[   97.280922][  T975] cfg80211: failed to load regulatory.db
Warning: Permanently added '10.128.0.113' (ED25519) to the list of known hosts.
executing program
[   97.663505][ T5835] ==================================================================
[   97.671622][ T5835] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[   97.680413][ T5835] Read of size 1 at addr ffff8880216980a7 by task syz-executor640/5835
[   97.688682][ T5835] 
[   97.691039][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: syz-executor640 Not tainted 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 PREEMPT(full) 
[   97.691069][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   97.691088][ T5835] Call Trace:
[   97.691096][ T5835]  <TASK>
[   97.691108][ T5835]  dump_stack_lvl+0x116/0x1f0
[   97.691150][ T5835]  print_report+0xc3/0x670
[   97.691178][ T5835]  ? __virt_addr_valid+0x5e/0x590
[   97.691208][ T5835]  ? __phys_addr+0xc6/0x150
[   97.691238][ T5835]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   97.691267][ T5835]  kasan_report+0xe0/0x110
[   97.691295][ T5835]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   97.691327][ T5835]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[   97.691361][ T5835]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[   97.691392][ T5835]  ? find_held_lock+0x2b/0x80
[   97.691413][ T5835]  ? __might_fault+0xe3/0x190
[   97.691439][ T5835]  ? __might_fault+0xe3/0x190
[   97.691464][ T5835]  ? __might_fault+0x13b/0x190
[   97.691496][ T5835]  ? proc_simple_write+0x114/0x1b0
[   97.691524][ T5835]  proc_simple_write+0x114/0x1b0
[   97.691553][ T5835]  ? __pfx_proc_simple_write+0x10/0x10
[   97.691582][ T5835]  proc_reg_write+0x23d/0x330
[   97.691605][ T5835]  ? __pfx_proc_reg_write+0x10/0x10
[   97.691629][ T5835]  vfs_writev+0x6c4/0xdc0
[   97.691649][ T5835]  ? __handle_mm_fault+0x4af/0x2a40
[   97.691674][ T5835]  ? __pfx_vfs_writev+0x10/0x10
[   97.691695][ T5835]  ? lock_vma_under_rcu+0x47d/0x970
[   97.691752][ T5835]  ? cgroup_rstat_updated+0x2a/0xb20
[   97.691783][ T5835]  ? do_writev+0x132/0x330
[   97.691802][ T5835]  do_writev+0x132/0x330
[   97.691821][ T5835]  ? __pfx_do_writev+0x10/0x10
[   97.691845][ T5835]  do_syscall_64+0xcd/0x230
[   97.691878][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.691900][ T5835] RIP: 0033:0x7fa1d3455ab9
[   97.691923][ T5835] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   97.691963][ T5835] RSP: 002b:00007ffe99ae6f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   97.691999][ T5835] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa1d3455ab9
[   97.692013][ T5835] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[   97.692027][ T5835] RBP: 00007fa1d34c85f0 R08: 0000000000008000 R09: 0000000000000006
[   97.692040][ T5835] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001
[   97.692053][ T5835] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[   97.692074][ T5835]  </TASK>
[   97.692080][ T5835] 
[   97.938111][ T5835] Allocated by task 5835:
[   97.942444][ T5835]  kasan_save_stack+0x33/0x60
[   97.947137][ T5835]  kasan_save_track+0x14/0x30
[   97.951825][ T5835]  __kasan_kmalloc+0xaa/0xb0
[   97.956423][ T5835]  __kmalloc_node_track_caller_noprof+0x221/0x510
[   97.962878][ T5835]  memdup_user_nul+0x2b/0x120
[   97.967572][ T5835]  proc_simple_write+0xc7/0x1b0
[   97.972466][ T5835]  proc_reg_write+0x23d/0x330
[   97.977165][ T5835]  vfs_writev+0x6c4/0xdc0
[   97.981689][ T5835]  do_writev+0x132/0x330
[   97.985955][ T5835]  do_syscall_64+0xcd/0x230
[   97.990521][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   97.996429][ T5835] 
[   97.998760][ T5835] The buggy address belongs to the object at ffff8880216980a0
[   97.998760][ T5835]  which belongs to the cache kmalloc-8 of size 8
[   98.012509][ T5835] The buggy address is located 0 bytes to the right of
[   98.012509][ T5835]  allocated 7-byte region [ffff8880216980a0, ffff8880216980a7)
[   98.026843][ T5835] 
[   98.029168][ T5835] The buggy address belongs to the physical page:
[   98.035594][ T5835] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x21698
[   98.044420][ T5835] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   98.052026][ T5835] page_type: f5(slab)
[   98.056038][ T5835] raw: 00fff00000000000 ffff88801b441500 0000000000000000 dead000000000001
[   98.064633][ T5835] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[   98.073215][ T5835] page dumped because: kasan: bad access detected
[   98.079653][ T5835] page_owner tracks the page as allocated
[   98.085366][ T5835] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 3815229033, free_ts 0
