[ OK ] Reached target Login Prompts. [ OK ] Reached target Multi-User System. [ OK ] Reached target Graphical Interface. Starting Update UTMP about System Runlevel Changes... [ OK ] Started Update UTMP about System Runlevel Changes. Debian GNU/Linux 9 syzkaller ttyS0 Warning: Permanently added '10.128.0.193' (ECDSA) to the list of known hosts. syzkaller login: [ 63.293166][ T6820] FAULT_INJECTION: forcing a failure. [ 63.293166][ T6820] name failslab, interval 1, probability 0, space 0, times 1 [ 63.305867][ T6820] CPU: 0 PID: 6820 Comm: syz-executor177 Not tainted 5.8.0-rc4-syzkaller #0 [ 63.314514][ T6820] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.325039][ T6820] Call Trace: [ 63.328311][ T6820] dump_stack+0x18f/0x20d [ 63.332622][ T6820] should_fail.cold+0x5/0x14 [ 63.337339][ T6820] ? tomoyo_commit_ok+0x1e/0x90 [ 63.342170][ T6820] should_failslab+0x5/0xf [ 63.346568][ T6820] __kmalloc+0x27d/0x340 [ 63.350790][ T6820] tomoyo_commit_ok+0x1e/0x90 [ 63.355440][ T6820] tomoyo_update_domain+0x5de/0x850 [ 63.360613][ T6820] ? tomoyo_write_misc+0x1e0/0x1e0 [ 63.365699][ T6820] ? tomoyo_same_path_acl+0xe0/0xe0 [ 63.370873][ T6820] tomoyo_write_file+0x4b4/0x730 [ 63.375785][ T6820] ? tomoyo_path2_perm+0x600/0x600 [ 63.380886][ T6820] ? vsnprintf+0x2cc/0x14f0 [ 63.385373][ T6820] ? pointer+0x970/0x970 [ 63.389595][ T6820] ? tomoyo_init_log+0x14bb/0x1e50 [ 63.394691][ T6820] tomoyo_write_domain2+0xf6/0x1a0 [ 63.399909][ T6820] ? tomoyo_write_pid+0x40/0x40 [ 63.404738][ T6820] ? tomoyo_supervisor+0xcc5/0xeb0 [ 63.409828][ T6820] ? tomoyo_supervisor+0xcc5/0xeb0 [ 63.414912][ T6820] ? __kmalloc+0x191/0x340 [ 63.419815][ T6820] tomoyo_supervisor+0xba6/0xeb0 [ 63.424733][ T6820] ? tomoyo_profile+0x50/0x50 [ 63.429390][ T6820] ? lock_is_held_type+0xb0/0xe0 [ 63.434302][ T6820] ? lockdep_hardirqs_off+0x66/0xa0 [ 63.439488][ T6820] ? trace_hardirqs_off+0x27/0x210 [ 63.444581][ T6820] ? tomoyo_path_matches_pattern+0x110/0x280 [ 63.450542][ T6820] ? tomoyo_check_path_acl+0x8b/0x1f0 [ 63.455893][ T6820] ? tomoyo_check_acl+0x315/0x410 [ 63.460897][ T6820] tomoyo_path_permission+0x25c/0x360 [ 63.466246][ T6820] tomoyo_check_open_permission+0x30f/0x380 [ 63.472117][ T6820] ? tomoyo_path_number_perm+0x4d0/0x4d0 [ 63.477729][ T6820] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 63.483688][ T6820] ? dput+0x1b7/0xbc0 [ 63.487702][ T6820] ? lock_downgrade+0x820/0x820 [ 63.492525][ T6820] ? do_raw_spin_lock+0x120/0x2b0 [ 63.497526][ T6820] tomoyo_file_open+0xa3/0xd0 [ 63.502183][ T6820] security_file_open+0x52/0x3f0 [ 63.507093][ T6820] ? __mnt_want_write+0x1bc/0x2a0 [ 63.512095][ T6820] do_dentry_open+0x3a0/0x1290 [ 63.516845][ T6820] path_openat+0x1bb9/0x2750 [ 63.521416][ T6820] ? path_lookupat+0x830/0x830 [ 63.526155][ T6820] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 63.532115][ T6820] ? lock_is_held_type+0xb0/0xe0 [ 63.537027][ T6820] do_filp_open+0x17e/0x3c0 [ 63.541504][ T6820] ? may_open_dev+0xf0/0xf0 [ 63.545985][ T6820] ? do_raw_spin_lock+0x120/0x2b0 [ 63.550983][ T6820] ? rwlock_bug.part.0+0x90/0x90 [ 63.555897][ T6820] ? _raw_spin_unlock+0x24/0x40 [ 63.560810][ T6820] ? __alloc_fd+0x28d/0x600 [ 63.565290][ T6820] do_sys_openat2+0x16f/0x3b0 [ 63.569941][ T6820] ? lock_is_held_type+0xb0/0xe0 [ 63.574851][ T6820] ? build_open_flags+0x650/0x650 [ 63.579857][ T6820] ? blkcg_maybe_throttle_current+0x617/0xf00 [ 63.585902][ T6820] __x64_sys_open+0x119/0x1c0 [ 63.590551][ T6820] ? do_sys_open+0x140/0x140 [ 63.595118][ T6820] ? do_syscall_64+0x1c/0xe0 [ 63.599686][ T6820] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 63.605765][ T6820] do_syscall_64+0x60/0xe0 [ 63.610157][ T6820] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.616020][ T6820] RIP: 0033:0x4012c0 [ 63.619918][ T6820] Code: Bad RIP value. [ 63.623955][ T6820] RSP: 002b:00007fff6731b5e8 EFLAGS: 00000246 ORIG_RAX: 0000000000000002 [ 63.632337][ T6820] RAX: ffffffffffffffda RBX: 00007fff6731b611 RCX: 00000000004012c0 executing program [ 63.640281][ T6820] RDX: 00007fff6731b616 RSI: 0000000000080001 RDI: 00000000004a2778 [ 63.648224][ T6820] RBP: 00007fff6731b610 R08: 0000000000000000 R09: 0000000000000001 [ 63.656206][ T6820] R10: 0000000000000032 R11: 0000000000000246 R12: 00000000004a2778 [ 63.664151][ T6820] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000 [ 63.679330][ T6820] ERROR: Out of memory at tomoyo_memory_ok. [ 63.691193][ T6821] FAULT_INJECTION: forcing a failure. [ 63.691193][ T6821] name failslab, interval 1, probability 0, space 0, times 0 [ 63.704375][ T6821] CPU: 0 PID: 6821 Comm: syz-executor177 Not tainted 5.8.0-rc4-syzkaller #0 [ 63.713022][ T6821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 63.723051][ T6821] Call Trace: [ 63.726317][ T6821] dump_stack+0x18f/0x20d [ 63.730625][ T6821] should_fail.cold+0x5/0x14 [ 63.735216][ T6821] should_failslab+0x5/0xf [ 63.739610][ T6821] kmem_cache_alloc_trace+0x240/0x2d0 [ 63.745076][ T6821] ? worker_thread+0x1120/0x1120 [ 63.749988][ T6821] __kthread_create_on_node+0xd2/0x410 [ 63.756386][ T6821] ? __sys_sendmsg+0xe5/0x1b0 [ 63.761039][ T6821] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 63.767086][ T6821] ? __kthread_parkme+0x1e0/0x1e0 [ 63.772102][ T6821] ? lock_downgrade+0x820/0x820 [ 63.776931][ T6821] ? mark_lock+0xbc/0x1710 [ 63.781322][ T6821] ? worker_thread+0x1120/0x1120 [ 63.786234][ T6821] kthread_create_on_node+0xbb/0xf0 [ 63.791412][ T6821] ? __kthread_create_on_node+0x410/0x410 [ 63.797107][ T6821] ? lock_is_held_type+0xb0/0xe0 [ 63.802108][ T6821] ? rcu_read_lock_sched_held+0x3a/0xb0 [ 63.807631][ T6821] ? kmem_cache_alloc_node_trace+0x3b0/0x400 [ 63.813586][ T6821] ? init_rescuer+0xa3/0x350 [ 63.818170][ T6821] init_rescuer+0x1f5/0x350 [ 63.822663][ T6821] alloc_workqueue+0xbf1/0xe50 [ 63.827409][ T6821] ? workqueue_sysfs_register+0x3e0/0x3e0 [ 63.833102][ T6821] ? lock_downgrade+0x820/0x820 [ 63.837928][ T6821] ? lock_is_held_type+0xb0/0xe0 [ 63.842846][ T6821] bond_init+0x1aa/0x890 [ 63.847066][ T6821] ? kmem_cache_alloc_trace+0x168/0x2d0 [ 63.852585][ T6821] ? bond_get_stats+0x4d0/0x4d0 [ 63.857411][ T6821] register_netdevice+0x51c/0x1540 [ 63.862501][ T6821] ? rollback_registered_many+0xf60/0xf60 [ 63.868197][ T6821] bond_newlink+0x47/0xa0 [ 63.872503][ T6821] ? bond_changelink+0x1bf0/0x1bf0 [ 63.877589][ T6821] __rtnl_newlink+0x1090/0x1750 [ 63.882422][ T6821] ? rtnl_setlink+0x3c0/0x3c0 [ 63.887075][ T6821] ? lock_downgrade+0x820/0x820 [ 63.891919][ T6821] ? is_bpf_text_address+0xcb/0x160 [ 63.897093][ T6821] ? kernel_text_address+0xbd/0xf0 [ 63.902178][ T6821] ? __kernel_text_address+0x9/0x30 [ 63.907350][ T6821] ? unwind_get_return_address+0x51/0x90 [ 63.912956][ T6821] ? profile_setup.cold+0xc1/0xc1 [ 63.917953][ T6821] ? arch_stack_walk+0x97/0xf0 [ 63.922697][ T6821] ? stack_trace_save+0x8c/0xc0 [ 63.927523][ T6821] ? stack_trace_consume_entry+0x160/0x160 [ 63.933322][ T6821] ? mark_lock+0xbc/0x1710 [ 63.937732][ T6821] ? lock_is_held_type+0xb0/0xe0 [ 63.942672][ T6821] ? trace_kmalloc+0xfd/0x130 [ 63.947327][ T6821] ? kmem_cache_alloc_trace+0x168/0x2d0 [ 63.952852][ T6821] rtnl_newlink+0x64/0xa0 [ 63.957154][ T6821] ? __rtnl_newlink+0x1750/0x1750 [ 63.962159][ T6821] rtnetlink_rcv_msg+0x44e/0xad0 [ 63.967077][ T6821] ? rtnetlink_put_metrics+0x510/0x510 [ 63.972510][ T6821] ? lock_acquire+0x1f1/0xad0 [ 63.977160][ T6821] ? netlink_deliver_tap+0x146/0xb70 [ 63.982423][ T6821] netlink_rcv_skb+0x15a/0x430 [ 63.987162][ T6821] ? rtnetlink_put_metrics+0x510/0x510 [ 63.992595][ T6821] ? netlink_ack+0xa10/0xa10 [ 63.997167][ T6821] netlink_unicast+0x533/0x7d0 [ 64.001907][ T6821] ? netlink_attachskb+0x810/0x810 [ 64.006991][ T6821] ? _copy_from_iter_full+0x247/0x890 [ 64.012336][ T6821] ? __phys_addr+0x9a/0x110 [ 64.016812][ T6821] ? __phys_addr_symbol+0x2c/0x70 [ 64.021813][ T6821] ? __check_object_size+0x171/0x3e4 [ 64.027073][ T6821] netlink_sendmsg+0x856/0xd90 [ 64.031813][ T6821] ? netlink_unicast+0x7d0/0x7d0 [ 64.036728][ T6821] ? netlink_unicast+0x7d0/0x7d0 [ 64.041644][ T6821] sock_sendmsg+0xcf/0x120 [ 64.046037][ T6821] ____sys_sendmsg+0x6e8/0x810 [ 64.050776][ T6821] ? kernel_sendmsg+0x50/0x50 [ 64.055425][ T6821] ? do_recvmmsg+0x6d0/0x6d0 [ 64.059999][ T6821] ? _parse_integer+0x132/0x180 [ 64.064829][ T6821] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 64.070783][ T6821] ___sys_sendmsg+0xf3/0x170 [ 64.075347][ T6821] ? sendmsg_copy_msghdr+0x160/0x160 [ 64.080606][ T6821] ? lock_acquire+0x1f1/0xad0 [ 64.085257][ T6821] ? delayed_put_pid+0x30/0x30 [ 64.089996][ T6821] ? get_pid_task+0x116/0x200 [ 64.094651][ T6821] ? lock_downgrade+0x820/0x820 [ 64.099481][ T6821] ? find_held_lock+0x2d/0x110 [ 64.104231][ T6821] ? vfs_write+0x397/0x6b0 [ 64.108624][ T6821] ? lock_downgrade+0x820/0x820 [ 64.113454][ T6821] ? __fget_light+0x215/0x280 [ 64.118118][ T6821] __sys_sendmsg+0xe5/0x1b0 [ 64.122600][ T6821] ? __sys_sendmsg_sock+0xb0/0xb0 [ 64.127609][ T6821] ? do_syscall_64+0x1c/0xe0 [ 64.132179][ T6821] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 64.138136][ T6821] do_syscall_64+0x60/0xe0 [ 64.142530][ T6821] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 64.148394][ T6821] RIP: 0033:0x441419 [ 64.152259][ T6821] Code: Bad RIP value. [ 64.156297][ T6821] RSP: 002b:00007fff6731baf8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 64.164678][ T6821] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419 [ 64.172630][ T6821] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 64.180579][ T6821] RBP: 00000000006cc018 R08: 0000000000000002 R09: 00000000004002c8 [ 64.188533][ T6821] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004022e0 executing program [ 64.196490][ T6821] R13: 0000000000402370 R14: 0000000000000000 R15: 0000000000000000 [ 64.213854][ T6822] FAULT_INJECTION: forcing a failure. [ 64.213854][ T6822] name failslab, interval 1, probability 0, space 0, times 0 [ 64.226592][ T6822] CPU: 0 PID: 6822 Comm: syz-executor177 Not tainted 5.8.0-rc4-syzkaller #0 [ 64.235253][ T6822] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.245295][ T6822] Call Trace: [ 64.248577][ T6822] dump_stack+0x18f/0x20d [ 64.252885][ T6822] should_fail.cold+0x5/0x14 [ 64.257449][ T6822] ? kstrdup_const+0x53/0x80 [ 64.262129][ T6822] ? kstrdup_const+0x53/0x80 [ 64.266833][ T6822] should_failslab+0x5/0xf [ 64.271225][ T6822] __kmalloc_track_caller+0x27b/0x330 [ 64.276573][ T6822] ? __debug_object_init+0x401/0xce0 [ 64.281855][ T6822] kstrdup+0x36/0x70 [ 64.285735][ T6822] kstrdup_const+0x53/0x80 [ 64.290237][ T6822] kvasprintf_const+0x108/0x190 [ 64.295065][ T6822] kobject_set_name_vargs+0x56/0x150 [ 64.300333][ T6822] dev_set_name+0xbb/0xf0 [ 64.304643][ T6822] ? device_initialize+0x5c0/0x5c0 [ 64.309735][ T6822] ? lockdep_init_map_waits+0x26a/0x890 [ 64.315260][ T6822] ? __raw_spin_lock_init+0x34/0x100 [ 64.320614][ T6822] ? __init_waitqueue_head+0x97/0x110 [ 