./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3797297640 <...> DUID 00:04:9f:e8:07:f9:ba:36:1f:d4:05:68:5a:d1:6a:7f:90:cd forked to background, child pid 3181 [ 22.644576][ T3182] 8021q: adding VLAN 0 to HW filter on device bond0 [ 22.655303][ T3182] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.0.156' (ECDSA) to the list of known hosts. execve("./syz-executor3797297640", ["./syz-executor3797297640"], 0x7ffdf6716f30 /* 10 vars */) = 0 brk(NULL) = 0x555556366000 brk(0x555556366c40) = 0x555556366c40 arch_prctl(ARCH_SET_FS, 0x555556366300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 set_tid_address(0x5555563665d0) = 3602 set_robust_list(0x5555563665e0, 24) = 0 rt_sigaction(SIGRTMIN, {sa_handler=0x7efce946d7a0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7efce946de70}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7efce946d840, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7efce946de70}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3797297640", 4096) = 28 brk(0x555556387c40) = 0x555556387c40 brk(0x555556388000) = 0x555556388000 mprotect(0x7efce952f000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x5555563665d0) = 3603 ./strace-static-x86_64: Process 3603 attached [pid 3603] set_robust_list(0x5555563665e0, 24) = 0 [pid 3603] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 3603] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 3603] setsid() = 1 [pid 3603] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 3603] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 3603] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 3603] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 3603] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 3603] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 3603] unshare(CLONE_NEWNS) = 0 [pid 3603] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 3603] unshare(CLONE_NEWIPC) = 0 [pid 3603] unshare(CLONE_NEWCGROUP) = 0 [pid 3603] unshare(CLONE_NEWUTS) = 0 [pid 3603] unshare(CLONE_SYSVSEM) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "16777216", 8) = 8 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "536870912", 9) = 9 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "1024", 4) = 4 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "8192", 4) = 4 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "1024", 4) = 4 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "1024", 4) = 4 [pid 3603] close(3) = 0 [pid 3603] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 3603] write(3, "1024 1048576 500 1024", 21) = 21 [pid 3603] close(3) = 0 [pid 3603] getpid() = 1 [pid 3603] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 3603] futex(0x7efce95354a8, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 3603] futex(0x7efce95354ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3613] <... futex resumed>) = 0 [pid 3613] userfaultfd(UFFD_USER_MODE_ONLY|O_CLOEXEC) = 3 [pid 3613] futex(0x7efce95354ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 3603] <... futex resumed>) = 0 [pid 3603] futex(0x7efce95354a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3603] futex(0x7efce95354ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3613] <... futex resumed>) = 1 [pid 