./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3491566515

<...>
Warning: Permanently added '10.128.1.27' (ED25519) to the list of known hosts.
execve("./syz-executor3491566515", ["./syz-executor3491566515"], 0x7ffd41f9d8c0 /* 10 vars */) = 0
brk(NULL)                               = 0x55557d393000
brk(0x55557d393d00)                     = 0x55557d393d00
arch_prctl(ARCH_SET_FS, 0x55557d393380) = 0
set_tid_address(0x55557d393650)         = 5075
set_robust_list(0x55557d393660, 24)     = 0
rseq(0x55557d393ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3491566515", 4096) = 28
getrandom("\x31\x8d\x11\xb7\xa2\xa2\xc3\x9e", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x55557d393d00
brk(0x55557d3b4d00)                     = 0x55557d3b4d00
brk(0x55557d3b5000)                     = 0x55557d3b5000
mprotect(0x7f7f09c3a000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
socket(AF_NETLINK, SOCK_RAW, NETLINK_ROUTE) = 3
socket(AF_NETLINK, SOCK_RAW, NETLINK_GENERIC) = 4
sendto(4, [{nlmsg_len=36, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x03\x00\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=864, nlmsg_type=nlctrl, nlmsg_flags=0, nlmsg_seq=0, nlmsg_pid=5075}, "\x01\x02\x00\x00\x0d\x00\x02\x00\x6e\x6c\x38\x30\x32\x31\x35\x34\x00\x00\x00\x00\x06\x00\x01\x00\x1d\x00\x00\x00\x08\x00\x03\x00\x01\x00\x00\x00\x08\x00\x04\x00\x00\x00\x00\x00\x08\x00\x05\x00\x30\x00\x00\x00\xe8\x02\x06\x00\x14\x00\x01\x00\x08\x00\x01\x00\x01\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x02\x00\x08\x00\x01\x00\x05\x00\x00\x00\x08\x00\x02\x00\x0e\x00\x00\x00\x14\x00\x03\x00"...], 4096, 0, NULL, NULL) = 864
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=36, nlmsg_type=nlctrl, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0
close(5)                                = 0
sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0b\x00\x00\x00\x06\x00\x0a\x00\xa0\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan0", ifr_ifindex=11}) = 0
close(5)                                = 0
sendto(3, [{nlmsg_len=44, nlmsg_type=0x10 /* NLMSG_??? */, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x00\x00\x00\x00\x0b\x00\x00\x00\x01\x00\x00\x00\x01\x00\x00\x00\x0c\x00\x01\x00\x02\x00\xaa\xaa\xaa\xaa\xaa\xaa"], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
sendto(3, [{nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=0, ifi_flags=0, ifi_change=0}, [[{nla_len=11, nla_type=IFLA_IFNAME}, "lowpan0"...], [{nla_len=16, nla_type=IFLA_LINKINFO}, [{nla_len=10, nla_type=IFLA_INFO_KIND}, "lowpan"...]], [{nla_len=8, nla_type=IFLA_LINK}, 11]]], 68, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 68
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=68, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK|NLM_F_EXCL|NLM_F_CREATE, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0
close(5)                                = 0
sendto(4, [{nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, "\x0b\x00\x00\x00\x08\x00\x03\x00\x0c\x00\x00\x00\x06\x00\x0a\x00\xa1\xaa\x00\x00"], 36, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 36
recvfrom(4, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=36, nlmsg_type=nl802154, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
socket(AF_UNIX, SOCK_DGRAM|SOCK_CLOEXEC, 0) = 5
ioctl(5, SIOCGIFINDEX, {ifr_name="wpan1", ifr_ifindex=12}) = 0
close(5)                                = 0
sendto(3, [{nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}, {ifi_family=AF_UNSPEC, ifi_type=ARPHRD_NETROM, ifi_index=if_nametoindex("wpan1"), ifi_flags=IFF_UP, ifi_change=0x1}, [{nla_len=12, nla_type=IFLA_ADDRESS}, 02:01:aa:aa:aa:aa:aa]], 44, 0, {sa_family=AF_NETLINK, nl_pid=0, nl_groups=00000000}, 12) = 44
