Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. 2024/04/04 16:40:52 fuzzer started 2024/04/04 16:40:52 dialing manager at 10.128.0.169:30007 [ 59.731755][ T5065] cgroup: Unknown subsys name 'net' [ 59.875423][ T5065] cgroup: Unknown subsys name 'rlimit' 2024/04/04 16:40:54 syscalls: 138 2024/04/04 16:40:54 code coverage: enabled 2024/04/04 16:40:54 comparison tracing: enabled 2024/04/04 16:40:54 extra coverage: enabled 2024/04/04 16:40:54 delay kcov mmap: enabled 2024/04/04 16:40:54 setuid sandbox: enabled 2024/04/04 16:40:54 namespace sandbox: enabled 2024/04/04 16:40:54 Android sandbox: /sys/fs/selinux/policy does not exist 2024/04/04 16:40:54 fault injection: enabled 2024/04/04 16:40:54 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled 2024/04/04 16:40:54 net packet injection: enabled 2024/04/04 16:40:54 net device setup: enabled 2024/04/04 16:40:54 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist 2024/04/04 16:40:54 devlink PCI setup: PCI device 0000:00:10.0 is not available 2024/04/04 16:40:54 NIC VF setup: PCI device 0000:00:11.0 is not available 2024/04/04 16:40:54 USB emulation: enabled 2024/04/04 16:40:54 hci packet injection: enabled 2024/04/04 16:40:54 wifi device emulation: enabled 2024/04/04 16:40:54 802.15.4 emulation: enabled 2024/04/04 16:40:54 swap file: enabled [ 61.286850][ T5065] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k 2024/04/04 16:40:54 starting 5 executor processes [ 62.016388][ T5079] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 62.048034][ T5085] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 62.066752][ T5086] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 62.075842][ T5086] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 62.086303][ T5092] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 62.094166][ T5092] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 62.104525][ T5092] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 62.111739][ T5089] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 62.113298][ T5092] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 62.120706][ T5089] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1 [ 62.126970][ T5092] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 62.135717][ T5089] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9 [ 62.148479][ T5089] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 62.150850][ T5094] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 62.156203][ T5089] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9 [ 62.164721][ T5094] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 62.171872][ T5089] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 62.178024][ T5094] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 62.185065][ T5089] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 62.198572][ T5094] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 62.198580][ T5089] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 62.199874][ T5089] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 62.220838][ T5079] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 62.223828][ T5089] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4 [ 62.229761][ T5079] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 62.236728][ T53] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3 [ 62.250137][ T4465] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 62.264566][ T53] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2 [ 62.274775][ T5086] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 62.283139][ T5086] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 62.732913][ T5080] chnl_net:caif_netlink_parms(): no params data found [ 62.877779][ T5077] chnl_net:caif_netlink_parms(): no params data found [ 62.938389][ T5082] chnl_net:caif_netlink_parms(): no params data found [ 62.987787][ T5080] bridge0: port 1(bridge_slave_0) entered blocking state [ 62.996404][ T5080] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.004253][ T5080] bridge_slave_0: entered allmulticast mode [ 63.011695][ T5080] bridge_slave_0: entered promiscuous mode [ 63.054561][ T5080] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.061800][ T5080] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.070710][ T5080] bridge_slave_1: entered allmulticast mode [ 63.078857][ T5080] bridge_slave_1: entered promiscuous mode [ 63.097034][ T5081] chnl_net:caif_netlink_parms(): no params data found [ 63.131124][ T5090] chnl_net:caif_netlink_parms(): no params data found [ 63.154730][ T5080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.221136][ T5080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.294238][ T5080] team0: Port device team_slave_0 added [ 63.317843][ T5077] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.325409][ T5077] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.333008][ T5077] bridge_slave_0: entered allmulticast mode [ 63.342944][ T5077] bridge_slave_0: entered promiscuous mode [ 63.351246][ T5077] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.359402][ T5077] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.367807][ T5077] bridge_slave_1: entered allmulticast mode [ 63.375688][ T5077] bridge_slave_1: entered promiscuous mode [ 63.402626][ T5080] team0: Port device team_slave_1 added [ 63.479451][ T5082] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.487087][ T5082] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.494918][ T5082] bridge_slave_0: entered allmulticast mode [ 63.501703][ T5082] bridge_slave_0: entered promiscuous mode [ 63.510687][ T5082] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.518081][ T5082] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.525817][ T5082] bridge_slave_1: entered allmulticast mode [ 63.532655][ T5082] bridge_slave_1: entered promiscuous mode [ 63.543290][ T5077] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.556145][ T5077] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.578268][ T5090] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.585762][ T5090] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.593043][ T5090] bridge_slave_0: entered allmulticast mode [ 63.600195][ T5090] bridge_slave_0: entered promiscuous mode [ 63.630109][ T5080] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 63.638028][ T5080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.664517][ T5080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 63.708697][ T5090] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.717912][ T5090] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.727272][ T5090] bridge_slave_1: entered allmulticast mode [ 63.735029][ T5090] bridge_slave_1: entered promiscuous mode [ 63.749795][ T5081] bridge0: port 1(bridge_slave_0) entered blocking state [ 63.756984][ T5081] bridge0: port 1(bridge_slave_0) entered disabled state [ 63.765063][ T5081] bridge_slave_0: entered allmulticast mode [ 63.771806][ T5081] bridge_slave_0: entered promiscuous mode [ 63.780578][ T5081] bridge0: port 2(bridge_slave_1) entered blocking state [ 63.787972][ T5081] bridge0: port 2(bridge_slave_1) entered disabled state [ 63.795907][ T5081] bridge_slave_1: entered allmulticast mode [ 63.802618][ T5081] bridge_slave_1: entered promiscuous mode [ 63.811163][ T5080] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 63.821323][ T5080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 63.852950][ T5080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 63.879260][ T5082] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.891182][ T5082] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 63.945090][ T5081] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 63.978189][ T5077] team0: Port device team_slave_0 added [ 63.988199][ T5077] team0: Port device team_slave_1 added [ 63.996770][ T5090] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 64.018231][ T5081] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.041320][ T5082] team0: Port device team_slave_0 added [ 64.071250][ T5090] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 64.118611][ T5081] team0: Port device team_slave_0 added [ 64.127488][ T5082] team0: Port device team_slave_1 added [ 64.144647][ T5077] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.151897][ T5077] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.179927][ T5077] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.205234][ T5090] team0: Port device team_slave_0 added [ 64.216719][ T5080] hsr_slave_0: entered promiscuous mode [ 64.223669][ T5080] hsr_slave_1: entered promiscuous mode [ 64.233286][ T5081] team0: Port device team_slave_1 added [ 64.244491][ T5086] Bluetooth: hci1: command tx timeout [ 64.267393][ T5077] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.274966][ T5077] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.302209][ T5077] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.318409][ T5090] team0: Port device team_slave_1 added [ 64.323736][ T5086] Bluetooth: hci3: command tx timeout [ 64.330301][ T5086] Bluetooth: hci0: command tx timeout [ 64.336483][ T5085] Bluetooth: hci4: command tx timeout [ 64.336593][ T53] Bluetooth: hci2: command tx timeout [ 64.362558][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.370474][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.397478][ T5081] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.410088][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.418265][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.444873][ T5082] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.475294][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 64.482784][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.510373][ T5090] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 64.534139][ T5081] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.541145][ T5081] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.568555][ T5081] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.580996][ T5082] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.588631][ T5082] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.615167][ T5082] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.641529][ T5090] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 64.650040][ T5090] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 64.678050][ T5090] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 64.766487][ T5077] hsr_slave_0: entered promiscuous mode [ 64.772955][ T5077] hsr_slave_1: entered promiscuous mode [ 64.783143][ T5077] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 64.791540][ T5077] Cannot create hsr debugfs directory [ 64.827579][ T5081] hsr_slave_0: entered promiscuous mode [ 64.834754][ T5081] hsr_slave_1: entered promiscuous mode [ 64.840975][ T5081] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 64.848904][ T5081] Cannot create hsr debugfs directory [ 64.901903][ T5082] hsr_slave_0: entered promiscuous mode [ 64.909309][ T5082] hsr_slave_1: entered promiscuous mode [ 64.915617][ T5082] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 64.923279][ T5082] Cannot create hsr debugfs directory [ 64.990072][ T5090] hsr_slave_0: entered promiscuous mode [ 64.997211][ T5090] hsr_slave_1: entered promiscuous mode [ 65.003394][ T5090] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 65.011369][ T5090] Cannot create hsr debugfs directory [ 65.366854][ T5080] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 65.387460][ T5080] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 65.399932][ T5080] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 65.409977][ T5080] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 65.475017][ T5081] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 65.495352][ T5081] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 65.505963][ T5081] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 65.518661][ T5081] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 65.623929][ T5077] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 65.634668][ T5077] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 65.655531][ T5077] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 65.701006][ T5077] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 65.736825][ T5090] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 65.751358][ T5090] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 65.761376][ T5090] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 65.772166][ T5090] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 65.871297][ T5082] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 65.888762][ T5080] 8021q: adding VLAN 0 to HW filter on device bond0 [ 65.904244][ T5082] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 65.916555][ T5082] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 65.930965][ T5082] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 65.982211][ T5080] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.041497][ T5081] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.050928][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.058978][ T5087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.077989][ T5087] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.085344][ T5087] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.155034][ T5081] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.234881][ T5126] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.242712][ T5126] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.260493][ T5077] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.286920][ T5090] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.324618][ T53] Bluetooth: hci1: command tx timeout [ 66.326969][ T5077] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.348330][ T5126] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.356029][ T5126] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.395694][ T5090] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.404918][ T53] Bluetooth: hci2: command tx timeout [ 66.410575][ T53] Bluetooth: hci3: command tx timeout [ 66.411653][ T5080] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.416946][ T5086] Bluetooth: hci0: command tx timeout [ 66.433306][ T5085] Bluetooth: hci4: command tx timeout [ 66.446055][ T5129] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.453389][ T5129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.471016][ T5129] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.478671][ T5129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.546244][ T5077] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 66.572586][ T5087] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.579941][ T5087] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.608518][ T5082] 8021q: adding VLAN 0 to HW filter on device bond0 [ 66.652925][ T5129] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.660095][ T5129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 66.695200][ T5082] 8021q: adding VLAN 0 to HW filter on device team0 [ 66.759740][ T5080] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 66.782659][ T5129] bridge0: port 1(bridge_slave_0) entered blocking state [ 66.789897][ T5129] bridge0: port 1(bridge_slave_0) entered forwarding state [ 66.865477][ T5129] bridge0: port 2(bridge_slave_1) entered blocking state [ 66.872751][ T5129] bridge0: port 2(bridge_slave_1) entered forwarding state [ 67.050492][ T5077] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.091485][ T5080] veth0_vlan: entered promiscuous mode [ 67.128236][ T5080] veth1_vlan: entered promiscuous mode [ 67.196879][ T5081] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.248836][ T5077] veth0_vlan: entered promiscuous mode [ 67.323130][ T5077] veth1_vlan: entered promiscuous mode [ 67.362283][ T5090] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.406546][ T5080] veth0_macvtap: entered promiscuous mode [ 67.448672][ T5077] veth0_macvtap: entered promiscuous mode [ 67.462521][ T5080] veth1_macvtap: entered promiscuous mode [ 67.480143][ T5077] veth1_macvtap: entered promiscuous mode [ 67.519101][ T5081] veth0_vlan: entered promiscuous mode [ 67.542716][ T5080] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.556442][ T5082] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 67.590526][ T5081] veth1_vlan: entered promiscuous mode [ 67.627846][ T5077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 67.640998][ T5077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.653209][ T5077] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 67.668560][ T5080] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.680531][ T5080] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.691599][ T5080] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.702371][ T5080] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.712378][ T5080] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.760287][ T5077] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 67.775752][ T5077] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 67.787627][ T5077] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 67.814762][ T5077] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.824391][ T5077] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.834602][ T5077] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.844777][ T5077] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 67.917670][ T5081] veth0_macvtap: entered promiscuous mode [ 67.931734][ T5082] veth0_vlan: entered promiscuous mode [ 67.965568][ T5082] veth1_vlan: entered promiscuous mode [ 67.997837][ T5090] veth0_vlan: entered promiscuous mode [ 68.006986][ T5081] veth1_macvtap: entered promiscuous mode [ 68.033226][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.044967][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.055380][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.066368][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.078299][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 68.101233][ T2431] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.111235][ T2431] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.129026][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.140529][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.151803][ T5081] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 68.162322][ T5081] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.174166][ T5081] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 68.191477][ T5081] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.202805][ T5081] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.212080][ T5081] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.221304][ T5081] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 68.238464][ T5090] veth1_vlan: entered promiscuous mode [ 68.305150][ T43] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.312150][ T5082] veth0_macvtap: entered promiscuous mode [ 68.319194][ T43] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.377345][ T5082] veth1_macvtap: entered promiscuous mode [ 68.404485][ T5086] Bluetooth: hci1: command tx timeout [ 68.418012][ T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 16:41:01 executing program 2: bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000200), 0x20) (async, rerun: 32) r0 = bpf$OBJ_GET_PROG(0x7, &(0x7f0000003340)=@generic={&(0x7f0000003300)='./file0\x00', 0x0, 0x8}, 0x18) (async, rerun: 32) ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b26, &(0x7f0000000000)={'wlan1\x00'}) (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001380)={0xffffffffffffffff, 0xfe, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff3c, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffcc3, 0x51, 0x0, 0x0, 0x0, 0x12, 0x8, 0xd99bbe51f818c7bf, 0x0}}, 0xfffffffffffffe7b) (async) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001540)=[{0x0}, {0x0}, {&(0x7f0000001340)=""/74, 0x4a}, {0x0}], 0x4, &(0x7f00000015c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x20}, 0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000001740), 0x0, &(0x7f0000000840)=ANY=[@ANYRESHEX=r1, @ANYRES32, @ANYRESOCT=r4, @ANYBLOB="1c0000000000000001000000", @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000010000001c00000000000000010000000200000000", @ANYRES32=0x0, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=r3, @ANYRES32, @ANYBLOB="00000000100000000000000001000000deffffff1b0000000000000001000010020000", @ANYRESHEX, @ANYRESOCT=r4, @ANYBLOB], 0xb8, 0x200000c9}, 0x800) sendmsg$unix(0xffffffffffffffff, &(0x7f0000003840)={&(0x7f0000003480)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f00000036c0)=[{&(0x7f0000003500)="090fa0774c649d07aa557c69f816fdf3273f711e79b22a70b62c23875d6615a689c9b74b9b81dc061db36ff2919a27f8cc4b51aa10e7df3142131f9d2845d29586254ac3494281bfd156e20769346ce508656b8541f0e297722736fd905c10761285c41affc22dd6acc8bae8e2ce3c2a79bc98312cd50b6312e389bf9c9580ba4f3ddf4fbcb75c0c8490d4f7e6fd79a1d48ff92e078fba79911f773fe798e3ef4681c00b90f7e9ad2ecb5a9ae84971229e174c", 