softirq: huh, entered softirq 3 NET_RX ffffffff840a38e0 with preempt_count 00000103, exited with 00000102? ================================================================================ UBSAN: array-index-out-of-bounds in kernel/bpf/helpers.c:776:13 index -1 is out of range for type 'char[3][512]' CPU: 1 PID: 23 Comm: ksoftirqd/1 Not tainted 6.1.68-syzkaller-00027-gd6b58cc171f4 #0 Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/25/2024 Call Trace: __dump_stack lib/dump_stack.c:88 [inline] dump_stack_lvl+0x151/0x1b7 lib/dump_stack.c:106 dump_stack+0x15/0x1b lib/dump_stack.c:113 ubsan_epilogue lib/ubsan.c:151 [inline] __ubsan_handle_out_of_bounds+0x13a/0x160 lib/ubsan.c:282 try_get_fmt_tmp_buf kernel/bpf/helpers.c:776 [inline] bpf_bprintf_prepare+0x132e/0x1360 kernel/bpf/helpers.c:818 ____bpf_trace_printk kernel/trace/bpf_trace.c:385 [inline] bpf_trace_printk+0x14a/0x300 kernel/trace/bpf_trace.c:376 bpf_prog_cfddb232a7dfb698+0x2f/0x33 bpf_dispatcher_nop_func include/linux/bpf.h:982 [inline] __bpf_prog_run include/linux/filter.h:600 [inline] bpf_prog_run include/linux/filter.h:607 [inline] __bpf_trace_run kernel/trace/bpf_trace.c:2275 [inline] bpf_trace_run3+0x177/0x2e0 kernel/trace/bpf_trace.c:2315 __bpf_trace_kmem_cache_free+0x99/0xc0 include/trace/events/kmem.h:114 __traceiter_kmem_cache_free+0x32/0x50 include/trace/events/kmem.h:114 trace_kmem_cache_free include/trace/events/kmem.h:114 [inline] kmem_cache_free+0x4e7/0x510 mm/slub.c:3705 put_pid kernel/pid.c:114 [inline] delayed_put_pid+0xb6/0x120 kernel/pid.c:123 rcu_do_batch+0x518/0xb70 kernel/rcu/tree.c:2264 rcu_core+0x4ee/0xf10 kernel/rcu/tree.c:2524 rcu_core_si+0x9/0x10 kernel/rcu/tree.c:2541 __do_softirq+0x1d8/0x661 kernel/softirq.c:617 run_ksoftirqd+0x23/0x30 kernel/softirq.c:989 smpboot_thread_fn+0x466/0x8d0 kernel/smpboot.c:164 kthread+0x26d/0x300 kernel/kthread.c:376 ret_from_fork+0x1f/0x30 arch/x86/entry/entry_64.S:306 ================================================================================ softirq: huh, entered softirq 9 RCU ffffffff8160c1b0 with preempt_count 00000100, exited with 00000101?