recvfrom(3, [{nlmsg_len=36, nlmsg_type=NLMSG_ERROR, nlmsg_flags=NLM_F_CAPPED, nlmsg_seq=0, nlmsg_pid=5075}, {error=0, msg={nlmsg_len=44, nlmsg_type=RTM_NEWLINK, nlmsg_flags=NLM_F_REQUEST|NLM_F_ACK, nlmsg_seq=0, nlmsg_pid=0}}], 4096, 0, NULL, NULL) = 36
close(3)                                = 0
close(4)                                = 0
bpf(BPF_PROG_LOAD, {prog_type=BPF_PROG_TYPE_RAW_TRACEPOINT, insn_cnt=8, insns=0x20000580, license="GPL", log_level=0, log_size=0, log_buf=NULL, kern_version=KERNEL_VERSION(0, 0, 0), prog_flags=0}, 46) = 3
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 4
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 5
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 6
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 7
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 8
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 9
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 10
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 11
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 12
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 13
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 14
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 15
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 16
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 17
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 18
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 19
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 20
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 21
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 22
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 23
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 24
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 25
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 26
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 27
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 28
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 29
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 30
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 31
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 32
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 33
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 34
[   71.871414][ T1242] ieee802154 phy0 wpan0: encryption failed: -22
[   71.882819][ T1242] ieee802154 phy1 wpan1: encryption failed: -22
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 35
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 36
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 37
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 38
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 39
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 40
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 41
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 42
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 43
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 44
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 45
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 46
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 47
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 48
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 49
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 50
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 51
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 52
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 53
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 54
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 55
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 56
