Warning: Permanently added '10.128.0.17' (ED25519) to the list of known hosts.
2025/04/02 23:22:54 ignoring optional flag "sandboxArg"="0"
2025/04/02 23:22:55 parsed 1 programs
[   64.999191][ T2663] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
2025/04/02 23:23:03 executed programs: 0
[   73.772731][ T3554] FAULT_INJECTION: forcing a failure.
[   73.772731][ T3554] name failslab, interval 1, probability 0, space 0, times 1
[   73.785643][ T3554] CPU: 1 UID: 0 PID: 3554 Comm: syz.3.16 Not tainted 6.14.0-rc2-syzkaller #0
[   73.785654][ T3554] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   73.785662][ T3554] Call Trace:
[   73.785665][ T3554]  <TASK>
[   73.785668][ T3554]  dump_stack_lvl+0x108/0x280
[   73.785685][ T3554]  ? __pfx_dump_stack_lvl+0x10/0x10
[   73.785692][ T3554]  ? __pfx__printk+0x10/0x10
[   73.785699][ T3554]  ? kmem_cache_alloc_noprof+0x4d/0x410
[   73.785709][ T3554]  ? __pfx_lock_release+0x10/0x10
[   73.785717][ T3554]  should_fail_ex+0x41b/0x550
[   73.785724][ T3554]  should_failslab+0xac/0x100
[   73.785732][ T3554]  kmem_cache_alloc_noprof+0x64/0x410
[   73.785740][ T3554]  ? __kernfs_new_node+0xdb/0x6b0
[   73.785748][ T3554]  __kernfs_new_node+0xdb/0x6b0
[   73.785755][ T3554]  ? stack_trace_save+0x118/0x1d0
[   73.785762][ T3554]  ? __pfx___kernfs_new_node+0x10/0x10
[   73.785770][ T3554]  ? __lock_acquire+0x638/0xc80
[   73.785777][ T3554]  kernfs_create_dir_ns+0x123/0x2a0
[   73.785785][ T3554]  sysfs_create_dir_ns+0x1a0/0x3a0
[   73.785793][ T3554]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   73.785800][ T3554]  kobject_add_internal+0x3e0/0x8f0
[   73.785809][ T3554]  kobject_add+0x132/0x1f0
[   73.785816][ T3554]  ? kobject_put+0x3d/0x340
[   73.785822][ T3554]  ? __pfx_kobject_add+0x10/0x10
[   73.785828][ T3554]  ? bus_get_dev_root+0xff/0x130
[   73.785835][ T3554]  ? get_device_parent+0x117/0x3a0
[   73.785842][ T3554]  device_add+0x3e3/0x990
[   73.785847][ T3554]  ? device_initialize+0x229/0x410
[   73.785853][ T3554]  iommufd_test+0x1cbc/0x40a0
[   73.785860][ T3554]  ? __pfx_lock_release+0x10/0x10
[   73.785867][ T3554]  ? __pfx_iommufd_test+0x10/0x10
[   73.785872][ T3554]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   73.785880][ T3554]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   73.785885][ T3554]  ? tomoyo_path_number_perm+0x4d1/0x5d0
[   73.785890][ T3554]  ? ksys_write+0x1b9/0x230
[   73.785898][ T3554]  ? tomoyo_path_number_perm+0x1c6/0x5d0
[   73.785904][ T3554]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   73.785912][ T3554]  iommufd_fops_ioctl+0x3f8/0x4b0
[   73.785920][ T3554]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   73.785928][ T3554]  ? __fget_files+0x2e/0x280
[   73.785935][ T3554]  __se_sys_ioctl+0xab/0x100
[   73.785943][ T3554]  do_syscall_64+0x8d/0x170
[   73.785949][ T3554]  ? clear_bhb_loop+0x55/0xb0
[   73.785957][ T3554]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   73.785967][ T3554] RIP: 0033:0x7f7ff4d8d169
[   73.785978][ T3554] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   73.785983][ T3554] RSP: 002b:00007f7ff5b14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   73.785993][ T3554] RAX: ffffffffffffffda RBX: 00007f7ff4fa5fa0 RCX: 00007f7ff4d8d169
[   73.785997][ T3554] RDX: 0000200000000200 RSI: 0000000000003ba0 RDI: 0000000000000003
[   73.786002][ T3554] RBP: 00007f7ff5b14090 R08: 0000000000000000 R09: 0000000000000000
[   73.786006][ T3554] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   73.786010][ T3554] R13: 0000000000000000 R14: 00007f7ff4fa5fa0 R15: 00007ffe807e1a68
[   73.786016][ T3554]  </TASK>
[   73.786030][ T3554] kobject: kobject_add_internal failed for iommufd_mock0 (error: -12 parent: devices)
[   74.109455][ T3557] FAULT_INJECTION: forcing a failure.
