Warning: Permanently added '10.128.0.70' (ECDSA) to the list of known hosts.
2021/09/05 15:48:47 parsed 1 programs
2021/09/05 15:48:47 executed programs: 0
syzkaller login: [ 1065.836044][ T8447] chnl_net:caif_netlink_parms(): no params data found
[ 1065.883652][ T8447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1065.890858][ T8447] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1065.898764][ T8447] device bridge_slave_0 entered promiscuous mode
[ 1065.907375][ T8447] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1065.914752][ T8447] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1065.922384][ T8447] device bridge_slave_1 entered promiscuous mode
[ 1065.945166][ T8447] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1065.956233][ T8447] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1065.980436][ T8447] team0: Port device team_slave_0 added
[ 1065.987348][ T8447] team0: Port device team_slave_1 added
[ 1066.007395][ T8447] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1066.014465][ T8447] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1066.040406][ T8447] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1066.052314][ T8447] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1066.059528][ T8447] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1066.085633][ T8447] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1066.111877][ T8447] device hsr_slave_0 entered promiscuous mode
[ 1066.118403][ T8447] device hsr_slave_1 entered promiscuous mode
[ 1066.193287][ T8447] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1066.201922][ T8447] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1066.211061][ T8447] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1066.220789][ T8447] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1066.238413][ T8447] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1066.245473][ T8447] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1066.252723][ T8447] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1066.259801][ T8447] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1066.289127][ T8447] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1066.301442][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1066.310969][ T8422] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1066.319057][ T8422] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1066.327331][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1066.338370][ T8447] 8021q: adding VLAN 0 to HW filter on device team0
[ 1066.348735][ T8778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1066.357229][ T8778] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1066.364350][ T8778] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1066.384447][ T8778] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1066.392731][ T8778] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1066.399825][ T8778] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1066.407788][ T8778] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1066.416625][ T8778] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1066.427199][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1066.435485][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1066.446168][ T8779] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1066.455926][ T8447] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1066.471484][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1066.479009][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1066.491144][ T8447] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1066.507362][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1066.524741][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1066.532974][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1066.541485][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1066.550862][ T8447] device veth0_vlan entered promiscuous mode
[ 1066.561110][ T8447] device veth1_vlan entered promiscuous mode
[ 1066.578016][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1066.586056][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1066.594337][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1066.605410][ T8447] device veth0_macvtap entered promiscuous mode
[ 1066.614729][ T8447] device veth1_macvtap entered promiscuous mode
[ 1066.628379][ T8447] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1066.636832][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1066.645656][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1066.655561][ T8447] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1066.663052][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1066.675012][ T8447] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.683772][ T8447] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.692454][ T8447] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.701544][ T8447] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1066.749411][   T10] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1066.762412][   T10] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1066.787529][ T8779] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1066.803142][   T10] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1066.811381][   T10] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1066.820037][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1066.990533][   T10] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1069.786077][   T10] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1071.945860][ T8816] chnl_net:caif_netlink_parms(): no params data found