3613] ioctl(3, UFFDIO_API, {api=0xaa, features=0 => features=UFFD_FEATURE_PAGEFAULT_FLAG_WP|UFFD_FEATURE_EVENT_FORK|UFFD_FEATURE_EVENT_REMAP|UFFD_FEATURE_EVENT_REMOVE|UFFD_FEATURE_MISSING_HUGETLBFS|UFFD_FEATURE_MISSING_SHMEM|UFFD_FEATURE_EVENT_UNMAP|UFFD_FEATURE_SIGBUS|UFFD_FEATURE_THREAD_ID|UFFD_FEATURE_MINOR_HUGETLBFS|UFFD_FEATURE_MINOR_SHMEM|0x800, ioctls=1<<_UFFDIO_REGISTER|1<<_UFFDIO_UNREGISTER|1<<_UFFDIO_API}) = 0 [pid 3613] futex(0x7efce95354ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 3603] <... futex resumed>) = 0 [pid 3603] futex(0x7efce95354a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3603] futex(0x7efce95354ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3613] <... futex resumed>) = 1 [pid 3613] ioctl(3, UFFDIO_REGISTER, {range={start=0x20ffc000, len=0x4000}, mode=UFFDIO_REGISTER_MODE_WP, ioctls=1<<_UFFDIO_WAKE|1<<_UFFDIO_COPY|1<<_UFFDIO_ZEROPAGE|1<<_UFFDIO_WRITEPROTECT}) = 0 [pid 3613] futex(0x7efce95354ac, FUTEX_WAKE_PRIVATE, 1000000 [pid 3603] <... futex resumed>) = 0 [pid 3603] futex(0x7efce95354a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 3603] futex(0x7efce95354ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 3613] <... futex resumed>) = 1 [ 42.372933][ T3613] ================================================================== [ 42.381011][ T3613] BUG: KASAN: use-after-free in mas_next_entry+0x344/0x10f0 [ 42.388284][ T3613] Read of size 8 at addr ffff88801ea79220 by task syz-executor379/3613 [ 42.396507][ T3613] [ 42.398821][ T3613] CPU: 0 PID: 3613 Comm: syz-executor379 Not tainted 6.1.0-rc1-syzkaller-00249-g4da34b7d175d #0 [ 42.409222][ T3613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 42.419261][ T3613] Call Trace: [ 42.422549][ T3613] [ 42.425480][ T3613] dump_stack_lvl+0x1e3/0x2cb [ 42.430157][ T3613] ? nf_tcp_handle_invalid+0x62e/0x62e [ 42.435611][ T3613] ? __wake_up_klogd+0xcd/0x100 [ 42.440454][ T3613] ? panic+0x766/0x766 [ 42.444519][ T3613] ? _printk+0xcf/0x10f [ 42.448700][ T3613] print_address_description+0x74/0x340 [ 42.454246][ T3613] print_report+0x107/0x220 [ 42.458828][ T3613] ? __virt_addr_valid+0x21b/0x2d0 [ 42.463932][ T3613] ? __phys_addr+0xb5/0x160 [ 42.468419][ T3613] ? mas_next_entry+0x344/0x10f0 [ 42.473344][ T3613] kasan_report+0x139/0x170 [ 42.477831][ T3613] ? vma_expand+0x9b0/0x9b0 [ 42.482316][ T3613] ? mas_next_entry+0x344/0x10f0 [ 42.487235][ T3613] mas_next_entry+0x344/0x10f0 [ 42.491986][ T3613] ? __split_vma+0x43c/0x4f0 [ 42.496557][ T3613] userfaultfd_unregister+0x1240/0x13b0 [ 42.502085][ T3613] ? kasan_save_free_info+0x27/0x40 [ 42.507267][ T3613] ? userfaultfd_register+0x1320/0x1320 [ 42.512811][ T3613] ? rcu_read_lock_sched_held+0x5f/0x130 [ 42.518432][ T3613] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 42.524412][ T3613] userfaultfd_ioctl+0x5a1/0x3230 [ 42.529439][ T3613] ? do_vfs_ioctl+0xc71/0x2a70 [ 42.534217][ T3613] ? __x64_compat_sys_ioctl+0x80/0x80 [ 42.539582][ T3613] ? userfaultfd_poll+0x1b0/0x1b0 [ 42.544602][ T3613] ? __lock_acquire+0x1f60/0x1f60 [ 42.549624][ T3613] ? slab_free_freelist_hook+0x12e/0x1a0 [ 42.555262][ T3613] ? tomoyo_path_number_perm+0x5bf/0x790 [ 42.560889][ T3613] ? __kmem_cache_free+0x71/0x110 [ 42.565908][ T3613] ? tomoyo_path_number_perm+0x628/0x790 [ 42.571528][ T3613] ? __rwlock_init+0x140/0x140 [ 42.576296][ T3613] ? smack_log+0x11f/0x530 [ 42.580723][ T3613] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 42.586185][ T3613] ? smk_access+0x490/0x490 [ 42.590671][ T3613] ? trace_lock_release+0x95/0x220 [ 42.595768][ T3613] ? smk_tskacc+0x304/0x370 [ 42.600260][ T3613] ? smack_file_ioctl+0x2f7/0x3a0 [ 42.605274][ T3613] ? smack_file_alloc_security+0xd0/0xd0 [ 42.610890][ T3613] ? bpf_lsm_file_ioctl+0x5/0x10 [ 42.615809][ T3613] ? security_file_ioctl+0x9d/0xb0 [ 42.621951][ T3613] ? userfaultfd_poll+0x1b0/0x1b0 [ 42.626970][ T3613] __se_sys_ioctl+0xfb/0x170 [ 42.631546][ T3613] do_syscall_64+0x2b/0x70 [ 42.635946][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 42.641821][ T3613] RIP: 0033:0x7efce94ac5f9 [ 42.646229][ T3613] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 42.665824][ T3613] RSP: 002b:00007efce945a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 42.674273][ T3613] RAX: ffffffffffffffda RBX: 00007efce95354a8 RCX: 00007efce94ac5f9 [ 42.682225][ T3613] RDX: 0000000020000000 RSI: 000000008010aa01 RDI: 0000000000000003 [ 42.690177][ T3613] RBP: 00007efce95354a0 R08: 0000000000000000 R09: 0000000000000000 [ 42.698150][ T3613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efce95354ac [ 42.706099][ T3613] R13: 00007ffc7d044eef R14: 00007efce945a400 R15: 0000000000022000 [ 42.714056][ T3613] [ 42.717054][ T3613] [ 42.719356][ T3613] Allocated by task 3602: [ 42.723663][ T3613] kasan_set_track+0x4c/0x70 [ 42.728238][ T3613] __kasan_slab_alloc+0x65/0x70 [ 42.733071][ T3613] kmem_cache_alloc_bulk+0x43d/0x580 [ 42.738333][ T3613] mas_alloc_nodes+0x386/0x650 [ 42.743080][ T3613] mas_expected_entries+0x215/0x340 [ 42.748260][ T3613] dup_mmap+0x5f6/0xff0 [ 42.752392][ T3613] dup_mm+0x8c/0x310 [ 42.756268][ T3613] copy_mm+0xcb/0x160 [ 42.760228][ T3613] copy_process+0x1973/0x3fc0 [ 42.764885][ T3613] kernel_clone+0x227/0x640 [ 42.769367][ T3613] __x64_sys_clone+0x276/0x2e0 [ 42.774107][ T3613] do_syscall_64+0x2b/0x70 [ 42.778508][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 42.784384][ T3613] [ 42.786808][ T3613] Freed by task 3613: [ 42.790765][ T3613] kasan_set_track+0x4c/0x70 [ 42.795332][ T3613] kasan_save_free_info+0x27/0x40 [ 42.800338][ T3613] ____kasan_slab_free+0xd6/0x120 [ 42.805340][ T3613] slab_free_freelist_hook+0x12e/0x1a0 [ 42.810781][ T3613] kmem_cache_free_bulk+0x137/0x1a0 [ 42.815963][ T3613] mas_destroy+0x2d02/0x37b0 [ 42.820534][ T3613] mas_store_prealloc+0x35d/0x450 [ 42.825538][ T3613] __vma_adjust+0x1a93/0x2120 [ 42.830198][ T3613] __split_vma+0x374/0x4f0 [ 42.834597][ T3613] userfaultfd_unregister+0x119b/0x13b0 [ 42.840123][ T3613] userfaultfd_ioctl+0x5a1/0x3230 [ 42.845128][ T3613] __se_sys_ioctl+0xfb/0x170 [ 42.849700][ T3613] do_syscall_64+0x2b/0x70 [ 42.854097][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 42.859971][ T3613] [ 42.862273][ T3613] The buggy address belongs to the object at ffff88801ea79200 [ 42.862273][ T3613] which belongs to the cache maple_node of size 256 [ 42.876221][ T3613] The buggy address is located 32 bytes inside of [ 42.876221][ T3613] 256-byte region [ffff88801ea79200, ffff88801ea79300) [ 42.889401][ T3613] [ 42.891707][ T3613] The