T36] audit: type=1400 audit(1769324740.680:62): avc:  denied  { rlimitinh } for  pid=232 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   13.183241][   T36] audit: type=1400 audit(1769324740.680:63): avc:  denied  { siginh } for  pid=232 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.1.17' (ED25519) to the list of known hosts.
2026/01/25 07:05:49 parsed 1 programs
[   22.206734][   T36] audit: type=1400 audit(1769324749.710:64): avc:  denied  { node_bind } for  pid=290 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[   23.137508][   T36] audit: type=1400 audit(1769324750.640:65): avc:  denied  { mounton } for  pid=297 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[   23.138578][  T297] cgroup: Unknown subsys name 'net'
[   23.160168][   T36] audit: type=1400 audit(1769324750.640:66): avc:  denied  { mount } for  pid=297 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   23.187440][   T36] audit: type=1400 audit(1769324750.670:67): avc:  denied  { unmount } for  pid=297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[   23.187568][  T297] cgroup: Unknown subsys name 'devices'
[   23.351856][  T297] cgroup: Unknown subsys name 'hugetlb'
[   23.357449][  T297] cgroup: Unknown subsys name 'rlimit'
[   23.514421][   T36] audit: type=1400 audit(1769324751.020:68): avc:  denied  { setattr } for  pid=297 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=190 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[   23.537605][   T36] audit: type=1400 audit(1769324751.020:69): avc:  denied  { create } for  pid=297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   23.547490][  T300] SELinux:  Context root:object_r:swapfile_t is not valid (left unmapped).
[   23.558130][   T36] audit: type=1400 audit(1769324751.020:70): avc:  denied  { write } for  pid=297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[   23.586815][   T36] audit: type=1400 audit(1769324751.020:71): avc:  denied  { read } for  pid=297 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
Setting up swapspace version 1, size = 127995904 bytes
[   23.607250][   T36] audit: type=1400 audit(1769324751.020:72): avc:  denied  { sys_module } for  pid=297 comm="syz-executor" capability=16  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability permissive=1
[   23.628360][   T36] audit: type=1400 audit(1769324751.020:73): avc:  denied  { mounton } for  pid=297 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[   23.632571][  T297] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   24.450484][  T303] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   25.053026][  T348] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.060141][  T348] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.067187][  T348] bridge_slave_0: entered allmulticast mode
[   25.073492][  T348] bridge_slave_0: entered promiscuous mode
[   25.079883][  T348] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.086925][  T348] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.094111][  T348] bridge_slave_1: entered allmulticast mode
[   25.100458][  T348] bridge_slave_1: entered promiscuous mode
[   25.140259][  T348] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.147289][  T348] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.154566][  T348] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.161599][  T348] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.188967][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.196395][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.205290][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.212343][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.224205][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.231253][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.252065][  T348] veth0_vlan: entered promiscuous mode
[   25.262084][  T348] veth1_macvtap: entered promiscuous mode
[   25.323143][   T46] bridge_slave_1: left allmulticast mode
[   25.329652][   T46] bridge_slave_1: left promiscuous mode
[   25.336230][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.344792][   T46] bridge_slave_0: left allmulticast mode
