Warning: Permanently added '10.128.1.196' (ED25519) to the list of known hosts. 1970/01/01 00:01:29 ignoring optional flag "sandboxArg"="0" 1970/01/01 00:01:30 parsed 1 programs [ 94.075312][ T6953] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k SS [ 104.939379][ T6097] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 104.942296][ T6097] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 104.944664][ T6097] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 104.946773][ T6097] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 104.947242][ T6097] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 106.156598][ T7091] chnl_net:caif_netlink_parms(): no params data found [ 106.250118][ T7091] bridge0: port 1(bridge_slave_0) entered blocking state [ 106.255247][ T7091] bridge0: port 1(bridge_slave_0) entered disabled state [ 106.255406][ T7091] bridge_slave_0: entered allmulticast mode [ 106.256262][ T7091] bridge_slave_0: entered promiscuous mode [ 106.258656][ T7091] bridge0: port 2(bridge_slave_1) entered blocking state [ 106.258728][ T7091] bridge0: port 2(bridge_slave_1) entered disabled state [ 106.258823][ T7091] bridge_slave_1: entered allmulticast mode [ 106.259728][ T7091] bridge_slave_1: entered promiscuous mode [ 106.277549][ T7091] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 106.280609][ T7091] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.295416][ T7091] team0: Port device team_slave_0 added [ 106.297031][ T7091] team0: Port device team_slave_1 added [ 106.317302][ T7091] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.317358][ T7091] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.317391][ T7091] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.319388][ T7091] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.319413][ T7091] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.319442][ T7091] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.343150][ T7091] hsr_slave_0: entered promiscuous mode [ 106.343558][ T7091] hsr_slave_1: entered promiscuous mode [ 107.274856][ T7091] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 107.278991][ T7091] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 107.282765][ T7091] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 107.286825][ T7091] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 107.333342][ T7091] 8021q: adding VLAN 0 to HW filter on device bond0 [ 107.343341][ T7091] 8021q: adding VLAN 0 to HW filter on device team0 [ 107.352521][ T41] bridge0: port 1(bridge_slave_0) entered blocking state [ 107.352591][ T41] bridge0: port 1(bridge_slave_0) entered forwarding state [ 107.366138][ T41] bridge0: port 2(bridge_slave_1) entered blocking state [ 107.366224][ T41] bridge0: port 2(bridge_slave_1) entered forwarding state [ 107.390096][ T7091] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 107.479607][ T7091] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 107.509924][ T7091] veth0_vlan: entered promiscuous mode [ 107.512860][ T7091] veth1_vlan: entered promiscuous mode [ 107.528699][ T7091] veth0_macvtap: entered promiscuous mode [ 107.530499][ T7091] veth1_macvtap: entered promiscuous mode [ 107.543582][ T7091] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 107.547400][ T7091] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 107.550847][ T7091] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.550892][ T7091] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.550923][ T7091] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.550954][ T7091] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 107.862420][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.950479][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 107.970117][ T41] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.970191][ T41] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 107.996397][ T691] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 107.996457][ T691] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 108.031560][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 108.129854][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 1970/01/01 00:01:48 executed programs: 0 [ 108.422304][ T6597] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 108.425117][ T6597] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 108.427610][ T6597] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 108.434285][ T6597] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 108.434827][ T6597] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 108.554848][ T7238] chnl_net:caif_netlink_parms(): no params data found [ 108.626130][ T7238] bridge0: port 1(bridge_slave_0) entered blocking state [ 108.626252][ T7238] bridge0: port 1(bridge_slave_0) entered disabled state [ 108.626646][ T7238] bridge_slave_0: entered allmulticast mode [ 108.627626][ T7238] bridge_slave_0: entered promiscuous mode [ 108.630987][ T7238] bridge0: port 2(bridge_slave_1) entered blocking state [ 108.631070][ T7238] bridge0: port 2(bridge_slave_1) entered disabled state [ 108.631221][ T7238] bridge_slave_1: entered allmulticast mode [ 108.632104][ T7238] bridge_slave_1: entered promiscuous mode [ 108.654854][ T7238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 108.656686][ T7238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 108.677753][ T7238] team0: Port device team_slave_0 added [ 108.680812][ T7238] team0: Port device team_slave_1 added [ 108.700162][ T7238] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 108.700227][ T7238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.700615][ T7238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 108.701731][ T7238] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 108.701756][ T7238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 108.701787][ T7238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 108.735116][ T7238] hsr_slave_0: entered promiscuous mode [ 108.737473][ T7238] hsr_slave_1: entered promiscuous mode [ 108.739555][ T7238] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 108.741866][ T7238] Cannot create hsr debugfs directory [ 110.498396][ T6597] Bluetooth: hci0: command tx timeout [ 110.637588][ T12] bridge_slave_1: left allmulticast mode [ 110.640377][ T12] bridge_slave_1: left promiscuous mode [ 110.642044][ T12] bridge0: port 2(bridge_slave_1) entered disabled state [ 110.646483][ T12] bridge_slave_0: left allmulticast mode [ 110.649393][ T12] bridge_slave_0: left promiscuous mode [ 110.651109][ T12] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.402775][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 