Warning: Permanently added '10.128.1.20' (ED25519) to the list of known hosts. 2024/11/17 22:37:42 ignoring optional flag "sandboxArg"="0" 2024/11/17 22:37:42 parsed 1 programs [ 59.284660][ T3611] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 60.056538][ T81] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.064659][ T81] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.072595][ T1922] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 60.081286][ T81] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 60.089198][ T81] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 60.096650][ T1922] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 61.871016][ T3704] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 61.882351][ T3704] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 61.892370][ T3704] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 61.901811][ T3704] netdevsim netdevsim2 netdevsim3: renamed from eth3 2024/11/17 22:37:49 executed programs: 0 [ 66.657666][ T4418] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 66.668009][ T4418] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 66.677247][ T4418] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 66.687219][ T4418] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 68.928833][ T33] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.936720][ T33] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.944205][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 68.953468][ T33] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 68.961591][ T33] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 68.969108][ T1922] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 69.019164][ T4991] ================================================================== [ 69.027246][ T4991] BUG: KASAN: slab-out-of-bounds in strlen+0x87/0x90 [ 69.033973][ T4991] Read of size 1 at addr ffff8881033c4548 by task syz.2.15/4991 [ 69.041592][ T4991] [ 69.043940][ T4991] CPU: 1 PID: 4991 Comm: syz.2.15 Not tainted 5.11.0-rc7-syzkaller #0 [ 69.052072][ T4991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 69.062311][ T4991] Call Trace: [ 69.065576][ T4991] dump_stack+0xbe/0xf9 [ 69.069738][ T4991] ? strlen+0x87/0x90 [ 69.073711][ T4991] print_address_description.constprop.0.cold+0x5b/0x2f9 [ 69.080719][ T4991] ? strlen+0x87/0x90 [ 69.084704][ T4991] ? strlen+0x87/0x90 [ 69.088679][ T4991] kasan_report.cold+0x79/0xd5 [ 69.093430][ T4991] ? strlen+0x87/0x90 [ 69.097413][ T4991] strlen+0x87/0x90 [ 69.101213][ T4991] kstrdup+0x22/0x70 [ 69.105101][ T4991] led_tg_check+0x1dd/0x480 [ 69.109623][ T4991] ? stack_depot_save+0x22a/0x400 [ 69.114655][ T4991] ? led_tg+0x2e0/0x2e0 [ 69.118795][ T4991] xt_check_target+0x26f/0x650 [ 69.123548][ T4991] ? textify_hooks.constprop.0+0x1a0/0x1a0 [ 69.129341][ T4991] ? lock_acquire+0x11a/0x220 [ 69.134006][ T4991] ? stack_depot_save+0x1c6/0x400 [ 69.139015][ T4991] ? do_raw_spin_unlock+0x171/0x230 [ 69.144215][ T4991] ? stack_depot_save+0x22a/0x400 [ 69.149223][ T4991] nft_target_init+0x3e3/0x630 [ 69.153968][ T4991] ? __sock_recv_timestamp+0x990/0xd30 [ 69.159430][ T4991] ? nft_match_init+0x30/0x30 [ 69.164093][ T4991] ? unpoison_range+0x3a/0x60 [ 69.168756][ T4991] ? ___slab_alloc+0x180/0x690 [ 69.173500][ T4991] ? fs_reclaim_release+0x9c/0xe0 [ 69.178511][ T4991] ? ____kasan_kmalloc.constprop.0+0x82/0xa0 [ 69.184475][ T4991] ? unpoison_range+0x3a/0x60 [ 69.189152][ T4991] ? nft_match_init+0x30/0x30 [ 69.193841][ T4991] nf_tables_newrule+0xd58/0x2730 [ 69.198848][ T4991] ? nf_tables_rule_release+0x1d0/0x1d0 [ 69.204377][ T4991] ? __mutex_unlock_slowpath+0xe2/0x470 [ 69.209900][ T4991] ? __nla_parse+0x3d/0x50 [ 69.214310][ T4991] nfnetlink_rcv_batch+0x81b/0x1f40 [ 69.219503][ T4991] ? nf_tables_rule_release+0x1d0/0x1d0 [ 69.225029][ T4991] ? nfnetlink_rcv_msg+0x880/0x880 [ 69.230121][ T4991] ? dev_hard_start_xmit+0x370/0x6e0 [ 69.235392][ T4991] ? apparmor_capable+0x1f4/0x5a0 [ 69.240397][ T4991] ? apparmor_ptrace_access_check+0x330/0x330 [ 69.246443][ T4991] ? nla_get_range_signed+0x510/0x510 [ 69.251796][ T4991] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.258021][ T4991] ? cap_capable+0x1eb/0x250 [ 69.262596][ T4991] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.268844][ T4991] ? security_capable+0x95/0xc0 [ 69.273703][ T4991] ? __nla_parse+0x3d/0x50 [ 69.278100][ T4991] nfnetlink_rcv+0x3af/0x420 [ 69.282676][ T4991] ? nfnetlink_rcv_batch+0x1f40/0x1f40 [ 69.288117][ T4991] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.294438][ T4991] netlink_unicast+0x64e/0x8f0 [ 69.299196][ T4991] ? netlink_attachskb+0x7f0/0x7f0 [ 69.304293][ T4991] ? _copy_from_iter_full+0x20b/0x760 [ 69.309643][ T4991] ? __phys_addr+0x9a/0x120 [ 69.314130][ T4991] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.320357][ T4991] ? __phys_addr_symbol+0x2c/0x70 [ 69.325365][ T4991] ? __sanitizer_cov_trace_cmp8+0x1d/0x70 [ 69.331073][ T4991] ? __check_object_size+0x171/0x3f0 [ 69.336341][ T4991] netlink_sendmsg+0x84c/0xd80 [ 69.341088][ T4991] ? netlink_unicast+0x8f0/0x8f0 [ 69.346234][ T4991] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.352482][ T4991] ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70 [ 69.358732][ T4991] ? netlink_unicast+0x8f0/0x8f0 [ 69.363706][ T4991] sock_sendmsg+0x151/0x190 [ 69.368188][ T4991] ____sys_sendmsg+0x706/0x870 [ 69.372929][ T4991] ? kernel_sendmsg+0x50/0x50 [ 69.377582][ T4991] ? do_recvmmsg+0x6a0/0x6a0 [ 69.382177][ T4991] ? fs_reclaim_release+0x9c/0xe0 [ 69.387289][ T4991] ? lock_downgrade+0x4d0/0x4d0 [ 69.392140][ T4991] ? fs_reclaim_acquire+0xb2/0x150 [ 69.397235][ T4991] ___sys_sendmsg+0xf3/0x170 [ 69.401805][ T4991] ? sendmsg_copy_msghdr+0x160/0x160 [ 69.407079][ T4991] ? __fget_files+0x1e4/0x2f0 [ 69.411758][ T4991] ? lock_downgrade+0x4d0/0x4d0 [ 69.416617][ T4991] ? lock_acquire+0x11a/0x220 [ 69.421284][ T4991] ? free_fdtable_rcu+0x70/0x70 [ 69.426121][ T4991] ? finish_task_switch.isra.0+0x2f2/0x680 [ 69.431909][ T4991] ? __fget_files+0x206/0x2f0 [ 69.436567][ T4991] ? __fget_light+0xea/0x280 [ 69.441139][ T4991] ? __sanitizer_cov_trace_const_cmp8+0x1d/0x70 [ 69.447369][ T4991] __sys_sendmsg+0xe5/0x1b0 [ 69.451854][ T4991] ? __sys_sendmsg_sock+0xb0/0xb0 [ 69.456855][ T4991] ? vtime_user_exit+0xde/0x180 [ 69.461681][ T4991] ? __sanitizer_cov_trace_const_cmp1+0x22/0x80 [ 69.467899][ T4991] ? trace_user_exit.constprop.0+0x54/0xf0 [ 69.473685][ T4991] do_syscall_64+0x34/0x50 [ 69.478166][ T4991] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 69.484125][ T4991] RIP: 0033:0x7f9934048719 [ 69.488535][ T4991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 69.508225][ T4991] RSP: 002b:00007f9933ac9038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 69.516620][ T4991] RAX: ffffffffffffffda RBX: 00007f99341fff80 RCX: 00007f9934048719 [ 69.524663][ T4991] RDX: 0000000000000000 RSI: 0000000020000000 RDI: 0000000000000003 [ 69.532621][ T4991] RBP: 00007f99340bb75e R08: 0000000000000000 R09: 0000000000000000 [ 69.540590][ T4991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 69.548543][ T4991] R13: 0000000000000000 R14: 00007f99341fff80 R15: 00007fffed48e658 [ 69.556497][ T4991] [ 69.558802][ T4991] Allocated by task 4991: [ 69.563099][ T4991] kasan_save_stack+0x1b/0x40 [ 69.567754][ T4991] ____kasan_kmalloc.constprop.0+0x82/0xa0 [ 69.573535][ T4991] nf_tables_newrule+0xac5/0x2730 [ 69.578539][ T4991] nfnetlink_rcv_batch+0x81b/0x1f40 [ 69.583715][ T4991] nfnetlink_rcv+0x3af/0x420 [ 69.588290][ T4991] netlink_unicast+0x64e/0x8f0 [ 69.593036][ T4991] netlink_sendmsg+0x84c/0xd80 [ 69.597792][ T4991] sock_sendmsg+0x151/0x190 [ 69.602270][ T4991] ____sys_sendmsg+0x706/0x870 [ 69.607018][ T4991] ___sys_sendmsg+0xf3/0x170 [ 69.611599][ T4991] __sys_sendmsg+0xe5/0x1b0 [ 69.616079][ T4991] do_syscall_64+0x34/0x50 [ 69.620478][ T4991] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 69.626369][ T4991] [ 69.628675][ T4991] Last potentially related work creation: [ 69.634375][ T4991] kasan_save_stack+0x1b/0x40 [ 69.639044][ T4991] kasan_record_aux_stack+0xc5/0xf0 [ 69.644236][ T4991] insert_work+0x4a/0x3f0 [ 69.648555][ T4991] __queue_work+0x677/0xd80 [ 69.653071][ T4991] queue_work_on+0x6a/0x80 [ 69.657686][ T4991] nfc_genl_rcv_nl_event+0x213/0x2e0 [ 69.662965][ T4991] notifier_call_chain+0xba/0x1f0 [ 69.667972][ T4991] blocking_notifier_call_chain+0x67/0x90 [ 69.673676][ T4991] netlink_release+0x1410/0x16c0 [ 69.678616][ T4991] __sock_release+0xd2/0x290 [ 69.683197][ T4991] sock_close+0x18/0x20 [ 69.687337][ T4991] __fput+0x230/0x890 [ 69.691307][ T4991] task_work_run+0xe2/0x190 [ 69.695813][ T4991] exit_to_user_mode_prepare+0x172/0x180 [ 69.701774][ T4991] syscall_exit_to_user_mode+0x13/0x40 [ 69.707213][ T4991] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 69.713092][ T4991] [ 69.715400][ T4991] The buggy address belongs to the object at ffff8881033c4500 [ 69.715400][ T4991] which belongs to the cache kmalloc-96 of size 96 [ 69.729346][ T4991] The buggy address is located 72 bytes inside of [ 69.729346][ T4991] 96-byte region [ffff8881033c4500, ffff8881033c4560) [ 69.742426][ T4991] The buggy address belongs to the