Warning: Permanently added '10.128.0.224' (ED25519) to the list of known hosts.
2024/08/29 03:45:10 ignoring optional flag "sandboxArg"="0"
2024/08/29 03:45:10 parsed 1 programs
2024/08/29 03:45:10 executed programs: 0
[   44.856122][  T416] bridge0: port 1(bridge_slave_0) entered blocking state
[   44.863129][  T416] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.870498][  T416] device bridge_slave_0 entered promiscuous mode
[   44.877696][  T416] bridge0: port 2(bridge_slave_1) entered blocking state
[   44.884676][  T416] bridge0: port 2(bridge_slave_1) entered disabled state
[   44.891974][  T416] device bridge_slave_1 entered promiscuous mode
[   45.001595][  T425] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.008582][  T425] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.016212][  T425] device bridge_slave_0 entered promiscuous mode
[   45.022915][  T426] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.030063][  T426] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.037664][  T426] device bridge_slave_0 entered promiscuous mode
[   45.048885][  T426] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.055858][  T426] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.063494][  T426] device bridge_slave_1 entered promiscuous mode
[   45.073933][  T425] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.080763][  T425] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.088285][  T425] device bridge_slave_1 entered promiscuous mode
[   45.178341][  T422] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.185494][  T422] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.192899][  T422] device bridge_slave_0 entered promiscuous mode
[   45.204054][  T422] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.211295][  T422] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.218938][  T422] device bridge_slave_1 entered promiscuous mode
[   45.259048][  T423] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.266022][  T423] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.273590][  T423] device bridge_slave_0 entered promiscuous mode
[   45.280152][  T424] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.287031][  T424] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.294483][  T424] device bridge_slave_0 entered promiscuous mode
[   45.326742][  T423] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.333923][  T423] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.341326][  T423] device bridge_slave_1 entered promiscuous mode
[   45.348046][  T424] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.354949][  T424] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.362211][  T424] device bridge_slave_1 entered promiscuous mode
[   45.492277][  T425] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.499238][  T425] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.506358][  T425] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.513469][  T425] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.540532][  T422] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.547574][  T422] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.554790][  T422] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.561802][  T422] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.616101][  T358] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.623928][  T358] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.631040][  T358] bridge0: port 1(bridge_slave_0) entered disabled state
[   45.638515][  T358] bridge0: port 2(bridge_slave_1) entered disabled state
[   45.647109][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   45.654563][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   45.694313][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   45.702568][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.711349][  T368] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.718419][  T368] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.726033][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   45.735272][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.743471][  T368] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.750284][  T368] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.780768][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   45.789015][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   45.797909][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   45.843280][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   45.851915][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.860404][  T107] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.867289][  T107] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.875339][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   45.883436][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   45.891424][  T107] bridge0: port 1(bridge_slave_0) entered blocking state
[   45.898286][  T107] bridge0: port 1(bridge_slave_0) entered forwarding state
[   45.905436][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.913612][  T107] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.920522][  T107] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.960588][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   45.969656][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   45.977777][  T368] bridge0: port 2(bridge_slave_1) entered blocking state
[   45.984618][  T368] bridge0: port 2(bridge_slave_1) entered forwarding state
[   45.991998][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   46.000431][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.008377][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   46.016324][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.033130][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   46.041045][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.063433][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.071038][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.094911][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   46.102945][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.111750][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   46.120150][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.128545][  T358] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.135506][  T358] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.142861][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   46.151357][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.159663][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   46.167945][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.175982][  T358] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.182795][  