112.440633][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 112.489920][ T12] bond0 (unregistering): Released all slaves [ 112.578461][ T6597] Bluetooth: hci0: command tx timeout [ 112.586397][ T12] hsr_slave_0: left promiscuous mode [ 112.588091][ T12] hsr_slave_1: left promiscuous mode [ 112.588738][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 112.588777][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 112.590225][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 112.590258][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 112.605161][ T12] veth1_macvtap: left promiscuous mode [ 112.605262][ T12] veth0_macvtap: left promiscuous mode [ 112.605356][ T12] veth1_vlan: left promiscuous mode [ 112.605426][ T12] veth0_vlan: left promiscuous mode [ 114.380400][ T12] team0 (unregistering): Port device team_slave_1 removed [ 114.599718][ T12] team0 (unregistering): Port device team_slave_0 removed [ 114.658372][ T6597] Bluetooth: hci0: command tx timeout [ 116.738457][ T6597] Bluetooth: hci0: command tx timeout [ 117.021901][ T7238] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 117.025758][ T7238] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 117.029527][ T7238] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 117.033210][ T7238] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 117.091787][ T7238] 8021q: adding VLAN 0 to HW filter on device bond0 [ 117.125454][ T7238] 8021q: adding VLAN 0 to HW filter on device team0 [ 117.141321][ T176] bridge0: port 1(bridge_slave_0) entered blocking state [ 117.141407][ T176] bridge0: port 1(bridge_slave_0) entered forwarding state [ 117.142425][ T176] bridge0: port 2(bridge_slave_1) entered blocking state [ 117.142481][ T176] bridge0: port 2(bridge_slave_1) entered forwarding state [ 117.325628][ T7238] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 117.471272][ T7238] veth0_vlan: entered promiscuous mode [ 117.474291][ T7238] veth1_vlan: entered promiscuous mode [ 117.533069][ T7238] veth0_macvtap: entered promiscuous mode [ 117.535435][ T7238] veth1_macvtap: entered promiscuous mode [ 117.542639][ T7238] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 117.544430][ T7238] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 117.546495][ T7238] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.546534][ T7238] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.546565][ T7238] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.546595][ T7238] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 117.747171][ T671] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.749771][ T671] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 117.813873][ T671] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 117.813931][ T671] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 1970/01/01 00:01:57 executed programs: 2 [ 117.865719] ** replaying previous printk message ** [ 117.865719][ T7485] ------------[ cut here ]------------ [ 117.865812][ T7485] ODEBUG: activate active (active state 1) object: 0000000008c34cb7 object type: rcu_head hint: 0x0 [ 117.866202][ T7485] WARNING: CPU: 1 PID: 7485 at lib/debugobjects.c:615 debug_object_activate+0x344/0x460 [ 117.874355][ T7485] Modules linked in: [ 117.875489][ T7485] CPU: 1 UID: 0 PID: 7485 Comm: syz.0.17 Not tainted 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 117.878936][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.881785][ T7485] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.883956][ T7485] pc : debug_object_activate+0x344/0x460 [ 117.885656][ T7485] lr : debug_object_activate+0x344/0x460 [ 117.887550][ T7485] sp : ffff80009c5d76d0 [ 117.888686][ T7485] x29: ffff80009c5d76d0 x28: ffff8000976d8000 x27: dfff800000000000 [ 117.890909][ T7485] x26: ffff80008afc2440 x25: 0000000000000001 x24: ffff8000891ac400 [ 117.893278][ T7485] x23: 0000000000000003 x22: ffff80008b5399e0 x21: 0000000000000000 [ 117.895518][ T7485] x20: ffff80008afc2440 x19: ffff8000891ac400 x18: 0000000000000000 [ 117.897851][ T7485] x17: 6263343363383030 x16: ffff80008aefc458 x15: 0000000000000001 [ 117.900243][ T7485] x14: 1fffe000337d88e2 x13: 0000000000000000 x12: 0000000000000000 [ 117.902585][ T7485] x11: ffff6000337d88e3 x10: 0000000000ff0100 x9 : 7dff154ba1565400 [ 117.905084][ T7485] x8 : 7dff154ba1565400 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.907379][ T7485] x5 : ffff80009c5d7018 x4 : ffff80008f766be0 x3 : ffff8000807bcfac [ 117.909653][ T7485] x2 : 0000000000000001 x1 : 0000000100000201 x0 : 0000000000000000 [ 117.911914][ T7485] Call trace: [ 117.912857][ T7485] debug_object_activate+0x344/0x460 (P) [ 117.914472][ T7485] kvfree_call_rcu+0x4c/0x3f0 [ 117.915759][ T7485] cipso_v4_sock_setattr+0x308/0x40c [ 117.917304][ T7485] netlbl_sock_setattr+0x240/0x334 [ 117.918709][ T7485] smack_netlbl_add+0xa8/0x158 [ 117.920005][ T7485] smack_inode_setsecurity+0x378/0x430 [ 117.921579][ T7485] security_inode_setsecurity+0x118/0x3c0 [ 117.923265][ T7485] __vfs_setxattr_noperm+0x174/0x5c4 [ 117.924813][ T7485] __vfs_setxattr_locked+0x1ec/0x218 [ 117.926336][ T7485] vfs_setxattr+0x158/0x2ac [ 117.927586][ T7485] file_setxattr+0x1b8/0x294 [ 117.928936][ T7485] path_setxattrat+0x2ac/0x320 [ 117.930252][ T7485] __arm64_sys_fsetxattr+0xc0/0xdc [ 117.931776][ T7485] invoke_syscall+0x98/0x2b8 [ 117.933042][ T7485] el0_svc_common+0x130/0x23c [ 117.934382][ T7485] do_el0_svc+0x48/0x58 [ 117.935608][ T7485] el0_svc+0x58/0x180 [ 117.936848][ T7485] el0t_64_sync_handler+0x84/0x12c [ 117.938409][ T7485] el0t_64_sync+0x198/0x19c [ 117.939711][ T7485] irq event stamp: 185 [ 117.940835][ T7485] hardirqs last enabled at (184): [] __console_unlock+0x70/0xc4 [ 117.943428][ T7485] hardirqs last disabled at (185): [] el1_brk64+0x1c/0x48 [ 117.945860][ T7485] softirqs last enabled at (132): [] release_sock+0x14c/0x1ac [ 117.948399][ T7485] softirqs last disabled at (160): [] local_bh_disable+0x10/0x34 [ 117.950910][ T7485] ---[ end trace 0000000000000000 ]--- [ 117.952636] ** replaying previous printk message ** [ 117.952636][ T7485] ------------[ cut here ]------------ [ 117.952675][ T7485] ODEBUG: active_state active (active state 1) object: 0000000008c34cb7 object type: rcu_head hint: 0x0 [ 117.953063][ T7485] WARNING: CPU: 1 PID: 7485 at lib/debugobjects.c:615 debug_object_active_state+0x28c/0x350 [ 117.961575][ T7485] Modules linked in: [ 117.962719][ T7485] CPU: 1 UID: 0 PID: 7485 Comm: syz.0.17 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 117.966546][ T7485] Tainted: [W]=WARN [ 117.967574][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 117.970339][ T7485] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 