ec0 R12: dffffc0000000000
[ 37.511786][ C0] R13: ffff88811062de00 R14: 0000000000000000 R15: 0000000000000002
[ 37.519928][ C0] FS: 000055555b4dd500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 37.528952][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 37.535604][ C0] CR2: 00007f1540277000 CR3: 000000011041b000 CR4: 00000000003506b0
[ 37.543670][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 37.551655][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 37.559720][ C0] Call Trace:
[ 37.563000][ C0]
[ 37.566106][ C0] account_system_index_time+0x113/0x1e0
[ 37.571946][ C0] irqtime_account_process_tick+0x107/0x4b0
[ 37.577857][ C0] account_process_tick+0xec/0x5a0
[ 37.583593][ C0] ? __cfi_account_process_tick+0x10/0x10
[ 37.589522][ C0] ? __kasan_check_write+0x14/0x20
[ 37.594704][ C0] ? _raw_spin_lock_irqsave+0xc2/0x130
[ 37.600214][ C0] update_process_times+0x23/0x1b0
[ 37.605881][ C0] tick_sched_timer+0x17c/0x240
[ 37.611225][ C0] ? __cfi_tick_sched_timer+0x10/0x10
[ 37.616630][ C0] __hrtimer_run_queues+0x3bb/0x8e0
[ 37.622302][ C0] ? hrtimer_interrupt+0x8c0/0x8c0
[ 37.627621][ C0] ? ktime_get_update_offsets_now+0x30c/0x320
[ 37.633888][ C0] hrtimer_interrupt+0x3c7/0x8c0
[ 37.638923][ C0] __sysvec_apic_timer_interrupt+0x11e/0x440
[ 37.645694][ C0] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 37.651826][ C0]
[ 37.655037][ C0]
[ 37.658145][ C0] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 37.664255][ C0] RIP: 0010:__memmove+0x19c/0x1a0
[ 37.669901][ C0] Code: fa 02 72 16 66 44 8b 1e 66 44 8b 54 16 fe 66 44 89 1f 66 44 89 54 17 fe eb 0c 48 83 fa 01 72 06 44 8a 1e 44 88 1f c3 48 89 d1 a4 c3 00 eb 2e 0f 1f 00 49 89 f9 48 89 d1 83 e2 07 48 c1 e9 03
[ 37.692562][ C0] RSP: 0018:ffffc9000107f3a0 EFLAGS: 00010282
[ 37.699247][ C0] RAX: ffff8881129ea854 RBX: ffffffffffffffe4 RCX: ffffffffff720dae
[ 37.708127][ C0] RDX: ffffffffffffffe4 RSI: ffff8881132c9a76 RDI: ffff8881132c9a8a
[ 37.716200][ C0] RBP: ffffc9000107f3d0 R08: ffff8881129ea824 R09: 0000000000000001
[ 37.724444][ C0] R10: dffffc0000000000 R11: ffffed102253d580 R12: 0000000000000000
[ 37.732497][ C0] R13: ffffffff81fbd4c9 R14: ffff8881129ea840 R15: ffff8881129ea854
[ 37.740672][ C0] ? ext4_xattr_set_entry+0x979/0x21d0
[ 37.746221][ C0] ? memmove+0x56/0x70
[ 37.750457][ C0] ext4_xattr_set_entry+0x979/0x21d0
[ 37.755877][ C0] ext4_xattr_block_set+0xad3/0x3260
[ 37.761200][ C0] ? __kasan_check_write+0x14/0x20
[ 37.766413][ C0] ? iput+0x620/0x670
[ 37.770411][ C0] ? ext4_xattr_block_find+0x310/0x310
[ 37.775992][ C0] ext4_xattr_set_handle+0xe3b/0x1570
[ 37.781384][ C0] ? __cfi_ext4_xattr_set_handle+0x10/0x10
[ 37.787367][ C0] ? __kasan_check_read+0x11/0x20
[ 37.792504][ C0] ? __ext4_journal_start_sb+0x2ed/0x4a0
[ 37.798335][ C0] ext4_xattr_set+0x242/0x320
[ 37.803030][ C0] ? ns_capable+0x8c/0xf0
[ 37.807361][ C0] ? __cfi_ext4_xattr_set+0x10/0x10
[ 37.812607][ C0] ? selinux_inode_setxattr+0x5cf/0xbf0
[ 37.818271][ C0] ext4_xattr_security_set+0x3c/0x50
[ 37.823635][ C0] ? __cfi_ext4_xattr_security_set+0x10/0x10
[ 37.829599][ C0] __vfs_setxattr+0x3f2/0x440
[ 37.834367][ C0] __vfs_setxattr_noperm+0x12a/0x5e0
[ 37.840238][ C0] __vfs_setxattr_locked+0x212/0x230
