[ 142.531267][ T8] bridge0: port 2(bridge_slave_1) entered disabled state [ 142.554154][ T8] device bridge_slave_0 left promiscuous mode [ 142.561195][ T8] bridge0: port 1(bridge_slave_0) entered disabled state [ 142.714509][ T8] team0 (unregistering): Port device team_slave_1 removed [ 142.774313][ T8] team0 (unregistering): Port device team_slave_0 removed [ 142.841903][ T8] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 142.901078][ T8] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 143.056901][ T8] bond0 (unregistering): Released all slaves [ 191.899692][ T3487] can: request_module (can-proto-0) failed. [ 191.946386][ T3487] can: request_module (can-proto-0) failed. Warning: Permanently added '10.128.1.101' (ECDSA) to the list of known hosts. [ 589.426529][ T8272] ===================================================== [ 589.433971][ T8272] BUG: KMSAN: use-after-free in __kernfs_remove+0x685/0x1240 [ 589.441613][ T8272] __kernfs_remove+0x685/0x1240 [ 589.446878][ T8272] kernfs_remove_by_name_ns+0x11b/0x1f0 [ 589.452647][ T8272] sysfs_remove_link+0x56/0x70 [ 589.457649][ T8272] sysfs_slab_add+0x1ca/0xbd0 [ 589.462584][ T8272] __kmem_cache_create+0xaf/0x460 [ 589.467749][ T8272] kmem_cache_create_usercopy+0x35f/0x9c0 [ 589.473936][ T8272] p9_client_create+0x169d/0x17a0 [ 589.479183][ T8272] v9fs_session_init+0x1cd/0x25d0 [ 589.484536][ T8272] v9fs_mount+0xea/0x17e0 [ 589.489021][ T8272] legacy_get_tree+0x10c/0x280 [ 589.494046][ T8272] vfs_get_tree+0xa1/0x500 [ 589.498932][ T8272] do_new_mount+0x694/0x1580 [ 589.503913][ T8272] path_mount+0x71a/0x1f00 [ 589.508458][ T8272] __se_sys_mount+0x734/0x840 [ 589.513334][ T8272] __x64_sys_mount+0xe0/0x140 [ 589.518247][ T8272] do_syscall_64+0x3d/0xb0 [ 589.522899][ T8272] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 589.529046][ T8272] [ 589.531435][ T8272] Uninit was created at: [ 589.535973][ T8272] slab_free_freelist_hook+0x1b8/0x650 [ 589.541575][ T8272] kmem_cache_free+0x2cc/0x9c0 [ 589.546678][ T8272] kernfs_put+0x5e4/0x930 [ 589.551152][ T8272] __kernfs_remove+0xe06/0x1240 [ 589.556214][ T8272] kernfs_remove_by_name_ns+0x11b/0x1f0 [ 589.561926][ T8272] sysfs_remove_link+0x56/0x70 [ 589.567029][ T8272] sysfs_slab_add+0x1ca/0xbd0 [ 589.571845][ T8272] __kmem_cache_create+0xaf/0x460 [ 589.577067][ T8272] kmem_cache_create_usercopy+0x35f/0x9c0 [ 589.583083][ T8272] p9_client_create+0x169d/0x17a0 [ 589.588251][ T8272] v9fs_session_init+0x1cd/0x25d0 [ 589.593770][ T8272] v9fs_mount+0xea/0x17e0 [ 589.598346][ T8272] legacy_get_tree+0x10c/0x280 [ 589.603368][ T8272] vfs_get_tree+0xa1/0x500 [ 589.607924][ T8272] do_new_mount+0x694/0x1580 [ 589.612803][ T8272] path_mount+0x71a/0x1f00 [ 589.617361][ T8272] __se_sys_mount+0x734/0x840 [ 589.622543][ T8272] __x64_sys_mount+0xe0/0x140 [ 589.627348][ T8272] do_syscall_64+0x3d/0xb0 [ 589.631896][ T8272] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 589.638035][ T8272] [ 589.640427][ T8272] CPU: 1 PID: 8272 Comm: syz-executor804 Not tainted 6.0.0-rc5-syzkaller-00051-g523d2ce66d07 #0 [ 589.651072][ T8272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 589.661448][ T8272] ===================================================== [ 589.668592][ T8272] Disabling lock debugging due to kernel taint [ 589.674887][ T8272] Kernel panic - not syncing: kmsan.panic set ... [ 589.681416][ T8272] CPU: 1 PID: 8272 Comm: syz-executor804 Tainted: G B 6.0.0-rc5-syzkaller-00051-g523d2ce66d07 #0 [ 589.693712][ T8272] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/26/2022 [ 589.703879][ T8272] Call Trace: [ 589.707244][ T8272] [ 589.710280][ T8272] dump_stack_lvl+0x1c8/0x256 [ 589.715235][ T8272] dump_stack+0x1a/0x1c [ 589.719559][ T8272] panic+0x4d3/0xc69 [ 589.723644][ T8272] kmsan_report+0x2cc/0x2d0 [ 589.728314][ T8272] ? __slab_free+0x43a/0x8c0 [ 589.733047][ T8272] ? __msan_warning+0x92/0x110 [ 589.737966][ T8272] ? __kernfs_remove+0x685/0x1240 [ 589.743216][ T8272] ? kernfs_remove_by_name_ns+0x11b/0x1f0 [ 589.749094][ T8272] ? sysfs_remove_link+0x56/0x70 [ 589.754191][ T8272] ? sysfs_slab_add+0x1ca/0xbd0 [ 589.759182][ T8272] ? __kmem_cache_create+0xaf/0x460 [ 589.764515][ T8272] ? kmem_cache_create_usercopy+0x35f/0x9c0 [ 589.770738][ T8272] ? p9_client_create+0x169d/0x17a0 [ 589.776105][ T8272] ? v9fs_session_init+0x1cd/0x25d0 [ 589.781457][ T8272] ? v9fs_mount+0xea/0x17e0 [ 589.786149][ T8272] ? legacy_get_tree+0x10c/0x280 [ 589.791234][ T8272] ? vfs_get_tree+0xa1/0x500 [ 589.795970][ T8272] ? do_new_mount+0x694/0x1580 [ 589.800868][ T8272] ? path_mount+0x71a/0x1f00 [ 589.805585][ T8272] ? __se_sys_mount+0x734/0x840 [ 589.810575][ T8272] ? __x64_sys_mount+0xe0/0x140 [ 589.815586][ T8272] ? do_syscall_64+0x3d/0xb0 [ 589.820302][ T8272] ? entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 589.826601][ T8272] ? kmem_cache_free+0x71a/0x9c0 [ 589.831785][ T8272] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 589.838203][ T8272] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 589.844457][ T8272] ? kernfs_put+0x8f2/0x930 [ 589.849209][ T8272] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 589.855537][ T8272] __msan_warning+0x92/0x110 [ 589.860283][ T8272] __kernfs_remove+0x685/0x1240 [ 589.865309][ T8272] kernfs_remove_by_name_ns+0x11b/0x1f0 [ 589.871057][ T8272] sysfs_remove_link+0x56/0x70 [ 589.875993][ T8272] sysfs_slab_add+0x1ca/0xbd0 [ 589.880813][ T8272] ? kmsan_get_shadow_origin_ptr+0x40/0xa0 [ 589.886790][ T8272] __kmem_cache_create+0xaf/0x460 [ 589.891946][ T8272] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 589.897929][ T8272] kmem_cache_create_usercopy+0x35f/0x9c0 [ 589.903838][ T8272] p9_client_create+0x169d/0x17a0 [ 589.909066][ T8272] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 589.915133][ T8272] v9fs_session_init+0x1cd/0x25d0 [ 589.920311][ T8272] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 589.926482][ T8272] ? v9fs_mount+0x8c/0x17e0 [ 589.931157][ T8272] v9fs_mount+0xea/0x17e0 [ 589.935656][ T8272] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 589.941914][ T8272] legacy_get_tree+0x10c/0x280 [ 589.946825][ T8272] ? xfs_fs_commit_blocks+0xd50/0xd50 [ 589.952468][ T8272] ? legacy_parse_monolithic+0x260/0x260 [ 589.958292][ T8272] vfs_get_tree+0xa1/0x500 [ 589.962862][ T8272] ? mount_capable+0x93/0x110 [ 589.967806][ T8272] do_new_mount+0x694/0x1580 [ 589.972539][ T8272] ? kmsan_get_shadow_origin_ptr+0x49/0xa0 [ 589.978544][ T8272] path_mount+0x71a/0x1f00 [ 589.983106][ T8272] ? user_path_at_empty+0x31f/0x390 [ 589.988662][ T8272] __se_sys_mount+0x734/0x840 [ 589.993566][ T8272] ? kmsan_internal_set_shadow_origin+0x62/0xe0 [ 589.999982][ T8272] ? kmsan_internal_unpoison_memory+0x10/0x20 [ 590.006229][ T8272] __x64_sys_mount+0xe0/0x140 [ 590.011151][ T8272] do_syscall_64+0x3d/0xb0 [ 590.015870][ T8272] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 590.021943][ T8272] RIP: 0033:0x7fc2333b4f79 [ 590.026477][ T8272] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 71 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 590.046249][ T8272] RSP: 002b:00007fc23331d2f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 590.054923][ T8272] RAX: ffffffffffffffda RBX: 00007fc2334374d4 RCX: 00007fc2333b4f79 [ 590.063020][ T8272] RDX: 0000000020000180 RSI: 00000000200000c0 RDI: 0000000000000000 [ 590.071114][ T8272] RBP: 00007fc2334374d0 R08: 00000000200001c0 R09: 0000000000000000 [ 590.079208][ T8272] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fc233404060 [ 590.087304][ T8272] R13: 0030656c69662f2e R14: 00007fc233435130 R15: 64663d736e617274 [ 590.095777][ T8272] [ 590.099135][ T8272] Kernel Offset: disabled [ 590.103582][ T8272] Rebooting in 86400 seconds..