[ 1071.995515][ T8816] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1072.002616][ T8816] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1072.011134][ T8816] device bridge_slave_0 entered promiscuous mode
[ 1072.021073][ T8816] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1072.028627][ T8816] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1072.036583][ T8816] device bridge_slave_1 entered promiscuous mode
[ 1072.059249][ T8816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1072.071335][ T8816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1072.096507][ T8816] team0: Port device team_slave_0 added
[ 1072.104411][ T8816] team0: Port device team_slave_1 added
[ 1072.124664][ T8816] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1072.131619][ T8816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1072.158185][ T8816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1072.170433][ T8816] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1072.177582][ T8816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1072.203517][ T8816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1072.231913][ T8816] device hsr_slave_0 entered promiscuous mode
[ 1072.239287][ T8816] device hsr_slave_1 entered promiscuous mode
[ 1072.245814][ T8816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1072.253413][ T8816] Cannot create hsr debugfs directory
[ 1072.309517][   T10] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1072.352320][ T8816] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1072.359386][ T8816] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1072.366739][ T8816] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1072.373828][ T8816] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1072.407053][   T10] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1072.442588][ T8816] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1072.455363][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1072.463134][ T8422] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1072.470753][ T8422] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1072.479283][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[ 1072.490629][ T8816] 8021q: adding VLAN 0 to HW filter on device team0
[ 1072.537786][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1072.554342][ T8422] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1072.561412][ T8422] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1072.580217][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1072.588642][ T8422] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1072.595796][ T8422] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1072.627574][ T8816] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1072.638662][ T8816] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1072.675329][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1072.691676][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1072.724621][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1072.739029][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1072.954795][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1072.962379][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1072.981159][ T8816] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1072.988621][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1072.996071][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1073.064727][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1073.073844][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1073.105337][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1073.114020][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1073.124399][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1073.131925][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1073.158532][ T8816] device veth0_vlan entered promiscuous mode
[ 1073.169777][ T8816] device veth1_vlan entered promiscuous mode
[ 1073.188219][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1073.196175][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1073.204952][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1073.213501][ T8781] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1073.226257][ T8816] device veth0_macvtap entered promiscuous mode
[ 1073.236365][ T8816] device veth1_macvtap entered promiscuous mode
[ 1073.250600][ T8816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[ 1073.261194][ T8816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1073.272320][ T8816] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1073.299407][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1073.307333][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1073.315468][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1073.324174][ T8780] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1073.336042][ T8816] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[ 1073.346943][ T8816] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1073.358895][ T8816] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1073.367340][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1073.376078][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1073.474246][ T8814] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1073.482084][ T8814] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1073.533673][ T4826] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1073.544903][ T8811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1073.552716][ T8811] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1073.560263][ T8422] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1073.901665][   T10] device hsr_slave_0 left promiscuous mode