[ 37.845528][ C0] vfs_setxattr+0x167/0x2e0
[ 37.850061][ C0] ? __cfi_vfs_setxattr+0x10/0x10
[ 37.855088][ C0] ? copy_user_enhanced_fast_string+0xa/0x40
[ 37.861159][ C0] setxattr+0x346/0x360
[ 37.865474][ C0] ? path_setxattr+0x290/0x290
[ 37.870251][ C0] ? __mnt_want_write+0x1e6/0x260
[ 37.875292][ C0] ? mnt_want_write+0x220/0x300
[ 37.880220][ C0] path_setxattr+0x147/0x290
[ 37.884813][ C0] ? simple_xattr_list_add+0x120/0x120
[ 37.890311][ C0] __x64_sys_setxattr+0xc5/0xe0
[ 37.895159][ C0] x64_sys_call+0x633/0x9a0
[ 37.900108][ C0] do_syscall_64+0x4c/0xa0
[ 37.904530][ C0] ? clear_bhb_loop+0x30/0x80
[ 37.909209][ C0] ? clear_bhb_loop+0x30/0x80
[ 37.913963][ C0] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 37.919937][ C0] RIP: 0033:0x7f1738b9c819
[ 37.924381][ C0] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 37.943989][ C0] RSP: 002b:00007ffec664ed98 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[ 37.952490][ C0] RAX: ffffffffffffffda RBX: 00007f1738e15fa0 RCX: 00007f1738b9c819
[ 37.960717][ C0] RDX: 00002000000013c0 RSI: 0000200000000140 RDI: 0000200000000100
[ 37.968672][ C0] RBP: 00007f1738c32c91 R08: 0000000000000000 R09: 0000000000000000
[ 37.976719][ C0] R10: 0000000000000700 R11: 0000000000000246 R12: 0000000000000000
[ 37.984846][ C0] R13: 00007f1738e15fac R14: 00007f1738e15fa0 R15: 00007f1738e15fa0
[ 37.992806][ C0]
[ 37.995803][ C0] Modules linked in:
[ 37.999743][ C0] ---[ end trace 0000000000000000 ]---
[ 37.999768][ C1] general protection fault, probably for non-canonical address 0xdffffc0000000160: 0000 [#3] PREEMPT SMP KASAN
[ 38.005270][ C0] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 38.016966][ C1] KASAN: null-ptr-deref in range [0x0000000000000b00-0x0000000000000b07]
[ 38.022533][ C0] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 38.031240][ C1] CPU: 1 PID: 103 Comm: udevd Tainted: G B D syzkaller #0
[ 38.050825][ C0] RSP: 0018:ffffc90000a07d10 EFLAGS: 00010286
[ 38.059173][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026
[ 38.059176][ C0]
[ 38.059185][ C1] RIP: 0010:update_curr+0x70/0x600
[ 38.065439][ C0] RAX: 0000000000000800 RBX: a7de1314dca7ddc7 RCX: 382a2f5d06b1f4a7
[ 38.075578][ C1] Code: b3 30 01 00 00 4c 89 f0 48 c1 e8 03 42 80 3c 28 00 74 08 4c 89 f7 e8 4f d8 67 00 bb 00 0b 00 00 49 03 1e 48 89 d8 48 c1 e8 03 <42> 80 3c 28 00 74 08 48 89 df e8 31 d8 67 00 4c 89 7d c8 4d 85 ff
[ 38.077891][ C0] RDX: 000000000003ec69 RSI: 0000000000001000 RDI: a7f4b1065d2f2238
[ 38.077903][ C0] RBP: ffffc90000a07d58 R08: ffffc90000a07e60 R09: ffffc90000a07e40
[ 38.082984][ C1] RSP: 0018:ffffc900001b0938 EFLAGS: 00010006
[ 38.091019][ C0] R10: 0000000000000000 R11: fffff52000140fca R12: 0000000000001000
[ 38.110774][ C1]
[ 38.110781][ C1] RAX: 0000000000000160 RBX: 0000000000000b00 RCX: dffffc0000000000
[ 38.118814][ C0] R13: ffffffff81c20ff9 R14: 0000000000000cc0 R15: ffff8881001ed380
[ 38.126763][ C1] RDX: 000000000000035d RSI: ffff8881140e0000 RDI: ffff888112f16400
[ 38.133188][ C0] FS: 000055555b4dd500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[ 38.141515][ C1] RBP: ffffc900001b0990 R08: ffffffff871100f7 R09: 1ffffffff0e2201e
[ 38.143831][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 38.151783][ C1] R10: 0000000000000000 R11: ffffffff814f54c0 R12: 1ffff110225e2c88