[   98.102929][ T5835]  post_alloc_hook+0x181/0x1b0
[   98.107705][ T5835]  get_page_from_freelist+0x135c/0x3920
[   98.113292][ T5835]  __alloc_frozen_pages_noprof+0x263/0x23a0
[   98.119199][ T5835]  alloc_pages_mpol+0x1fb/0x550
[   98.124077][ T5835]  new_slab+0x244/0x340
[   98.128237][ T5835]  ___slab_alloc+0xd9c/0x1940
[   98.132918][ T5835]  __slab_alloc.constprop.0+0x56/0xb0
[   98.138312][ T5835]  __kmalloc_noprof+0x2f2/0x510
[   98.143174][ T5835]  acpi_ns_internalize_name+0x144/0x220
[   98.148741][ T5835]  acpi_ns_get_node_unlocked+0x163/0x310
[   98.154397][ T5835]  acpi_ns_get_node+0x4c/0x70
[   98.159091][ T5835]  acpi_ns_evaluate+0x6ef/0xca0
[   98.163949][ T5835]  acpi_ut_evaluate_object+0xda/0x4a0
[   98.169359][ T5835]  acpi_rs_get_method_data+0x84/0xf0
[   98.174652][ T5835]  acpi_walk_resources+0x15b/0x1e0
[   98.179772][ T5835]  acpi_pci_root_add+0x1e5/0xa80
[   98.184732][ T5835] page_owner free stack trace missing
[   98.190125][ T5835] 
[   98.192452][ T5835] Memory state around the buggy address:
[   98.198100][ T5835]  ffff888021697f80: 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc fc
[   98.206164][ T5835]  ffff888021698000: fa fc fc fc fa fc fc fc fa fc fc fc 00 fc fc fc
[   98.214230][ T5835] >ffff888021698080: fa fc fc fc 07 fc fc fc fa fc fc fc fa fc fc fc
[   98.222317][ T5835]                                ^
[   98.227435][ T5835]  ffff888021698100: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   98.235528][ T5835]  ffff888021698180: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   98.243593][ T5835] ==================================================================
[   98.252356][ T5835] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   98.259601][ T5835] CPU: 0 UID: 0 PID: 5835 Comm: syz-executor640 Not tainted 6.15.0-rc3-syzkaller-00076-ge72e9e693307 #0 PREEMPT(full) 
[   98.272058][ T5835] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   98.282126][ T5835] Call Trace:
[   98.285424][ T5835]  <TASK>
[   98.288388][ T5835]  dump_stack_lvl+0x3d/0x1f0
[   98.293008][ T5835]  panic+0x71c/0x800
[   98.296966][ T5835]  ? __pfx_panic+0x10/0x10
[   98.301460][ T5835]  ? mark_held_locks+0x49/0x80
[   98.306265][ T5835]  ? preempt_schedule_thunk+0x16/0x30
[   98.311661][ T5835]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   98.317680][ T5835]  ? preempt_schedule_common+0x44/0xc0
[   98.323176][ T5835]  ? check_panic_on_warn+0x1f/0xb0
[   98.328321][ T5835]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   98.334349][ T5835]  check_panic_on_warn+0xab/0xb0
[   98.339358][ T5835]  end_report+0x107/0x170
[   98.343706][ T5835]  kasan_report+0xee/0x110
[   98.348137][ T5835]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   98.354136][ T5835]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[   98.359968][ T5835]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[   98.366139][ T5835]  ? find_held_lock+0x2b/0x80
[   98.370826][ T5835]  ? __might_fault+0xe3/0x190
[   98.375534][ T5835]  ? __might_fault+0xe3/0x190
[   98.380226][ T5835]  ? __might_fault+0x13b/0x190
[   98.385011][ T5835]  ? proc_simple_write+0x114/0x1b0
[   98.390139][ T5835]  proc_simple_write+0x114/0x1b0
[   98.395094][ T5835]  ? __pfx_proc_simple_write+0x10/0x10
[   98.400569][ T5835]  proc_reg_write+0x23d/0x330
[   98.405255][ T5835]  ? __pfx_proc_reg_write+0x10/0x10
[   98.410464][ T5835]  vfs_writev+0x6c4/0xdc0
[   98.414797][ T5835]  ? __handle_mm_fault+0x4af/0x2a40
[   98.420021][ T5835]  ? __pfx_vfs_writev+0x10/0x10
[   98.424876][ T5835]  ? lock_vma_under_rcu+0x47d/0x970
[   98.430124][ T5835]  ? cgroup_rstat_updated+0x2a/0xb20
[   98.435437][ T5835]  ? do_writev+0x132/0x330
[   98.439862][ T5835]  do_writev+0x132/0x330
[   98.444126][ T5835]  ? __pfx_do_writev+0x10/0x10
[   98.448922][ T5835]  do_syscall_64+0xcd/0x230
[   98.453446][ T5835]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.459371][ T5835] RIP: 0033:0x7fa1d3455ab9
[   98.463812][ T5835] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   98.483431][ T5835] RSP: 002b:00007ffe99ae6f98 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   98.491855][ T5835] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa1d3455ab9
[   98.499843][ T5835] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000004
[   98.507834][ T5835] RBP: 00007fa1d34c85f0 R08: 0000000000008000 R09: 0000000000000006
[   98.515814][ T5835] R10: 0000000000008000 R11: 0000000000000246 R12: 0000000000000001
[   98.523794][ T5835] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[   98.531780][ T5835]  </TASK>
[   98.535116][ T5835] Kernel Offset: disabled
[   98.539448][ T5835] Rebooting in 86400 seconds..