0xb3}, {&(0x7f00000035c0)="335d676bb04419f51a08a45c4be90ffbbeb6b8923768de7560241cfb9f11e8d14c7f897bc35bc1c40499c4594a724b9dfe69aff2469ff79f1757980bc8f5e7b26381a8f06fb2e7103401f6b573ba05c9dfa359b4c9b3e546099c90c162f1e29d2dc4ca985f1c1bdf71aa62ecd69a4835fc0a02b45baae7c05606bdbcbe733f5cf77dd3fdedc4787f04589950be836fe7b29d3d1ff7059da445568936ce1c044f53ff05ab4b364b4a1784f21a3ce3ea63411bb01bf9ffb71554200bb118bc8eb9a6b3c2a7371fb0785d4c5b6a273bd01f25c050f651fdd6d676a52202fe96050c182084ecb8adbacb085dfd", 0xeb}], 0x2, &(0x7f0000000c40)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32=0xee00, @ANYRES32, @ANYBLOB="000000001c00000000000000010000000200", @ANYRES32, @ANYRES32, @ANYRES64, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=r3, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32, @ANYRESHEX=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32, @ANYRES32=0xee00, @ANYRES32, @ANYBLOB="0000000030000000000000000100000001000000", @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRES32, @ANYRESOCT=r5, @ANYRES32, @ANYRES32=r0], 0x128, 0x40814}, 0xc0) (async) r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48) r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r8}, 0x10) (async, rerun: 32) r9 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) (rerun: 32) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r9}, 0x4) (async) r10 = openat$cgroup_devices(0xffffffffffffffff, &(0x7f0000000340)='devices.allow\x00', 0x2, 0x0) (async, rerun: 64) r11 = gettid() (rerun: 64) r12 = perf_event_open(&(0x7f0000000380)={0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x0, 0xc8}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0)={0xffffffffffffffff, 0xffffffffffffffff}) close(r14) (async) recvmsg$unix(r13, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=[@rights={{0x14, 0x1, 0x1, [0xffffffffffffffff]}}], 0x18}, 0x0) (async) r16 = bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f00000001c0)={0x0, 0x40}, 0xc) (async) r17 = socket$kcm(0x21, 0x2, 0x2) sendmsg$kcm(r17, &(0x7f0000001200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)=ANY=[], 0x100}, 0x0) close(r17) (async) sendmsg$kcm(r17, &(0x7f00000006c0)={&(0x7f0000000440)=@pppol2tp={0x18, 0x1, {0x0, r17, {0x2, 0x4e24, @multicast2}, 0x0, 0x2, 0x3, 0x2}}, 0x80, &(0x7f0000000680)=[{&(0x7f00000004c0)="04601ffd7c7ebebb143e7a7b33f44813b9a8076c8fc556036b930411c9bff07e7bfe4da2cc235fca7f9101d5bcc8b236014ef39e3074129ec413b94771cc925af39a714115d76b35196abb562d46e726574d3a8ad5ec73afe93d980710083fb58fd9eb6e2e1f2e7aa48985f61f2251b08b7638bf1bf3d10bcc391b30b5", 0x7d}, {&(0x7f0000000540)="964b1f07b542ee", 0x7}, {&(0x7f0000000580)="08407addc5bcfb3936e7c531900120087dcb8a60236543daad6426d19f75dab27be2acd8c1aa5f87455a16e76bb6ef5b57143ea0ad38c86695", 0x39}, {&(0x7f00000005c0)="e779761c36813c9c021ec96b771395e26f29b71bfc7607ae8c39dad31a1ad553c0433b4da5bb2d206046f9bebf2fb9a8a4db9aaa1da585455b5c1238e4d73c0eb13a71886863f12d030294fa32b79fb939b3b24472001a647c1895e6157249a41685d7cfe3e855837910977f4c39e7b3ca7bad9ee30bb17c889cbf6d2b845299d9609754e545bb5b3076e2ac2acdb59e80bd", 0x92}], 0x4, &(0x7f00000007c0)=[{0x68, 0x114, 0x1, "0ad564a0e9258cc6d334be36a22de3334e92a378d3afee381ab88782738662cb9d1fccf0febe37cb87fe97ef7e5e0f3977b44d50e594e41b1bdfffd18d509972fddecc17a1ee5e293f02cbd859e0e5a8483f2398a620"}], 0x68}, 0x48050) (async) r18 = getpid() (async) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000001380)={0xffffffffffffffff, 0xfe, &(0x7f0000002ac0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffff3c, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0xfffffffffffffcc3, 0x51, 0x0, 0x0, 0x0, 0x12, 0x8, 0xd99bbe51f818c7bf, 0x0}}, 0xfffffffffffffe7b) recvmsg$unix(0xffffffffffffffff, &(0x7f0000001600)={0x0, 0x0, &(0x7f0000001540)=[{0x0}, {0x0}, {&(0x7f0000001340)=""/74, 0x4a}, {0x0}], 0x4, &(0x7f00000015c0)=[@cred={{0x1c, 0x1, 0x2, {0x0, 0x0, 0x0}}}], 0x20}, 0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f0000001a00)={0x0, 0x0, &(0x7f0000001740), 0x0, &(0x7f0000000980)=ANY=[@ANYRESHEX=r19, @ANYRES32, @ANYRESOCT=r22, @ANYBLOB="1c0000000000000001000000", @ANYRES32=r20, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000010000001c00000000000000010000000200000000", @ANYRES32=0x0, @ANYRES16, @ANYRES32=0x0, @ANYBLOB="000000001c0000000000000001000000020000", @ANYRES32=r21, @ANYRES32, @ANYBLOB="00000000100000000000000001000000deffffff1b0000000000000001000010020000", @ANYRESHEX, @ANYRESOCT=r6, @ANYBLOB="f6df69892c628158c66842bdc5e1cfef3e103ae42e3b0e935e210ae2f70fb4a1cd7638a7a51326898e8be43366f0479dffcb7c9d10107472afa1032a738dd33a3d420f22af01692f206aac476a85dffa5e96d3b8617bf22b443ca383c01e00b2df3bba5633438e8c78434be970a74f338f7ffcb29db0615a5f3b91"], 0xb8, 0x200000c9}, 0x800) sendmsg$unix(r13, &(0x7f00000002c0)={&(0x7f0000000080)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000180)=[{&(0x7f0000000100)="b3237adfe856a8392e70bb696a552b76ee0ef8a71ad6651f5e3e15ebc7130b42fb83750ef099a825a7eba09a0e1d12445a55a1ebadf786fb60c67b046fe71e5a2179ad273902", 0x46}], 