64.325963][ T6822] ? pm_runtime_init+0x2cf/0x3b0 [ 64.330881][ T6822] netdev_register_kobject+0xbd/0x3b0 [ 64.336243][ T6822] register_netdevice+0xd29/0x1540 [ 64.341341][ T6822] ? rollback_registered_many+0xf60/0xf60 [ 64.347040][ T6822] bond_newlink+0x47/0xa0 [ 64.351348][ T6822] ? bond_changelink+0x1bf0/0x1bf0 [ 64.356435][ T6822] __rtnl_newlink+0x1090/0x1750 [ 64.361268][ T6822] ? rtnl_setlink+0x3c0/0x3c0 [ 64.365922][ T6822] ? lock_downgrade+0x820/0x820 [ 64.370804][ T6822] ? is_bpf_text_address+0xcb/0x160 [ 64.375976][ T6822] ? kernel_text_address+0xbd/0xf0 [ 64.381063][ T6822] ? __kernel_text_address+0x9/0x30 [ 64.386235][ T6822] ? unwind_get_return_address+0x51/0x90 [ 64.391841][ T6822] ? profile_setup.cold+0xc1/0xc1 [ 64.396842][ T6822] ? arch_stack_walk+0x97/0xf0 [ 64.401586][ T6822] ? stack_trace_save+0x8c/0xc0 [ 64.406410][ T6822] ? stack_trace_consume_entry+0x160/0x160 [ 64.412207][ T6822] ? mark_lock+0xbc/0x1710 [ 64.416644][ T6822] ? lock_is_held_type+0xb0/0xe0 [ 64.421557][ T6822] ? trace_kmalloc+0xfd/0x130 [ 64.426244][ T6822] ? kmem_cache_alloc_trace+0x168/0x2d0 [ 64.431764][ T6822] rtnl_newlink+0x64/0xa0 [ 64.436068][ T6822] ? __rtnl_newlink+0x1750/0x1750 [ 64.441063][ T6822] rtnetlink_rcv_msg+0x44e/0xad0 [ 64.445974][ T6822] ? rtnetlink_put_metrics+0x510/0x510 [ 64.451409][ T6822] ? lock_acquire+0x1f1/0xad0 [ 64.456056][ T6822] ? netlink_deliver_tap+0x146/0xb70 [ 64.461319][ T6822] netlink_rcv_skb+0x15a/0x430 [ 64.466055][ T6822] ? rtnetlink_put_metrics+0x510/0x510 [ 64.471488][ T6822] ? netlink_ack+0xa10/0xa10 [ 64.476057][ T6822] netlink_unicast+0x533/0x7d0 [ 64.480796][ T6822] ? netlink_attachskb+0x810/0x810 [ 64.485878][ T6822] ? _copy_from_iter_full+0x247/0x890 [ 64.491222][ T6822] ? __phys_addr+0x9a/0x110 [ 64.495699][ T6822] ? __phys_addr_symbol+0x2c/0x70 [ 64.500696][ T6822] ? __check_object_size+0x171/0x3e4 [ 64.505957][ T6822] netlink_sendmsg+0x856/0xd90 [ 64.510697][ T6822] ? netlink_unicast+0x7d0/0x7d0 [ 64.516130][ T6822] ? netlink_unicast+0x7d0/0x7d0 [ 64.521072][ T6822] sock_sendmsg+0xcf/0x120 [ 64.525463][ T6822] ____sys_sendmsg+0x6e8/0x810 [ 64.530202][ T6822] ? kernel_sendmsg+0x50/0x50 [ 64.534847][ T6822] ? do_recvmmsg+0x6d0/0x6d0 [ 64.539414][ T6822] ? _parse_integer+0x132/0x180 [ 64.544240][ T6822] ? lockdep_hardirqs_on_prepare+0x590/0x590 [ 64.550193][ T6822] ___sys_sendmsg+0xf3/0x170 [ 64.554754][ T6822] ? sendmsg_copy_msghdr+0x160/0x160 [ 64.560013][ T6822] ? lock_acquire+0x1f1/0xad0 [ 64.564661][ T6822] ? delayed_put_pid+0x30/0x30 [ 64.569398][ T6822] ? get_pid_task+0x116/0x200 [ 64.574048][ T6822] ? lock_downgrade+0x820/0x820 [ 64.578872][ T6822] ? find_held_lock+0x2d/0x110 [ 64.583608][ T6822] ? vfs_write+0x397/0x6b0 [ 