Warning: Permanently added '10.128.1.123' (ED25519) to the list of known hosts.
2023/09/15 22:43:22 ignoring optional flag "sandboxArg"="0"
2023/09/15 22:43:22 parsed 1 programs
2023/09/15 22:43:24 executed programs: 0
[ 110.449146][ T5394] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 110.518505][ T5045] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 110.526370][ T5045] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 110.534659][ T5045] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 110.543096][ T5045] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 110.551265][ T5045] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 110.724200][ T5401] chnl_net:caif_netlink_parms(): no params data found
[ 110.803423][ T5401] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.810669][ T5401] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.817995][ T5401] bridge_slave_0: entered allmulticast mode
[ 110.826295][ T5401] bridge_slave_0: entered promiscuous mode
[ 110.835135][ T5401] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.842693][ T5401] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.849856][ T5401] bridge_slave_1: entered allmulticast mode
[ 110.857246][ T5401] bridge_slave_1: entered promiscuous mode
[ 110.893306][ T5401] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.905807][ T5401] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 110.945335][ T5401] team0: Port device team_slave_0 added
[ 110.956287][ T5401] team0: Port device team_slave_1 added
[ 110.987354][ T5401] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 110.994424][ T5401] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 111.020758][ T5401] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 111.033601][ T5401] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 111.040625][ T5401] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 111.066774][ T5401] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 111.116832][ T5401] hsr_slave_0: entered promiscuous mode
[ 111.123604][ T5401] hsr_slave_1: entered promiscuous mode
[ 112.164248][ T5401] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 112.182154][ T5401] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 112.197475][ T5401] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 112.213553][ T5401] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 112.385122][ T5401] 8021q: adding VLAN 0 to HW filter on device bond0
[ 112.426382][ T5401] 8021q: adding VLAN 0 to HW filter on device team0
[ 112.445963][ T1517] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.453245][ T1517] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 112.486001][ T1517] bridge0: port 2(bridge_slave_1) entered blocking state
[ 112.493278][ T1517] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 112.642348][ T5045] Bluetooth: hci0: command 0x0409 tx timeout
[ 112.814982][ T5401] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 112.888053][ T5401] veth0_vlan: entered promiscuous mode
[ 112.920007][ T5401] veth1_vlan: entered promiscuous mode
[ 112.976258][ T5401] veth0_macvtap: entered promiscuous mode
[ 112.991102][ T5401] veth1_macvtap: entered promiscuous mode
[ 113.026495][ T5401] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 113.048848][ T5401] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 113.071802][ T5401] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.081949][ T5401] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.095722][ T5401] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.104934][ T5401] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.238116][ T5134] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.248655][ T5134] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.321308][ T1517] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.329170][ T1517] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.517417][ T5464] loop0: detected capacity change from 0 to 8192
[ 113.538817][ T5464] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 113.553921][ T5464] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal
[ 113.566024][ T5464] REISERFS (device loop0): using ordered data mode
[ 113.574309][ T5464] reiserfs: using flush barriers
[ 113.584023][ T5464] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 113.602669][ T5464] REISERFS (device loop0): checking transaction log (loop0)
[ 113.729940][ T5464] REISERFS (device loop0): Using r5 hash to sort names
[ 113.738393][ T5464] REISERFS (device loop0): using 3.5.x disk format
[ 113.755069][ T5471] vma ffff888025531d00 start 00007f1868f15000 end 00007f1868f19000 mm ffff888079f81300
[ 113.755069][ T5471] prot 8000000000000025 anon_vma ffff888029085990 vm_ops ffffffff8aa392e0
[ 113.755069][ T5471] pgoff 19d file ffff888022276780 private_data 0000000000000000
[ 113.755069][ T5471] flags: 0x8100071(read|mayread|maywrite|mayexec|account|softdirty)
[ 113.755444][ C0] ==================================================================
[ 113.755455][ C0] BUG: KASAN: unknown-crash in __hrtimer_run_queues+0xaca/0xc10
[ 113.789264][ T5471] ------------[ cut here ]------------
[ 113.797051][ C0] Read of size 8 at addr ffffc90005567db0 by task syz-executor.0/5464
[ 113.797071][ C0]
[ 113.797076][ C0] CPU: 0 PID: 5464 Comm: syz-executor.0 Not tainted 6.6.0-rc1-next-20230915-syzkaller-05666-gdfa449a58323 #0
[ 113.797097][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 113.797107][ C0] Call Trace:
[ 113.797117][ C0]
[ 113.797126][ C0] dump_stack_lvl+0xd9/0x1b0
[ 113.804758][ T5471] kernel BUG at mm/huge_memory.c:2022!
