Warning: Permanently added '10.128.0.54' (ED25519) to the list of known hosts.
2024/11/17 09:05:07 ignoring optional flag "sandboxArg"="0"
2024/11/17 09:05:08 parsed 1 programs
[ 153.700478][ T5857] cgroup: Unknown subsys name 'net'
[ 153.849310][ T5857] cgroup: Unknown subsys name 'cpuset'
[ 153.857263][ T5857] cgroup: Unknown subsys name 'rlimit'
[ 155.145095][ T5857] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 157.599477][ T5867] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 158.001532][ T5882] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 158.009510][ T5882] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 158.018972][ T5882] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 158.029216][ T5882] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 158.037288][ T5882] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 158.044758][ T5882] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 158.568444][ T3470] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 158.576371][ T3470] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 158.598958][ T2931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 158.606959][ T2931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 159.331594][ T5913] chnl_net:caif_netlink_parms(): no params data found
[ 159.435464][ T5913] bridge0: port 1(bridge_slave_0) entered blocking state
[ 159.443363][ T5913] bridge0: port 1(bridge_slave_0) entered disabled state
[ 159.450626][ T5913] bridge_slave_0: entered allmulticast mode
[ 159.457827][ T5913] bridge_slave_0: entered promiscuous mode
[ 159.466684][ T5913] bridge0: port 2(bridge_slave_1) entered blocking state
[ 159.477098][ T5913] bridge0: port 2(bridge_slave_1) entered disabled state
[ 159.484294][ T5913] bridge_slave_1: entered allmulticast mode
[ 159.491297][ T5913] bridge_slave_1: entered promiscuous mode
[ 159.531391][ T5913] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 159.542269][ T5913] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 159.565547][ T5913] team0: Port device team_slave_0 added
[ 159.573012][ T5913] team0: Port device team_slave_1 added
[ 159.595819][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 159.603678][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 159.629714][ T5913] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 159.642362][ T5913] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 159.649546][ T5913] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 159.675529][ T5913] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 159.721847][ T5913] hsr_slave_0: entered promiscuous mode
[ 159.728956][ T5913] hsr_slave_1: entered promiscuous mode
[ 159.818300][ T5913] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 159.828224][ T5913] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 159.837104][ T5913] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 159.845629][ T5913] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 159.895069][ T5913] 8021q: adding VLAN 0 to HW filter on device bond0
[ 159.915721][ T5913] 8021q: adding VLAN 0 to HW filter on device team0
[ 159.926901][ T80] bridge0: port 1(bridge_slave_0) entered blocking state
[ 159.934202][ T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 159.948983][ T3470] bridge0: port 2(bridge_slave_1) entered blocking state
[ 159.956031][ T3470] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 159.983982][ T5913] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 159.994505][ T5913] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 160.084587][ T5913] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 160.115894][ T5913] veth0_vlan: entered promiscuous mode
[ 160.128718][ T5913] veth1_vlan: entered promiscuous mode
[ 160.150074][ T5913] veth0_macvtap: entered promiscuous mode
[ 160.158798][ T5913] veth1_macvtap: entered promiscuous mode
