Warning: Permanently added '10.128.0.74' (ED25519) to the list of known hosts.
[   71.678563][ T5819] cgroup: Unknown subsys name 'net'
[   71.829307][ T5819] cgroup: Unknown subsys name 'cpuset'
[   71.838029][ T5819] cgroup: Unknown subsys name 'rlimit'
[   72.244459][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.248717][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.261492][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.273270][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.312146][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.325464][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.353097][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.364896][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.386058][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.393942][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.422027][   T52] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.438871][   T52] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.447027][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.454863][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
executing program
[   72.471703][ T5830] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   72.492637][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.501523][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.792059][ T5844] Zero length message leads to an empty skb
[   72.802746][ T5844] ubi0: attaching mtd0
[   72.821299][ T5844] ubi0: scanning is finished
[   72.827899][ T5844] ubi0: empty MTD device detected
[   73.023208][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.126009][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
executing program
[   73.338283][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   73.406793][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.417758][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.475777][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   73.484172][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
executing program
[   74.157443][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   74.299158][ T5844] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
executing program
[   74.465018][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   74.515735][ T5845] ubi0: attaching mtd0
[   74.525277][ T5845] ubi0: scanning is finished
[   74.531086][ T5845] ==================================================================
[   74.539190][ T5845] BUG: KASAN: slab-use-after-free in notifier_chain_register+0x141/0x3f0
[   74.547623][ T5845] Read of size 4 at addr ffff8880118d18d8 by task syz-executor310/5845
[   74.555864][ T5845] 
[   74.558210][ T5845] CPU: 1 UID: 0 PID: 5845 Comm: syz-executor310 Not tainted 6.12.0-next-20241118-syzkaller #0
[   74.568461][ T5845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   74.578549][ T5845] Call Trace:
[   74.581842][ T5845]  <TASK>
[   74.584791][ T5845]  dump_stack_lvl+0x241/0x360
[   74.589523][ T5845]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.594816][ T5845]  ? __pfx__printk+0x10/0x10
[   74.599418][ T5845]  ? _printk+0xd5/0x120
[   74.603574][ T5845]  ? __virt_addr_valid+0x183/0x530
[   74.608712][ T5845]  ? __virt_addr_valid+0x183/0x530
[   74.613844][ T5845]  print_report+0x169/0x550
[   74.618358][ T5845]  ? __virt_addr_valid+0x183/0x530
[   74.623489][ T5845]  ? __virt_addr_valid+0x183/0x530
[   74.628598][ T5845]  ? __virt_addr_valid+0x45f/0x530
[   74.633707][ T5845]  ? __phys_addr+0xba/0x170
[   74.638267][ T5845]  ? notifier_chain_register+0x141/0x3f0
[   74.643950][ T5845]  kasan_report+0x143/0x180
[   74.648488][ T5845]  ? notifier_chain_register+0x141/0x3f0
[   74.654130][ T5845]  notifier_chain_register+0x141/0x3f0
[   74.660030][ T5845]  blocking_notifier_chain_register+0x61/0xc0
[   74.666105][ T5845]  ubi_wl_init+0x3396/0x3720
[   74.670801][ T5845]  ubi_attach+0x3e01/0x5b80
[   74.675315][ T5845]  ? __pfx_ubi_attach+0x10/0x10
[   74.680178][ T5845]  ? ubi_attach_mtd_dev+0x19fa/0x3540
[   74.685553][ T5845]  ubi_attach_mtd_dev+0x1a3a/0x3540
[   74.690778][ T5845]  ctrl_cdev_ioctl+0x346/0x570
[   74.695560][ T5845]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   74.700875][ T5845]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   74.706177][ T5845]  __se_sys_ioctl+0xf5/0x170
[   74.710794][ T5845]  do_syscall_64+0xf3/0x230