buggy address belongs to the physical page: [ 42.898099][ T3613] page:ffffea00007a9e00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1ea78 [ 42.908225][ T3613] head:ffffea00007a9e00 order:1 compound_mapcount:0 compound_pincount:0 [ 42.916526][ T3613] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff) [ 42.924484][ T3613] raw: 00fff00000010200 0000000000000000 dead000000000122 ffff88801204fdc0 [ 42.933045][ T3613] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 42.941602][ T3613] page dumped because: kasan: bad access detected [ 42.947989][ T3613] page_owner tracks the page as allocated [ 42.953680][ T3613] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3602, tgid 3602 (syz-executor379), ts 40896714662, free_ts 36283338200 [ 42.975273][ T3613] get_page_from_freelist+0x72b/0x7a0 [ 42.980630][ T3613] __alloc_pages+0x259/0x560 [ 42.985198][ T3613] alloc_slab_page+0x70/0xf0 [ 42.989776][ T3613] allocate_slab+0x5e/0x4b0 [ 42.994261][ T3613] ___slab_alloc+0x7f4/0xeb0 [ 42.998832][ T3613] kmem_cache_alloc_bulk+0x1f1/0x580 [ 43.004101][ T3613] mas_alloc_nodes+0x386/0x650 [ 43.008845][ T3613] mas_preallocate+0x133/0x340 [ 43.013590][ T3613] mmap_region+0x1446/0x1db0 [ 43.018162][ T3613] do_mmap+0x8d9/0xf60 [ 43.022210][ T3613] vm_mmap_pgoff+0x1e5/0x2f0 [ 43.026792][ T3613] do_syscall_64+0x2b/0x70 [ 43.031213][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.037091][ T3613] page last free stack trace: [ 43.041742][ T3613] free_pcp_prepare+0x80c/0x8f0 [ 43.046574][ T3613] free_unref_page+0x7d/0x630 [ 43.051253][ T3613] __unfreeze_partials+0x1ab/0x200 [ 43.056349][ T3613] put_cpu_partial+0x116/0x180 [ 43.061101][ T3613] qlist_free_all+0x2b/0x70 [ 43.065587][ T3613] kasan_quarantine_reduce+0x169/0x180 [ 43.071026][ T3613] __kasan_slab_alloc+0x1f/0x70 [ 43.075856][ T3613] kmem_cache_alloc_node+0x1ca/0x340 [ 43.081124][ T3613] __alloc_skb+0xd5/0x620 [ 43.085432][ T3613] alloc_skb_with_frags+0xb4/0x780 [ 43.090530][ T3613] sock_alloc_send_pskb+0x930/0xa70 [ 43.095727][ T3613] unix_dgram_sendmsg+0x5b3/0x2050 [ 43.100819][ T3613] __sys_sendto+0x46d/0x5f0 [ 43.105304][ T3613] __x64_sys_sendto+0xda/0xf0 [ 43.109959][ T3613] do_syscall_64+0x2b/0x70 [ 43.114358][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.120235][ T3613] [ 43.122542][ T3613] Memory state around the buggy address: [ 43.128161][ T3613] ffff88801ea79100: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 43.136210][ T3613] ffff88801ea79180: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 43.144259][ T3613] >ffff88801ea79200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 43.152299][ T3613] ^ [ 43.157397][ T3613] ffff88801ea79280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 43.165441][ T3613] ffff88801ea79300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [pid 3613] ioctl(3, UFFDIO_UNREGISTER, {start=0x20ffd000, len=0x1000} [pid 3603] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [ 43.173487][ T3613] ================================================================== [ 43.192320][ T3613] Kernel panic - not syncing: panic_on_warn set ... [ 43.198957][ T3613] CPU: 1 PID: 3613 Comm: syz-executor379 Not tainted 6.1.0-rc1-syzkaller-00249-g4da34b7d175d #0 [ 43.209369][ T3613] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/11/2022 [ 43.219425][ T3613] Call Trace: [ 43.222700][ T3613] [ 43.225625][ T3613] dump_stack_lvl+0x1e3/0x2cb [ 43.230301][ T3613] ? nf_tcp_handle_invalid+0x62e/0x62e [ 43.235755][ T3613] ? panic+0x766/0x766 [ 43.239818][ T3613] ? preempt_schedule_common+0xb7/0xe0 [ 43.245269][ T3613] ? preempt_schedule+0xd9/0xe0 [ 43.250156][ T3613] ? vscnprintf+0x59/0x80 [ 43.254480][ T3613] panic+0x316/0x766 [ 43.258371][ T3613] ? memcpy_page_flushcache+0xfc/0xfc [ 43.263739][ T3613] ? _raw_spin_unlock_irqrestore+0x128/0x130 [ 43.269718][ T3613] ? mas_next_entry+0x344/0x10f0 [ 43.274649][ T3613] end_report+0x91/0xa0 [ 43.278793][ T3613] kasan_report+0x146/0x170 [ 43.283288][ T3613] ? vma_expand+0x9b0/0x9b0 [ 43.287781][ T3613] ? mas_next_entry+0x344/0x10f0 [ 43.292709][ T3613] mas_next_entry+0x344/0x10f0 [ 43.297475][ T3613] ? __split_vma+0x43c/0x4f0 [ 43.302071][ T3613] userfaultfd_unregister+0x1240/0x13b0 [ 43.307620][ T3613] ? kasan_save_free_info+0x27/0x40 [ 43.312821][ T3613] ? userfaultfd_register+0x1320/0x1320 [ 43.318430][ T3613] ? rcu_read_lock_sched_held+0x5f/0x130 [ 43.324080][ T3613] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 43.330066][ T3613] userfaultfd_ioctl+0x5a1/0x3230 [ 43.335106][ T3613] ? do_vfs_ioctl+0xc71/0x2a70 [ 43.339862][ T3613] ? __x64_compat_sys_ioctl+0x80/0x80 [ 43.345221][ T3613] ? userfaultfd_poll+0x1b0/0x1b0 [ 43.350235][ T3613] ? __lock_acquire+0x1f60/0x1f60 [ 43.355249][ T3613] ? slab_free_freelist_hook+0x12e/0x1a0 [ 43.360882][ T3613] ? tomoyo_path_number_perm+0x5bf/0x790 [ 43.366508][ T3613] ? __kmem_cache_free+0x71/0x110 [ 43.371527][ T3613] ? tomoyo_path_number_perm+0x628/0x790 [ 43.377666][ T3613] ? __rwlock_init+0x140/0x140 [ 43.382421][ T3613] ? smack_log+0x11f/0x530 [ 43.386823][ T3613] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 43.392269][ T3613] ? smk_access+0x490/0x490 [ 43.396765][ T3613] ? trace_lock_release+0x95/0x220 [ 43.401865][ T3613] ? smk_tskacc+0x304/0x370 [ 43.406362][ T3613] ? smack_file_ioctl+0x2f7/0x3a0 [ 43.411395][ T3613] ? smack_file_alloc_security+0xd0/0xd0 [ 43.417025][ T3613] ? bpf_lsm_file_ioctl+0x5/0x10 [ 43.421964][ T3613] ? security_file_ioctl+0x9d/0xb0 [ 43.427079][ T3613] ? userfaultfd_poll+0x1b0/0x1b0 [ 43.432118][ T3613] __se_sys_ioctl+0xfb/0x170 [ 43.436706][ T3613] do_syscall_64+0x2b/0x70 [ 43.441113][ T3613] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 43.446999][ T3613] RIP: 0033:0x7efce94ac5f9 [ 43.451402][ T3613] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 a1 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 43.470995][ T3613] RSP: 002b:00007efce945a318 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 43.479714][ T3613] RAX: ffffffffffffffda RBX: 00007efce95354a8 RCX: 00007efce94ac5f9 [ 43.487671][ T3613] RDX: 0000000020000000 RSI: 000000008010aa01 RDI: 0000000000000003 [ 43.495631][ T3613] RBP: 00007efce95354a0 R08: 0000000000000000 R09: 0000000000000000 [ 43.503586][ T3613] R10: 0000000000000000 R11: 0000000000000246 R12: 00007efce95354ac [ 43.511544][ T3613] R13: 00007ffc7d044eef R14: 00007efce945a400 R15: 0000000000022000 [ 43.519513][ T3613] [ 43.522596][ T3613] Kernel Offset: disabled [ 43.526909][ T3613] Rebooting in 86400 seconds..