117.972583][ T7485] pc : debug_object_active_state+0x28c/0x350 [ 117.974256][ T7485] lr : debug_object_active_state+0x28c/0x350 [ 117.975948][ T7485] sp : ffff80009c5d76c0 [ 117.977096][ T7485] x29: ffff80009c5d76d0 x28: ffff80008f671000 x27: dfff800000000000 [ 117.979372][ T7485] x26: 0000000000000003 x25: 0000000000000000 x24: ffff0000e2089738 [ 117.981583][ T7485] x23: 0000000000000001 x22: ffff80008afc2440 x21: ffff80008b5399e0 [ 117.983739][ T7485] x20: 0000000000000000 x19: ffff8000891ac400 x18: 0000000000000000 [ 117.985955][ T7485] x17: 6338303030303030 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 117.988155][ T7485] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 117.990412][ T7485] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 7dff154ba1565400 [ 117.992671][ T7485] x8 : 7dff154ba1565400 x7 : 0000000000000001 x6 : 0000000000000001 [ 117.994806][ T7485] x5 : ffff80009c5d7018 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 117.997009][ T7485] x2 : 0000000000000000 x1 : 0000000000000201 x0 : 0000000000000000 [ 117.999257][ T7485] Call trace: [ 118.000135][ T7485] debug_object_active_state+0x28c/0x350 (P) [ 118.001747][ T7485] kvfree_call_rcu+0x64/0x3f0 [ 118.003020][ T7485] cipso_v4_sock_setattr+0x308/0x40c [ 118.004427][ T7485] netlbl_sock_setattr+0x240/0x334 [ 118.005801][ T7485] smack_netlbl_add+0xa8/0x158 [ 118.007085][ T7485] smack_inode_setsecurity+0x378/0x430 [ 118.008573][ T7485] security_inode_setsecurity+0x118/0x3c0 [ 118.010173][ T7485] __vfs_setxattr_noperm+0x174/0x5c4 [ 118.011593][ T7485] __vfs_setxattr_locked+0x1ec/0x218 [ 118.013014][ T7485] vfs_setxattr+0x158/0x2ac [ 118.014260][ T7485] file_setxattr+0x1b8/0x294 [ 118.015496][ T7485] path_setxattrat+0x2ac/0x320 [ 118.016794][ T7485] __arm64_sys_fsetxattr+0xc0/0xdc [ 118.018180][ T7485] invoke_syscall+0x98/0x2b8 [ 118.019418][ T7485] el0_svc_common+0x130/0x23c [ 118.020673][ T7485] do_el0_svc+0x48/0x58 [ 118.021782][ T7485] el0_svc+0x58/0x180 [ 118.022842][ T7485] el0t_64_sync_handler+0x84/0x12c [ 118.024229][ T7485] el0t_64_sync+0x198/0x19c [ 118.025445][ T7485] irq event stamp: 211 [ 118.026535][ T7485] hardirqs last enabled at (210): [] __console_unlock+0x70/0xc4 [ 118.029079][ T7485] hardirqs last disabled at (211): [] el1_brk64+0x1c/0x48 [ 118.031335][ T7485] softirqs last enabled at (132): [] release_sock+0x14c/0x1ac [ 118.033743][ T7485] softirqs last disabled at (160): [] local_bh_disable+0x10/0x34 [ 118.036345][ T7485] ---[ end trace 0000000000000000 ]--- [ 1 ** replaying previous printk message ** [ 118.037865][ T7485] ------------[ cut here ]------------ [ 118.037907][ T7485] kvfree_call_rcu(): Double-freed call. rcu_head 0000000008c34cb7 [ 118.038013][ T7485] WARNING: CPU: 1 PID: 7485 at mm/slab_common.c:1956 kvfree_call_rcu+0x94/0x3f0 [ 118.045146][ T7485] Modules linked in: [ 118.046223][ T7485] CPU: 1 UID: 0 PID: 7485 Comm: syz.0.17 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 118.049879][ T7485] Tainted: [W]=WARN [ 118.050952][ T7485] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.053671][ T7485] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.055797][ T7485] pc : kvfree_call_rcu+0x94/0x3f0 [ 118.057186][ T7485] lr : kvfree_call_rcu+0x94/0x3f0 [ 118.058544][ T7485] sp : ffff80009c5d7730 [ 118.059656][ T7485] x29: ffff80009c5d7730 x28: 00000000fffffff5 x27: 1fffe0001a81c843 [ 118.061859][ T7485] x26: dfff800000000000 x25: ffff0000d43907ee x24: 0000000000000017 [ 118.064113][ T7485] x23: ffff8000891ac400 x22: 00000000ffffffea x21: ffff8000891ac400 [ 118.066283][ T7485] x20: ffff8000891ac400 x19: ffff80008afc2440 x18: 0000000000000000 [ 118.068608][ T7485] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 118.070853][ T7485] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 118.073166][ T7485] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 7dff154ba1565400 [ 118.075431][ T7485] x8 : 7dff154ba1565400 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.077731][ T7485] x5 : ffff80009c5d7078 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 118.079964][ T7485] x2 : 0000000000000000 x1 : 0000000000000201 x0 : 0000000000000000 [ 118.082204][ T7485] Call trace: [ 118.083084][ T7485] kvfree_call_rcu+0x94/0x3f0 (P) [ 118.084535][ T7485] cipso_v4_sock_setattr+0x308/0x40c [ 118.086047][ T7485] netlbl_sock_setattr+0x240/0x334 [ 118.087611][ T7485] smack_netlbl_add+0xa8/0x158 [ 118.088968][ T7485] smack_inode_setsecurity+0x378/0x430 [ 118.090484][ T7485] security_inode_setsecurity+0x118/0x3c0 [ 118.092148][ T7485] __vfs_setxattr_noperm+0x174/0x5c4 [ 118.093724][ T7485] __vfs_setxattr_locked+0x1ec/0x218 [ 118.095243][ T7485] vfs_setxattr+0x158/0x2ac [ 118.096582][ T7485] file_setxattr+0x1b8/0x294 [ 118.097837][ T7485] path_setxattrat+0x2ac/0x320 [ 118.099194][ T7485] __arm64_sys_fsetxattr+0xc0/0xdc [ 118.100637][ T7485] invoke_syscall+0x98/0x2b8 [ 118.101960][ T7485] el0_svc_common+0x130/0x23c [ 118.103248][ T7485] do_el0_svc+0x48/0x58 [ 118.104358][ T7485] el0_svc+0x58/0x180 [ 118.105459][ T7485] el0t_64_sync_handler+0x84/0x12c [ 118.106914][ T7485] el0t_64_sync+0x198/0x19c [ 118.108219][ T7485] irq event stamp: 233 [ 118.109422][ T7485] hardirqs last enabled at (232): [] __console_unlock+0x70/0xc4 [ 118.111986][ T7485] hardirqs last disabled at (233): [] el1_brk64+0x1c/0x48 [ 118.114480][ T7485] softirqs last enabled at (132): [] release_sock+0x14c/0x1ac [ 118.117068][ T7485] softirqs last disabled at (160): [] local_bh_disable+0x10/0x34 [ 118.119688][ T7485] ---[ end trace 0000000000000000 ]--- [ 118.147367][ T7487] ------------[ cut here ]------------ [ 118.147424][ T7487] ODEBUG: activate active (active state 1) object: 0000000008c34cb7 object type: rcu_head hint: 0x0 [ 118.147819][ T7487] WARNING: CPU: 1 PID: 7487 at lib/debugobjects.c:615 debug_object_activate+0x344/0x460 [ 118.155046][ T7487] Modules linked in: [ 118.156141][ T7487] CPU: 1 UID: 0 PID: 7487 Comm: syz.0.18 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 118.159775][ T7487] Tainted: [W]=WARN [ 118.160851][ T7487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.163660][ T7487] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.165810][ T7487] pc : debug_object_activate+0x344/0x460 [ 118.167357][ T7487] lr : debug_object_activate+0x344/0x460 [ 118.168890][ T7487] sp : ffff80009c6076d0 [ 118.170022][ T7487] x29: ffff80009c6076d0 x28: ffff8000976d8000 x27: dfff800000000000 [ 118.172221][ T7487] x26: ffff80008afc2440 x25: 0000000000000001 x24: ffff8000891ac400 [ 118.174471][ T7487] x23: 0000000000000003 x22: ffff80008b5399e0 x21: 0000000000000000 [ 118.176662][ T7487] x20: ffff80008afc2440 