[   74.715333][ T5845]  ? clear_bhb_loop+0x35/0x90
[   74.720014][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.726438][ T5845] RIP: 0033:0x7f7cda2e13b9
[   74.730863][ T5845] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   74.750577][ T5845] RSP: 002b:00007f7cda26e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.759013][ T5845] RAX: ffffffffffffffda RBX: 00007f7cda362418 RCX: 00007f7cda2e13b9
[   74.767093][ T5845] RDX: 0000000020000502 RSI: 0000000040186f40 RDI: 0000000000000006
[   74.775071][ T5845] RBP: 00007f7cda362410 R08: 00007f7cda26e6c0 R09: 0000000000000000
[   74.783052][ T5845] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7cda36241c
[   74.791028][ T5845] R13: 000000000000006e R14: 00007ffcd4486af0 R15: 00007ffcd4486bd8
[   74.799095][ T5845]  </TASK>
[   74.802117][ T5845] 
[   74.804450][ T5845] Allocated by task 5844:
[   74.808771][ T5845]  kasan_save_track+0x3f/0x80
[   74.813445][ T5845]  __kasan_kmalloc+0x98/0xb0
[   74.818059][ T5845]  __kmalloc_cache_noprof+0x243/0x390
[   74.823456][ T5845]  ubi_attach_mtd_dev+0x552/0x3540
[   74.828574][ T5845]  ctrl_cdev_ioctl+0x346/0x570
[   74.833362][ T5845]  __se_sys_ioctl+0xf5/0x170
[   74.837954][ T5845]  do_syscall_64+0xf3/0x230
[   74.842456][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.848357][ T5845] 
[   74.850885][ T5845] Freed by task 5844:
[   74.854868][ T5845]  kasan_save_track+0x3f/0x80
[   74.859555][ T5845]  kasan_save_free_info+0x40/0x50
[   74.864588][ T5845]  __kasan_slab_free+0x59/0x70
[   74.869361][ T5845]  kfree+0x196/0x420
[   74.873270][ T5845]  device_release+0x99/0x1c0
[   74.877879][ T5845]  kobject_put+0x22f/0x480
[   74.882295][ T5845]  ubi_attach_mtd_dev+0x8f5/0x3540
[   74.887402][ T5845]  ctrl_cdev_ioctl+0x346/0x570
[   74.892163][ T5845]  __se_sys_ioctl+0xf5/0x170
[   74.896749][ T5845]  do_syscall_64+0xf3/0x230
[   74.901250][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.907151][ T5845] 
[   74.909467][ T5845] The buggy address belongs to the object at ffff8880118d0000
[   74.909467][ T5845]  which belongs to the cache kmalloc-8k of size 8192
[   74.923514][ T5845] The buggy address is located 6360 bytes inside of
[   74.923514][ T5845]  freed 8192-byte region [ffff8880118d0000, ffff8880118d2000)
[   74.937496][ T5845] 
[   74.939823][ T5845] The buggy address belongs to the physical page:
[   74.946252][ T5845] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x118d0
[   74.955020][ T5845] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   74.963531][ T5845] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[   74.971096][ T5845] page_type: f5(slab)
[   74.975085][ T5845] raw: 00fff00000000040 ffff88801ac42280 ffffea0001f5de00 0000000000000006
[   74.983674][ T5845] raw: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[   74.992277][ T5845] head: 00fff00000000040 ffff88801ac42280 ffffea0001f5de00 0000000000000006
[   75.000950][ T5845] head: 0000000000000000 0000000000020002 00000001f5000000 0000000000000000
[   75.009619][ T5845] head: 00fff00000000003 ffffea0000463401 ffffffffffffffff 0000000000000000
[   75.018287][ T5845] head: ffff888000000008 0000000000000000 00000000ffffffff 0000000000000000
[   75.026951][ T5845] page dumped because: kasan: bad access detected
[   75.033365][ T5845] page_owner tracks the page as allocated
[   75.039104][ T5845] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5498, tgid 5498 (dhcpcd), ts 46223654103, free_ts 46136578410
[   75.059255][ T5845]  post_alloc_hook+0x1f3/0x230
[   75.064131][ T5845]  get_page_from_freelist+0x3725/0x3870
[   75.069686][ T5845]  __alloc_pages_noprof+0x292/0x710
[   75.074914][ T5845]  alloc_pages_mpol_noprof+0x3e8/0x680
[   75.080388][ T5845]  alloc_slab_page+0x6a/0x140
[   75.085066][ T5845]  allocate_slab+0x5a/0x2f0
[   75.089568][ T5845]  ___slab_alloc+0xcd1/0x14b0
[   75.094247][ T5845]  __slab_alloc+0x58/0xa0
[   75.098574][ T5845]  __kmalloc_cache_noprof+0x27b/0x390
[   75.103962][ T5845]  tomoyo_init_log+0x11cd/0x2050
[   75.108903][ T5845]  tomoyo_supervisor+0x38a/0x11f0
[   75.113956][ T5845]  tomoyo_env_perm+0x178/0x210
[   75.118716][ T5845]  tomoyo_find_next_domain+0x146e/0x1d40
[   75.124364][ T5845]  tomoyo_bprm_check_security+0x117/0x180
[   75.130088][ T5845]  security_bprm_check+0x86/0x250
[   75.135114][ T5845]  bprm_execve+0x894/0x1360