[   74.109455][ T3557] name failslab, interval 1, probability 0, space 0, times 0
[   74.122293][ T3557] CPU: 0 UID: 0 PID: 3557 Comm: syz.3.17 Not tainted 6.14.0-rc2-syzkaller #0
[   74.122301][ T3557] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.122305][ T3557] Call Trace:
[   74.122307][ T3557]  <TASK>
[   74.122309][ T3557]  dump_stack_lvl+0x108/0x280
[   74.122318][ T3557]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.122323][ T3557]  ? __pfx__printk+0x10/0x10
[   74.122327][ T3557]  ? kmem_cache_alloc_noprof+0x4d/0x410
[   74.122333][ T3557]  ? __pfx_lock_release+0x10/0x10
[   74.122339][ T3557]  should_fail_ex+0x41b/0x550
[   74.122343][ T3557]  should_failslab+0xac/0x100
[   74.122348][ T3557]  kmem_cache_alloc_noprof+0x64/0x410
[   74.122353][ T3557]  ? __kernfs_new_node+0xdb/0x6b0
[   74.122358][ T3557]  __kernfs_new_node+0xdb/0x6b0
[   74.122362][ T3557]  ? stack_trace_save+0x118/0x1d0
[   74.122367][ T3557]  ? fwnode_create_software_node+0x155/0x1a0
[   74.122374][ T3557]  ? __pfx___kernfs_new_node+0x10/0x10
[   74.122378][ T3557]  ? do_syscall_64+0x8d/0x170
[   74.122383][ T3557]  ? __lock_acquire+0x638/0xc80
[   74.122387][ T3557]  kernfs_create_dir_ns+0x123/0x2a0
[   74.122392][ T3557]  sysfs_create_dir_ns+0x1a0/0x3a0
[   74.122397][ T3557]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[   74.122401][ T3557]  kobject_add_internal+0x3e0/0x8f0
[   74.122406][ T3557]  kobject_add+0x132/0x1f0
[   74.122410][ T3557]  ? kobject_put+0x3d/0x340
[   74.122413][ T3557]  ? __pfx_kobject_add+0x10/0x10
[   74.122417][ T3557]  ? bus_get_dev_root+0xff/0x130
[   74.122420][ T3557]  ? get_device_parent+0x117/0x3a0
[   74.122424][ T3557]  device_add+0x3e3/0x990
[   74.122427][ T3557]  ? device_initialize+0x229/0x410
[   74.122430][ T3557]  iommufd_test+0x1cbc/0x40a0
[   74.122434][ T3557]  ? __pfx_lock_release+0x10/0x10
[   74.122438][ T3557]  ? __pfx_iommufd_test+0x10/0x10
[   74.122440][ T3557]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.122445][ T3557]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.122448][ T3557]  ? tomoyo_path_number_perm+0x4d1/0x5d0
[   74.122450][ T3557]  ? ksys_write+0x1b9/0x230
[   74.122456][ T3557]  ? tomoyo_path_number_perm+0x1c6/0x5d0
[   74.122459][ T3557]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   74.122464][ T3557]  iommufd_fops_ioctl+0x3f8/0x4b0
[   74.122468][ T3557]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   74.122473][ T3557]  ? __fget_files+0x2e/0x280
[   74.122477][ T3557]  __se_sys_ioctl+0xab/0x100
[   74.122482][ T3557]  do_syscall_64+0x8d/0x170
[   74.122485][ T3557]  ? clear_bhb_loop+0x55/0xb0
[   74.122490][ T3557]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.122494][ T3557] RIP: 0033:0x7f7ff4d8d169
[   74.122499][ T3557] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.122503][ T3557] RSP: 002b:00007f7ff5b14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.122509][ T3557] RAX: ffffffffffffffda RBX: 00007f7ff4fa5fa0 RCX: 00007f7ff4d8d169