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 57
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 58
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 59
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 60
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 61
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 62
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 63
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 64
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 65
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 66
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 67
bpf(BPF_RAW_TRACEPOINT_OPEN, {raw_tracepoint={name="rcu_utilization", prog_fd=3}}, 16) = 68
exit_group(0)                           = ?
[   72.801564][   T19] ==================================================================
[   72.809693][   T19] BUG: KASAN: slab-use-after-free in bpf_trace_run1+0xcb/0x510
[   72.817273][   T19] Read of size 8 at addr ffff8880290d9918 by task migration/0/19
[   72.824993][   T19] 
[   72.827319][   T19] CPU: 0 PID: 19 Comm: migration/0 Not tainted 6.8.0-syzkaller-05233-g520fad2e3206 #0
[   72.836859][   T19] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[   72.846916][   T19] Stopper: 0x0 <- 0x0
[   72.850906][   T19] Call Trace:
[   72.854186][   T19]  <TASK>
[   72.857122][   T19]  dump_stack_lvl+0x1e7/0x2e0
[   72.861825][   T19]  ? __pfx_dump_stack_lvl+0x10/0x10
[   72.867031][   T19]  ? __pfx__printk+0x10/0x10
[   72.871651][   T19]  ? _printk+0xd5/0x120
[   72.875861][   T19]  ? __virt_addr_valid+0x183/0x520
[   72.881076][   T19]  ? __virt_addr_valid+0x183/0x520
[   72.886339][   T19]  print_report+0x169/0x550
[   72.890872][   T19]  ? __virt_addr_valid+0x183/0x520
[   72.896009][   T19]  ? __virt_addr_valid+0x183/0x520
[   72.901131][   T19]  ? __virt_addr_valid+0x44e/0x520
[   72.906276][   T19]  ? __phys_addr+0xba/0x170
[   72.910792][   T19]  ? bpf_trace_run1+0xcb/0x510
[   72.915558][   T19]  kasan_report+0x143/0x180
[   72.920078][   T19]  ? bpf_trace_run1+0xcb/0x510
[   72.924977][   T19]  bpf_trace_run1+0xcb/0x510
[   72.929579][   T19]  ? bpf_trace_run1+0x1d6/0x510
[   72.934439][   T19]  ? __pfx_bpf_trace_run1+0x10/0x10
[   72.939645][   T19]  ? rcu_qs+0xf1/0x190
[   72.943801][   T19]  ? __pfx_rcu_qs+0x10/0x10
[   72.948306][   T19]  ? __pfx___bpf_trace_rcu_utilization+0x10/0x10
[   72.954644][   T19]  __traceiter_rcu_utilization+0x74/0xb0
[   72.960305][   T19]  trace_rcu_utilization+0x194/0x1c0
[   72.965596][   T19]  rcu_note_context_switch+0xc7c/0xff0
[   72.971070][   T19]  ? mark_lock+0x9a/0x350
[   72.975413][   T19]  ? mark_lock+0x9a/0x350
[   72.979752][   T19]  ? __lock_acquire+0x1346/0x1fd0
[   72.984777][   T19]  ? __pfx_rcu_note_context_switch+0x10/0x10
[   72.990770][   T19]  ? mark_lock+0x9a/0x350
[   72.995109][   T19]  ? rcu_is_watching+0x15/0xb0
[   72.999874][   T19]  __schedule+0x345/0x4a20
[   73.004304][   T19]  ? __pfx___schedule+0x10/0x10
[   73.009252][   T19]  ? schedule+0x90/0x320
[   73.013619][   T19]  ? __pfx_lock_release+0x10/0x10
[   73.018666][   T19]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   73.025016][   T19]  ? schedule+0x90/0x320
[   73.029267][   T19]  schedule+0x14b/0x320
[   73.033455][   T19]  ? __pfx_cpu_stop_should_run+0x10/0x10
[   73.039118][   T19]  smpboot_thread_fn+0x61e/0xa30
[   73.044122][   T19]  ? smpboot_thread_fn+0x4e/0xa30
[   73.049177][   T19]  ? __pfx_smpboot_thread_fn+0x10/0x10
[   73.054647][   T19]  kthread+0x2f0/0x390
[   73.058728][   T19]  ? __pfx_smpboot_thread_fn+0x10/0x10
[   73.064222][   T19]  ? __pfx_kthread+0x10/0x10
[   73.068868][   T19]  ret_from_fork+0x4b/0x80
[   73.073307][   T19]  ? __pfx_kthread+0x10/0x10