0x1, &(0x7f0000000200)=[@rights={{0x28, 0x1, 0x1, [r13, r15, r16, r13, r12, r12]}}, @rights={{0x14, 0x1, 0x1, [r14]}}, @rights={{0x2c, 0x1, 0x1, [r13, r13, r15, r17, r14, r14, r13]}}, @cred={{0x1c, 0x1, 0x2, {r18, r21}}}], 0x90, 0x4000010}, 0x41) (async) sendmsg$unix(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e, &(0x7f0000000180)=[{&(0x7f00000000c0)="8b05d4230c13a9f5b5f2f28e3c0b48ce27b9f7cb20423d257d9601c35837116cdae14e8cb40566e817ea83fa33aaa86fa71c433337fd7ae4ed46a9a1a8e08b310965770f769ab7d515ada0136acaba01e76b946c2224bd25492e3a85f5abf588c244c46d293f5021f4d35faa1a7f26d8340957ffc82da2674e26f37777bf45337bb9724a4f1bf3c4378480c06bc82488aba21796004e31e35c478b6aa869f23dd7db71", 0xa3}], 0x1, &(0x7f0000000380)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32, @ANYRES32, @ANYRES32=0xee00, @ANYBLOB="0200000000000100000002000000", @ANYRES32=0x0, @ANYRES32=r3, @ANYRES32=0xee00, @ANYBLOB="000000001c000000000000000100000001000000", @ANYRES32=r8, @ANYRES32=r9, @ANYRES32=r10, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=r11, @ANYRES32=r21, @ANYRES32=0xee00, @ANYBLOB='\x00\x00\x00\x00'], 0x90, 0x40040}, 0xc410) (async, rerun: 32) bpf$MAP_CREATE(0x0, &(0x7f0000004440)=@base={0x12, 0x4, 0x4, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1}, 0x48) (rerun: 32) [ 68.452862][ T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.483759][ T5086] Bluetooth: hci0: command tx timeout [ 68.489404][ T5086] Bluetooth: hci4: command tx timeout [ 68.496157][ T5085] Bluetooth: hci3: command tx timeout [ 68.501616][ T5085] Bluetooth: hci2: command tx timeout [ 68.509666][ T5082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 68.540261][ T5082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 68.577682][ T4522] ================================================================== [ 68.585876][ T4522] BUG: KASAN: slab-use-after-free in bpf_trace_run2+0xfa/0x530 [ 68.594135][ T4522] Read of size 8 at addr ffff88802cbabf18 by task udevd/4522 [ 68.601491][ T4522] [ 68.603811][ T4522] CPU: 1 PID: 4522 Comm: udevd Not tainted 6.8.0-syzkaller-05243-g14bb1e8c8d4a #0 [ 68.613120][ T4522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 68.623265][ T4522] Call Trace: [ 68.626559][ T4522] [ 68.629503][ T4522] dump_stack_lvl+0x1e7/0x2e0 [ 68.634291][ T4522] ? __pfx_dump_stack_lvl+0x10/0x10 [ 68.639675][ T4522] ? __pfx__printk+0x10/0x10 [ 68.644371][ T4522] ? _printk+0xd5/0x120 [ 68.648557][ T4522] ? __virt_addr_valid+0x183/0x520 [ 68.653730][ T4522] ? __virt_addr_valid+0x183/0x520 [ 68.658954][ T4522] print_report+0x169/0x550 [ 68.663738][ T4522] ? __virt_addr_valid+0x183/0x520 [ 68.668853][ T4522] ? __virt_addr_valid+0x183/0x520 [ 68.674824][ T4522] ? __virt_addr_valid+0x44e/0x520 [ 68.680191][ T4522] ? __phys_addr+0xba/0x170 [ 68.684955][ T4522] ? bpf_trace_run2+0xfa/0x530 [ 68.689802][ T4522] kasan_report+0x143/0x180 [ 68.694575][ T4522] ? bpf_trace_run2+0xfa/0x530 [ 68.699392][ T4522] bpf_trace_run2+0xfa/0x530 [ 68.703980][ T4522] ? __pfx_bpf_trace_run2+0x10/0x10 [ 68.709458][ T4522] ? __free_slab+0xbd/0x270 [ 68.714146][ T4522] ? lockdep_hardirqs_on+0x99/0x150 [ 68.719453][ T4522] ? __free_slab+0xbd/0x270 [ 68.724417][ T4522] __traceiter_kfree+0x2b/0x50 [ 68.729188][ T4522] ? __free_slab+0xbd/0x270 [ 68.733687][ T4522] kfree+0x291/0x380 [ 68.737862][ T4522] __free_slab+0xbd/0x270 [ 68.742401][ T4522] __put_partials+0xeb/0x130 [ 68.747065][ T4522] put_cpu_partial+0x17c/0x250 [ 68.752009][ T4522] ? put_cpu_partial+0x70/0x250 [ 68.756857][ T4522] __slab_free+0x302/0x410 [ 68.761616][ T4522] qlist_free_all+0x5e/0xc0 [ 68.766400][ T4522] kasan_quarantine_reduce+0x14f/0x170 [ 68.773000][ T4522] __kasan_slab_alloc+0x23/0x80 [ 68.777958][ T4522] __kmalloc+0x1e0/0x4a0 [ 68.782208][ T4522] ? tomoyo_encode+0x26f/0x540 [ 68.787057][ T4522] tomoyo_encode+0x26f/0x540 [ 68.791639][ T4522] tomoyo_realpath_from_path+0x59e/0x5e0 [ 68.797361][ T4522] tomoyo_path_perm+0x2b7/0x740 [ 68.802312][ T4522] ? mark_lock+0x9a/0x350 [ 68.806901][ T4522] ? poison_slab_object+0xa6/0xe0 [ 68.811914][ T4522] ? tomoyo_path_perm+0x287/0x740 [ 68.817186][ T4522] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 68.822765][ T4522] ? __pfx___might_resched+0x10/0x10 [ 68.828048][ T4522] ? __might_fault+0xaa/0x120 [ 68.832742][ T4522] ? __pfx_lock_release+0x10/0x10 [ 68.837772][ T4522] security_inode_getattr+0xd8/0x130 [ 68.843055][ T4522] vfs_getattr+0x45/0x430 [ 68.847391][ T4522] vfs_fstatat+0xd6/0x190 [ 68.851733][ T4522] __x64_sys_newfstatat+0x117/0x190 [ 68.857190][ T4522] ? __pfx___x64_sys_newfstatat+0x10/0x10 [ 68.863198][ T4522] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 68.869966][ T4522] ? do_syscall_64+0x10a/0x240 [ 68.874813][ T4522] ? do_syscall_64+0xb6/0x240 [ 68.879526][ T4522] do_syscall_64+0xfb/0x240 [ 68.884147][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 68.890772][ T4522] RIP: 0033:0x7f69921165f4 [ 68.895452][ T4522] Code: 64 c7 00 09 00 00 00 83 c8 ff c3 48 89 f2 b9 00 01 00 00 48 89 fe bf 9c ff ff ff e9 00 00 00 00 41 89 ca b8 06 01 00 00 0f 05 <45> 31 c0 3d 00 f0 ff ff 76 10 48 8b 15 03 a8 0d 00 f7 d8 41 83 c8 [ 68.916395][ T4522] RSP: 002b:00007ffe2d5989b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000106 [ 