[   74.122511][ T3557] RDX: 0000200000000200 RSI: 0000000000003ba0 RDI: 0000000000000003
[   74.122514][ T3557] RBP: 00007f7ff5b14090 R08: 0000000000000000 R09: 0000000000000000
[   74.122516][ T3557] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.122518][ T3557] R13: 0000000000000000 R14: 00007f7ff4fa5fa0 R15: 00007ffe807e1a68
[   74.122521][ T3557]  </TASK>
[   74.122530][ T3557] kobject: kobject_add_internal failed for iommufd_mock0 (error: -12 parent: devices)
[   74.460574][ T3559] FAULT_INJECTION: forcing a failure.
[   74.460574][ T3559] name failslab, interval 1, probability 0, space 0, times 0
[   74.473496][ T3559] CPU: 1 UID: 0 PID: 3559 Comm: syz.3.18 Not tainted 6.14.0-rc2-syzkaller #0
[   74.473506][ T3559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.473510][ T3559] Call Trace:
[   74.473513][ T3559]  <TASK>
[   74.473516][ T3559]  dump_stack_lvl+0x108/0x280
[   74.473528][ T3559]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.473534][ T3559]  ? __pfx__printk+0x10/0x10
[   74.473540][ T3559]  ? kmem_cache_alloc_noprof+0x4d/0x410
[   74.473548][ T3559]  ? __pfx_lock_release+0x10/0x10
[   74.473555][ T3559]  should_fail_ex+0x41b/0x550
[   74.473562][ T3559]  should_failslab+0xac/0x100
[   74.473569][ T3559]  kmem_cache_alloc_noprof+0x64/0x410
[   74.473576][ T3559]  ? __kernfs_new_node+0xdb/0x6b0
[   74.473584][ T3559]  __kernfs_new_node+0xdb/0x6b0
[   74.473591][ T3559]  ? __pfx___kernfs_new_node+0x10/0x10
[   74.473600][ T3559]  ? sysfs_do_create_link_sd+0x77/0xe0
[   74.473608][ T3559]  ? __pfx_lock_release+0x10/0x10
[   74.473614][ T3559]  ? do_raw_spin_lock+0x14e/0x3b0
[   74.473620][ T3559]  kernfs_new_node+0x10a/0x1e0
[   74.473627][ T3559]  kernfs_create_link+0x96/0x1b0
[   74.473634][ T3559]  sysfs_do_create_link_sd+0x85/0xe0
[   74.473639][ T3559]  software_node_notify+0xba/0x140
[   74.473647][ T3559]  device_add+0x3fe/0x990
[   74.473653][ T3559]  ? device_initialize+0x229/0x410
[   74.473659][ T3559]  iommufd_test+0x1cbc/0x40a0
[   74.473665][ T3559]  ? __pfx_lock_release+0x10/0x10
[   74.473672][ T3559]  ? __pfx_iommufd_test+0x10/0x10
[   74.473676][ T3559]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.473682][ T3559]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.473686][ T3559]  ? tomoyo_path_number_perm+0x4d1/0x5d0
[   74.473690][ T3559]  ? ksys_write+0x1b9/0x230
[   74.473698][ T3559]  ? tomoyo_path_number_perm+0x1c6/0x5d0
[   74.473702][ T3559]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   74.473709][ T3559]  iommufd_fops_ioctl+0x3f8/0x4b0
[   74.473716][ T3559]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   74.473723][ T3559]  ? __fget_files+0x2e/0x280
[   74.473728][ T3559]  __se_sys_ioctl+0xab/0x100
[   74.473736][ T3559]  do_syscall_64+0x8d/0x170
[   74.473741][ T3559]  ? clear_bhb_loop+0x55/0xb0
[   74.473748][ T3559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.473754][ T3559] RIP: 0033:0x7f7ff4d8d169