[ 160.173675][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 160.187460][ T5913] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 160.199441][ T5913] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.210310][ T5913] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.219086][ T5913] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.228087][ T5913] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 160.334552][ T2931] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 160.432221][ T2931] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 160.479430][ T2931] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 160.558128][ T2931] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2024/11/17 09:05:17 executed programs: 0
[ 160.892710][ T5882] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 160.901729][ T5882] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 160.909574][ T5882] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 160.919117][ T5882] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 160.927597][ T5882] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 160.934889][ T5882] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 161.031676][ T5948] chnl_net:caif_netlink_parms(): no params data found
[ 161.078890][ T5948] bridge0: port 1(bridge_slave_0) entered blocking state
[ 161.086021][ T5948] bridge0: port 1(bridge_slave_0) entered disabled state
[ 161.093480][ T5948] bridge_slave_0: entered allmulticast mode
[ 161.100207][ T5948] bridge_slave_0: entered promiscuous mode
[ 161.107635][ T5948] bridge0: port 2(bridge_slave_1) entered blocking state
[ 161.114696][ T5948] bridge0: port 2(bridge_slave_1) entered disabled state
[ 161.122147][ T5948] bridge_slave_1: entered allmulticast mode
[ 161.130312][ T5948] bridge_slave_1: entered promiscuous mode
[ 161.157600][ T5948] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 161.171125][ T5948] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 161.193679][ T5948] team0: Port device team_slave_0 added
[ 161.200861][ T5948] team0: Port device team_slave_1 added
[ 161.221464][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 161.228675][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 161.254707][ T5948] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 161.268823][ T5948] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 161.275770][ T5948] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 161.301798][ T5948] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 161.340873][ T5948] hsr_slave_0: entered promiscuous mode
[ 161.347316][ T5948] hsr_slave_1: entered promiscuous mode
[ 161.353287][ T5948] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 161.361596][ T5948] Cannot create hsr debugfs directory
[ 162.967640][ T5155] Bluetooth: hci0: command tx timeout
[ 163.969936][ T2931] bridge_slave_1: left allmulticast mode
[ 163.976003][ T2931] bridge_slave_1: left promiscuous mode
[ 163.982916][ T2931] bridge0: port 2(bridge_slave_1) entered disabled state
[ 163.998866][ T2931] bridge_slave_0: left allmulticast mode
[ 164.004548][ T2931] bridge_slave_0: left promiscuous mode
[ 164.013708][ T2931] bridge0: port 1(bridge_slave_0) entered disabled state
[ 164.296447][ T2931] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 164.307323][ T2931] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 164.317702][ T2931] bond0 (unregistering): Released all slaves
[ 164.402051][ T2931] hsr_slave_0: left promiscuous mode
[ 164.410682][ T2931] hsr_slave_1: left promiscuous mode
[ 164.422187][ T2931] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 164.430080][ T2931] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 164.440832][ T2931] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 164.448426][ T2931] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 164.469337][ T2931] veth1_macvtap: left promiscuous mode
[ 164.475157][ T2931] veth0_macvtap: left promiscuous mode
[ 164.483505][ T2931] veth1_vlan: left promiscuous mode
[ 164.489187][ T2931] veth0_vlan: left promiscuous mode