page: [ 69.748039][ T4991] page:0000000099b0fd3d refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1033c4 [ 69.758444][ T4991] flags: 0x200000000000200(slab) [ 69.763372][ T4991] raw: 0200000000000200 ffffea00043ba540 0000000200000002 ffff888100041780 [ 69.771970][ T4991] raw: 0000000000000000 0000000080200020 00000001ffffffff 0000000000000000 [ 69.780531][ T4991] page dumped because: kasan: bad access detected [ 69.786932][ T4991] page_owner tracks the page as allocated [ 69.792631][ T4991] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY), pid 1969, ts 10062000431 [ 69.806672][ T4991] post_alloc_hook+0x136/0x1a0 [ 69.811423][ T4991] get_page_from_freelist+0x12fe/0x33d0 [ 69.816949][ T4991] __alloc_pages_nodemask+0x26c/0x5b0 [ 69.822316][ T4991] alloc_pages_current+0x1c9/0x370 [ 69.827413][ T4991] allocate_slab+0x289/0x460 [ 69.831988][ T4991] ___slab_alloc+0x3f0/0x690 [ 69.836649][ T4991] __kmalloc+0x299/0x2b0 [ 69.840867][ T4991] tomoyo_encode2.part.0+0xe9/0x3a0 [ 69.846043][ T4991] tomoyo_realpath_from_path+0x1a6/0x650 [ 69.851656][ T4991] tomoyo_check_open_permission+0x255/0x350 [ 69.857533][ T4991] tomoyo_file_open+0xa3/0xd0 [ 69.862191][ T4991] security_file_open+0x58/0x500 [ 69.867105][ T4991] do_dentry_open+0x4ec/0x1070 [ 69.871851][ T4991] path_openat+0x18bb/0x26b0 [ 69.876491][ T4991] do_filp_open+0x17e/0x3c0 [ 69.880977][ T4991] do_sys_openat2+0x16d/0x420 [ 69.885634][ T4991] page last free stack trace: [ 69.890278][ T4991] free_pcp_prepare+0x374/0x460 [ 69.895105][ T4991] free_unref_page+0x10/0x1c0 [ 69.899766][ T4991] kasan_depopulate_vmalloc_pte+0x5c/0x70 [ 69.905469][ T4991] __apply_to_page_range+0x659/0xdf0 [ 69.910737][ T4991] kasan_release_vmalloc+0xa7/0xc0 [ 69.915828][ T4991] __purge_vmap_area_lazy+0x8e6/0x1c00 [ 69.921284][ T4991] _vm_unmap_aliases.part.0+0x2d3/0x3d0 [ 69.926811][ T4991] vm_unmap_aliases+0x2f/0x40 [ 69.931471][ T4991] change_page_attr_set_clr+0x23f/0x4f0 [ 69.937022][ T4991] set_memory_nx+0xb2/0x110 [ 69.941507][ T4991] free_init_pages+0x52/0x80 [ 69.946082][ T4991] free_kernel_image_pages+0x20/0x50 [ 69.951352][ T4991] kernel_init+0x17/0x1bc [ 69.955672][ T4991] ret_from_fork+0x22/0x30 [ 69.960068][ T4991] [ 69.962371][ T4991] Memory state around the buggy address: [ 69.967993][ T4991] ffff8881033c4400: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc [ 69.976041][ T4991] ffff8881033c4480: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc [ 69.984083][ T4991] >ffff8881033c4500: 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc [ 69.992143][ T4991] ^ [ 69.998534][ T4991] ffff8881033c4580: 00 00 00 00 00 00 00 00 00 00 fc fc fc fc fc fc [ 70.006576][ T4991] ffff8881033c4600: 00 00 00 00 00 00 00 00 00 00 00 00 fc fc fc fc [ 70.014610][ T4991] ================================================================== [ 70.022648][ T4991] Disabling lock debugging due to kernel taint [ 70.029769][ T4991] Kernel panic - not syncing: panic_on_warn set ... [ 70.036474][ T4991] Kernel Offset: disabled [ 70.040796][ T4991] Rebooting in 86400 seconds..