68.925112][ T4522] RAX: ffffffffffffffda RBX: 00007f69921ee460 RCX: 00007f69921165f4 [ 68.933210][ T4522] RDX: 00007ffe2d5989c0 RSI: 00007f69921b3130 RDI: 000000000000000c [ 68.941200][ T4522] RBP: 00005601fe27ab00 R08: 0000000000000000 R09: 0000000000000000 [ 68.949237][ T4522] R10: 0000000000001000 R11: 0000000000000206 R12: 0000000000000000 [ 68.957643][ T4522] R13: 0000000000003fff R14: 00007ffe2d598f58 R15: 000000000000000a [ 68.965621][ T4522] [ 68.968977][ T4522] [ 68.971372][ T4522] Allocated by task 5161: [ 68.975887][ T4522] kasan_save_track+0x3f/0x80 [ 68.980560][ T4522] __kasan_kmalloc+0x98/0xb0 [ 68.985139][ T4522] kmalloc_trace+0x1d9/0x360 [ 68.989900][ T4522] bpf_raw_tp_link_attach+0x2a0/0x6e0 [ 68.995262][ T4522] bpf_raw_tracepoint_open+0x1c2/0x240 [ 69.000797][ T4522] __sys_bpf+0x3c0/0x810 [ 69.005046][ T4522] __x64_sys_bpf+0x7c/0x90 [ 69.009627][ T4522] do_syscall_64+0xfb/0x240 [ 69.014217][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 69.020194][ T4522] [ 69.022630][ T4522] Freed by task 5160: [ 69.026634][ T4522] kasan_save_track+0x3f/0x80 [ 69.031580][ T4522] kasan_save_free_info+0x40/0x50 [ 69.036694][ T4522] poison_slab_object+0xa6/0xe0 [ 69.041560][ T4522] __kasan_slab_free+0x37/0x60 [ 69.046459][ T4522] kfree+0x14a/0x380 [ 69.050351][ T4522] bpf_link_release+0x3b/0x50 [ 69.055109][ T4522] __fput+0x429/0x8a0 [ 69.059284][ T4522] task_work_run+0x24f/0x310 [ 69.063983][ T4522] do_exit+0xa1b/0x27e0 [ 69.068316][ T4522] do_group_exit+0x207/0x2c0 [ 69.072987][ T4522] get_signal+0x176e/0x1850 [ 69.077678][ T4522] arch_do_signal_or_restart+0x96/0x860 [ 69.083336][ T4522] syscall_exit_to_user_mode+0xc9/0x360 [ 69.089062][ T4522] do_syscall_64+0x10a/0x240 [ 69.093819][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 69.099793][ T4522] [ 69.102117][ T4522] The buggy address belongs to the object at ffff88802cbabf00 [ 69.102117][ T4522] which belongs to the cache kmalloc-128 of size 128 [ 69.116529][ T4522] The buggy address is located 24 bytes inside of [ 69.116529][ T4522] freed 128-byte region [ffff88802cbabf00, ffff88802cbabf80) [ 69.130361][ T4522] [ 69.132764][ T4522] The buggy address belongs to the physical page: [ 69.139423][ T4522] page:ffffea0000b2eac0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2cbab [ 69.149687][ T4522] flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff) [ 69.157408][ T4522] page_type: 0xffffffff() [ 69.161736][ T4522] raw: 00fff00000000800 ffff888014c418c0 dead000000000122 0000000000000000 [ 69.170523][ T4522] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 69.179531][ T4522] page dumped because: kasan: bad access detected [ 69.186047][ T4522] page_owner tracks the page as allocated [ 69.192279][ T4522] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 5161, tgid 5160 (syz-executor.2), ts 68529715109, free_ts 68527085684 [ 69.211992][ T4522] post_alloc_hook+0x1ea/0x210 [ 69.217128][ T4522] get_page_from_freelist+0x33ea/0x3580 [ 69.222877][ T4522] __alloc_pages+0x256/0x680 [ 69.227551][ T4522] alloc_slab_page+0x5f/0x160 [ 69.232688][ T4522] new_slab+0x84/0x2f0 [ 69.236937][ T4522] ___slab_alloc+0xd1b/0x13e0 [ 69.241635][ T4522] kmalloc_trace+0x267/0x360 [ 69.246311][ T4522] bpf_raw_tp_link_attach+0x2a0/0x6e0 [ 69.251954][ T4522] bpf_raw_tracepoint_open+0x1c2/0x240 [ 69.257690][ T4522] __sys_bpf+0x3c0/0x810 [ 69.261957][ T4522] __x64_sys_bpf+0x7c/0x90 [ 69.266460][ T4522] do_syscall_64+0xfb/0x240 [ 69.271492][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 69.277484][ T4522] page last free pid 5161 tgid 5160 stack trace: [ 69.284087][ T4522] free_unref_page_prepare+0x968/0xa90 [ 69.289645][ T4522] free_unref_page+0x37/0x3f0 [ 69.294947][ T4522] vfree+0x186/0x2e0 [ 69.298855][ T4522] bpf_check+0x8089/0x190c0 [ 69.303635][ T4522] bpf_prog_load+0x1667/0x20f0 [ 69.308574][ T4522] __sys_bpf+0x4ee/0x810 [ 69.312807][ T4522] __x64_sys_bpf+0x7c/0x90 [ 69.317311][ T4522] do_syscall_64+0xfb/0x240 [ 69.322021][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 69.328099][ T4522] [ 69.330417][ T4522] Memory state around the buggy address: [ 69.336746][ T4522] ffff88802cbabe00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.344974][ T4522] ffff88802cbabe80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 69.353204][ T4522] >ffff88802cbabf00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 69.361649][ T4522] ^ [ 69.366586][ T4522] ffff88802cbabf80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 69.374986][ T4522] ffff88802cbac000: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 [ 69.383043][ T4522] ================================================================== [ 69.395298][ T4522] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 69.402656][ T4522] CPU: 1 PID: 4522 Comm: udevd Not tainted 6.8.0-syzkaller-05243-g14bb1e8c8d4a #0 [ 69.404335][ T5082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.404352][ T5082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.404361][ T5082] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.404370][ T5082] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.406076][ T5082] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.419335][ T5090] veth0_macvtap: entered promiscuous