[   74.473761][ T3559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.473766][ T3559] RSP: 002b:00007f7ff5b14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.473775][ T3559] RAX: ffffffffffffffda RBX: 00007f7ff4fa5fa0 RCX: 00007f7ff4d8d169
[   74.473780][ T3559] RDX: 0000200000000200 RSI: 0000000000003ba0 RDI: 0000000000000003
[   74.473784][ T3559] RBP: 00007f7ff5b14090 R08: 0000000000000000 R09: 0000000000000000
[   74.473788][ T3559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.473792][ T3559] R13: 0000000000000000 R14: 00007f7ff4fa5fa0 R15: 00007ffe807e1a68
[   74.473797][ T3559]  </TASK>
[   74.474320][ T3559] iommufd_mock iommufd_mock0: Adding to iommu group 0
[   74.766376][ T3559] ==================================================================
[   74.774439][ T3559] BUG: KASAN: slab-use-after-free in software_node_notify_remove+0x16a/0x170
[   74.783202][ T3559] Read of size 1 at addr ffff8881721ed908 by task syz.3.18/3559
[   74.790834][ T3559] 
[   74.793137][ T3559] CPU: 1 UID: 0 PID: 3559 Comm: syz.3.18 Not tainted 6.14.0-rc2-syzkaller #0
[   74.793143][ T3559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[   74.793146][ T3559] Call Trace:
[   74.793150][ T3559]  <TASK>
[   74.793153][ T3559]  dump_stack_lvl+0x108/0x280
[   74.793162][ T3559]  ? __pfx_dump_stack_lvl+0x10/0x10
[   74.793166][ T3559]  ? __pfx__printk+0x10/0x10
[   74.793170][ T3559]  ? _printk+0xce/0x120
[   74.793174][ T3559]  ? __virt_addr_valid+0x141/0x270
[   74.793180][ T3559]  ? __virt_addr_valid+0x229/0x270
[   74.793184][ T3559]  print_report+0x169/0x550
[   74.793188][ T3559]  ? __virt_addr_valid+0x141/0x270
[   74.793192][ T3559]  ? __virt_addr_valid+0x229/0x270
[   74.793196][ T3559]  ? software_node_notify_remove+0x16a/0x170
[   74.793202][ T3559]  kasan_report+0x143/0x180
[   74.793206][ T3559]  ? kfree+0x17c/0x3d0
[   74.793211][ T3559]  ? software_node_notify_remove+0x16a/0x170
[   74.793216][ T3559]  software_node_notify_remove+0x16a/0x170
[   74.793221][ T3559]  device_del+0x44c/0x730
[   74.793226][ T3559]  ? __pfx_device_del+0x10/0x10
[   74.793229][ T3559]  ? __pfx_iommufd_device_do_attach+0x10/0x10
[   74.793235][ T3559]  device_unregister+0x16/0xa0
[   74.793239][ T3559]  iommufd_test+0x236d/0x40a0
[   74.793243][ T3559]  ? __pfx_lock_release+0x10/0x10
[   74.793248][ T3559]  ? __pfx_iommufd_test+0x10/0x10
[   74.793251][ T3559]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.793255][ T3559]  ? tomoyo_path_number_perm+0x4a9/0x5d0
[   74.793258][ T3559]  ? tomoyo_path_number_perm+0x4d1/0x5d0
[   74.793261][ T3559]  ? ksys_write+0x1b9/0x230
[   74.793267][ T3559]  ? tomoyo_path_number_perm+0x1c6/0x5d0
[   74.793270][ T3559]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   74.793274][ T3559]  iommufd_fops_ioctl+0x3f8/0x4b0
[   74.793279][ T3559]  ? __pfx_iommufd_fops_ioctl+0x10/0x10
[   74.793283][ T3559]  ? __fget_files+0x2e/0x280
[   74.793287][ T3559]  __se_sys_ioctl+0xab/0x100
[   74.793292][ T3559]  do_syscall_64+0x8d/0x170