T358] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.190097][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   46.207078][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.214517][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.221883][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   46.230784][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.238965][  T369] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.245817][  T369] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.253588][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   46.261961][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.269934][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   46.293418][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   46.301802][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.311239][  T107] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.318116][  T107] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.325452][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.333829][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.353302][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   46.361372][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.369771][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   46.378464][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.386414][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   46.395006][  T369] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.428017][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   46.437653][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.445948][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   46.453285][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   46.460824][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   46.469473][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.477523][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   46.486428][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   46.494663][  T368] bridge0: port 1(bridge_slave_0) entered blocking state
[   46.501490][  T368] bridge0: port 1(bridge_slave_0) entered forwarding state
[   46.508936][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   46.517664][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   46.525740][  T368] bridge0: port 2(bridge_slave_1) entered blocking state
[   46.532573][  T368] bridge0: port 2(bridge_slave_1) entered forwarding state
[   46.539887][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   46.548197][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.556688][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   46.577692][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.586134][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.596213][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.604689][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.612752][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.621246][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   46.644221][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   46.652170][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   46.706575][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.715622][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   46.723863][   T23] kauditd_printk_skb: 15 callbacks suppressed
[   46.723875][   T23] audit: type=1400 audit(1724903112.830:91): avc:  denied  { read write } for  pid=449 comm="syz-executor.1" name="fuse" dev="devtmpfs" ino=9175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   46.753762][   T23] audit: type=1400 audit(1724903112.830:92): avc:  denied  { open } for  pid=449 comm="syz-executor.1" path="/dev/fuse" dev="devtmpfs" ino=9175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1
[   46.755657][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.784929][   T23] audit: type=1400 audit(1724903112.830:93): avc:  denied  { mounton } for  pid=449 comm="syz-executor.1" path="/root/syzkaller-testdir543181837/syzkaller.V5nbqt/0/file0" dev="sda1" ino=1947 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[   46.812762][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.821085][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   46.829250][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.837469][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.846129][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.854584][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   46.862654][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   46.895104][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.903934][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   46.912604][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   46.920973][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.929158][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.937916][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   46.946277][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   46.954736][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   46.962903][  T358] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   46.987366][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   46.988896][   T23] audit: type=1400 audit(1724903113.100:94): avc:  denied  { mounton } for  pid=416 comm="syz-executor.2" path="/dev/binderfs" dev="devtmpfs" ino=10919 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:device_t tclass=dir permissive=1
[   46.996043][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.027023][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   47.035650][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.057982][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   47.066445][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.076588][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   47.084916][  T368] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.105824][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   47.115420][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.130657][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   47.139038][  T107] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.163282][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   47.171303][   T18] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   47.205242][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   47.214238][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   47.229978][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   47.238221][  T374] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   47.273380][  T465] ==================================================================
[   47.281296][  T465] BUG: KASAN: use-after-free in fuse_copy_one+0x1c0/0x3a0