x19: ffff8000891ac400 x18: 0000000000000000 [ 118.178854][ T7487] x17: 6263343363383030 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 118.181197][ T7487] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 118.183578][ T7487] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : eb0406ae91298700 [ 118.185773][ T7487] x8 : eb0406ae91298700 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.188067][ T7487] x5 : ffff80009c607018 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 118.190325][ T7487] x2 : 0000000000000000 x1 : 0000000000000201 x0 : 0000000000000000 [ 118.192627][ T7487] Call trace: [ 118.193490][ T7487] debug_object_activate+0x344/0x460 (P) [ 118.195100][ T7487] kvfree_call_rcu+0x4c/0x3f0 [ 118.196455][ T7487] cipso_v4_sock_setattr+0x308/0x40c [ 118.197965][ T7487] netlbl_sock_setattr+0x240/0x334 [ 118.199495][ T7487] smack_netlbl_add+0xa8/0x158 [ 118.200834][ T7487] smack_inode_setsecurity+0x378/0x430 [ 118.202322][ T7487] security_inode_setsecurity+0x118/0x3c0 [ 118.203949][ T7487] __vfs_setxattr_noperm+0x174/0x5c4 [ 118.205518][ T7487] __vfs_setxattr_locked+0x1ec/0x218 [ 118.207037][ T7487] vfs_setxattr+0x158/0x2ac [ 118.208350][ T7487] file_setxattr+0x1b8/0x294 [ 118.209710][ T7487] path_setxattrat+0x2ac/0x320 [ 118.211104][ T7487] __arm64_sys_fsetxattr+0xc0/0xdc [ 118.212539][ T7487] invoke_syscall+0x98/0x2b8 [ 118.213813][ T7487] el0_svc_common+0x130/0x23c [ 118.215226][ T7487] do_el0_svc+0x48/0x58 [ 118.216409][ T7487] el0_svc+0x58/0x180 [ 118.217624][ T7487] el0t_64_sync_handler+0x84/0x12c [ 118.219094][ T7487] el0t_64_sync+0x198/0x19c [ 118.220379][ T7487] irq event stamp: 187 [ 118.221534][ T7487] hardirqs last enabled at (186): [] __console_unlock+0x70/0xc4 [ 118.224133][ T7487] hardirqs last disabled at (187): [] el1_brk64+0x1c/0x48 [ 118.226636][ T7487] softirqs last enabled at (146): [] local_bh_enable+0x10/0x34 [ 118.229288][ T7487] softirqs last disabled at (160): [] local_bh_disable+0x10/0x34 [ 118.231808][ T7487] ---[ end trace 0000000000000000 ]--- [ 118.2334 ** replaying previous printk message ** [ 118.233480][ T7487] ------------[ cut here ]------------ [ 118.233532][ T7487] ODEBUG: active_state active (active state 1) object: 0000000008c34cb7 object type: rcu_head hint: 0x0 [ 118.233911][ T7487] WARNING: CPU: 1 PID: 7487 at lib/debugobjects.c:615 debug_object_active_state+0x28c/0x350 [ 118.242346][ T7487] Modules linked in: [ 118.243446][ T7487] CPU: 1 UID: 0 PID: 7487 Comm: syz.0.18 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 118.247315][ T7487] Tainted: [W]=WARN [ 118.248375][ T7487] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.251205][ T7487] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.253436][ T7487] pc : debug_object_active_state+0x28c/0x350 [ 118.255129][ T7487] lr : debug_object_active_state+0x28c/0x350 [ 118.256875][ T7487] sp : ffff80009c6076c0 [ 118.258085][ T7487] x29: ffff80009c6076d0 x28: ffff80008f671000 x27: dfff800000000000 [ 118.260447][ T7487] x26: 0000000000000003 x25: 0000000000000000 x24: ffff0000e2089738 [ 118.262757][ T7487] x23: 0000000000000001 x22: ffff80008afc2440 x21: ffff80008b5399e0 [ 118.265043][ T7487] x20: 0000000000000000 x19: ffff8000891ac400 x18: 0000000000000000 [ 118.267253][ T7487] x17: 6338303030303030 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 118.269450][ T7487] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 118.271690][ T7487] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : eb0406ae91298700 [ 118.273959][ T7487] x8 : eb0406ae91298700 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.276235][ T7487] x5 : ffff80009c607018 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 118.278517][ T7487] x2 : 0000000000000000 x1 : 0000000000000201 x0 : 0000000000000000 [ 118.280855][ T7487] Call trace: [ 118.281807][ T7487] debug_object_active_state+0x28c/0x350 (P) [ 118.283618][ T7487] kvfree_call_rcu+0x64/0x3f0 [ 118.284923][ T7487] cipso_v4_sock_setattr+0x308/0x40c [ 118.286414][ T7487] netlbl_sock_setattr+0x240/0x334 [ 118.287925][ T7487] smack_netlbl_add+0xa8/0x158 [ 118.289294][ T7487] smack_inode_setsecurity+0x378/0x430 [ 118.290914][ T7487] security_inode_setsecurity+0x118/0x3c0 [ 118.292538][ T7487] __vfs_setxattr_noperm+0x174/0x5c4 [ 118.293957][ T7487] __vfs_setxattr_locked+0x1ec/0x218 [ 118.295454][ T7487] vfs_setxattr+0x158/0x2ac [ 118.296753][ T7487] file_setxattr+0x1b8/0x294 [ 118.298048][ T7487] path_setxattrat+0x2ac/0x320 [ 118.299435][ T7487] __arm64_sys_fsetxattr+0xc0/0xdc [ 118.300937][ T7487] invoke_syscall+0x98/0x2b8 [ 118.302303][ T7487] el0_svc_common+0x130/0x23c [ 118.303652][ T7487] do_el0_svc+0x48/0x58 [ 118.304872][ T7487] el0_svc+0x58/0x180 [ 118.306049][ T7487] el0t_64_sync_handler+0x84/0x12c [ 118.307471][ T7487] el0t_64_sync+0x198/0x19c [ 118.308768][ T7487] irq event stamp: 215 [ 118.309880][ T7487] hardirqs last enabled at (214): [] __console_unlock+0x70/0xc4 [ 118.312582][ T7487] hardirqs last disabled at (215): [] el1_brk64+0x1c/0x48 [ 118.315036][ T7487] softirqs last enabled at (146): [] local_bh_enable+0x10/0x34 [ 118.317824][ T7487] softirqs last disabled at (160): [] local_bh_disable+0x10/0x34 [ 118.320472][ T7487] ---[ end trace 0000000000000000 ]--- [ 118.338011][ ** replaying previous printk message ** [ 118.338011][ T7489] ------------[ cut here ]------------ [ 118.338071][ T7489] ODEBUG: activate active (active state 1) object: 0000000008c34cb7 object type: rcu_head hint: 0x0 [ 118.338460][ T7489] WARNING: CPU: 0 PID: 7489 at lib/debugobjects.c:615 debug_object_activate+0x344/0x460 [ 118.347021][ T7489] Modules linked in: [ 118.348139][ T7489] CPU: 0 UID: 0 PID: 7489 Comm: syz.0.19 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 118.351817][ T7489] Tainted: [W]=WARN [ 118.352925][ T7489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 118.355643][ T7489] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 118.357786][ T7489] pc : debug_object_activate+0x344/0x460 [ 118.359349][ T7489] lr : debug_object_activate+0x344/0x460 [ 118.360867][ T7489] sp : ffff80009c5d76d0 [ 118.361973][ T7489] x29: ffff80009c5d76d0 x28: ffff8000976d8000 x27: dfff800000000000 [ 118.364147][ T7489] x26: ffff80008afc2440 x25: 0000000000000001 x24: ffff8000891ac400 [ 118.366307][ T7489] x23: 0000000000000003 x22: ffff80008b5399e0 x21: 0000000000000000 [ 118.368468][ T7489] x20: ffff80008afc2440 x19: ffff8000891ac400 x18: 0000000000000000 [ 118.370764][ T7489] x17: 6263343363383030 x16: ffff80008aefc458 x15: 0000000000000001 [ 118.373210][ T7489] x14: 1fffe000337d40e2 x13: 0000000000000000 x12: 0000000000000000 [ 118.375573][ T7489] x11: ffff6000337d40e3 