[   73.077931][   T19]  ret_from_fork_asm+0x1a/0x30
[   73.082764][   T19]  </TASK>
[   73.085788][   T19] 
[   73.088109][   T19] Allocated by task 5075:
[   73.092438][   T19]  kasan_save_track+0x3f/0x80
[   73.097146][   T19]  __kasan_kmalloc+0x98/0xb0
[   73.101742][   T19]  kmalloc_trace+0x1d9/0x360
[   73.106346][   T19]  bpf_raw_tp_link_attach+0x2a0/0x6e0
[   73.111745][   T19]  bpf_raw_tracepoint_open+0x1c2/0x240
[   73.117208][   T19]  __sys_bpf+0x3c0/0x810
[   73.121452][   T19]  __x64_sys_bpf+0x7c/0x90
[   73.125867][   T19]  do_syscall_64+0xfb/0x240
[   73.130374][   T19]  entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   73.136277][   T19] 
[   73.138601][   T19] Freed by task 5075:
[   73.142577][   T19]  kasan_save_track+0x3f/0x80
[   73.147261][   T19]  kasan_save_free_info+0x40/0x50
[   73.152314][   T19]  poison_slab_object+0xa6/0xe0
[   73.157173][   T19]  __kasan_slab_free+0x37/0x60
[   73.161945][   T19]  kfree+0x14a/0x380
[   73.165851][   T19]  bpf_link_release+0x3b/0x50
[   73.170528][   T19]  __fput+0x429/0x8a0
[   73.174509][   T19]  task_work_run+0x24f/0x310
[   73.179108][   T19]  do_exit+0xa1b/0x27e0
[   73.183296][   T19]  do_group_exit+0x207/0x2c0
[   73.187911][   T19]  __x64_sys_exit_group+0x3f/0x40
[   73.192950][   T19]  do_syscall_64+0xfb/0x240
[   73.197465][   T19]  entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   73.203372][   T19] 
[   73.205697][   T19] The buggy address belongs to the object at ffff8880290d9900
[   73.205697][   T19]  which belongs to the cache kmalloc-128 of size 128
[   73.219755][   T19] The buggy address is located 24 bytes inside of
[   73.219755][   T19]  freed 128-byte region [ffff8880290d9900, ffff8880290d9980)
[   73.233465][   T19] 
[   73.235794][   T19] The buggy address belongs to the physical page:
[   73.242220][   T19] page:ffffea0000a43640 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x290d9
[   73.252372][   T19] anon flags: 0xfff00000000800(slab|node=0|zone=1|lastcpupid=0x7ff)
[   73.260352][   T19] page_type: 0xffffffff()
[   73.264685][   T19] raw: 00fff00000000800 ffff888014c418c0 0000000000000000 0000000000000001
[   73.273294][   T19] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[   73.281873][   T19] page dumped because: kasan: bad access detected
[   73.288394][   T19] page_owner tracks the page as allocated
[   73.294121][   T19] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 4527, tgid 4527 (udevd), ts 43150902736, free_ts 43094996342
[   73.311840][   T19]  post_alloc_hook+0x1ea/0x210
[   73.316625][   T19]  get_page_from_freelist+0x33ea/0x3580
[   73.322305][   T19]  __alloc_pages+0x256/0x680
[   73.326903][   T19]  alloc_slab_page+0x5f/0x160
[   73.331589][   T19]  new_slab+0x84/0x2f0
[   73.335661][   T19]  ___slab_alloc+0xd1b/0x13e0
[   73.340340][   T19]  kmalloc_trace+0x267/0x360
[   73.344941][   T19]  kernfs_fop_open+0x803/0xcd0
[   73.349713][   T19]  do_dentry_open+0x907/0x15a0
[   73.354481][   T19]  path_openat+0x2860/0x3240
[   73.359093][   T19]  do_filp_open+0x235/0x490
[   73.363596][   T19]  do_sys_openat2+0x13e/0x1d0
[   73.368283][   T19]  __x64_sys_openat+0x247/0x2a0
[   73.373143][   T19]  do_syscall_64+0xfb/0x240
[   73.377654][   T19]  entry_SYSCALL_64_after_hwframe+0x6d/0x75
[   73.383571][   T19] page last free pid 4526 tgid 4526 stack trace:
[   73.389898][   T19]  free_unref_page_prepare+0x968/0xa90
[   73.395365][   T19]  free_unref_page+0x37/0x3f0
[   73.400049][   T19]  rcu_core+0xafd/0x1830
[   73.404307][   T19]  __do_softirq+0x2bc/0x943
[   73.408820][   T19] 
[   73.411145][   T19] Memory state around the buggy address:
