[ 49.273381][ T8] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.503730][ T8] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 51.853151][ T8] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 Warning: Permanently added '10.128.10.60' (ECDSA) to the list of known hosts. 2021/09/08 23:30:45 parsed 1 programs 2021/09/08 23:30:47 executed programs: 0 [ 57.030662][ T8] device hsr_slave_0 left promiscuous mode [ 57.037374][ T8] device hsr_slave_1 left promiscuous mode [ 57.044200][ T8] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 57.051728][ T8] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 57.061527][ T8] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 57.069238][ T8] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 57.078738][ T8] device bridge_slave_1 left promiscuous mode [ 57.086228][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 57.098287][ T8] device bridge_slave_0 left promiscuous mode [ 57.106197][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 57.122211][ T8] device veth1_macvtap left promiscuous mode [ 57.129343][ T8] device veth0_macvtap left promiscuous mode [ 57.137030][ T8] device veth1_vlan left promiscuous mode [ 57.144567][ T8] device veth0_vlan left promiscuous mode [ 59.963301][ T20] Bluetooth: hci0: command 0x0409 tx timeout [ 59.963319][ T7] Bluetooth: hci1: command 0x0409 tx timeout [ 60.122092][ T7] Bluetooth: hci3: command 0x0409 tx timeout [ 60.124328][ T20] Bluetooth: hci4: command 0x0409 tx timeout [ 60.134795][ T20] Bluetooth: hci5: command 0x0409 tx timeout [ 60.140952][ T20] Bluetooth: hci2: command 0x0409 tx timeout [ 62.051684][ T7] Bluetooth: hci1: command 0x041b tx timeout [ 62.058922][ T7] Bluetooth: hci0: command 0x041b tx timeout [ 62.201796][ T7] Bluetooth: hci2: command 0x041b tx timeout [ 62.211472][ T7] Bluetooth: hci5: command 0x041b tx timeout [ 62.217662][ T7] Bluetooth: hci4: command 0x041b tx timeout [ 62.226669][ T7] Bluetooth: hci3: command 0x041b tx timeout [ 64.121349][ T7] Bluetooth: hci0: command 0x040f tx timeout [ 64.129283][ T7] Bluetooth: hci1: command 0x040f tx timeout [ 64.282703][ T7] Bluetooth: hci3: command 0x040f tx timeout [ 64.288927][ T7] Bluetooth: hci4: command 0x040f tx timeout [ 64.297525][ T7] Bluetooth: hci5: command 0x040f tx timeout [ 64.304382][ T7] Bluetooth: hci2: command 0x040f tx timeout [ 66.123255][ T1359] ieee802154 phy0 wpan0: encryption failed: -22 [ 66.129704][ T1359] ieee802154 phy1 wpan1: encryption failed: -22 [ 66.201061][ T7] Bluetooth: hci1: command 0x0419 tx timeout [ 66.207368][ T7] Bluetooth: hci0: command 0x0419 tx timeout [ 66.361067][ T7] Bluetooth: hci2: command 0x0419 tx timeout [ 66.368818][ T7] Bluetooth: hci5: command 0x0419 tx timeout [ 66.377810][ T7] Bluetooth: hci4: command 0x0419 tx timeout [ 66.384926][ T7] Bluetooth: hci3: command 0x0419 tx timeout [ 69.151506][ T22] ================================================================== [ 69.159587][ T22] BUG: KFENCE: use-after-free read in kvm_fastop_exception+0xf58/0x1045 [ 69.159587][ T22] [ 69.170126][ T22] Use-after-free read at 0xffff88823bc2a020 (in kfence-#20): [ 69.177554][ T22] kvm_fastop_exception+0xf58/0x1045 [ 69.182821][ T22] d_lookup+0x72/0xd0 [ 69.186872][ T22] lookup_dcache+0x14/0xd0 [ 69.191344][ T22] __lookup_hash+0x1b/0x140 [ 69.195883][ T22] kern_path_locked+0x146/0x300 [ 69.200709][ T22] handle_remove+0x9a/0x4fa [ 69.205179][ T22] devtmpfsd+0x176/0x24e [ 69.209393][ T22] kthread+0x38b/0x460 [ 69.213431][ T22] ret_from_fork+0x1f/0x30 [ 69.217817][ T22] [ 69.220118][ T22] kfence-#20: 0xffff88823bc2a000-0xffff88823bc2afff, size=4096, cache=names_cache [ 69.220118][ T22] [ 69.231532][ T22] allocated by task 22 on cpu 0 at 69.151391s: [ 69.237748][ T22] getname_kernel+0x48/0x330 [ 69.242325][ T22] kern_path_locked+0x6f/0x300 [ 69.247055][ T22] handle_remove+0x9a/0x4fa [ 69.252135][ T22] devtmpfsd+0x176/0x24e [ 69.256607][ T22] kthread+0x38b/0x460 [ 69.260647][ T22] ret_from_fork+0x1f/0x30 [ 69.265039][ T22] [ 69.267337][ T22] freed by task 22 on cpu 0 at 69.151414s: [ 69.273310][ T22] kern_path_locked+0xa7/0x300 [ 69.278054][ T22] handle_remove+0x9a/0x4fa [ 69.282541][ T22] devtmpfsd+0x176/0x24e [ 69.286941][ T22] kthread+0x38b/0x460 [ 69.291004][ T22] ret_from_fork+0x1f/0x30 [ 69.295569][ T22] [ 69.297880][ T22] CPU: 0 PID: 22 Comm: kdevtmpfs Not tainted 5.14.0-syzkaller #0 [ 69.306014][ T22] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.316146][ T22] RIP: 0010:kvm_fastop_exception+0xf58/0x1045 [ 69.322205][ T22] Code: 49 d3 eb e9 c9 b2 15 f9 48 8d 0b 48 83 e1 f8 48 8b 31 8d 0b 83 e1 07 c1 e1 03 48 d3 ee e9 c5 bc 15 f9 48 8d 4d 00 48 83 e1 f8 <4c> 8b 11 8d 4d 00 83 e1 07 c1 e1 03 49 d3 ea e9 27 c5 15 f9 b8 f2 [ 69.341814][ T22] RSP: 0018:ffffc90000dcfb10 EFLAGS: 00010282 [ 69.347952][ T22] RAX: 0000003336706174 RBX: ffff88806fe884d8 RCX: ffff88823bc2a020 [ 69.355909][ T22] RDX: ffffed100dfd109c RSI: 0000000000000001 RDI: ffff88806fe884d8 [ 69.363851][ T22] RBP: ffff88823bc2a020 R08: 0000000000000000 R09: ffff88806fe884d8 [ 69.371807][ T22] R10: ffffed100dfd109b R11: 0000000000000001 R12: dffffc0000000000 [ 69.379753][ T22] R13: 0000000000000005 R14: 0000000000000005 R15: ffff88806fe884a8 [ 69.387712][ T22] FS: 0000000000000000(0000) GS:ffff8880b9e00000(0000) knlGS:0000000000000000 [ 69.396626][ T22] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 69.403190][ T22] CR2: ffff88823bc2a020 CR3: 000000006f075000 CR4: 00000000001506f0 [ 69.411405][ T22] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 69.419350][ T22] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 69.427510][ T22] Call Trace: [ 69.430868][ T22] d_lookup+0x72/0xd0 [ 69.434852][ T22] lookup_dcache+0x14/0xd0 [ 69.439285][ T22] __lookup_hash+0x1b/0x140 [ 69.443785][ T22] kern_path_locked+0x146/0x300 [ 69.448610][ T22] ? filename_lookup+0x30/0x30 [ 69.453442][ T22] handle_remove+0x9a/0x4fa [ 69.457944][ T22] ? cacheinfo_cpu_online.cold+0x34/0x34 [ 69.463906][ T22] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 69.469958][ T22] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 69.475918][ T22] ? finish_task_switch.isra.0+0x217/0x9e0 [ 69.481783][ T22] ? find_held_lock+0x2d/0x110 [ 69.486616][ T22] ? devtmpfsd+0x84/0x24e [ 69.490917][ T22] ? lock_downgrade+0x6e0/0x6e0 [ 69.497341][ T22] ? do_raw_spin_lock+0x120/0x2b0 [ 69.502449][ T22] ? rwlock_bug.part.0+0x90/0x90 [ 69.507582][ T22] devtmpfsd+0x176/0x24e [ 69.511817][ T22] ? dmar_validate_one_drhd+0x1d2/0x1d2 [ 69.517460][ T22] kthread+0x38b/0x460 [ 69.521705][ T22] ? _raw_spin_unlock_irq+0x1f/0x40 [ 69.527059][ T22] ? set_kthread_struct+0x100/0x100 [ 69.532319][ T22] ret_from_fork+0x1f/0x30 [ 69.536815][ T22] ================================================================== [ 69.544853][ T22] Kernel panic - not syncing: panic_on_warn set ... [ 69.552095][ T22] CPU: 0 PID: 22 Comm: kdevtmpfs Not tainted 5.14.0-syzkaller #0 [ 69.560071][ T22] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 69.570218][ T22] Call Trace: [ 69.573499][ T22] dump_stack_lvl+0x57/0x7d [ 69.578082][ T22] panic+0x214/0x49f [ 69.581973][ T22] ? __warn_printk+0xee/0xee [ 69.586921][ T22] kfence_report_error.cold+0x748/0xa8b [ 69.592562][ T22] ? kfence_print_object+0x2b0/0x2b0 [ 69.597866][ T22] ? save_trace+0x42/0x9f0 [ 69.602270][ T22] ? add_lock_to_list.constprop.0+0x185/0x370 [ 69.608311][ T22] ? kvm_fastop_exception+0xf58/0x1045 [ 69.613805][ T22] ? d_lookup+0x72/0xd0 [ 69.617945][ T22] ? lookup_dcache+0x14/0xd0 [ 69.622600][ T22] ? __lookup_hash+0x1b/0x140 [ 69.627256][ T22] ? kern_path_locked+0x146/0x300 [ 69.632340][ T22] ? handle_remove+0x9a/0x4fa [ 69.636997][ T22] ? devtmpfsd+0x176/0x24e [ 69.641570][ T22] ? kthread+0x38b/0x460 [ 69.645963][ T22] ? ret_from_fork+0x1f/0x30 [ 69.650670][ T22] kfence_handle_page_fault+0x18c/0x420 [ 69.656281][ T22] page_fault_oops+0x142/0x500 [ 69.661125][ T22] ? search_extable+0x71/0xa0 [ 69.665955][ T22] ? dump_pagetable+0xb0/0xb0 [ 69.670614][ T22] ? search_bpf_extables+0x166/0x240 [ 69.675882][ T22] exc_page_fault+0xad/0xc0 [ 69.680630][ T22] asm_exc_page_fault+0x1e/0x30 [ 69.685547][ T22] RIP: 0010:kvm_fastop_exception+0xf58/0x1045 [ 69.691590][ T22] Code: 49 d3 eb e9 c9 b2 15 f9 48 8d 0b 48 83 e1 f8 48 8b 31 8d 0b 83 e1 07 c1 e1 03 48 d3 ee e9 c5 bc 15 f9 48 8d 4d 00 48 83 e1 f8 <4c> 8b 11 8d 4d 00 83 e1 07 c1 e1 03 49 d3 ea e9 27 c5 15 f9 b8 f2 [ 69.711351][ T22] RSP: 0018:ffffc90000dcfb10 EFLAGS: 00010282 [ 69.717607][ T22] RAX: 0000003336706174 RBX: ffff88806fe884d8 RCX: ffff88823bc2a020 [ 69.725635][ T22] RDX: ffffed100dfd109c RSI: 0000000000000001 RDI: ffff88806fe884d8 [ 69.733669][ T22] RBP: ffff88823bc2a020 R08: 0000000000000000 R09: ffff88806fe884d8 [ 69.741617][ T22] R10: ffffed100dfd109b R11: 0000000000000001 R12: dffffc0000000000 [ 69.749656][ T22] R13: 0000000000000005 R14: 0000000000000005 R15: ffff88806fe884a8 [ 69.757799][ T22] d_lookup+0x72/0xd0 [ 69.761760][ T22] lookup_dcache+0x14/0xd0 [ 69.766153][ T22] __lookup_hash+0x1b/0x140 [ 69.770637][ T22] kern_path_locked+0x146/0x300 [ 69.775463][ T22] ? filename_lookup+0x30/0x30 [ 69.780215][ T22] handle_remove+0x9a/0x4fa [ 69.784708][ T22] ? cacheinfo_cpu_online.cold+0x34/0x34 [ 69.790334][ T22] ? lockdep_hardirqs_on_prepare+0x400/0x400 [ 69.796293][ T22] ? lockdep_hardirqs_on_prepare+0x17b/0x400 [ 69.802251][ T22] ? finish_task_switch.isra.0+0x217/0x9e0 [ 69.808042][ T22] ? find_held_lock+0x2d/0x110 [ 69.812870][ T22] ? devtmpfsd+0x84/0x24e [ 69.817182][ T22] ? lock_downgrade+0x6e0/0x6e0 [ 69.822009][ T22] ? do_raw_spin_lock+0x120/0x2b0 [ 69.827009][ T22] ? rwlock_bug.part.0+0x90/0x90 [ 69.831960][ T22] devtmpfsd+0x176/0x24e [ 69.836179][ T22] ? dmar_validate_one_drhd+0x1d2/0x1d2 [ 69.841944][ T22] kthread+0x38b/0x460 [ 69.846008][ T22] ? _raw_spin_unlock_irq+0x1f/0x40 [ 69.851287][ T22] ? set_kthread_struct+0x100/0x100 [ 69.856569][ T22] ret_from_fork+0x1f/0x30 [ 69.861582][ T22] Kernel Offset: disabled [ 69.866729][ T22] Rebooting in 86400 seconds..