x10: 0000000000ff0100 x9 : 46ac6e901c18bf00 [ 118.377837][ T7489] x8 : 46ac6e901c18bf00 x7 : 0000000000000001 x6 : 0000000000000001 [ 118.380097][ T7489] x5 : ffff80009c5d7018 x4 : ffff80008f766be0 x3 : ffff8000807bcfac [ 118.382478][ T7489] x2 : 0000000000000001 x1 : 0000000100000201 x0 : 0000000000000000 [ 118.384723][ T7489] Call trace: [ 118.385708][ T7489] debug_object_activate+0x344/0x460 (P) [ 118.387279][ T7489] kvfree_call_rcu+0x4c/0x3f0 [ 118.388580][ T7489] cipso_v4_sock_setattr+0x308/0x40c [ 118.390110][ T7489] netlbl_sock_setattr+0x240/0x334 [ 118.391672][ T7489] smack_netlbl_add+0xa8/0x158 [ 118.392996][ T7489] smack_inode_setsecurity+0x378/0x430 [ 118.394631][ T7489] security_inode_setsecurity+0x118/0x3c0 [ 118.396296][ T7489] __vfs_setxattr_noperm+0x174/0x5c4 [ 118.397755][ T7489] __vfs_setxattr_locked+0x1ec/0x218 [ 118.399282][ T7489] vfs_setxattr+0x158/0x2ac [ 118.400616][ T7489] file_setxattr+0x1b8/0x294 [ 118.401937][ T7489] path_setxattrat+0x2ac/0x320 [ 118.403354][ T7489] __arm64_sys_fsetxattr+0xc0/0xdc [ 118.404805][ T7489] invoke_syscall+0x98/0x2b8 [ 118.406108][ T7489] el0_svc_common+0x130/0x23c [ 118.407423][ T7489] do_el0_svc+0x48/0x58 [ 118.408628][ T7489] el0_svc+0x58/0x180 [ 118.409744][ T7489] el0t_64_sync_handler+0x84/0x12c [ 118.411249][ T7489] el0t_64_sync+0x198/0x19c [ 118.412518][ T7489] irq event stamp: 173 [ 118.413674][ T7489] hardirqs last enabled at (172): [] __console_unlock+0x70/0xc4 [ 118.416322][ T7489] hardirqs last disabled at (173): [] el1_brk64+0x1c/0x48 [ 118.418732][ T7489] softirqs last enabled at (122): [] release_sock+0x14c/0x1ac [ 118.421284][ T7489] softirqs last disabled at (148): [] local_bh_disable+0x10/0x34 [ 118.423783][ T7489] ---[ end trace 0000000000000000 ]--- [ 12 ** replaying previous printk message ** [ 122.341324][ T691] ------------[ cut here ]------------ [ 122.341799][ T691] Trying to vfree() bad address (0000000008c34cb7) [ 122.341919][ T691] WARNING: CPU: 0 PID: 691 at mm/vmalloc.c:3274 remove_vm_area+0x268/0x270 [ 122.348259][ T691] Modules linked in: [ 122.349358][ T691] CPU: 0 UID: 0 PID: 691 Comm: kworker/u8:12 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 122.353094][ T691] Tainted: [W]=WARN [ 122.354133][ T691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.356862][ T691] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 122.358626][ T691] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.360739][ T691] pc : remove_vm_area+0x268/0x270 [ 122.362119][ T691] lr : remove_vm_area+0x264/0x270 [ 122.363475][ T691] sp : ffff80009d4878e0 [ 122.364595][ T691] x29: ffff80009d4878f0 x28: ffff00019beaf4d4 x27: ffff00019beaf4c0 [ 122.366776][ T691] x26: ffff00019beaf4b0 x25: dfff800000000000 x24: 0000000000000001 [ 122.368961][ T691] x23: ffff0000c309e028 x22: 1fffe00018e5a7a1 x21: 0000000000000000 [ 122.371144][ T691] x20: 0000000000000000 x19: ffff8000891ac400 x18: 00000000ffffffff [ 122.373364][ T691] x17: 0000000000000000 x16: ffff80008aefc458 x15: 0000000000000001 [ 122.375645][ T691] x14: 1fffe000337d40e2 x13: 0000000000000000 x12: 0000000000000000 [ 122.377942][ T691] x11: ffff6000337d40e3 x10: 0000000000ff0100 x9 : 8a8e99d387f68700 [ 122.380222][ T691] x8 : 8a8e99d387f68700 x7 : 0000000000000001 x6 : 0000000000000001 [ 122.382461][ T691] x5 : ffff80009d487238 x4 : ffff80008f766be0 x3 : ffff8000807bcfac [ 122.384657][ T691] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 122.386921][ T691] Call trace: [ 122.387806][ T691] remove_vm_area+0x268/0x270 (P) [ 122.389307][ T691] vfree+0xac/0x3dc [ 122.390322][ T691] kvfree_rcu_bulk+0xc4/0x228 [ 122.391597][ T691] kfree_rcu_monitor+0x230/0x2b4 [ 122.392991][ T691] process_one_work+0x7e8/0x155c [ 122.394304][ T691] worker_thread+0x958/0xed8 [ 122.395685][ T691] kthread+0x5fc/0x75c [ 122.396802][ T691] ret_from_fork+0x10/0x20 [ 122.397998][ T691] irq event stamp: 1945198 [ 122.399237][ T691] hardirqs last enabled at (1945197): [] __console_unlock+0x70/0xc4 [ 122.401883][ T691] hardirqs last disabled at (1945198): [] el1_brk64+0x1c/0x48 [ 122.404392][ T691] softirqs last enabled at (1942286): [] batadv_nc_purge_paths+0x2f4/0x37c [ 122.407143][ T691] softirqs last disabled at (1942284): [] batadv_nc_purge_paths+0xd0/0x37c [ 122.409964][ T691] ---[ end trace 0000000000000000 ]--- [ 122.413583][ T691] ------------[ cut here ]------------ [ 122.413631][ T691] Trying to vfree() nonexistent vm area (0000000008c34cb7) [ 122.417406][ T691] WARNING: CPU: 1 PID: 691 at mm/vmalloc.c:3409 vfree+0x32c/0x3dc [ 122.419520][ T691] Modules linked in: [ 122.420584][ T691] CPU: 1 UID: 0 PID: 691 Comm: kworker/u8:12 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 122.424416][ T691] Tainted: [W]=WARN [ 122.425493][ T691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 122.428228][ T691] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 122.430029][ T691] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 122.432136][ T691] pc : vfree+0x32c/0x3dc [ 122.433354][ T691] lr : vfree+0x32c/0x3dc [ 122.434473][ T691] sp : ffff80009d487950 [ 122.435713][ T691] x29: ffff80009d487960 x28: ffff00019beaf4d4 x27: ffff00019beaf4c0 [ 122.437926][ T691] x26: ffff00019beaf4b0 x25: dfff800000000000 x24: 0000000000000001 [ 122.440121][ T691] x23: ffff0000c309e028 x22: 1fffe00018e5a7a1 x21: 0000000000000000 [ 122.442355][ T691] x20: ffff8000891ac400 x19: 0000000000000000 x18: 1fffe000337d8876 [ 122.444524][ T691] x17: ffff80008f66e000 x16: ffff80008aefc458 x15: 0000000000000001 [ 122.446810][ T691] x14: 1fffe000337db2f0 x13: 0000000000000000 x12: 0000000000000000 [ 122.449124][ T691] x11: ffff800093163c08 x10: 0000000000000003 x9 : 8a8e99d387f68700 [ 122.451391][ T691] x8 : 8a8e99d387f68700 x7 : ffff800080488a2c x6 : 0000000000000000 [ 122.453610][ T691] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 122.455892][ T691] x2 : 0000000000000006 x1 : ffff80008b538ee0 x0 : 0000000000000001 [ 122.458141][ T691] Call trace: [ 122.459080][ T691] vfree+0x32c/0x3dc (P) [ 122.460321][ T691] kvfree_rcu_bulk+0xc4/0x228 [ 122.461626][ T691] kfree_rcu_monitor+0x230/0x2b4 [ 122.463100][ T691] process_one_work+0x7e8/0x155c [ 122.464570][ T691] worker_thread+0x958/0xed8 [ 122.465896][ T691] kthread+0x5fc/0x75c [ 122.466969][ T691] ret_from_fork+0x10/0x20 [ 122.468167][ T691] irq event stamp: 1945290 [ 122.469384][ T691] hardirqs last enabled at (1945289): [] finish_lock_switch+0xb0/0x1c0 [ 122.472191][ T691] hardirqs last disabled at (1945290): [] el1_brk64+0x1c/0x48 [ 122.474788][ T691] softirqs last enabled at (1945262): [] handle_softirqs+0xaf8/0xc88 [ 122.477467][ T691] softirqs last disabled at (1945201): [] __do_softirq+0x14/0x20 [ 122.480004][ T691] ---[ end trace 0000000000000000 ]--- 1970/01/01 00:02:02 executed programs: 261 [ 12 ** replaying previous printk message ** [ 125.781794][ T691] ------------[ cut here ]------------ [ 125.781849][ T691] Trying to vfree() bad address (0000000008c34cb7) [ 125.781995][ T691] WARNING: CPU: 0 PID: 691 at mm/vmalloc.c:3274 remove_vm_area+0x268/0x270 [ 125.788555][ T691] Modules linked in: [ 125.789734][ T691] CPU: 0 UID: 0 PID: 691 Comm: kworker/u8:12 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 125.793549][ T691] Tainted: [W]=WARN [ 125.794623][ T691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 125.797388][ T691] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 125.799142][ T691] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 125.801306][ T691] pc : remove_vm_area+0x268/0x270 [ 125.802669][ T691] lr : remove_vm_area+0x264/0x270 [ 125.804041][ T691] sp : ffff80009d4878e0 [ 125.805185][ T691] x29: ffff80009d4878f0 x28: ffff00019bed34d4 x27: ffff00019bed34c0 [ 125.807482][ T691] x26: ffff00019bed34b0 x25: dfff800000000000 x24: 0000000000000001 [ 125.809766][ T691] x23: ffff0000c93ed028 x22: 1fffe00018e5a7a1 x21: 0000000000000000 [ 125.811989][ T691] x20: 0000000000000000 x19: ffff8000891ac400 x18: 1fffe000337d4076 [ 125.814473][ T691] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 125.816798][ T691] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 125.819115][ T691] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 8a8e99d387f68700 [ 125.821445][ T691] x8 : 8a8e99d387f68700 x7 : 0000000000000001 x6 : 0000000000000001 [ 125.823815][ T691] x5 : ffff80009d487238 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 125.826240][ T691] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 125.828534][ T691] Call trace: [ 125.829461][ T691] remove_vm_area+0x268/0x270 (P) [ 125.830931][ T691] vfree+0xac/0x3dc [ 125.832046][ T691] kvfree_rcu_bulk+0xc4/0x228 [ 125.833451][ T691] kfree_rcu_monitor+0x230/0x2b4 [ 125.834836][ T691] process_one_work+0x7e8/0x155c [ 125.836300][ T691] worker_thread+0x958/0xed8 [ 125.837601][ T691] kthread+0x5fc/0x75c [ 125.838758][ T691] ret_from_fork+0x10/0x20 [ 125.840082][ T691] irq event stamp: 2049284 [ 125.841352][ T691] hardirqs last enabled at (2049283): [] __console_unlock+0x70/0xc4 [ 125.844111][ T691] hardirqs last disabled at (2049284): [] el1_brk64+0x1c/0x48 [ 125.846654][ T691] softirqs last enabled at (2048014): [] batadv_nc_purge_paths+0x2f4/0x37c [ 125.849605][ T691] softirqs last disabled at (2048012): [] batadv_nc_purge_paths+0xd0/0x37c [ 125.852548][ T691] ---[ end trace 0000000000000000 ]--- [ 125.858052][ T691] ------------[ cut here ]------------ [ 125.858108][ T691] Trying to vfree() nonexistent vm area (0000000008c34cb7) [ 125.862635][ T691] WARNING: CPU: 1 PID: 691 at mm/vmalloc.c:3409 vfree+0x32c/0x3dc [ 125.865051][ T691] Modules linked in: [ 125.866152][ T691] CPU: 1 UID: 0 PID: 691 Comm: kworker/u8:12 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 125.870022][ T691] Tainted: [W]=WARN [ 125.871093][ T691] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 125.873943][ T691] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 125.875808][ T691] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 125.877974][ T691] pc : vfree+0x32c/0x3dc [ 125.879174][ T691] lr : vfree+0x32c/0x3dc [ 125.880343][ T691] sp : ffff80009d487950 [ 125.881520][ T691] x29: ffff80009d487960 x28: ffff00019bed34d4 x27: ffff00019bed34c0 [ 125.883848][ T691] x26: ffff00019bed34b0 x25: dfff800000000000 x24: 0000000000000001 [ 125.886167][ T691] x23: ffff0000c93ed028 x22: 1fffe00018e5a7a1 x21: 0000000000000000 [ 125.888382][ T691] x20: ffff8000891ac400 x19: 0000000000000000 x18: 1fffe000337d8876 [ 125.890692][ T691] x17: ffff80008f66e000 x16: ffff80008aefc458 x15: 0000000000000001 [ 125.892952][ T691] x14: 1fffe000337db2f0 x13: 0000000000000000 x12: 0000000000000000 [ 125.895270][ T691] x11: ffff800093163c08 x10: 0000000000000003 x9 : 8a8e99d387f68700 [ 125.897489][ T691] x8 : 8a8e99d387f68700 x7 : ffff800080488a2c x6 : 0000000000000000 [ 125.899777][ T691] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 125.902094][ T691] x2 : 0000000000000006 x1 : ffff80008b538ee0 x0 : 0000000000000001 [ 125.904375][ T691] Call trace: [ 125.905271][ T691] vfree+0x32c/0x3dc (P) [ 125.906462][ T691] kvfree_rcu_bulk+0xc4/0x228 [ 125.907753][ T691] kfree_rcu_monitor+0x230/0x2b4 [ 125.909173][ T691] process_one_work+0x7e8/0x155c [ 125.910601][ T691] worker_thread+0x958/0xed8 [ 125.911898][ T691] kthread+0x5fc/0x75c [ 125.913013][ T691] ret_from_fork+0x10/0x20 [ 125.914370][ T691] irq event stamp: 2049362 [ 125.915589][ T691] hardirqs last enabled at (2049361): [] finish_lock_switch+0xb0/0x1c0 [ 125.918470][ T691] hardirqs last disabled at (2049362): [] el1_brk64+0x1c/0x48 [ 125.921013][ T691] softirqs last enabled at (2049334): [] handle_softirqs+0xaf8/0xc88 [ 125.923925][ T691] softirqs last disabled at (2049287): [] __do_softirq+0x14/0x20 [ 125.926541][ T691] ---[ end trace 0000000000000000 ]--- [ 125.949618][ T2410] ieee802154 phy0 wpan0: encryption failed: -22 [ 125.949702][ T2410] ieee802154 phy1 wpan1: encryption failed: -22 [ 125.958807][ T671] ------------[ cut here ]------------ [ 125.958895][ T671] Trying to vfree() bad address (0000000008c34cb7) [ 125.959034][ T671] WARNING: CPU: 1 PID: 671 at mm/vmalloc.c:3274 remove_vm_area+0x268/0x270 [ 125.964522][ T671] Modules linked in: [ 125.965658][ T671] CPU: 1 UID: 0 PID: 671 Comm: kworker/u8:11 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 125.969413][ T671] Tainted: [W]=WARN [ 125.970512][ T671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 125.973412][ T671] Workqueue: kvfree_rcu_reclaim kfree_rcu_work [ 125.975134][ T671] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 125.977343][ T671] pc : remove_vm_area+0x268/0x270 [ 125.978719][ T671] lr : remove_vm_area+0x264/0x270 [ 125.980100][ T671] sp : ffff80009d0b78f0 [ 125.981283][ T671] x29: ffff80009d0b7900 x28: 1ffff00011ece29b x27: dfff800000000000 [ 125.983529][ T671] x26: ffff0000c6436e18 x25: dfff800000000000 x24: 0000000000000001 [ 125.985955][ T671] x23: ffff0000c93ea028 x22: 1fffe00018e57001 x21: 0000000000000000 [ 125.988187][ T671] x20: 0000000000000000 x19: ffff8000891ac400 x18: 00000000ffffffff [ 125.990477][ T671] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 125.992792][ T671] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 125.995087][ T671] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 1930952939838e00 [ 125.997304][ T671] x8 : 1930952939838e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 