[ 38.159732][ C0] CR2: 00007f1540277000 CR3: 000000011041b000 CR4: 00000000003506b0
[ 38.167686][ C1] R13: dffffc0000000000 R14: ffff888112f16530 R15: 0000000000000000
[ 38.176591][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 38.184534][ C1] FS: 00007f1540286880(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 38.191094][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 38.199051][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 38.207086][ C0] Kernel panic - not syncing: Fatal exception in interrupt
[ 38.215065][ C1] CR2: 00002000000013c0 CR3: 00000001104f4000 CR4: 00000000003506a0
[ 38.215079][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 38.215088][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 38.215098][ C1] Call Trace:
[ 38.215104][ C1]
[ 38.215113][ C1] ? _raw_spin_unlock_irqrestore+0x5a/0x80
[ 38.215146][ C1] enqueue_task_fair+0x3ba/0x1d40
[ 38.215163][ C1] ? __kasan_check_read+0x11/0x20
[ 38.215180][ C1] ? __cfi_enqueue_task_fair+0x10/0x10
[ 38.215196][ C1] enqueue_task+0x190/0x1030
[ 38.215214][ C1] ? kvm_sched_clock_read+0x18/0x40
[ 38.215238][ C1] ? sched_clock+0x9/0x10
[ 38.215257][ C1] ? sched_clock_cpu+0x6e/0x260
[ 38.215274][ C1] ? activate_task+0xa0/0xa0
[ 38.215289][ C1] ? __cfi_sched_clock_cpu+0x10/0x10
[ 38.215306][ C1] ? debug_smp_processor_id+0x17/0x20
[ 38.215329][ C1] ttwu_do_activate+0x155/0x280
[ 38.215348][ C1] try_to_wake_up+0x5c0/0x1220
[ 38.215367][ C1] ? __cfi_hrtimer_wakeup+0x10/0x10
[ 38.215391][ C1] wake_up_process+0x10/0x20
[ 38.215406][ C1] hrtimer_wakeup+0x4e/0x60
[ 38.215427][ C1] __hrtimer_run_queues+0x3bb/0x8e0
[ 38.215451][ C1] ? hrtimer_interrupt+0x8c0/0x8c0
[ 38.215472][ C1] ? ktime_get_update_offsets_now+0x30c/0x320
[ 38.215491][ C1] hrtimer_interrupt+0x3c7/0x8c0
[ 38.215515][ C1] __sysvec_apic_timer_interrupt+0x11e/0x440
[ 38.215537][ C1] sysvec_apic_timer_interrupt+0xa4/0xc0
[ 38.215555][ C1]
[ 38.215560][ C1]
[ 38.215565][ C1] asm_sysvec_apic_timer_interrupt+0x1b/0x20
[ 38.215582][ C1] RIP: 0010:oops_exit+0x0/0x30
[ 38.215601][ C1] Code: 0f 8c 0f ff ff ff 48 89 df e8 2c cd c0 fc e9 02 ff ff ff 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 b8 0c 67 40 a5 <55> 48 89 e5 e8 27 71 7b fc e8 82 09 4c fc 48 c7 c7 a0 e6 68 85 31
[ 38.215614][ C1] RSP: 0018:ffffc90000a07b50 EFLAGS: 00000206
[ 38.215628][ C1] RAX: 0000000000000000 RBX: 000000000000000b RCX: ffff88811108d100
[ 38.215638][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffffffff87b5ef60
[ 38.215647][ C1] RBP: ffffc90000a07b68 R08: ffffffff87b737e7 R09: 1ffffffff0f6e6fc
[ 38.215659][ C1] R10: dffffc0000000000 R11: fffffbfff0f6e6fd R12: ffffc90000a07bc0
[ 38.215670][ C1] R13: a7f4b1065d2f2a38 R14: 0000000000000293 R15: 0000000000000000
[ 38.215683][ C1] ? oops_end+0x46/0xd0
[ 38.215700][ C1] die_addr+0x61/0x70
[ 38.215715][ C1] exc_general_protection+0x13a/0x1e0
[ 38.215733][ C1] asm_exc_general_protection+0x27/0x30
[ 38.215749][ C1] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 38.215771][ C1] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 38.215782][ C1] RSP: 0018:ffffc90000a07d10 EFLAGS: 00010286