[ 164.811239][ T2931] team0 (unregistering): Port device team_slave_1 removed
[ 164.836913][ T2931] team0 (unregistering): Port device team_slave_0 removed
[ 165.047283][ T5155] Bluetooth: hci0: command tx timeout
[ 165.257810][ T5948] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 165.269243][ T5948] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 165.280937][ T5948] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 165.292570][ T5948] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 165.391617][ T5948] 8021q: adding VLAN 0 to HW filter on device bond0
[ 165.412309][ T5948] 8021q: adding VLAN 0 to HW filter on device team0
[ 165.424136][ T80] bridge0: port 1(bridge_slave_0) entered blocking state
[ 165.431304][ T80] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 165.582812][ T2963] bridge0: port 2(bridge_slave_1) entered blocking state
[ 165.590429][ T2963] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 165.644297][ T5948] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 165.658682][ T5948] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 165.875611][ T5948] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 165.923630][ T5948] veth0_vlan: entered promiscuous mode
[ 165.943530][ T5948] veth1_vlan: entered promiscuous mode
[ 165.976183][ T5948] veth0_macvtap: entered promiscuous mode
[ 165.988377][ T5948] veth1_macvtap: entered promiscuous mode
[ 166.007754][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 166.021873][ T5948] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 166.033462][ T5948] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 166.047591][ T5948] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 166.056322][ T5948] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 166.065478][ T5948] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 166.141909][ T2963] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 166.160348][ T2963] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/11/17 09:05:23 executed programs: 2
[ 166.188025][ T2931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 166.195873][ T2931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 167.130854][ T5155] Bluetooth: hci0: command tx timeout
[ 169.223879][ T5155] Bluetooth: hci0: command tx timeout
2024/11/17 09:05:28 executed programs: 223
2024/11/17 09:05:33 executed programs: 513
[ 177.854426][ T5882] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 177.864571][ T5882] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 177.872371][ T5882] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 177.881860][ T5882] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 177.890051][ T5882] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 177.897668][ T5882] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 177.919286][ T6034] ==================================================================
[ 177.927374][ T6034] BUG: KASAN: slab-use-after-free in device_for_each_child+0xbb/0x1b0
[ 177.935561][ T6034] Read of size 8 at addr ffff888078535308 by task kbnepd bnep0/6034
[ 177.943549][ T6034]
[ 177.945890][ T6034] CPU: 1 UID: 0 PID: 6034 Comm: kbnepd bnep0 Not tainted 6.12.0-rc7-syzkaller-00135-g8ffade77b633 #0
[ 177.956746][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 177.966823][ T6034] Call Trace:
[ 177.970113][ T6034]
[ 177.973054][ T6034] dump_stack_lvl+0x241/0x360
[ 177.977756][ T6034] ? __pfx_dump_stack_lvl+0x10/0x10
[ 177.982975][ T6034] ? __pfx__printk+0x10/0x10
[ 177.987578][ T6034] ? _printk+0xd5/0x120
[ 177.991747][ T6034] ? __virt_addr_valid+0x183/0x530
[ 177.996861][ T6034] ? __virt_addr_valid+0x183/0x530
[ 178.001979][ T6034] print_report+0x169/0x550
[ 178.006494][ T6034] ? __virt_addr_valid+0x183/0x530
[ 178.011620][ T6034] ? __virt_addr_valid+0x183/0x530
[ 178.016740][ T6034] ? __virt_addr_valid+0x45f/0x530
[ 178.021861][ T6034] ? __phys_addr+0xba/0x170
[ 178.026379][ T6034] ? device_for_each_child+0xbb/0x1b0
[ 178.031762][ T6034] kasan_report+0x143/0x180