125.999528][ T671] x5 : ffff80009d0b7238 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 126.002043][ T671] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 126.004274][ T671] Call trace: [ 126.005171][ T671] remove_vm_area+0x268/0x270 (P) [ 126.006576][ T671] vfree+0xac/0x3dc [ 126.007652][ T671] kvfree_rcu_bulk+0xc4/0x228 [ 126.008968][ T671] kfree_rcu_work+0xe0/0x140 [ 126.010237][ T671] process_one_work+0x7e8/0x155c [ 126.011664][ T671] worker_thread+0x958/0xed8 [ 126.012961][ T671] kthread+0x5fc/0x75c [ 126.014207][ T671] ret_from_fork+0x10/0x20 [ 126.015490][ T671] irq event stamp: 852264 [ 126.016634][ T671] hardirqs last enabled at (852263): [] __console_unlock+0x70/0xc4 [ 126.019334][ T671] hardirqs last disabled at (852264): [] el1_brk64+0x1c/0x48 [ 126.021776][ T671] softirqs last enabled at (852118): [] nsim_dev_trap_report_work+0x67c/0x9fc [ 126.024712][ T671] softirqs last disabled at (852116): [] nsim_dev_trap_report_work+0x5f4/0x9fc [ 126.027611][ T671] ---[ end trace 0000000000000000 ]--- [ ** replaying previous printk message ** [ 126.036832][ T671] ------------[ cut here ]------------ [ 126.036887][ T671] Trying to vfree() nonexistent vm area (0000000008c34cb7) [ 126.037009][ T671] WARNING: CPU: 1 PID: 671 at mm/vmalloc.c:3409 vfree+0x32c/0x3dc [ 126.043586][ T671] Modules linked in: [ 126.044666][ T671] CPU: 1 UID: 0 PID: 671 Comm: kworker/u8:11 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 126.048495][ T671] Tainted: [W]=WARN [ 126.049567][ T671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 126.052413][ T671] Workqueue: kvfree_rcu_reclaim kfree_rcu_work [ 126.054164][ T671] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 126.056368][ T671] pc : vfree+0x32c/0x3dc [ 126.057526][ T671] lr : vfree+0x32c/0x3dc [ 126.058674][ T671] sp : ffff80009d0b7960 [ 126.059835][ T671] x29: ffff80009d0b7970 x28: 1ffff00011ece29b x27: dfff800000000000 [ 126.062008][ T671] x26: ffff0000c6436e18 x25: dfff800000000000 x24: 0000000000000001 [ 126.064201][ T671] x23: ffff0000c93ea028 x22: 1fffe00018e57001 x21: 0000000000000000 [ 126.066385][ T671] x20: ffff8000891ac400 x19: 0000000000000000 x18: 00000000ffffffff [ 126.068706][ T671] x17: 0000000000000000 x16: ffff80008aefc458 x15: 0000000000000001 [ 126.070986][ T671] x14: 1fffe000337d88e2 x13: 0000000000000000 x12: 0000000000000000 [ 126.073224][ T671] x11: ffff6000337d88e3 x10: 0000000000ff0100 x9 : 1930952939838e00 [ 126.075540][ T671] x8 : 1930952939838e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 126.077737][ T671] x5 : ffff80009d0b72b8 x4 : ffff80008f766be0 x3 : ffff8000807bcfac [ 126.080006][ T671] x2 : 0000000000000001 x1 : 0000000100000000 x0 : 0000000000000000 [ 126.082285][ T671] Call trace: [ 126.083176][ T671] vfree+0x32c/0x3dc (P) [ 126.084398][ T671] kvfree_rcu_bulk+0xc4/0x228 [ 126.085710][ T671] kfree_rcu_work+0xe0/0x140 [ 126.086987][ T671] process_one_work+0x7e8/0x155c [ 126.088371][ T671] worker_thread+0x958/0xed8 [ 126.089635][ T671] kthread+0x5fc/0x75c [ 126.090778][ T671] ret_from_fork+0x10/0x20 [ 126.092074][ T671] irq event stamp: 852398 [ 126.093225][ T671] hardirqs last enabled at (852397): [] __console_unlock+0x70/0xc4 [ 126.095932][ T671] hardirqs last disabled at (852398): [] el1_brk64+0x1c/0x48 [ 126.098473][ T671] softirqs last enabled at (852374): [] handle_softirqs+0xaf8/0xc88 [ 126.101145][ T671] softirqs last disabled at (852269): [] __do_softirq+0x14/0x20 [ 126.103664][ T671] ---[ end trace 0000000000000000 ]--- [ 12 ** replaying previous printk message ** [ 127.539662][ T671] ------------[ cut here ]------------ [ 127.539719][ T671] Trying to vfree() bad address (0000000008c34cb7) [ 127.539857][ T671] WARNING: CPU: 0 PID: 671 at mm/vmalloc.c:3274 remove_vm_area+0x268/0x270 [ 127.546140][ T671] Modules linked in: [ 127.547170][ T671] CPU: 0 UID: 0 PID: 671 Comm: kworker/u8:11 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 127.550876][ T671] Tainted: [W]=WARN [ 127.551914][ T671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 127.554625][ T671] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 127.556389][ T671] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 127.558556][ T671] pc : remove_vm_area+0x268/0x270 [ 127.559922][ T671] lr : remove_vm_area+0x264/0x270 [ 127.561288][ T671] sp : ffff80009d0b78e0 [ 127.562414][ T671] x29: ffff80009d0b78f0 x28: ffff00019beaf4d4 x27: ffff00019beaf4c0 [ 127.564635][ T671] x26: ffff00019beaf4b0 x25: dfff800000000000 x24: 0000000000000001 [ 127.566797][ T671] x23: ffff0000c309c028 x22: 1fffe00018e57001 x21: 0000000000000000 [ 127.568989][ T671] x20: 0000000000000000 x19: ffff8000891ac400 x18: 1fffe000337d4076 [ 127.571227][ T671] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 127.573538][ T671] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 127.575816][ T671] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 1930952939838e00 [ 127.578047][ T671] x8 : 1930952939838e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 127.580268][ T671] x5 : ffff80009d0b7238 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 127.582434][ T671] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 127.584637][ T671] Call trace: [ 127.585563][ T671] remove_vm_area+0x268/0x270 (P) [ 127.587005][ T671] vfree+0xac/0x3dc [ 127.588099][ T671] kvfree_rcu_bulk+0xc4/0x228 [ 127.589437][ T671] kfree_rcu_monitor+0x230/0x2b4 [ 127.590824][ T671] process_one_work+0x7e8/0x155c [ 127.592212][ T671] worker_thread+0x958/0xed8 [ 127.593449][ T671] kthread+0x5fc/0x75c [ 127.594583][ T671] ret_from_fork+0x10/0x20 [ 127.595797][ T671] irq event stamp: 891018 [ 127.597046][ T671] hardirqs last enabled at (891017): [] __console_unlock+0x70/0xc4 [ 127.599666][ T671] hardirqs last disabled at (891018): [] el1_brk64+0x1c/0x48 [ 127.602333][ T671] softirqs last enabled at (890636): [] batadv_nc_purge_paths+0x2f4/0x37c [ 127.605232][ T671] softirqs last disabled at (890634): [] batadv_nc_purge_paths+0xd0/0x37c [ 127.608005][ T671] ---[ end trace 0000000000000000 ]--- [ 127.610927][ T671] ------------[ cut here ]------------ [ 127.610970][ T671] Trying to vfree() nonexistent vm area (0000000008c34cb7) [ 127.611111][ T671] WARNING: CPU: 1 PID: 671 at mm/vmalloc.c:3409 vfree+0x32c/0x3dc [ 127.616753][ T671] Modules linked in: [ 127.617986][ T671] CPU: 1 UID: 0 PID: 671 Comm: kworker/u8:11 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 127.621885][ T671] Tainted: [W]=WARN [ 127.623051][ T671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 127.625827][ T671] Workqueue: kvfree_rcu_reclaim kfree_rcu_monitor [ 127.627713][ T671] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 