[   73.416795][   T19]  ffff8880290d9800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.424870][   T19]  ffff8880290d9880: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   73.432932][   T19] >ffff8880290d9900: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.441435][   T19]                             ^
[   73.446283][   T19]  ffff8880290d9980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   73.454343][   T19]  ffff8880290d9a00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   73.462406][   T19] ==================================================================
[   73.470466][   T19] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   73.477664][   T19] CPU: 0 PID: 19 Comm: migration/0 Not tainted 6.8.0-syzkaller-05233-g520fad2e3206 #0
[   73.487206][   T19] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[   73.497269][   T19] Stopper: 0x0 <- 0x0
[   73.501259][   T19] Call Trace:
[   73.504565][   T19]  <TASK>
[   73.507502][   T19]  dump_stack_lvl+0x1e7/0x2e0
[   73.512208][   T19]  ? __pfx_dump_stack_lvl+0x10/0x10
[   73.517588][   T19]  ? __pfx__printk+0x10/0x10
[   73.522183][   T19]  ? rcu_is_watching+0x15/0xb0
[   73.526957][   T19]  ? lock_release+0xbf/0x9d0
[   73.531555][   T19]  ? vscnprintf+0x5d/0x90
[   73.535926][   T19]  panic+0x349/0x860
[   73.539833][   T19]  ? check_panic_on_warn+0x21/0xb0
[   73.544957][   T19]  ? __pfx_panic+0x10/0x10
[   73.549378][   T19]  ? do_raw_spin_unlock+0x13c/0x8b0
[   73.554589][   T19]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[   73.560505][   T19]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   73.567022][   T19]  ? print_report+0x502/0x550
[   73.571709][   T19]  check_panic_on_warn+0x86/0xb0
[   73.576668][   T19]  ? bpf_trace_run1+0xcb/0x510
[   73.581436][   T19]  end_report+0x6e/0x140
[   73.585693][   T19]  kasan_report+0x154/0x180
[   73.590207][   T19]  ? bpf_trace_run1+0xcb/0x510
[   73.594983][   T19]  bpf_trace_run1+0xcb/0x510
[   73.599670][   T19]  ? bpf_trace_run1+0x1d6/0x510
[   73.604532][   T19]  ? __pfx_bpf_trace_run1+0x10/0x10
[   73.609742][   T19]  ? rcu_qs+0xf1/0x190
[   73.613817][   T19]  ? __pfx_rcu_qs+0x10/0x10
[   73.618327][   T19]  ? __pfx___bpf_trace_rcu_utilization+0x10/0x10
[   73.624682][   T19]  __traceiter_rcu_utilization+0x74/0xb0
[   73.630324][   T19]  trace_rcu_utilization+0x194/0x1c0
[   73.635617][   T19]  rcu_note_context_switch+0xc7c/0xff0
[   73.641175][   T19]  ? mark_lock+0x9a/0x350
[   73.645511][   T19]  ? mark_lock+0x9a/0x350
[   73.649856][   T19]  ? __lock_acquire+0x1346/0x1fd0
[   73.654890][   T19]  ? __pfx_rcu_note_context_switch+0x10/0x10
[   73.660907][   T19]  ? mark_lock+0x9a/0x350
[   73.665242][   T19]  ? rcu_is_watching+0x15/0xb0
[   73.670010][   T19]  __schedule+0x345/0x4a20
[   73.674447][   T19]  ? __pfx___schedule+0x10/0x10
[   73.679396][   T19]  ? schedule+0x90/0x320
[   73.683646][   T19]  ? __pfx_lock_release+0x10/0x10
[   73.688680][   T19]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[   73.695022][   T19]  ? schedule+0x90/0x320
[   73.699280][   T19]  schedule+0x14b/0x320
[   73.703446][   T19]  ? __pfx_cpu_stop_should_run+0x10/0x10
[   73.709091][   T19]  smpboot_thread_fn+0x61e/0xa30
[   73.714039][   T19]  ? smpboot_thread_fn+0x4e/0xa30
[   73.719102][   T19]  ? __pfx_smpboot_thread_fn+0x10/0x10
[   73.724578][   T19]  kthread+0x2f0/0x390
[   73.728654][   T19]  ? __pfx_smpboot_thread_fn+0x10/0x10
[   73.734116][   T19]  ? __pfx_kthread+0x10/0x10
[   73.738715][   T19]  ret_from_fork+0x4b/0x80
[   73.743143][   T19]  ? __pfx_kthread+0x10/0x10
[   73.747740][   T19]  ret_from_fork_asm+0x1a/0x30
[   73.752628][   T19]  </TASK>
[   73.755749][   T19] Kernel Offset: disabled
[   73.760074][   T19] Rebooting in 86400 seconds..