[ 178.036284][ T6034] ? device_for_each_child+0xbb/0x1b0
[ 178.041673][ T6034] ? __pfx_dev_memalloc_noio+0x10/0x10
[ 178.047167][ T6034] device_for_each_child+0xbb/0x1b0
[ 178.052380][ T6034] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 178.058724][ T6034] ? __pfx_device_for_each_child+0x10/0x10
[ 178.064545][ T6034] ? _raw_spin_unlock_irq+0x23/0x50
[ 178.069756][ T6034] ? lockdep_hardirqs_on+0x99/0x150
[ 178.074989][ T6034] pm_runtime_set_memalloc_noio+0x114/0x260
[ 178.080897][ T6034] netdev_unregister_kobject+0x178/0x250
[ 178.086545][ T6034] unregister_netdevice_many_notify+0x1851/0x1da0
[ 178.092977][ T6034] ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 178.099751][ T6034] ? __pfx___mutex_trylock_common+0x10/0x10
[ 178.105659][ T6034] ? rcu_is_watching+0x15/0xb0
[ 178.110436][ T6034] ? trace_contention_end+0x3c/0x120
[ 178.115738][ T6034] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 178.122087][ T6034] unregister_netdevice_queue+0x303/0x370
[ 178.127824][ T6034] ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 178.134082][ T6034] ? down_write+0x18c/0x220
[ 178.138607][ T6034] ? __pfx_down_write+0x10/0x10
[ 178.143481][ T6034] unregister_netdev+0x1c/0x30
[ 178.148270][ T6034] bnep_session+0x2e0e/0x3000
[ 178.152973][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 178.158012][ T6034] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 178.164355][ T6034] ? __pfx_woken_wake_function+0x10/0x10
[ 178.170008][ T6034] ? __kthread_parkme+0x169/0x1d0
[ 178.175046][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 178.180083][ T6034] kthread+0x2f0/0x390
[ 178.184162][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 178.189202][ T6034] ? __pfx_kthread+0x10/0x10
[ 178.193808][ T6034] ret_from_fork+0x4b/0x80
[ 178.198242][ T6034] ? __pfx_kthread+0x10/0x10
[ 178.202848][ T6034] ret_from_fork_asm+0x1a/0x30
[ 178.207633][ T6034]
[ 178.210658][ T6034]
[ 178.212985][ T6034] Allocated by task 5948:
[ 178.217314][ T6034] kasan_save_track+0x3f/0x80
[ 178.222002][ T6034] __kasan_kmalloc+0x98/0xb0
[ 178.226602][ T6034] __kmalloc_noprof+0x1fc/0x400
[ 178.231470][ T6034] hci_alloc_dev_priv+0x27/0x2030
[ 178.236511][ T6034] vhci_create_device+0x116/0x6a0
[ 178.241546][ T6034] vhci_write+0x3cf/0x490
[ 178.245889][ T6034] vfs_write+0xaeb/0xd30
[ 178.250142][ T6034] ksys_write+0x183/0x2b0
[ 178.254475][ T6034] do_syscall_64+0xf3/0x230
[ 178.258990][ T6034] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 178.264894][ T6034]
[ 178.267225][ T6034] Freed by task 5948:
[ 178.271212][ T6034] kasan_save_track+0x3f/0x80
[ 178.275907][ T6034] kasan_save_free_info+0x40/0x50
[ 178.280950][ T6034] __kasan_slab_free+0x59/0x70
[ 178.285725][ T6034] kfree+0x1a0/0x440
[ 178.289631][ T6034] hci_release_dev+0x1525/0x16b0
[ 178.294577][ T6034] bt_host_release+0x83/0x90
[ 178.299177][ T6034] device_release+0x99/0x1c0
[ 178.303779][ T6034] kobject_put+0x22f/0x480
[ 178.308211][ T6034] vhci_release+0x88/0xd0
[ 178.312556][ T6034] __fput+0x23f/0x880
[ 178.316554][ T6034] task_work_run+0x24f/0x310
[ 178.321153][ T6034] do_exit+0xa2f/0x28e0
[ 178.325320][ T6034] do_group_exit+0x207/0x2c0
[ 178.329919][ T6034] get_signal+0x16a3/0x1740
[ 178.334434][ T6034] arch_do_signal_or_restart+0x96/0x860
[ 178.339996][ T6034] syscall_exit_to_user_mode+0xc9/0x370
[ 178.345556][ T6034] do_syscall_64+0x100/0x230
[ 178.350159][ T6034] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 178.356065][ T6034]
[ 178.358392][ T6034] Last potentially related work creation:
[ 178.364113][ T6034] kasan_save_stack+0x3f/0x60
[ 178.368800][ T6034] __kasan_record_aux_stack+0xac/0xc0
[ 178.374189][ T6034] insert_work+0x3e/0x330
[ 178.378536][ T6034] __queue_work+0xc8b/0xf50
[ 178.383057][ T6034] queue_work_on+0x1c2/0x380
[ 178.387664][ T6034] l2cap_chan_send+0x3d6/0x2690
[ 178.392529][ T6034] l2cap_sock_sendmsg+0x1b4/0x2c0
[ 178.397566][ T6034] __sock_sendmsg+0x221/0x270
[ 178.402255][ T6034] kernel_sendmsg+0x151/0x220