[   25.350730][   T46] bridge_slave_0: left promiscuous mode
[   25.356341][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.495625][   T46] veth1_macvtap: left promiscuous mode
[   25.501347][   T46] veth0_vlan: left promiscuous mode
2026/01/25 07:05:53 executed programs: 0
[   25.623194][  T368] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.630318][  T368] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.637363][  T368] bridge_slave_0: entered allmulticast mode
[   25.643770][  T368] bridge_slave_0: entered promiscuous mode
[   25.650168][  T368] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.657180][  T368] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.664255][  T368] bridge_slave_1: entered allmulticast mode
[   25.670502][  T368] bridge_slave_1: entered promiscuous mode
[   25.705195][  T368] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.712270][  T368] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.719492][  T368] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.726525][  T368] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.745323][   T13] bridge0: port 1(bridge_slave_0) entered disabled state
[   25.752683][   T13] bridge0: port 2(bridge_slave_1) entered disabled state
[   25.761855][  T312] bridge0: port 1(bridge_slave_0) entered blocking state
[   25.768896][  T312] bridge0: port 1(bridge_slave_0) entered forwarding state
[   25.777622][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   25.784682][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   25.806057][  T368] veth0_vlan: entered promiscuous mode
[   25.816269][  T368] veth1_macvtap: entered promiscuous mode
[   25.841190][  T368] ------------[ cut here ]------------
[   25.846679][  T368] WARNING: CPU: 1 PID: 368 at fs/inode.c:340 drop_nlink+0xce/0x110
[   25.854644][  T368] Modules linked in:
[   25.858566][  T368] CPU: 1 UID: 0 PID: 368 Comm: syz-executor Not tainted syzkaller #0 1299f57362d1784c0f26c9767fc5423e1fa623f7
[   25.870262][  T368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   25.880374][  T368] RIP: 0010:drop_nlink+0xce/0x110
[   25.885401][  T368] Code: 04 00 00 be 08 00 00 00 e8 bf 25 ee ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d e9 48 33 af 03 cc e8 e2 5b 96 ff <0f> 0b eb 81 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 59 ff ff ff 4c
[   25.905085][  T368] RSP: 0018:ffffc900011ffc60 EFLAGS: 00010293
[   25.911221][  T368] RAX: ffffffff81f12c1e RBX: ffff8881155c87e0 RCX: ffff88810fb0b900
[   25.919207][  T368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   25.927244][  T368] RBP: ffffc900011ffc88 R08: 0000000000000003 R09: 0000000000000004
[   25.935263][  T368] R10: dffffc0000000000 R11: fffff5200023ff7c R12: dffffc0000000000
[   25.943295][  T368] R13: 1ffff11022ab9105 R14: ffff8881155c8828 R15: 0000000000000000
[   25.951294][  T368] FS:  000055558a078500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000
[   25.960257][  T368] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   25.966843][  T368] CR2: 000055558a09b948 CR3: 0000000113b00000 CR4: 00000000003526b0
[   25.974928][  T368] Call Trace:
[   25.978301][  T368]  <TASK>
[   25.981288][  T368]  shmem_rmdir+0x5f/0x90
[   25.985537][  T368]  vfs_rmdir+0x3e0/0x560
[   25.989895][  T368]  incfs_kill_sb+0x109/0x230
[   25.994518][  T368]  deactivate_locked_super+0xd8/0x2a0
[   25.999942][  T368]  deactivate_super+0xb8/0xe0
[   26.004616][  T368]  cleanup_mnt+0x406/0x4a0
[   26.009026][  T368]  __cleanup_mnt+0x1d/0x40
[   26.013523][  T368]  task_work_run+0x1e8/0x260
[   26.018118][  T368]  ? __cfi_task_work_run+0x10/0x10
[   26.023281][  T368]  ? __x64_sys_umount+0x12e/0x180
[   26.028316][  T368]  ? __cfi___x64_sys_umount+0x10/0x10
[   26.033731][  T368]  ? __kasan_check_read+0x15/0x20
[   26.038769][  T368]  resume_user_mode_work+0x35/0x50
[   26.043933][  T368]  syscall_exit_to_user_mode+0x63/0xb0
[   26.049391][  T368]  do_syscall_64+0x63/0xf0
[   26.053841][  T368]  ? clear_bhb_loop+0x50/0xa0
[   26.058517][  T368]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   26.064436][  T368] RIP: 0033:0x7fd72319bf17