127.630049][ T671] pc : vfree+0x32c/0x3dc [ 127.631264][ T671] lr : vfree+0x32c/0x3dc [ 127.632436][ T671] sp : ffff80009d0b7950 [ 127.633559][ T671] x29: ffff80009d0b7960 x28: ffff00019beaf4d4 x27: ffff00019beaf4c0 [ 127.635870][ T671] x26: ffff00019beaf4b0 x25: dfff800000000000 x24: 0000000000000001 [ 127.638099][ T671] x23: ffff0000c309c028 x22: 1fffe00018e57001 x21: 0000000000000000 [ 127.640346][ T671] x20: ffff8000891ac400 x19: 0000000000000000 x18: 1fffe000337d4076 [ 127.642625][ T671] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 127.644970][ T671] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 127.647303][ T671] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 1930952939838e00 [ 127.649536][ T671] x8 : 1930952939838e00 x7 : 0000000000000001 x6 : 0000000000000001 [ 127.651784][ T671] x5 : ffff80009d0b7298 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 127.654079][ T671] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 127.656423][ T671] Call trace: [ 127.657367][ T671] vfree+0x32c/0x3dc (P) [ 127.658566][ T671] kvfree_rcu_bulk+0xc4/0x228 [ 127.659875][ T671] kfree_rcu_monitor+0x230/0x2b4 [ 127.661282][ T671] process_one_work+0x7e8/0x155c [ 127.662671][ T671] worker_thread+0x958/0xed8 [ 127.663936][ T671] kthread+0x5fc/0x75c [ 127.665091][ T671] ret_from_fork+0x10/0x20 [ 127.666391][ T671] irq event stamp: 891344 [ 127.667645][ T671] hardirqs last enabled at (891343): [] __console_unlock+0x70/0xc4 [ 127.670278][ T671] hardirqs last disabled at (891344): [] el1_brk64+0x1c/0x48 [ 127.672912][ T671] softirqs last enabled at (891318): [] handle_softirqs+0xaf8/0xc88 [ 127.675593][ T671] softirqs last disabled at (891021): [] __do_softirq+0x14/0x20 [ 127.678161][ T671] ---[ end trace 0000000000000000 ]--- [ 127.724779][ T41] ------------[ cut here ]------------ [ 127.724862][ T41] Trying to vfree() bad address (0000000008c34cb7) [ 127.729703][ T41] WARNING: CPU: 1 PID: 41 at mm/vmalloc.c:3274 remove_vm_area+0x268/0x270 [ 127.731996][ T41] Modules linked in: [ 127.733037][ T41] CPU: 1 UID: 0 PID: 41 Comm: kworker/u8:2 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 127.736742][ T41] Tainted: [W]=WARN [ 127.737787][ T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 127.740516][ T41] Workqueue: kvfree_rcu_reclaim kfree_rcu_work [ 127.742211][ T41] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 127.744436][ T41] pc : remove_vm_area+0x268/0x270 [ 127.745813][ T41] lr : remove_vm_area+0x264/0x270 [ 127.747215][ T41] sp : ffff8000990e78f0 [ 127.748338][ T41] x29: ffff8000990e7900 x28: 1ffff00011ece29b x27: dfff800000000000 [ 127.750539][ T41] x26: ffff0000c2480618 x25: dfff800000000000 x24: 0000000000000001 [ 127.752748][ T41] x23: ffff0000c309e028 x22: 1fffe000183613d1 x21: 0000000000000000 [ 127.755019][ T41] x20: 0000000000000000 x19: ffff8000891ac400 x18: 1fffe000337d8876 [ 127.757306][ T41] x17: ffff80008f66e000 x16: ffff80008aefc458 x15: 0000000000000001 [ 127.759563][ T41] x14: 1fffe000337db2f0 x13: 0000000000000000 x12: 0000000000000000 [ 127.761929][ T41] x11: ffff800093163c08 x10: 0000000000000003 x9 : 34a4ee5182ea6500 [ 127.764261][ T41] x8 : 34a4ee5182ea6500 x7 : ffff800080488a2c x6 : 0000000000000000 [ 127.766517][ T41] x5 : 0000000000000001 x4 : 0000000000000001 x3 : 0000000000000010 [ 127.768840][ T41] x2 : 0000000000000006 x1 : ffff80008b538ee0 x0 : 0000000000000001 [ 127.771184][ T41] Call trace: [ 127.772113][ T41] remove_vm_area+0x268/0x270 (P) [ 127.773601][ T41] vfree+0xac/0x3dc [ 127.774705][ T41] kvfree_rcu_bulk+0xc4/0x228 [ 127.776094][ T41] kfree_rcu_work+0xe0/0x140 [ 127.777448][ T41] process_one_work+0x7e8/0x155c [ 127.778922][ T41] worker_thread+0x958/0xed8 [ 127.780332][ T41] kthread+0x5fc/0x75c [ 127.781483][ T41] ret_from_fork+0x10/0x20 [ 127.782824][ T41] irq event stamp: 971384 [ 127.784049][ T41] hardirqs last enabled at (971383): [] finish_lock_switch+0xb0/0x1c0 [ 127.787040][ T41] hardirqs last disabled at (971384): [] el1_brk64+0x1c/0x48 [ 127.789614][ T41] softirqs last enabled at (971342): [] ieee80211_ibss_work+0x294/0xd50 [ 127.792507][ T41] softirqs last disabled at (971340): [] ieee80211_ibss_work+0xc0/0xd50 [ 127.795361][ T41] ---[ end trace 0000000000000000 ]--- [ 127.798637][ T41] ------------[ cut here ]------------ [ 127.798681][ T41] Trying to vfree() nonexistent vm area (0000000008c34cb7) [ 127.798806][ T41] WARNING: CPU: 1 PID: 41 at mm/vmalloc.c:3409 vfree+0x32c/0x3dc [ 127.804513][ T41] Modules linked in: [ 127.805557][ T41] CPU: 1 UID: 0 PID: 41 Comm: kworker/u8:2 Tainted: G W 6.16.0-rc5-syzkaller-00067-gec4801305969-dirty #0 PREEMPT [ 127.809557][ T41] Tainted: [W]=WARN [ 127.810619][ T41] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 127.813443][ T41] Workqueue: kvfree_rcu_reclaim kfree_rcu_work [ 127.815236][ T41] pstate: 60400005 (nZCv daif +PAN -UAO -TCO -DIT -SSBS BTYPE=--) [ 127.817430][ T41] pc : vfree+0x32c/0x3dc [ 127.818662][ T41] lr : vfree+0x32c/0x3dc [ 127.819875][ T41] sp : ffff8000990e7960 [ 127.821037][ T41] x29: ffff8000990e7970 x28: 1ffff00011ece29b x27: dfff800000000000 [ 127.823327][ T41] x26: ffff0000c2480618 x25: dfff800000000000 x24: 0000000000000001 [ 127.825684][ T41] x23: ffff0000c309e028 x22: 1fffe000183613d1 x21: 0000000000000000 [ 127.827946][ T41] x20: ffff8000891ac400 x19: 0000000000000000 x18: 1fffe000337d8876 [ 127.830207][ T41] x17: 0000000000000000 x16: ffff80008ae63d08 x15: ffff700011ede144 [ 127.832446][ T41] x14: 1ffff00011ede144 x13: 0000000000000004 x12: ffffffffffffffff [ 127.834738][ T41] x11: ffff700011ede144 x10: 0000000000ff0100 x9 : 34a4ee5182ea6500 [ 127.837020][ T41] x8 : 34a4ee5182ea6500 x7 : 0000000000000001 x6 : 0000000000000001 [ 127.839414][ T41] x5 : ffff8000990e72b8 x4 : ffff80008f766be0 x3 : ffff80008054d314 [ 127.841725][ T41] x2 : 0000000000000000 x1 : 0000000100000000 x0 : 0000000000000000 [ 127.843924][ T41] Call trace: [ 127.844858][ T41] vfree+0x32c/0x3dc (P) [ 127.846030][ T41] kvfree_rcu_bulk+0xc4/0x228 [ 127.847376][ T41] kfree_rcu_work+0xe0/0x140 [ 127.848667][ T41] process_one_work+0x7e8/0x155c [ 127.850074][ T41] worker_thread+0x958/0xed8 [ 127.851368][ T41] kthread+0x5fc/0x75c [ 127.852568][ T41] ret_from_fork+0x10/0x20 [ 127.853817][ T41] irq event stamp: 971434 [ 127.855102][ T41] hardirqs last enabled at (971433): [] __console_unlock+0x70/0xc4 [ 127.857810][ T41] hardirqs last disabled at (971434): [] el1_brk64+0x1c/0x48 [ 127.860401][ T41] softirqs last enabled at (971408): [] handle_softirqs+0xaf8/0xc88 [ 127.863318][ T41] softirqs last disabled at (971389): [] __do_softirq+0x14/0x20 [ 127.865916][ T41] ---[ end trace 0000000000000000 ]---