[   74.793297][ T3559]  ? clear_bhb_loop+0x55/0xb0
[   74.793302][ T3559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   74.793307][ T3559] RIP: 0033:0x7f7ff4d8d169
[   74.793311][ T3559] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   74.793315][ T3559] RSP: 002b:00007f7ff5b14038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   74.793321][ T3559] RAX: ffffffffffffffda RBX: 00007f7ff4fa5fa0 RCX: 00007f7ff4d8d169
[   74.793324][ T3559] RDX: 0000200000000200 RSI: 0000000000003ba0 RDI: 0000000000000003
[   74.793327][ T3559] RBP: 00007f7ff5b14090 R08: 0000000000000000 R09: 0000000000000000
[   74.793329][ T3559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000002
[   74.793331][ T3559] R13: 0000000000000000 R14: 00007f7ff4fa5fa0 R15: 00007ffe807e1a68
[   74.793334][ T3559]  </TASK>
[   74.793336][ T3559] 
[   75.067564][ T3559] Allocated by task 3559:
[   75.071867][ T3559]  kasan_save_track+0x3f/0x80
[   75.076519][ T3559]  __kasan_kmalloc+0x9d/0xb0
[   75.081078][ T3559]  __kmalloc_cache_noprof+0x238/0x430
[   75.086420][ T3559]  swnode_register+0x54/0x500
[   75.091080][ T3559]  fwnode_create_software_node+0x155/0x1a0
[   75.096852][ T3559]  device_create_managed_software_node+0xd3/0x1b0
[   75.103234][ T3559]  iommufd_test+0x1cac/0x40a0
[   75.107897][ T3559]  iommufd_fops_ioctl+0x3f8/0x4b0
[   75.112902][ T3559]  __se_sys_ioctl+0xab/0x100
[   75.117467][ T3559]  do_syscall_64+0x8d/0x170
[   75.121958][ T3559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.127857][ T3559] 
[   75.130161][ T3559] Freed by task 3559:
[   75.134133][ T3559]  kasan_save_track+0x3f/0x80
[   75.138825][ T3559]  kasan_save_free_info+0x40/0x50
[   75.143829][ T3559]  __kasan_slab_free+0x59/0x70
[   75.148566][ T3559]  kfree+0x17c/0x3d0
[   75.152435][ T3559]  kobject_put+0x186/0x340
[   75.156821][ T3559]  software_node_notify_remove+0x114/0x170
[   75.162613][ T3559]  device_del+0x44c/0x730
[   75.166930][ T3559]  device_unregister+0x16/0xa0
[   75.171690][ T3559]  iommufd_test+0x236d/0x40a0
[   75.176335][ T3559]  iommufd_fops_ioctl+0x3f8/0x4b0
[   75.181332][ T3559]  __se_sys_ioctl+0xab/0x100
[   75.185893][ T3559]  do_syscall_64+0x8d/0x170
[   75.190377][ T3559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.196266][ T3559] 
[   75.198568][ T3559] The buggy address belongs to the object at ffff8881721ed800
[   75.198568][ T3559]  which belongs to the cache kmalloc-512 of size 512
[   75.212591][ T3559] The buggy address is located 264 bytes inside of
[   75.212591][ T3559]  freed 512-byte region [ffff8881721ed800, ffff8881721eda00)
[   75.226538][ T3559] 
[   75.228853][ T3559] The buggy address belongs to the physical page:
[   75.235254][ T3559] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1721ec
[   75.244180][ T3559] head: order:2 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[   75.252652][ T3559] anon flags: 0x100000000000040(head|node=0|zone=2)
[   75.259222][ T3559] page_type: f5(slab)