[   26.068856][  T368] Code: a2 c7 05 7c 96 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   26.088522][  T368] RSP: 002b:00007ffcb31eb578 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   26.096987][  T368] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd72319bf17
[   26.105021][  T368] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb31eb630
[   26.113039][  T368] RBP: 00007ffcb31eb630 R08: 00007ffcb31ec630 R09: 00000000ffffffff
[   26.121051][  T368] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb31ec6c0
[   26.129017][  T368] R13: 00007fd72320471f R14: 00000000000064d9 R15: 00007ffcb31ec700
[   26.137019][  T368]  </TASK>
[   26.140064][  T368] ---[ end trace 0000000000000000 ]---
[   26.146209][  T368] ==================================================================
[   26.154275][  T368] BUG: KASAN: null-ptr-deref in ihold+0x24/0x70
[   26.160508][  T368] Write of size 4 at addr 0000000000000168 by task syz-executor/368
[   26.168460][  T368] 
[   26.170764][  T368] CPU: 0 UID: 0 PID: 368 Comm: syz-executor Tainted: G        W          syzkaller #0 1299f57362d1784c0f26c9767fc5423e1fa623f7
[   26.170781][  T368] Tainted: [W]=WARN
[   26.170785][  T368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   26.170791][  T368] Call Trace:
[   26.170795][  T368]  <TASK>
[   26.170799][  T368]  __dump_stack+0x21/0x30
[   26.170817][  T368]  dump_stack_lvl+0x140/0x1c0
[   26.170829][  T368]  ? __cfi_dump_stack_lvl+0x10/0x10
[   26.170842][  T368]  print_report+0x3d/0x70
[   26.170855][  T368]  kasan_report+0x162/0x1a0
[   26.170871][  T368]  ? ihold+0x24/0x70
[   26.170885][  T368]  ? _raw_spin_unlock+0x45/0x60
[   26.170900][  T368]  ? ihold+0x24/0x70
[   26.170912][  T368]  kasan_check_range+0x25a/0x2b0
[   26.170927][  T368]  __kasan_check_write+0x18/0x20
[   26.170939][  T368]  ihold+0x24/0x70
[   26.170951][  T368]  vfs_rmdir+0x26a/0x560
[   26.170961][  T368]  incfs_kill_sb+0x109/0x230
[   26.170973][  T368]  deactivate_locked_super+0xd8/0x2a0
[   26.170984][  T368]  deactivate_super+0xb8/0xe0
[   26.170993][  T368]  cleanup_mnt+0x406/0x4a0
[   26.171007][  T368]  __cleanup_mnt+0x1d/0x40
[   26.171020][  T368]  task_work_run+0x1e8/0x260
[   26.171032][  T368]  ? __cfi_task_work_run+0x10/0x10
[   26.171042][  T368]  ? __x64_sys_umount+0x12e/0x180
[   26.171053][  T368]  ? __cfi___x64_sys_umount+0x10/0x10
[   26.171068][  T368]  ? __kasan_check_read+0x15/0x20
[   26.171079][  T368]  resume_user_mode_work+0x35/0x50
[   26.171092][  T368]  syscall_exit_to_user_mode+0x63/0xb0
[   26.171103][  T368]  do_syscall_64+0x63/0xf0
[   26.171115][  T368]  ? clear_bhb_loop+0x50/0xa0
[   26.171128][  T368]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   26.171140][  T368] RIP: 0033:0x7fd72319bf17
[   26.171150][  T368] Code: a2 c7 05 7c 96 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   26.171158][  T368] RSP: 002b:00007ffcb31eb578 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   26.171170][  T368] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd72319bf17
[   26.171177][  T368] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb31eb630
[   26.171184][  T368] RBP: 00007ffcb31eb630 R08: 00007ffcb31ec630 R09: 00000000ffffffff
[   26.171191][  T368] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb31ec6c0
[   26.171198][  T368] R13: 00007fd72320471f R14: 00000000000064d9 R15: 00007ffcb31ec700
[   26.171206][  T368]  </TASK>
[   26.171210][  T368] ==================================================================
[   26.417698][  T368] Disabling lock debugging due to kernel taint
[   26.424175][  T368] BUG: kernel NULL pointer dereference, address: 0000000000000168
[   26.431978][  T368] #PF: supervisor write access in kernel mode
[   26.438023][  T368] #PF: error_code(0x0002) - not-present page
[   26.443973][  T368] PGD 8000000113fe5067 P4D 8000000113fe5067 PUD 0 
[   26.450452][  T368] Oops: Oops: 0002 [#1] PREEMPT SMP KASAN PTI
[   26.456493][  T368] CPU: 0 UID: 0 PID: 368 Comm: syz-executor Tainted: G    B   W          syzkaller #0 1299f57362d1784c0f26c9767fc5423e1fa623f7