64.587995][ T6822] ? lock_downgrade+0x820/0x820 [ 64.592819][ T6822] ? __fget_light+0x215/0x280 [ 64.597470][ T6822] __sys_sendmsg+0xe5/0x1b0 [ 64.601984][ T6822] ? __sys_sendmsg_sock+0xb0/0xb0 [ 64.606987][ T6822] ? do_syscall_64+0x1c/0xe0 [ 64.611647][ T6822] ? lockdep_hardirqs_on_prepare+0x3a2/0x590 [ 64.617600][ T6822] do_syscall_64+0x60/0xe0 [ 64.621994][ T6822] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 64.627857][ T6822] RIP: 0033:0x441419 [ 64.631721][ T6822] Code: Bad RIP value. [ 64.635758][ T6822] RSP: 002b:00007fff6731baf8 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 64.644138][ T6822] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 0000000000441419 [ 64.652105][ T6822] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000004 [ 64.660050][ T6822] RBP: 000000000000f8cc R08: 0000000000000002 R09: 00000000004002c8 [ 64.667993][ T6822] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000004022e0 [ 64.675938][ T6822] R13: 0000000000402370 R14: 0000000000000000 R15: 0000000000000000 [ 64.685364][ T6822] bond1 (unregistered): Released all slaves [ 64.694326][ T12] ================================================================== [ 64.702517][ T12] BUG: KASAN: use-after-free in __linkwatch_run_queue+0x58a/0x630 [ 64.710317][ T12] Write of size 8 at addr ffff888094ccc578 by task kworker/0:1/12 [ 64.718101][ T12] [ 64.720411][ T12] CPU: 0 PID: 12 Comm: kworker/0:1 Not tainted 5.8.0-rc4-syzkaller #0 [ 64.728554][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 64.738602][ T12] Workqueue: events linkwatch_event [ 64.743770][ T12] Call Trace: [ 64.747034][ T12] dump_stack+0x18f/0x20d [ 64.751342][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 64.756788][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 64.762222][ T12] print_address_description.constprop.0.cold+0xae/0x436 [ 64.769226][ T12] ? lock_release+0x8d0/0x8d0 [ 64.773879][ T12] ? _raw_spin_unlock+0x24/0x40 [ 64.778709][ T12] ? lockdep_hardirqs_off+0x66/0xa0 [ 64.783883][ T12] ? vprintk_func+0x97/0x1a6 [ 64.788457][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 64.793912][ T12] kasan_report.cold+0x1f/0x37 [ 64.798652][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 64.804086][ T12] __linkwatch_run_queue+0x58a/0x630 [ 64.809350][ T12] ? linkwatch_do_dev+0x180/0x180 [ 64.814352][ T12] ? _raw_spin_unlock_irq+0x1f/0x80 [ 64.819525][ T12] ? lock_is_held_type+0xb0/0xe0 [ 64.824442][ T12] linkwatch_event+0x4a/0x60 [ 64.829007][ T12] process_one_work+0x94c/0x1670 [ 64.833924][ T12] ? lock_release+0x8d0/0x8d0 [ 64.838576][ T12] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 64.843923][ T12] ? rwlock_bug.part.0+0x90/0x90 [ 64.848835][ T12] ? lockdep_hardirqs_off+0x66/0xa0 [ 64.854012][ T12] worker_thread+0x64c/0x1120 [ 64.858669][ T12] ? __kthread_parkme+0x13f/0x1e0 [ 64.863667][ T12] ? process_one_work+0x1670/0x1670 [ 64.868840][ T12] kthread+0x3b5/0x4a0 [ 64.872897][ T12] ? __kthread_bind_mask+0xc0/0xc0 [ 64.877994][ T12] ? __kthread_bind_mask+0xc0/0xc0 [ 64.883084][ T12] ret_from_fork+0x1f/0x30 [ 64.887476][ T12] [ 64.889787][ T12] Allocated by task 6822: [ 64.894104][ T12] save_stack+0x1b/0x40 [ 64.898233][ T12] __kasan_kmalloc.constprop.0+0xc2/0xd0 [ 64.903841][ T12] kvmalloc_node+0xb4/0xf0 [ 64.908251][ T12] alloc_netdev_mqs+0x97/0xdc0 [ 64.912991][ T12] rtnl_create_link+0x219/0xad0 [ 64.917817][ T12] __rtnl_newlink+0xfa0/0x1750 [ 64.922558][ T12] rtnl_newlink+0x64/0xa0 [ 64.926878][ T12] rtnetlink_rcv_msg+0x44e/0xad0 [ 64.931793][ T12] netlink_rcv_skb+0x15a/0x430 [ 64.936534][ T12] netlink_unicast+0x533/0x7d0 [ 64.941274][ T12] netlink_sendmsg+0x856/0xd90 [ 64.946015][ T12] sock_sendmsg+0xcf/0x120 [ 64.950408][ T12] ____sys_sendmsg+0x6e8/0x810 [ 64.955145][ T12] ___sys_sendmsg+0xf3/0x170 [ 64.959710][ T12] __sys_sendmsg+0xe5/0x1b0 [ 64.964293][ T12] do_syscall_64+0x60/0xe0 [ 64.968692][ T12] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 64.974669][ T12] [ 64.976977][ T12] Freed by task 6822: [ 64.980937][ T12] save_stack+0x1b/0x40 [ 64.985080][ T12] __kasan_slab_free+0xf5/0x140 [ 64.989912][ T12] kfree+0x103/0x2c0 [ 64.993784][ T12] kvfree+0x42/0x50 [ 64.997567][ T12] device_release+0x71/0x200 [ 65.002136][ T12] kobject_put+0x1c0/0x270 [ 65.006528][ T12] put_device+0x1b/0x30 [ 65.010676][ T12] free_netdev+0x35d/0x480 [ 65.015082][ T12] __rtnl_newlink+0x14d8/0x1750 [ 65.019905][ T12] rtnl_newlink+0x64/0xa0 [ 65.024210][ T12] rtnetlink_rcv_msg+0x44e/0xad0 [ 65.029122][ T12] netlink_rcv_skb+0x15a/0x430 [ 65.033860][ T12] netlink_unicast+0x533/0x7d0 [ 65.038599][ T12] netlink_sendmsg+0x856/0xd90 [ 65.043339][ T12] sock_sendmsg+0xcf/0x120 [ 65.047732][ T12] ____sys_sendmsg+0x6e8/0x810 [ 65.052471][ T12] ___sys_sendmsg+0xf3/0x170 [ 65.057297][ T12] __sys_sendmsg+0xe5/0x1b0 [ 65.061949][ T12] do_syscall_64+0x60/0xe0 [ 65.066343][ T12] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 65.072210][ T12] [ 65.074517][ T12] The buggy address belongs to the object at ffff888094ccc000 [ 65.074517][ T12] which belongs to the cache kmalloc-8k of size 8192 [ 65.088546][ T12] The buggy address is located 1400 bytes inside of [ 65.088546][ T12] 8192-byte region [ffff888094ccc000, ffff888094cce000) [ 65.101959][ T12] The buggy address belongs to the page: [ 65.107576][ T12] page:ffffea0002533300 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 head:ffffea0002533300 order:2 compound_mapcount:0 compound_pincount:0 [ 65.123094][ T12] flags: 0xfffe0000010200(slab|head) [ 65.131663][ T12] raw: 00fffe0000010200 ffffea0002519408 ffffea0002623008 ffff8880aa0021c0 [ 65.140230][ T12] raw: 0000000000000000 ffff888094ccc000 0000000100000001 0000000000000000 [ 65.148795][ T12] page dumped because: kasan: bad access detected [ 65.155185][ T12] [ 65.157495][ T12] Memory state around the buggy address: [ 65.163103][ T12] ffff888094ccc400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 65.171237][ T12] ffff888094ccc480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 65.179278][ T12] >ffff888094ccc500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 65.187320][ T12] ^ [ 65.195281][ T12] ffff888094ccc580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 65.203320][ T12] ffff888094ccc600: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 65.211357][ T12] ================================================================== [ 65.219389][ T12] Disabling lock debugging due to kernel taint [ 65.225512][ T12] Kernel panic - not syncing: panic_on_warn set ... [ 65.232076][ T12] CPU: 0 PID: 12 Comm: kworker/0:1 Tainted: G B 5.8.0-rc4-syzkaller #0 [ 65.241584][ T12] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 65.251619][ T12] Workqueue: events linkwatch_event [ 65.256785][ T12] Call Trace: [ 65.260051][ T12] dump_stack+0x18f/0x20d [ 65.264367][ T12] ? __linkwatch_run_queue+0x500/0x630 [ 65.269815][ T12] panic+0x2e3/0x75c [ 65.273693][ T12] ? __warn_printk+0xf3/0xf3 [ 65.278263][ T12] ? _raw_spin_unlock_irqrestore+0x5b/0xe0 [ 65.284046][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 65.289480][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 65.294913][ T12] end_report+0x4d/0x53 [ 65.299047][ T12] kasan_report.cold+0xd/0x37 [ 65.303705][ T12] ? __linkwatch_run_queue+0x58a/0x630 [ 65.309138][ T12] __linkwatch_run_queue+0x58a/0x630 [ 65.314417][ T12] ? linkwatch_do_dev+0x180/0x180 [ 65.319421][ T12] ? _raw_spin_unlock_irq+0x1f/0x80 [ 65.324687][ T12] ? lock_is_held_type+0xb0/0xe0 [ 65.329602][ T12] linkwatch_event+0x4a/0x60 [ 65.334174][ T12] process_one_work+0x94c/0x1670 [ 65.339101][ T12] ? lock_release+0x8d0/0x8d0 [ 65.343758][ T12] ? pwq_dec_nr_in_flight+0x2d0/0x2d0 [ 65.349106][ T12] ? rwlock_bug.part.0+0x90/0x90 [ 65.354022][ T12] ? lockdep_hardirqs_off+0x66/0xa0 [ 65.359201][ T12] worker_thread+0x64c/0x1120 [ 65.363872][ T12] ? __kthread_parkme+0x13f/0x1e0 [ 65.368883][ T12] ? process_one_work+0x1670/0x1670 [ 65.374061][ T12] kthread+0x3b5/0x4a0 [ 65.378105][ T12] ? __kthread_bind_mask+0xc0/0xc0 [ 65.383212][ T12] ? __kthread_bind_mask+0xc0/0xc0 [ 65.388300][ T12] ret_from_fork+0x1f/0x30 [ 65.393863][ T12] Kernel Offset: disabled [ 65.398172][ T12] Rebooting in 86400 seconds..