[ 1073.908665][   T10] device hsr_slave_1 left promiscuous mode
[ 1073.915644][   T10] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1073.923094][   T10] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1073.930766][   T10] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1073.939434][   T10] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1073.948916][   T10] device bridge_slave_1 left promiscuous mode
[ 1073.955628][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1073.964268][   T10] device bridge_slave_0 left promiscuous mode
[ 1073.970398][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1073.980058][   T10] device veth1_macvtap left promiscuous mode
[ 1073.986867][   T10] device veth0_macvtap left promiscuous mode
[ 1073.992868][   T10] device veth1_vlan left promiscuous mode
[ 1073.999056][   T10] device veth0_vlan left promiscuous mode
[ 1074.897654][   T10] team0 (unregistering): Port device team_slave_1 removed
[ 1074.908264][   T10] team0 (unregistering): Port device team_slave_0 removed
[ 1074.919182][   T10] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1074.931082][   T10] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1074.959740][   T10] bond0 (unregistering): Released all slaves
[ 1075.995432][ T9214] chnl_net:caif_netlink_parms(): no params data found
[ 1076.039383][ T9214] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1076.047155][ T9214] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1076.055501][ T9214] device bridge_slave_0 entered promiscuous mode
[ 1076.097881][ T9214] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1076.105468][ T9214] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1076.113431][ T9214] device bridge_slave_1 entered promiscuous mode
[ 1076.136462][ T9214] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1076.168446][ T9214] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1076.193769][ T9214] team0: Port device team_slave_0 added
[ 1076.220249][ T9214] team0: Port device team_slave_1 added
[ 1076.242621][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1076.249917][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1076.276010][ T9214] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1076.309638][ T9214] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1076.316685][ T9214] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1076.343777][ T9214] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1076.404153][ T9214] device hsr_slave_0 entered promiscuous mode
[ 1076.410606][ T9214] device hsr_slave_1 entered promiscuous mode
[ 1076.421471][   T10] device hsr_slave_0 left promiscuous mode
[ 1076.429421][   T10] device hsr_slave_1 left promiscuous mode
[ 1076.436581][   T10] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1076.444948][   T10] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1076.452580][   T10] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1076.460873][   T10] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1076.468964][   T10] device bridge_slave_1 left promiscuous mode
[ 1076.475897][   T10] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1076.484041][   T10] device bridge_slave_0 left promiscuous mode
[ 1076.490161][   T10] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1076.499425][   T10] device veth1_macvtap left promiscuous mode
[ 1076.505480][   T10] device veth0_macvtap left promiscuous mode
[ 1076.511492][   T10] device veth1_vlan left promiscuous mode
[ 1076.517348][   T10] device veth0_vlan left promiscuous mode
[ 1077.363520][   T22] ==================================================================
[ 1077.371590][   T22] BUG: KASAN: use-after-free in __d_alloc+0x19a/0x950
[ 1077.378456][   T22] Read of size 5 at addr ffff88807b0ec420 by task kdevtmpfs/22
[ 1077.385979][   T22] 
[ 1077.388290][   T22] CPU: 0 PID: 22 Comm: kdevtmpfs Not tainted 5.14.0-syzkaller #0
[ 1077.396005][   T22] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1077.406050][   T22] Call Trace:
[ 1077.409319][   T22]  dump_stack_lvl+0xcd/0x134
[ 1077.413976][   T22]  print_address_description.constprop.0.cold+0x6c/0x309
[ 1077.421020][   T22]  ? __d_alloc+0x19a/0x950
[ 1077.425430][   T22]  ? __d_alloc+0x19a/0x950
[ 1077.429838][   T22]  kasan_report.cold+0x83/0xdf
[ 1077.434598][   T22]  ? __d_alloc+0x19a/0x950
[ 1077.439018][   T22]  kasan_check_range+0x13d/0x180
[ 1077.443998][   T22]  memcpy+0x20/0x60
[ 1077.447819][   T22]  __d_alloc+0x19a/0x950
[ 1077.452074][   T22]  d_alloc+0x4a/0x230
[ 1077.456053][   T22]  __lookup_hash+0xc8/0x180
[ 1077.460551][   T22]  kern_path_locked+0x17e/0x320
[ 1077.465399][   T22]  ? filename_lookup+0x80/0x80
[ 1077.470162][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1077.475657][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1077.481111][   T22]  handle_remove+0xa2/0x5fe
[ 1077.485642][   T22]  ? lock_downgrade+0x6e0/0x6e0
[ 1077.490531][   T22]  ? cacheinfo_cpu_online.cold+0x3e/0x3e
[ 1077.496167][   T22]  ? finish_task_switch.isra.0+0x232/0xa50