[   75.263261][ T3559] raw: 0100000000000040 ffff888100041c80 ffffea00044ee800 dead000000000003
[   75.271831][ T3559] raw: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[   75.280486][ T3559] head: 0100000000000040 ffff888100041c80 ffffea00044ee800 dead000000000003
[   75.289131][ T3559] head: 0000000000000000 0000000000100010 00000000f5000000 0000000000000000
[   75.297861][ T3559] head: 0100000000000002 ffffea0005c87b01 ffffffffffffffff 0000000000000000
[   75.306509][ T3559] head: 0000000000000004 0000000000000000 00000000ffffffff 0000000000000000
[   75.315239][ T3559] page dumped because: kasan: bad access detected
[   75.321628][ T3559] page_owner tracks the page as allocated
[   75.327613][ T3559] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 1763, tgid 1763 (syz-executor), ts 34603668982, free_ts 24024744640
[   75.349043][ T3559]  post_alloc_hook+0x108/0x120
[   75.353800][ T3559]  get_page_from_freelist+0x4725/0x4900
[   75.359339][ T3559]  __alloc_frozen_pages_noprof+0x256/0x650
[   75.365157][ T3559]  alloc_pages_mpol+0x224/0x4e0
[   75.369997][ T3559]  allocate_slab+0x8b/0x350
[   75.374484][ T3559]  ___slab_alloc+0xa19/0x1160
[   75.379134][ T3559]  __kmalloc_cache_noprof+0x299/0x430
[   75.384560][ T3559]  seg6_net_init+0x4e/0x150
[   75.389031][ T3559]  ops_init+0x154/0x3f0
[   75.393242][ T3559]  setup_net+0x306/0x880
[   75.397449][ T3559]  copy_net_ns+0x27d/0x460
[   75.401837][ T3559]  create_new_namespaces+0x381/0x660
[   75.407101][ T3559]  unshare_nsproxy_namespaces+0xd8/0x120
[   75.412707][ T3559]  ksys_unshare+0x3dd/0x840
[   75.417183][ T3559]  __x64_sys_unshare+0x33/0x40
[   75.422031][ T3559]  do_syscall_64+0x8d/0x170
[   75.426513][ T3559] page last free pid 1732 tgid 1732 stack trace:
[   75.432821][ T3559]  free_frozen_pages+0xc1f/0xea0
[   75.437744][ T3559]  __folio_put+0x234/0x2c0
[   75.442131][ T3559]  pipe_read+0x508/0xce0
[   75.446339][ T3559]  vfs_read+0x870/0xae0
[   75.450484][ T3559]  ksys_read+0x149/0x230
[   75.454696][ T3559]  do_syscall_64+0x8d/0x170
[   75.459169][ T3559]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   75.465124][ T3559] 
[   75.467425][ T3559] Memory state around the buggy address:
[   75.473024][ T3559]  ffff8881721ed800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.481077][ T3559]  ffff8881721ed880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.489113][ T3559] >ffff8881721ed900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.497161][ T3559]                       ^
[   75.501470][ T3559]  ffff8881721ed980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[   75.509504][ T3559]  ffff8881721eda00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[   75.517564][ T3559] ==================================================================
[   75.525684][ T3559] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[   75.533113][ T3559] Kernel Offset: disabled
[   75.537438][ T3559] Rebooting in 86400 seconds..