[   47.288225][  T465] Read of size 256 at addr ffff8881da259c10 by task syz-executor.2/465
[   47.296448][  T465] 
[   47.298620][  T465] CPU: 0 PID: 465 Comm: syz-executor.2 Not tainted 5.4.281-syzkaller-04937-gd883a2284ec1 #0
[   47.308517][  T465] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[   47.318534][  T465] Call Trace:
[   47.321832][  T465]  dump_stack+0x1d8/0x241
[   47.326002][  T465]  ? nf_ct_l4proto_log_invalid+0x258/0x258
[   47.331747][  T465]  ? printk+0xd1/0x111
[   47.335662][  T465]  ? fuse_copy_one+0x1c0/0x3a0
[   47.340247][  T465]  ? wake_up_klogd+0xb2/0xf0
[   47.344679][  T465]  ? fuse_copy_one+0x1c0/0x3a0
[   47.349377][  T465]  print_address_description+0x8c/0x600
[   47.354751][  T465]  ? panic+0x89d/0x89d
[   47.358645][  T465]  ? _raw_spin_lock+0xa4/0x1b0
[   47.363397][  T465]  ? fuse_copy_one+0x1c0/0x3a0
[   47.367985][  T465]  __kasan_report+0xf3/0x120
[   47.372424][  T465]  ? fuse_copy_one+0x1c0/0x3a0
[   47.377017][  T465]  ? fuse_copy_one+0x1c0/0x3a0
[   47.381657][  T465]  kasan_report+0x30/0x60
[   47.385957][  T465]  check_memory_region+0x272/0x280
[   47.390988][  T465]  memcpy+0x25/0x50
[   47.394872][  T465]  fuse_copy_one+0x1c0/0x3a0
[   47.399408][  T465]  fuse_copy_args+0x339/0x410
[   47.403900][  T465]  fuse_dev_do_read+0xc1b/0x1190
[   47.408673][  T465]  ? queue_interrupt+0x310/0x310
[   47.413444][  T465]  fuse_dev_read+0x179/0x220
[   47.418039][  T465]  ? fuse_dev_release+0x5c0/0x5c0
[   47.422891][  T465]  ? do_futex+0x13c1/0x19f0
[   47.427233][  T465]  ? __lru_cache_add+0x206/0x2b0
[   47.432188][  T465]  ? iov_iter_init+0x82/0x160
[   47.436793][  T465]  __vfs_read+0x5cd/0x730
[   47.440952][  T465]  ? rw_verify_area+0x360/0x360
[   47.445735][  T465]  ? __fsnotify_update_child_dentry_flags+0x290/0x290
[   47.452686][  T465]  ? security_file_permission+0x1dc/0x2f0
[   47.458238][  T465]  vfs_read+0x148/0x360
[   47.462313][  T465]  ksys_read+0x199/0x2c0
[   47.466400][  T465]  ? vfs_write+0x4e0/0x4e0
[   47.470790][  T465]  ? __do_page_fault+0x725/0xbb0
[   47.475552][  T465]  do_syscall_64+0xca/0x1c0
[   47.479890][  T465]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   47.485718][  T465] RIP: 0033:0x7f35570d9db9
[   47.489966][  T465] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[   47.509774][  T465] RSP: 002b:00007f3556bfa0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[   47.518095][  T465] RAX: ffffffffffffffda RBX: 00007f35571fa1f0 RCX: 00007f35570d9db9
[   47.526056][  T465] RDX: 0000000000002020 RSI: 0000000020002140 RDI: 0000000000000003
[   47.534148][  T465] RBP: 00007f3557136ad0 R08: 0000000000000000 R09: 0000000000000000
[   47.542143][  T465] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   47.549958][  T465] R13: 000000000000006e R14: 00007f35571fa1f0 R15: 00007ffd3a2ed128
[   47.557891][  T465] 
[   47.560052][  T465] Allocated by task 456:
[   47.564401][  T465]  __kasan_kmalloc+0x171/0x210
[   47.568986][  T465]  __d_alloc+0xae/0x6a0
[   47.573065][  T465]  d_alloc_parallel+0xec/0x1390
[   47.578384][  T465]  __lookup_slow+0x156/0x460
[   47.582775][  T465]  lookup_slow+0x53/0x70
[   47.586854][  T465]  walk_component+0x2dc/0x590
[   47.591364][  T465]  path_lookupat+0x182/0x3f0
[   47.595799][  T465]  filename_lookup+0x253/0x6e0
[   47.600486][  T465]  do_mount+0x135/0xe10
[   47.604483][  T465]  ksys_mount+0xc2/0xf0
[   47.608475][  T465]  __x64_sys_mount+0xb1/0xc0
[   47.612903][  T465]  do_syscall_64+0xca/0x1c0
[   47.617506][  T465]  entry_SYSCALL_64_after_hwframe+0x5c/0xc1
[   47.623220][  T465] 
[   47.625482][  T465] Freed by task 374:
[   47.629304][  T465]  __kasan_slab_free+0x1b5/0x270
[   47.634075][  T465]  kfree+0x123/0x370
[   47.637811][  T465]  rcu_do_batch+0x451/0xa00
[   47.642195][  T465]  rcu_core+0x4c8/0xcb0
[   47.646146][  T465]  __do_softirq+0x23b/0x6b7
[   47.650561][  T465] 
[   47.652819][  T465] The buggy address belongs to the object at ffff8881da259c00
[   47.652819][  T465]  which belongs to the cache kmalloc-rcl-512 of size 512
[   47.667445][  T465] The buggy address is located 16 bytes inside of
[   47.667445][  T465]  512-byte region [ffff8881da259c00, ffff8881da259e00)
[   47.680914][  T465] The buggy address belongs to the page:
[   47.686400][  T465] page:ffffea0007689600 refcount:1 mapcount:0 mapping:ffff8881f5c0db80 index:0x0 compound_mapcount: 0
[   47.697573][  T465] flags: 0x8000000000010200(slab|head)
[   47.702943][  T465] raw: 8000000000010200 dead000000000100 dead000000000122 ffff8881f5c0db80
[   47.711359][  T465] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[   47.719771][  T465] page dumped because: kasan: bad access detected
[   47.726040][  T465] page_owner tracks the page as allocated
[   47.731587][  T465] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0x1d20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE)
[   47.749816][  T465]  prep_new_page+0x18f/0x370
[   47.754261][  T465]  get_page_from_freelist+0x2d13/0x2d90
[   47.759999][  T465]  __alloc_pages_nodemask+0x393/0x840
[   47.765202][  T465]  alloc_slab_page+0x39/0x3c0
[   47.769832][  T465]  new_slab+0x97/0x440
[   47.773832][  T465]  ___slab_alloc+0x2fe/0x490
[   47.778435][  T465]  __slab_alloc+0x62/0xa0
[   47.782684][  T465]  __kmalloc+0x19b/0x2e0
[   47.786766][  T465]  __d_alloc+0xae/0x6a0
[   47.790747][  T465]  d_alloc_parallel+0xec/0x1390
[   47.795437][  T465]  __lookup_slow+0x156/0x460
[   47.799860][  T465]  lookup_slow+0x53/0x70
[   47.803941][  T465]  walk_component+0x2dc/0x590
[   47.808451][  T465]  path_lookupat+0x182/0x3f0
[   47.812886][  T465]  filename_lookup+0x253/0x6e0
[   47.817618][  T465]  do_mount+0x135/0xe10
[   47.821593][  T465] page_owner free stack trace missing
[   47.826801][  T465] 
[   47.829087][  T465] Memory state around the buggy address:
[   47.834641][  T465]  ffff8881da259b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   47.842544][  T465]  ffff8881da259b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   47.850525][  T465] >ffff8881da259c00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   47.858509][  T465]                          ^
[   47.862932][  T465]  ffff8881da259c80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   47.870840][  T465]  ffff8881da259d00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   47.878815][  T465] ==================================================================
[   47.886797][  T465] Disabling lock debugging due to kernel taint
[   47.894494][   T23] audit: type=1400 audit(1724903114.010:95): avc:  denied  { unmount } for  pid=425 comm="syz-executor.1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1
2024/08/29 03:45:15 executed programs: 18
2024/08/29 03:45:20 executed programs: 54