[ 178.406940][ T6034] bnep_session+0x287a/0x3000
[ 178.411636][ T6034] kthread+0x2f0/0x390
[ 178.415714][ T6034] ret_from_fork+0x4b/0x80
[ 178.420148][ T6034] ret_from_fork_asm+0x1a/0x30
[ 178.424931][ T6034]
[ 178.427263][ T6034] Second to last potentially related work creation:
[ 178.433847][ T6034] kasan_save_stack+0x3f/0x60
[ 178.438534][ T6034] __kasan_record_aux_stack+0xac/0xc0
[ 178.443921][ T6034] insert_work+0x3e/0x330
[ 178.448262][ T6034] __queue_work+0xc8b/0xf50
[ 178.452779][ T6034] queue_work_on+0x1c2/0x380
[ 178.457383][ T6034] l2cap_chan_send+0x3d6/0x2690
[ 178.462254][ T6034] l2cap_sock_sendmsg+0x1b4/0x2c0
[ 178.467292][ T6034] __sock_sendmsg+0x221/0x270
[ 178.471979][ T6034] kernel_sendmsg+0x151/0x220
[ 178.476664][ T6034] bnep_session+0x287a/0x3000
[ 178.481348][ T6034] kthread+0x2f0/0x390
[ 178.485424][ T6034] ret_from_fork+0x4b/0x80
[ 178.489858][ T6034] ret_from_fork_asm+0x1a/0x30
[ 178.494642][ T6034]
[ 178.496977][ T6034] The buggy address belongs to the object at ffff888078534000
[ 178.496977][ T6034] which belongs to the cache kmalloc-8k of size 8192
[ 178.511041][ T6034] The buggy address is located 4872 bytes inside of
[ 178.511041][ T6034] freed 8192-byte region [ffff888078534000, ffff888078536000)
[ 178.525020][ T6034]
[ 178.527349][ T6034] The buggy address belongs to the physical page:
[ 178.533777][ T6034] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888078530000 pfn:0x78530
[ 178.543859][ T6034] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 178.552370][ T6034] flags: 0xfff00000000240(workingset|head|node=0|zone=1|lastcpupid=0x7ff)
[ 178.560890][ T6034] page_type: f5(slab)
[ 178.564882][ T6034] raw: 00fff00000000240 ffff88801ac42280 ffffea0001857c10 ffffea0001e06e10
[ 178.573474][ T6034] raw: ffff888078530000 0000000000020001 00000001f5000000 0000000000000000
[ 178.582075][ T6034] head: 00fff00000000240 ffff88801ac42280 ffffea0001857c10 ffffea0001e06e10
[ 178.590753][ T6034] head: ffff888078530000 0000000000020001 00000001f5000000 0000000000000000
[ 178.599435][ T6034] head: 00fff00000000003 ffffea0001e14c01 ffffffffffffffff 0000000000000000
[ 178.608111][ T6034] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000
[ 178.616779][ T6034] page dumped because: kasan: bad access detected
[ 178.623198][ T6034] page_owner tracks the page as allocated
[ 178.628914][ T6034] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5594, tgid 5594 (S50sshd), ts 35001022823, free_ts 34987785764
[ 178.649071][ T6034] post_alloc_hook+0x1f3/0x230
[ 178.653858][ T6034] get_page_from_freelist+0x3649/0x3790
[ 178.659416][ T6034] __alloc_pages_noprof+0x292/0x710
[ 178.664630][ T6034] alloc_pages_mpol_noprof+0x3e8/0x680
[ 178.670104][ T6034] alloc_slab_page+0x6a/0x140
[ 178.674792][ T6034] allocate_slab+0x5a/0x2f0
[ 178.679309][ T6034] ___slab_alloc+0xcd1/0x14b0
[ 178.683998][ T6034] __slab_alloc+0x58/0xa0
[ 178.688325][ T6034] __kmalloc_cache_noprof+0x1d5/0x2c0
[ 178.693679][ T6034] tomoyo_init_log+0x11cd/0x2050
[ 178.698602][ T6034] tomoyo_supervisor+0x38a/0x11f0
[ 178.703607][ T6034] tomoyo_env_perm+0x178/0x210
[ 178.708364][ T6034] tomoyo_find_next_domain+0x146e/0x1d40
[ 178.713986][ T6034] tomoyo_bprm_check_security+0x114/0x180
[ 178.719695][ T6034] security_bprm_check+0x86/0x250
[ 178.724702][ T6034] bprm_execve+0xa56/0x1770
[ 178.729188][ T6034] page last free pid 5592 tgid 5592 stack trace:
[ 178.735496][ T6034] free_unref_page+0xdf9/0x1140
[ 178.740357][ T6034] __put_partials+0xeb/0x130
[ 178.744932][ T6034] put_cpu_partial+0x17c/0x250
[ 178.749676][ T6034] __slab_free+0x2ea/0x3d0
[ 178.754073][ T6034] qlist_free_all+0x9a/0x140
[ 178.758643][ T6034] kasan_quarantine_reduce+0x14f/0x170
[ 178.764077][ T6034] __kasan_slab_alloc+0x23/0x80
[ 178.768911][ T6034] __kmalloc_noprof+0x1a6/0x400
[ 178.773739][ T6034] tomoyo_realpath_from_path+0xcf/0x5e0
[ 178.779268][ T6034] tomoyo_path_perm+0x2b7/0x740
[ 178.784094][ T6034] security_inode_getattr+0x130/0x330