[ 113.810169][ C0] print_report+0xc4/0x620
[ 113.810194][ C0] ? __virt_addr_valid+0x5e/0x2d0
[ 113.818326][ T5471] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 113.820630][ C0] kasan_report+0xda/0x110
[ 113.832244][ T5471] CPU: 1 PID: 5471 Comm: dhcpcd-run-hook Not tainted 6.6.0-rc1-next-20230915-syzkaller-05666-gdfa449a58323 #0
[ 113.843239][ C0] ? __hrtimer_run_queues+0xaca/0xc10
[ 113.846507][ T5471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 113.849340][ C0] ? __hrtimer_run_queues+0xaca/0xc10
[ 113.853902][ T5471] RIP: 0010:__split_huge_pud+0x414/0x4d0
[ 113.859337][ C0] __hrtimer_run_queues+0xaca/0xc10
[ 113.863725][ T5471] Code: a6 ff 83 4c 24 60 01 48 8d 7c 24 48 e8 65 e2 f9 ff e9 69 fd ff ff e8 8b b3 a6 ff 0f 0b e8 84 b3 a6 ff 48 89 df e8 5c cc e4 ff <0f> 0b e8 75 b3 a6 ff 48 89 df e8 4d cc e4 ff 0f 0b e8 66 b3 a6 ff
[ 113.868815][ C0] ? lock_sync+0x190/0x190
[ 113.874939][ T5471] RSP: 0000:ffffc900051bf668 EFLAGS: 00010286
[ 113.879334][ C0] ? enqueue_hrtimer+0x310/0x310
[ 113.890926][ T5471]
[ 113.890931][ T5471] RAX: 000000000000011c RBX: ffff888025531d00 RCX: 0000000000000000
[ 113.896276][ C0] ? ktime_get_update_offsets_now+0x3bc/0x610
[ 113.906311][ T5471] RDX: 0000000000000000 RSI: ffffffff816ba802 RDI: 0000000000000005
[ 113.911658][ C0] hrtimer_interrupt+0x31b/0x800
[ 113.917261][ T5471] RBP: 1ffff92000a37ed0 R08: 0000000000000005 R09: 0000000000000000
[ 113.922441][ C0] __sysvec_apic_timer_interrupt+0x105/0x3f0
[ 113.942192][ T5471] R10: 0000000000000001 R11: 000000000000010a R12: 0200000000000000
[ 113.946591][ C0] sysvec_apic_timer_interrupt+0x8e/0xc0
[ 113.952628][ T5471] R13: ffff888067870308 R14: 00007f1840000000 R15: 72705f7366726573
[ 113.957584][ C0]
[ 113.959889][ T5471] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 113.967840][ C0]
[ 113.967849][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 113.973884][ T5471] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 113.981839][ C0] RIP: 0010:memmove+0x28/0x1b0
[ 113.986756][ T5471] CR2: 00007ffff17d0fc0 CR3: 0000000076db8000 CR4: 00000000003506e0
[ 113.994706][ C0] Code: c3 90 f3 0f 1e fa 48 89 f8 48 39 fe 7d 0f 49 89 f0 49 01 d0 49 39 f8 0f 8f b5 00 00 00 48 83 fa 20 0f 82 01 01 00 00 48 89 d1 a4 c3 48 81 fa a8 02 00 00 72 05 40 38 fe 74 47 48 83 ea 20 48
[ 114.000658][ T5471] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 114.008602][ C0] RSP: 0018:ffffc90005676f18 EFLAGS: 00010282
[ 114.014206][ T5471] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 114.022154][ C0]