[ 1077.502017][   T22]  ? trace_hardirqs_on+0x5b/0x1c0
[ 1077.507088][   T22]  ? finish_task_switch.isra.0+0x232/0xa50
[ 1077.512887][   T22]  ? __switch_to+0x5cc/0x1060
[ 1077.517624][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1077.523076][   T22]  ? lock_acquire+0x442/0x510
[ 1077.527743][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1077.533194][   T22]  ? lock_release+0x522/0x720
[ 1077.537863][   T22]  ? devtmpfsd+0xaa/0x2a3
[ 1077.542225][   T22]  ? lock_downgrade+0x6e0/0x6e0
[ 1077.547067][   T22]  ? do_raw_spin_lock+0x120/0x2b0
[ 1077.552087][   T22]  ? rwlock_bug.part.0+0x90/0x90
[ 1077.557021][   T22]  devtmpfsd+0x1b9/0x2a3
[ 1077.561259][   T22]  ? dmar_validate_one_drhd+0x24d/0x24d
[ 1077.566803][   T22]  kthread+0x3e5/0x4d0
[ 1077.570944][   T22]  ? set_kthread_struct+0x130/0x130
[ 1077.576140][   T22]  ret_from_fork+0x1f/0x30
[ 1077.580592][   T22] 
[ 1077.582901][   T22] Allocated by task 22:
[ 1077.587139][   T22]  kasan_save_stack+0x1b/0x40
[ 1077.591831][   T22]  __kasan_slab_alloc+0x83/0xb0
[ 1077.596677][   T22]  kmem_cache_alloc+0x285/0x4a0
[ 1077.601523][   T22]  getname_kernel+0x4e/0x370
[ 1077.606125][   T22]  kern_path_locked+0x71/0x320
[ 1077.610883][   T22]  handle_remove+0xa2/0x5fe
[ 1077.615385][   T22]  devtmpfsd+0x1b9/0x2a3
[ 1077.619618][   T22]  kthread+0x3e5/0x4d0
[ 1077.623677][   T22]  ret_from_fork+0x1f/0x30
[ 1077.628082][   T22] 
[ 1077.630390][   T22] Freed by task 22:
[ 1077.634180][   T22]  kasan_save_stack+0x1b/0x40
[ 1077.638852][   T22]  kasan_set_track+0x1c/0x30
[ 1077.643438][   T22]  kasan_set_free_info+0x20/0x30
[ 1077.648367][   T22]  __kasan_slab_free+0xff/0x130
[ 1077.653210][   T22]  slab_free_freelist_hook+0xe3/0x250
[ 1077.658575][   T22]  kmem_cache_free+0x8a/0x5b0
[ 1077.663244][   T22]  putname.part.0+0xe1/0x120
[ 1077.667826][   T22]  kern_path_locked+0xc2/0x320
[ 1077.672579][   T22]  handle_remove+0xa2/0x5fe
[ 1077.677076][   T22]  devtmpfsd+0x1b9/0x2a3
[ 1077.681310][   T22]  kthread+0x3e5/0x4d0
[ 1077.685371][   T22]  ret_from_fork+0x1f/0x30
[ 1077.689789][   T22] 
[ 1077.692098][   T22] The buggy address belongs to the object at ffff88807b0ec400
[ 1077.692098][   T22]  which belongs to the cache names_cache of size 4096
[ 1077.706224][   T22] The buggy address is located 32 bytes inside of
[ 1077.706224][   T22]  4096-byte region [ffff88807b0ec400, ffff88807b0ed400)
[ 1077.719497][   T22] The buggy address belongs to the page:
[ 1077.725111][   T22] page:ffffea0001ec3a00 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7b0e8
[ 1077.735260][   T22] head:ffffea0001ec3a00 order:3 compound_mapcount:0 compound_pincount:0
[ 1077.743572][   T22] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 1077.751550][   T22] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888010dc63c0
[ 1077.760125][   T22] raw: 0000000000000000 0000000080070007 00000001ffffffff 0000000000000000
[ 1077.768689][   T22] page dumped because: kasan: bad access detected
[ 1077.775088][   T22] page_owner tracks the page as allocated
[ 1077.780808][   T22] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 7154, ts 47135710561, free_ts 47082878813
[ 1077.799906][   T22]  get_page_from_freelist+0xa72/0x2f80
[ 1077.805403][   T22]  __alloc_pages+0x1b2/0x500
[ 1077.809985][   T22]  alloc_pages+0x1a7/0x300
[ 1077.814443][   T22]  allocate_slab+0x32e/0x4b0
[ 1077.819025][   T22]  ___slab_alloc+0x473/0x7b0
[ 1077.823607][   T22]  __slab_alloc.constprop.0+0xa7/0xf0
[ 1077.828972][   T22]  kmem_cache_alloc+0x3e1/0x4a0
[ 1077.833814][   T22]  getname_flags.part.0+0x50/0x4f0
[ 1077.838921][   T22]  getname_flags+0x9a/0xe0
[ 1077.843328][   T22]  user_path_at_empty+0x2b/0x90
[ 1077.848170][   T22]  do_faccessat+0x127/0x850
[ 1077.852733][   T22]  do_syscall_64+0x35/0xb0
[ 1077.857194][   T22]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1077.863103][   T22] page last free stack trace:
[ 1077.867779][   T22]  free_pcp_prepare+0x2c5/0x780
[ 1077.872618][   T22]  free_unref_page+0x19/0x690
[ 1077.877299][   T22]  unfreeze_partials+0x16c/0x1b0
[ 1077.882247][   T22]  put_cpu_partial+0x13d/0x230
[ 1077.887001][   T22]  qlist_free_all+0x5a/0xc0
[ 1077.891492][   T22]  kasan_quarantine_reduce+0x180/0x200
[ 1077.896941][   T22]  __kasan_slab_alloc+0x95/0xb0
[ 1077.901784][   T22]  __kmalloc+0x1f4/0x330
[ 1077.906016][   T22]  tomoyo_realpath_from_path+0xc3/0x620
[ 1077.911613][   T22]  tomoyo_path_perm+0x21b/0x400
[ 1077.916453][   T22]  security_inode_getattr+0xcf/0x140
[ 1077.921762][   T22]  vfs_fstat+0x43/0xb0
[ 1077.925825][   T22]  __do_sys_newfstat+0x81/0x100
[ 1077.930671][   T22]  do_syscall_64+0x35/0xb0
[ 1077.935080][   T22]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[ 1077.940969][   T22] 
[ 1077.943279][   T22] Memory state around the buggy address:
[ 1077.948891][   T22]  ffff88807b0ec300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1077.956942][   T22]  ffff88807b0ec380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1077.964989][   T22] >ffff88807b0ec400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1077.973033][   T22]                                ^
[ 1077.978124][   T22]  ffff88807b0ec480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1077.986186][   T22]  ffff88807b0ec500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1077.994227][   T22] ==================================================================
[ 1078.003578][   T22] Kernel panic - not syncing: panic_on_warn set ...
