no interfaces have a carrier
forked to background, child pid 5503
[   66.141710][ T5504] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.176244][ T5504] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting sshd: OK

syzkaller
Warning: Permanently added '10.128.1.68' (ED25519) to the list of known hosts.
executing program
syzkaller login: [   90.994292][ T5833] ==================================================================
[   91.002407][ T5833] BUG: KASAN: slab-out-of-bounds in afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.011125][ T5833] Read of size 1 at addr ffff88801cb233a7 by task syz-executor140/5833
[   91.019399][ T5833] 
[   91.021750][ T5833] CPU: 0 UID: 0 PID: 5833 Comm: syz-executor140 Not tainted 6.14.0-syzkaller-12966-ga2cc6ff5ec8f #0 PREEMPT(full) 
[   91.021779][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.021795][ T5833] Call Trace:
[   91.021804][ T5833]  <TASK>
[   91.021815][ T5833]  dump_stack_lvl+0x116/0x1f0
[   91.021854][ T5833]  print_report+0xc3/0x670
[   91.021874][ T5833]  ? __virt_addr_valid+0x5e/0x590
[   91.021907][ T5833]  ? __phys_addr+0xc6/0x150
[   91.021939][ T5833]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.021966][ T5833]  kasan_report+0xe0/0x110
[   91.021986][ T5833]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.022016][ T5833]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.022059][ T5833]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[   91.022098][ T5833]  ? find_held_lock+0x2b/0x80
[   91.022135][ T5833]  ? __might_fault+0xe3/0x190
[   91.022176][ T5833]  ? __might_fault+0xe3/0x190
[   91.022209][ T5833]  ? __might_fault+0x13b/0x190
[   91.022249][ T5833]  ? proc_simple_write+0x114/0x1b0
[   91.022276][ T5833]  proc_simple_write+0x114/0x1b0
[   91.022302][ T5833]  ? __pfx_proc_simple_write+0x10/0x10
[   91.022330][ T5833]  proc_reg_write+0x23d/0x330
[   91.022352][ T5833]  ? __pfx_proc_reg_write+0x10/0x10
[   91.022374][ T5833]  vfs_writev+0x6c4/0xdc0
[   91.022403][ T5833]  ? __handle_mm_fault+0x4af/0x2a40
[   91.022442][ T5833]  ? __pfx_vfs_writev+0x10/0x10
[   91.022472][ T5833]  ? lock_vma_under_rcu+0x47d/0x970
[   91.022501][ T5833]  ? cgroup_rstat_updated+0x2a/0xb20
[   91.022540][ T5833]  ? do_writev+0x132/0x330
[   91.022567][ T5833]  do_writev+0x132/0x330
[   91.022595][ T5833]  ? __pfx_do_writev+0x10/0x10
[   91.022627][ T5833]  do_syscall_64+0xcd/0x260
[   91.022658][ T5833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.022682][ T5833] RIP: 0033:0x7fa6ec00fa79
[   91.022703][ T5833] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   91.022724][ T5833] RSP: 002b:00007fffc14cbd38 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   91.022745][ T5833] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa6ec00fa79
[   91.022760][ T5833] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[   91.022773][ T5833] RBP: 00007fa6ec0825f0 R08: 0000000000000006 R09: 0000000000000006
[   91.022787][ T5833] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[   91.022800][ T5833] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[   91.022821][ T5833]  </TASK>
[   91.022828][ T5833] 
[   91.269074][ T5833] Allocated by task 5833:
[   91.273404][ T5833]  kasan_save_stack+0x33/0x60
[   91.278105][ T5833]  kasan_save_track+0x14/0x30
[   91.282805][ T5833]  __kasan_kmalloc+0xaa/0xb0
[   91.287420][ T5833]  __kmalloc_node_track_caller_noprof+0x221/0x510
[   91.293857][ T5833]  memdup_user_nul+0x2b/0x120
[   91.298543][ T5833]  proc_simple_write+0xc7/0x1b0
[   91.303597][ T5833]  proc_reg_write+0x23d/0x330
[   91.308289][ T5833]  vfs_writev+0x6c4/0xdc0
[   91.312633][ T5833]  do_writev+0x132/0x330
[   91.316900][ T5833]  do_syscall_64+0xcd/0x260
[   91.321448][ T5833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.327362][ T5833] 
[   91.329691][ T5833] The buggy address belongs to the object at ffff88801cb233a0
[   91.329691][ T5833]  which belongs to the cache kmalloc-8 of size 8
[   91.343409][ T5833] The buggy address is located 0 bytes to the right of
[   91.343409][ T5833]  allocated 7-byte region [ffff88801cb233a0, ffff88801cb233a7)
[   91.357740][ T5833] 
[   91.360069][ T5833] The buggy address belongs to the physical page:
[   91.366489][ T5833] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1cb23
[   91.375279][ T5833] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[   91.382408][ T5833] page_type: f5(slab)
[   91.386467][ T5833] raw: 00fff00000000000 ffff88801b441500 dead000000000100 dead000000000122
[   91.395168][ T5833] raw: 0000000000000000 0000000080800080 00000000f5000000 0000000000000000
[   91.403757][ T5833] page dumped because: kasan: bad access detected
[   91.410182][ T5833] page_owner tracks the page as allocated