[   26.469572][  T368] Tainted: [B]=BAD_PAGE, [W]=WARN
[   26.474562][  T368] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   26.484589][  T368] RIP: 0010:ihold+0x2a/0x70
[   26.489083][  T368] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 cd 52 96 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 7c 1c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 dd
[   26.508664][  T368] RSP: 0018:ffffc900011ffca0 EFLAGS: 00010246
[   26.514702][  T368] RAX: ffff88810fb0b900 RBX: 0000000000000000 RCX: ffff88810fb0b900
[   26.522644][  T368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   26.530769][  T368] RBP: ffffc900011ffcb0 R08: ffffffff88b89947 R09: 1ffffffff1171328
[   26.538724][  T368] R10: dffffc0000000000 R11: fffffbfff1171329 R12: ffff8881155c87ec
[   26.546678][  T368] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   26.554631][  T368] FS:  000055558a078500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   26.563537][  T368] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.570096][  T368] CR2: 0000000000000168 CR3: 0000000113b00000 CR4: 00000000003526b0
[   26.578045][  T368] Call Trace:
[   26.581472][  T368]  <TASK>
[   26.584379][  T368]  vfs_rmdir+0x26a/0x560
[   26.588600][  T368]  incfs_kill_sb+0x109/0x230
[   26.593165][  T368]  deactivate_locked_super+0xd8/0x2a0
[   26.598510][  T368]  deactivate_super+0xb8/0xe0
[   26.603183][  T368]  cleanup_mnt+0x406/0x4a0
[   26.607576][  T368]  __cleanup_mnt+0x1d/0x40
[   26.611968][  T368]  task_work_run+0x1e8/0x260
[   26.616532][  T368]  ? __cfi_task_work_run+0x10/0x10
[   26.621630][  T368]  ? __x64_sys_umount+0x12e/0x180
[   26.626628][  T368]  ? __cfi___x64_sys_umount+0x10/0x10
[   26.632062][  T368]  ? __kasan_check_read+0x15/0x20
[   26.637065][  T368]  resume_user_mode_work+0x35/0x50
[   26.642156][  T368]  syscall_exit_to_user_mode+0x63/0xb0
[   26.647589][  T368]  do_syscall_64+0x63/0xf0
[   26.651980][  T368]  ? clear_bhb_loop+0x50/0xa0
[   26.656635][  T368]  entry_SYSCALL_64_after_hwframe+0x76/0x7e
[   26.662502][  T368] RIP: 0033:0x7fd72319bf17
[   26.666892][  T368] Code: a2 c7 05 7c 96 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[   26.686469][  T368] RSP: 002b:00007ffcb31eb578 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[   26.694867][  T368] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007fd72319bf17
[   26.702825][  T368] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcb31eb630
[   26.710782][  T368] RBP: 00007ffcb31eb630 R08: 00007ffcb31ec630 R09: 00000000ffffffff
[   26.718745][  T368] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcb31ec6c0
[   26.726703][  T368] R13: 00007fd72320471f R14: 00000000000064d9 R15: 00007ffcb31ec700
[   26.734658][  T368]  </TASK>
[   26.737657][  T368] Modules linked in:
[   26.741536][  T368] CR2: 0000000000000168
[   26.745686][  T368] ---[ end trace 0000000000000000 ]---
[   26.751112][  T368] RIP: 0010:ihold+0x2a/0x70
[   26.755596][  T368] Code: f3 0f 1e fa 55 48 89 e5 41 56 53 48 89 fb e8 cd 52 96 ff 48 8d bb 68 01 00 00 be 04 00 00 00 e8 7c 1c ee ff 41 be 01 00 00 00 <f0> 44 0f c1 b3 68 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 dd
[   26.775179][  T368] RSP: 0018:ffffc900011ffca0 EFLAGS: 00010246
[   26.781218][  T368] RAX: ffff88810fb0b900 RBX: 0000000000000000 RCX: ffff88810fb0b900
[   26.789171][  T368] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[   26.797113][  T368] RBP: ffffc900011ffcb0 R08: ffffffff88b89947 R09: 1ffffffff1171328
[   26.805148][  T368] R10: dffffc0000000000 R11: fffffbfff1171329 R12: ffff8881155c87ec
[   26.813092][  T368] R13: 0000000000000000 R14: 0000000000000001 R15: 0000000000000000
[   26.821050][  T368] FS:  000055558a078500(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000
[   26.829951][  T368] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   26.836504][  T368] CR2: 0000000000000168 CR3: 0000000113b00000 CR4: 00000000003526b0
[   26.844451][  T368] Kernel panic - not syncing: Fatal exception
[   26.850829][  T368] Kernel Offset: disabled
[   26.855131][  T368] Rebooting in 86400 seconds..