[ 1078.010185][   T22] CPU: 1 PID: 22 Comm: kdevtmpfs Tainted: G    B             5.14.0-syzkaller #0
[ 1078.012739][ T9150] Bluetooth: hci0: command 0x0409 tx timeout
[ 1078.019309][   T22] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[ 1078.035317][   T22] Call Trace:
[ 1078.038599][   T22]  dump_stack_lvl+0xcd/0x134
[ 1078.043205][   T22]  panic+0x2b0/0x6dd
[ 1078.047148][   T22]  ? __warn_printk+0xf3/0xf3
[ 1078.051742][   T22]  ? preempt_schedule_common+0x59/0xc0
[ 1078.057212][   T22]  ? __d_alloc+0x19a/0x950
[ 1078.061623][   T22]  ? preempt_schedule_thunk+0x16/0x18
[ 1078.066995][   T22]  ? trace_hardirqs_on+0x38/0x1c0
[ 1078.072017][   T22]  ? trace_hardirqs_on+0x51/0x1c0
[ 1078.077041][   T22]  ? __d_alloc+0x19a/0x950
[ 1078.081452][   T22]  ? __d_alloc+0x19a/0x950
[ 1078.085860][   T22]  end_report.cold+0x63/0x6f
[ 1078.090448][   T22]  kasan_report.cold+0x71/0xdf
[ 1078.095207][   T22]  ? __d_alloc+0x19a/0x950
[ 1078.099616][   T22]  kasan_check_range+0x13d/0x180
[ 1078.104548][   T22]  memcpy+0x20/0x60
[ 1078.108366][   T22]  __d_alloc+0x19a/0x950
[ 1078.112605][   T22]  d_alloc+0x4a/0x230
[ 1078.116579][   T22]  __lookup_hash+0xc8/0x180
[ 1078.121084][   T22]  kern_path_locked+0x17e/0x320
[ 1078.125929][   T22]  ? filename_lookup+0x80/0x80
[ 1078.130690][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1078.136142][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1078.141593][   T22]  handle_remove+0xa2/0x5fe
[ 1078.146095][   T22]  ? lock_downgrade+0x6e0/0x6e0
[ 1078.150953][   T22]  ? cacheinfo_cpu_online.cold+0x3e/0x3e
[ 1078.156583][   T22]  ? finish_task_switch.isra.0+0x232/0xa50
[ 1078.162383][   T22]  ? trace_hardirqs_on+0x5b/0x1c0
[ 1078.167400][   T22]  ? finish_task_switch.isra.0+0x232/0xa50
[ 1078.173201][   T22]  ? __switch_to+0x5cc/0x1060
[ 1078.177871][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1078.183319][   T22]  ? lock_acquire+0x442/0x510
[ 1078.187990][   T22]  ? rcu_read_lock_sched_held+0xd/0x70
[ 1078.193437][   T22]  ? lock_release+0x522/0x720
[ 1078.198117][   T22]  ? devtmpfsd+0xaa/0x2a3
[ 1078.202442][   T22]  ? lock_downgrade+0x6e0/0x6e0
[ 1078.207287][   T22]  ? do_raw_spin_lock+0x120/0x2b0
[ 1078.212303][   T22]  ? rwlock_bug.part.0+0x90/0x90
[ 1078.217235][   T22]  devtmpfsd+0x1b9/0x2a3
[ 1078.221470][   T22]  ? dmar_validate_one_drhd+0x24d/0x24d
[ 1078.227007][   T22]  kthread+0x3e5/0x4d0
[ 1078.231074][   T22]  ? set_kthread_struct+0x130/0x130
[ 1078.236265][   T22]  ret_from_fork+0x1f/0x30
[ 1078.241942][   T22] Kernel Offset: disabled
[ 1078.246262][   T22] Rebooting in 86400 seconds..