[ 178.789442][ T6034] vfs_getattr+0x45/0x430
[ 178.793757][ T6034] vfs_fstatat+0xe4/0x190
[ 178.798076][ T6034] __x64_sys_newfstatat+0x11d/0x1a0
[ 178.803254][ T6034] do_syscall_64+0xf3/0x230
[ 178.807735][ T6034] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 178.813625][ T6034]
[ 178.815931][ T6034] Memory state around the buggy address:
[ 178.821538][ T6034] ffff888078535200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 178.829577][ T6034] ffff888078535280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 178.837614][ T6034] >ffff888078535300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 178.845663][ T6034] ^
[ 178.849987][ T6034] ffff888078535380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 178.858032][ T6034] ffff888078535400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 178.866070][ T6034] ==================================================================
[ 178.878889][ T6034] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 178.886113][ T6034] CPU: 1 UID: 0 PID: 6034 Comm: kbnepd bnep0 Not tainted 6.12.0-rc7-syzkaller-00135-g8ffade77b633 #0
[ 178.896975][ T6034] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024
[ 178.907036][ T6034] Call Trace:
[ 178.910327][ T6034]
[ 178.913262][ T6034] dump_stack_lvl+0x241/0x360
[ 178.917931][ T6034] ? __pfx_dump_stack_lvl+0x10/0x10
[ 178.923119][ T6034] ? __pfx__printk+0x10/0x10
[ 178.927693][ T6034] ? preempt_schedule+0xe1/0xf0
[ 178.932526][ T6034] ? vscnprintf+0x5d/0x90
[ 178.936848][ T6034] panic+0x349/0x880
[ 178.940728][ T6034] ? check_panic_on_warn+0x21/0xb0
[ 178.945821][ T6034] ? __pfx_panic+0x10/0x10
[ 178.950230][ T6034] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 178.956200][ T6034] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 178.962517][ T6034] ? print_report+0x502/0x550
[ 178.967194][ T6034] check_panic_on_warn+0x86/0xb0
[ 178.972130][ T6034] ? device_for_each_child+0xbb/0x1b0
[ 178.977491][ T6034] end_report+0x77/0x160
[ 178.981730][ T6034] kasan_report+0x154/0x180
[ 178.986223][ T6034] ? device_for_each_child+0xbb/0x1b0
[ 178.991587][ T6034] ? __pfx_dev_memalloc_noio+0x10/0x10
[ 178.997040][ T6034] device_for_each_child+0xbb/0x1b0
[ 179.002235][ T6034] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 179.008560][ T6034] ? __pfx_device_for_each_child+0x10/0x10
[ 179.014360][ T6034] ? _raw_spin_unlock_irq+0x23/0x50
[ 179.019548][ T6034] ? lockdep_hardirqs_on+0x99/0x150
[ 179.024739][ T6034] pm_runtime_set_memalloc_noio+0x114/0x260
[ 179.030626][ T6034] netdev_unregister_kobject+0x178/0x250
[ 179.036253][ T6034] unregister_netdevice_many_notify+0x1851/0x1da0
[ 179.042666][ T6034] ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[ 179.049428][ T6034] ? __pfx___mutex_trylock_common+0x10/0x10
[ 179.055317][ T6034] ? rcu_is_watching+0x15/0xb0
[ 179.060074][ T6034] ? trace_contention_end+0x3c/0x120
[ 179.065353][ T6034] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 179.071674][ T6034] unregister_netdevice_queue+0x303/0x370
[ 179.077386][ T6034] ? __pfx_unregister_netdevice_queue+0x10/0x10
[ 179.083614][ T6034] ? down_write+0x18c/0x220
[ 179.088107][ T6034] ? __pfx_down_write+0x10/0x10
[ 179.092958][ T6034] unregister_netdev+0x1c/0x30
[ 179.097714][ T6034] bnep_session+0x2e0e/0x3000
[ 179.102389][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 179.107401][ T6034] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 179.113721][ T6034] ? __pfx_woken_wake_function+0x10/0x10
[ 179.119350][ T6034] ? __kthread_parkme+0x169/0x1d0
[ 179.124369][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 179.129380][ T6034] kthread+0x2f0/0x390
[ 179.133436][ T6034] ? __pfx_bnep_session+0x10/0x10
[ 179.138447][ T6034] ? __pfx_kthread+0x10/0x10
[ 179.143025][ T6034] ret_from_fork+0x4b/0x80
[ 179.147435][ T6034] ? __pfx_kthread+0x10/0x10
[ 179.152015][ T6034] ret_from_fork_asm+0x1a/0x30
[ 179.156785][ T6034]
[ 179.160037][ T6034] Kernel Offset: disabled
[ 179.164345][ T6034] Rebooting in 86400 seconds..