[   91.415898][ T5833] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 1, tgid 1 (swapper/0), ts 4435759757, free_ts 0
[   91.433487][ T5833]  post_alloc_hook+0x181/0x1b0
[   91.438275][ T5833]  get_page_from_freelist+0x1193/0x39b0
[   91.443844][ T5833]  __alloc_frozen_pages_noprof+0x263/0x2370
[   91.449761][ T5833]  alloc_pages_mpol+0x1fb/0x550
[   91.454634][ T5833]  new_slab+0x23c/0x330
[   91.458820][ T5833]  ___slab_alloc+0xd9c/0x1940
[   91.463559][ T5833]  __slab_alloc.constprop.0+0x56/0xb0
[   91.468950][ T5833]  __kmalloc_noprof+0x2f2/0x510
[   91.474030][ T5833]  acpi_ns_internalize_name+0x144/0x220
[   91.479685][ T5833]  acpi_ns_get_node_unlocked+0x163/0x310
[   91.485338][ T5833]  acpi_ns_get_node+0x4c/0x70
[   91.490032][ T5833]  acpi_get_handle+0x105/0x270
[   91.494840][ T5833]  acpi_has_method+0x7a/0xc0
[   91.499449][ T5833]  handle_ioapic_add+0x9d/0xc50
[   91.504341][ T5833]  acpi_ns_walk_namespace+0x405/0x5b0
[   91.510088][ T5833]  acpi_walk_namespace+0x110/0x130
[   91.515233][ T5833] page_owner free stack trace missing
[   91.520631][ T5833] 
[   91.522956][ T5833] Memory state around the buggy address:
[   91.528601][ T5833]  ffff88801cb23280: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   91.536669][ T5833]  ffff88801cb23300: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   91.544780][ T5833] >ffff88801cb23380: fa fc fc fc 07 fc fc fc fa fc fc fc fa fc fc fc
[   91.552882][ T5833]                                ^
[   91.558030][ T5833]  ffff88801cb23400: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   91.566109][ T5833]  ffff88801cb23480: fa fc fc fc fa fc fc fc fa fc fc fc fa fc fc fc
[   91.574187][ T5833] ==================================================================
[   91.582498][ T5833] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   91.589753][ T5833] CPU: 0 UID: 0 PID: 5833 Comm: syz-executor140 Not tainted 6.14.0-syzkaller-12966-ga2cc6ff5ec8f #0 PREEMPT(full) 
[   91.601847][ T5833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   91.611926][ T5833] Call Trace:
[   91.615216][ T5833]  <TASK>
[   91.618158][ T5833]  dump_stack_lvl+0x3d/0x1f0
[   91.622782][ T5833]  panic+0x71c/0x800
[   91.626710][ T5833]  ? __pfx_panic+0x10/0x10
[   91.631166][ T5833]  ? mark_held_locks+0x49/0x80
[   91.635964][ T5833]  ? preempt_schedule_thunk+0x16/0x30
[   91.641372][ T5833]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.647393][ T5833]  ? preempt_schedule_common+0x44/0xc0
[   91.652908][ T5833]  ? check_panic_on_warn+0x1f/0xb0
[   91.658053][ T5833]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.664068][ T5833]  check_panic_on_warn+0xab/0xb0
[   91.669032][ T5833]  end_report+0x107/0x170
[   91.673382][ T5833]  kasan_report+0xee/0x110
[   91.677818][ T5833]  ? afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.683837][ T5833]  afs_proc_addr_prefs_write+0x13a9/0x15f0
[   91.689679][ T5833]  ? __pfx_afs_proc_addr_prefs_write+0x10/0x10
[   91.695864][ T5833]  ? find_held_lock+0x2b/0x80
[   91.700569][ T5833]  ? __might_fault+0xe3/0x190
[   91.705289][ T5833]  ? __might_fault+0xe3/0x190
[   91.710016][ T5833]  ? __might_fault+0x13b/0x190
[   91.714824][ T5833]  ? proc_simple_write+0x114/0x1b0
[   91.719964][ T5833]  proc_simple_write+0x114/0x1b0
[   91.725027][ T5833]  ? __pfx_proc_simple_write+0x10/0x10
[   91.730610][ T5833]  proc_reg_write+0x23d/0x330
[   91.735396][ T5833]  ? __pfx_proc_reg_write+0x10/0x10
[   91.740612][ T5833]  vfs_writev+0x6c4/0xdc0
[   91.744974][ T5833]  ? __handle_mm_fault+0x4af/0x2a40
[   91.750207][ T5833]  ? __pfx_vfs_writev+0x10/0x10
[   91.755091][ T5833]  ? lock_vma_under_rcu+0x47d/0x970
[   91.760326][ T5833]  ? cgroup_rstat_updated+0x2a/0xb20
[   91.765664][ T5833]  ? do_writev+0x132/0x330
[   91.770106][ T5833]  do_writev+0x132/0x330
[   91.774383][ T5833]  ? __pfx_do_writev+0x10/0x10
[   91.779217][ T5833]  do_syscall_64+0xcd/0x260
[   91.783754][ T5833]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   91.789681][ T5833] RIP: 0033:0x7fa6ec00fa79
[   91.794114][ T5833] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   91.813835][ T5833] RSP: 002b:00007fffc14cbd38 EFLAGS: 00000246 ORIG_RAX: 0000000000000014
[   91.822387][ T5833] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa6ec00fa79
[   91.830375][ T5833] RDX: 0000000000000003 RSI: 0000200000000080 RDI: 0000000000000003
[   91.838365][ T5833] RBP: 00007fa6ec0825f0 R08: 0000000000000006 R09: 0000000000000006
[   91.846351][ T5833] R10: 0000000000000006 R11: 0000000000000246 R12: 0000000000000001
[   91.854341][ T5833] R13: 431bde82d7b634db R14: 0000000000000001 R15: 0000000000000001
[   91.862342][ T5833]  </TASK>
[   91.865627][ T5833] Kernel Offset: disabled
[   91.869961][ T5833] Rebooting in 86400 seconds..