mode [ 69.424404][ T5090] veth1_macvtap: entered promiscuous mode [ 69.437143][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.437162][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.437169][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.437253][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.437260][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.437268][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.437274][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 69.437281][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.439204][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 69.442277][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.442294][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.442380][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.442394][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.442403][ T5090] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 69.442413][ T5090] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 69.445876][ T5090] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 69.449744][ T5090] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.449777][ T5090] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.449799][ T5090] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.449821][ T5090] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 69.669021][ T4522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/27/2024 [ 69.680478][ T4522] Call Trace: [ 69.683873][ T4522] [ 69.687017][ T4522] dump_stack_lvl+0x1e7/0x2e0 [ 69.692034][ T4522] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.698145][ T4522] ? __pfx__printk+0x10/0x10 [ 69.703192][ T4522] ? vscnprintf+0x5d/0x90 [ 69.709028][ T4522] panic+0x349/0x860 [ 69.713782][ T4522] ? check_panic_on_warn+0x21/0xb0 [ 69.719481][ T4522] ? __pfx_panic+0x10/0x10 [ 69.724340][ T4522] ? mark_lock+0x9a/0x350 [ 69.728781][ T4522] ? _raw_spin_unlock_irqrestore+0xd8/0x140 [ 69.734677][ T4522] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 69.740575][ T4522] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10 [ 69.747267][ T4522] ? print_report+0x502/0x550 [ 69.751966][ T4522] check_panic_on_warn+0x86/0xb0 [ 69.756934][ T4522] ? bpf_trace_run2+0xfa/0x530 [ 69.761702][ T4522] end_report+0x6e/0x140 [ 69.765980][ T4522] kasan_report+0x154/0x180 [ 69.770583][ T4522] ? bpf_trace_run2+0xfa/0x530 [ 69.775368][ T4522] bpf_trace_run2+0xfa/0x530 [ 69.780165][ T4522] ? __pfx_bpf_trace_run2+0x10/0x10 [ 69.785378][ T4522] ? __free_slab+0xbd/0x270 [ 69.790083][ T4522] ? lockdep_hardirqs_on+0x99/0x150 [ 69.795347][ T4522] ? __free_slab+0xbd/0x270 [ 69.800134][ T4522] __traceiter_kfree+0x2b/0x50 [ 69.805101][ T4522] ? __free_slab+0xbd/0x270 [ 69.809962][ T4522] kfree+0x291/0x380 [ 69.813963][ T4522] __free_slab+0xbd/0x270 [ 69.818499][ T4522] __put_partials+0xeb/0x130 [ 69.824257][ T4522] put_cpu_partial+0x17c/0x250 [ 69.829562][ T4522] ? put_cpu_partial+0x70/0x250 [ 69.834874][ T4522] __slab_free+0x302/0x410 [ 69.839383][ T4522] qlist_free_all+0x5e/0xc0 [ 69.843890][ T4522] kasan_quarantine_reduce+0x14f/0x170 [ 69.849439][ T4522] __kasan_slab_alloc+0x23/0x80 [ 69.854480][ T4522] __kmalloc+0x1e0/0x4a0 [ 69.858937][ T4522] ? tomoyo_encode+0x26f/0x540 [ 69.863869][ T4522] tomoyo_encode+0x26f/0x540 [ 69.868568][ T4522] tomoyo_realpath_from_path+0x59e/0x5e0 [ 69.875119][ T4522] tomoyo_path_perm+0x2b7/0x740 [ 69.880252][ T4522] ? mark_lock+0x9a/0x350 [ 69.884978][ T4522] ? poison_slab_object+0xa6/0xe0 [ 69.890376][ T4522] ? tomoyo_path_perm+0x287/0x740 [ 69.895958][ T4522] ? __pfx_tomoyo_path_perm+0x10/0x10 [ 69.901859][ T4522] ? __pfx___might_resched+0x10/0x10 [ 69.907637][ T4522] ? __might_fault+0xaa/0x120 [ 69.912403][ T4522] ? __pfx_lock_release+0x10/0x10 [ 69.917784][ T4522] security_inode_getattr+0xd8/0x130 [ 69.923148][ T4522] vfs_getattr+0x45/0x430 [ 69.927587][ T4522] vfs_fstatat+0xd6/0x190 [ 69.932098][ T4522] __x64_sys_newfstatat+0x117/0x190 [ 69.937296][ T4522] ? __pfx___x64_sys_newfstatat+0x10/0x10 [ 69.943029][ T4522] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 69.949433][ T4522] ? do_syscall_64+0x10a/0x240 [ 69.954190][ T4522] ? do_syscall_64+0xb6/0x240 [ 69.958871][ T4522] do_syscall_64+0xfb/0x240 [ 69.963365][ T4522] entry_SYSCALL_64_after_hwframe+0x6d/0x75 [ 69.969436][ T4522] RIP: 0033:0x7f69921165f4 [ 69.974070][ T4522] Code: 64 c7 00 09 00 00 00 83 c8 ff c3 48 89 f2 b9 00 01 00 00 48 89 fe bf 9c ff ff ff e9 00 00 00 00 41 89 ca b8 06 01 00 00 0f 05 <45> 31 c0 3d 00 f0 ff ff 76 10 48 8b 15 03 a8 0d 00 f7 d8 41 83 c8 [ 69.994301][ T4522] RSP: 002b:00007ffe2d5989b8 EFLAGS: 00000206 ORIG_RAX: 0000000000000106 [ 70.002739][ T4522] RAX: ffffffffffffffda RBX: 00007f69921ee460 RCX: 00007f69921165f4 [ 70.010727][ T4522] RDX: 00007ffe2d5989c0 RSI: 00007f69921b3130 RDI: 000000000000000c [ 70.018701][ T4522] RBP: 00005601fe27ab00 R08: 0000000000000000 R09: 0000000000000000 [ 70.026816][ T4522] R10: 0000000000001000 R11: 0000000000000206 R12: 0000000000000000 [ 70.034986][ T4522] R13: 0000000000003fff R14: 00007ffe2d598f58 R15: 000000000000000a [ 70.043466][ T4522] [ 70.046949][ T4522] Kernel Offset: disabled [ 70.051536][ T4522] Rebooting in 86400 seconds..