[ 38.215800][ C1] RAX: 0000000000000800 RBX: a7de1314dca7ddc7 RCX: 382a2f5d06b1f4a7
[ 38.215811][ C1] RDX: 000000000003ec69 RSI: 0000000000001000 RDI: a7f4b1065d2f2238
[ 38.215821][ C1] RBP: ffffc90000a07d58 R08: ffffc90000a07e60 R09: ffffc90000a07e40
[ 38.215832][ C1] R10: 0000000000000000 R11: fffff52000140fca R12: 0000000000001000
[ 38.215841][ C1] R13: ffffffff81c20ff9 R14: 0000000000000cc0 R15: ffff8881001ed380
[ 38.215853][ C1] ? getname_flags+0xb9/0x500
[ 38.215870][ C1] ? mntput+0xc0/0xc0
[ 38.215888][ C1] ? getname_flags+0xb9/0x500
[ 38.215901][ C1] getname_flags+0xb9/0x500
[ 38.215915][ C1] user_path_at_empty+0x30/0x1c0
[ 38.215933][ C1] do_readlinkat+0xd9/0x490
[ 38.215951][ C1] ? cp_old_stat+0x4a0/0x4a0
[ 38.215968][ C1] ? __cfi_ksys_read+0x10/0x10
[ 38.215983][ C1] ? debug_smp_processor_id+0x17/0x20
[ 38.216002][ C1] __x64_sys_readlink+0x7f/0x90
[ 38.216019][ C1] x64_sys_call+0x87f/0x9a0
[ 38.216038][ C1] do_syscall_64+0x4c/0xa0
[ 38.216059][ C1] ? clear_bhb_loop+0x30/0x80
[ 38.216076][ C1] ? clear_bhb_loop+0x30/0x80
[ 38.216093][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 38.216109][ C1] RIP: 0033:0x7f153fb153a7
[ 38.216123][ C1] Code: 00 00 90 48 83 ec 10 48 63 ff 45 31 c9 45 31 c0 6a 00 31 c9 e8 8a 20 f9 ff 48 83 c4 18 c3 0f 1f 44 00 00 b8 59 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 8b 15 21 ba 0d 00 f7 d8 64 89 02 48
[ 38.216134][ C1] RSP: 002b:00007ffdda336508 EFLAGS: 00000246 ORIG_RAX: 0000000000000059
[ 38.216149][ C1] RAX: ffffffffffffffda RBX: 00007ffdda3369e0 RCX: 00007f153fb153a7
[ 38.216160][ C1] RDX: 0000000000000400 RSI: 00007ffdda336510 RDI: 00007ffdda3369e0
[ 38.216170][ C1] RBP: 00007ffdda336510 R08: 0000000000000075 R09: 0000000000000000
[ 38.216180][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000400
[ 38.216189][ C1] R13: 00005587727ba100 R14: 0000000000000001 R15: 00007ffdda3382e0
[ 38.216201][ C1]
[ 38.216206][ C1] Modules linked in:
[ 38.224167][ C1] ---[ end trace 0000000000000000 ]---
[ 38.224175][ C1] RIP: 0010:kmem_cache_alloc+0xf7/0x330
[ 38.224196][ C1] Code: 08 48 8b 38 48 85 ff 0f 84 bd 00 00 00 48 83 78 10 00 0f 84 b2 00 00 00 41 8b 47 28 48 8d 0c 07 49 8b 9f d8 00 00 00 48 0f c9 <48> 33 1c 07 48 31 cb 48 8d 4a 08 4d 8b 07 48 89 f8 65 49 0f c7 08
[ 38.224208][ C1] RSP: 0018:ffffc90000a07d10 EFLAGS: 00010286
[ 38.224220][ C1] RAX: 0000000000000800 RBX: a7de1314dca7ddc7 RCX: 382a2f5d06b1f4a7
[ 38.224231][ C1] RDX: 000000000003ec69 RSI: 0000000000001000 RDI: a7f4b1065d2f2238
[ 38.224241][ C1] RBP: ffffc90000a07d58 R08: ffffc90000a07e60 R09: ffffc90000a07e40
[ 38.224252][ C1] R10: 0000000000000000 R11: fffff52000140fca R12: 0000000000001000
[ 38.224262][ C1] R13: ffffffff81c20ff9 R14: 0000000000000cc0 R15: ffff8881001ed380
[ 38.224273][ C1] FS: 00007f1540286880(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[ 38.224287][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 38.224298][ C1] CR2: 00002000000013c0 CR3: 00000001104f4000 CR4: 00000000003506a0
[ 38.224311][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 38.224320][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 39.353397][ C0] Shutting down cpus with NMI
[ 39.981550][ C0] Kernel Offset: disabled
[ 39.985863][ C0] Rebooting in 86400 seconds..