[   75.139616][ T5845] page last free pid 5494 tgid 5494 stack trace:
[   75.145933][ T5845]  free_unref_page+0xdf9/0x1140
[   75.150798][ T5845]  __put_partials+0xeb/0x130
[   75.155411][ T5845]  put_cpu_partial+0x17c/0x250
[   75.160183][ T5845]  __slab_free+0x2ea/0x3d0
[   75.164595][ T5845]  qlist_free_all+0x9a/0x140
[   75.169180][ T5845]  kasan_quarantine_reduce+0x14f/0x170
[   75.174634][ T5845]  __kasan_slab_alloc+0x23/0x80
[   75.179479][ T5845]  kmem_cache_alloc_node_noprof+0x1d9/0x380
[   75.185376][ T5845]  __alloc_skb+0x1c3/0x440
[   75.189797][ T5845]  netlink_sendmsg+0x638/0xcb0
[   75.194562][ T5845]  __sock_sendmsg+0x221/0x270
[   75.199242][ T5845]  ____sys_sendmsg+0x52a/0x7e0
[   75.204002][ T5845]  __sys_sendmsg+0x269/0x350
[   75.208591][ T5845]  do_syscall_64+0xf3/0x230
[   75.213098][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.218996][ T5845] 
[   75.221315][ T5845] Memory state around the buggy address:
[   75.227025][ T5845]  ffff8880118d1780: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.235079][ T5845]  ffff8880118d1800: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.243148][ T5845] >ffff8880118d1880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.251204][ T5845]                                                     ^
[   75.258127][ T5845]  ffff8880118d1900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
executing program
[   75.266180][ T5845]  ffff8880118d1980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.274252][ T5845] ==================================================================
[   75.291547][ T5845] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.298765][ T5845] CPU: 0 UID: 0 PID: 5845 Comm: syz-executor310 Not tainted 6.12.0-next-20241118-syzkaller #0
[   75.309022][ T5845] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[   75.319116][ T5845] Call Trace:
[   75.322415][ T5845]  <TASK>
[   75.325371][ T5845]  dump_stack_lvl+0x241/0x360
[   75.330072][ T5845]  ? __pfx_dump_stack_lvl+0x10/0x10
[   75.335298][ T5845]  ? __pfx__printk+0x10/0x10
[   75.339935][ T5845]  ? preempt_schedule+0xe1/0xf0
[   75.344795][ T5845]  ? vscnprintf+0x5d/0x90
[   75.349130][ T5845]  panic+0x349/0x880
[   75.353033][ T5845]  ? check_panic_on_warn+0x21/0xb0
[   75.358188][ T5845]  ? __pfx_panic+0x10/0x10
[   75.362609][ T5845]  ? _raw_spin_unlock_irqrestore+0x130/0x140
[   75.368601][ T5845]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   75.374947][ T5845]  ? print_report+0x502/0x550
[   75.379703][ T5845]  check_panic_on_warn+0x86/0xb0
[   75.384660][ T5845]  ? notifier_chain_register+0x141/0x3f0
[   75.390325][ T5845]  end_report+0x77/0x160
[   75.394580][ T5845]  kasan_report+0x154/0x180
[   75.399531][ T5845]  ? notifier_chain_register+0x141/0x3f0
[   75.405209][ T5845]  notifier_chain_register+0x141/0x3f0
[   75.410684][ T5845]  blocking_notifier_chain_register+0x61/0xc0
[   75.416767][ T5845]  ubi_wl_init+0x3396/0x3720
[   75.421387][ T5845]  ubi_attach+0x3e01/0x5b80
[   75.425913][ T5845]  ? __pfx_ubi_attach+0x10/0x10
[   75.430778][ T5845]  ? ubi_attach_mtd_dev+0x19fa/0x3540
[   75.436179][ T5845]  ubi_attach_mtd_dev+0x1a3a/0x3540
[   75.441401][ T5845]  ctrl_cdev_ioctl+0x346/0x570
[   75.446204][ T5845]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   75.451525][ T5845]  ? __pfx_ctrl_cdev_ioctl+0x10/0x10
[   75.456835][ T5845]  __se_sys_ioctl+0xf5/0x170
[   75.461470][ T5845]  do_syscall_64+0xf3/0x230
[   75.466006][ T5845]  ? clear_bhb_loop+0x35/0x90
[   75.470729][ T5845]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.476660][ T5845] RIP: 0033:0x7f7cda2e13b9
[   75.481095][ T5845] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 1d 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   75.500737][ T5845] RSP: 002b:00007f7cda26e168 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   75.509167][ T5845] RAX: ffffffffffffffda RBX: 00007f7cda362418 RCX: 00007f7cda2e13b9
[   75.517165][ T5845] RDX: 0000000020000502 RSI: 0000000040186f40 RDI: 0000000000000006
[   75.525145][ T5845] RBP: 00007f7cda362410 R08: 00007f7cda26e6c0 R09: 0000000000000000
[   75.533132][ T5845] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f7cda36241c
[   75.541132][ T5845] R13: 000000000000006e R14: 00007ffcd4486af0 R15: 00007ffcd4486bd8
[   75.549148][ T5845]  </TASK>
[   75.552515][ T5845] Kernel Offset: disabled
[   75.556853][ T5845] Rebooting in 86400 seconds..