[ 114.022160][ C0] RAX: ffff8880672f8fa4 RBX: 0000000000000001 RCX: ffffffffff9f8213
[ 114.025069][ T5471] Call Trace:
[ 114.025078][ T5471]
[ 114.033969][ C0] RDX: fffffffffffffff0 RSI: ffff888067900d71 RDI: ffff888067900d81
[ 114.036883][ T5471] ? show_regs+0x8f/0xa0
[ 114.042833][ C0] RBP: 0000000000000020 R08: ffff8880672f8f84 R09: 0000766972705f73
[ 114.049394][ T5471] ? die+0x36/0xa0
[ 114.054142][ C0] R10: 667265736965722e R11: 0000766972705f73 R12: 0000000000000001
[ 114.062099][ T5471] ? do_trap+0x22b/0x420
[ 114.081680][ C0] R13: 0000000000000000 R14: ffff8880672f8f94 R15: 0000000000000010
[ 114.089629][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.095766][ C0] leaf_paste_entries+0x43c/0x920
[ 114.103815][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.106148][ C0] balance_leaf+0x9476/0xcd90
[ 114.114178][ T5471] ? do_error_trap+0xf4/0x230
[ 114.117448][ C0] ? get_num_ver.constprop.0+0xfd0/0xfd0
[ 114.120362][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.128320][ C0] ? replace_key+0x150/0x150
[ 114.132534][ T5471] ? handle_invalid_op+0x34/0x40
[ 114.140487][ C0] do_balance+0x337/0x840
[ 114.144177][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.152132][ C0] ? get_right_neighbor_position+0x170/0x170
[ 114.156354][ T5471] ? exc_invalid_op+0x2d/0x40
[ 114.164301][ C0] ? bit_wait_timeout+0x160/0x160
[ 114.169300][ T5471] ? asm_exc_invalid_op+0x1a/0x20
[ 114.174309][ C0] reiserfs_paste_into_item+0x62a/0x7c0
[ 114.179321][ T5471] ? vprintk+0x82/0x90
[ 114.183971][ C0] ? reiserfs_delete_object+0x200/0x200
[ 114.188619][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.194256][ C0] ? search_by_entry_key+0x940/0x940
[ 114.199222][ T5471] ? __split_huge_pud+0x414/0x4d0
[ 114.203785][ C0] ? reiserfs_new_inode+0x1219/0x20b0
[ 114.208708][ T5471] ? zap_huge_pud+0x390/0x390
[ 114.213050][ C0] ? r5_hash+0xaf/0xd0
[ 114.218055][ T5471] ? percpu_counter_add_batch+0x112/0x1f0
[ 114.224094][ C0] ? make_cpu_key+0x26/0x2a0
[ 114.228756][ T5471] ? preempt_count_sub+0x150/0x150
[ 114.233756][ C0] reiserfs_add_entry+0x936/0xd20
[ 114.238770][ T5471] unmap_page_range+0x562/0x2c00
[ 114.244393][ C0] ? reiserfs_lookup+0x690/0x690
[ 114.248535][ T5471] ? vm_normal_page_pmd+0x5a0/0x5a0
[ 114.254068][ C0] reiserfs_mkdir+0x68a/0x9a0
[ 114.259077][ T5471] ? uprobe_munmap+0x20/0x570
[ 114.264337][ C0] ? reiserfs_mknod+0x740/0x740
[ 114.269335][ T5471] unmap_single_vma+0x194/0x2b0
[ 114.274678][ C0] ? reiserfs_lookup_privroot+0x19b/0x200
[ 114.279334][ T5471] unmap_vmas+0x1e2/0x330
[ 114.283386][ C0] ? rwsem_down_write_slowpath+0x12a0/0x12a0
[ 114.289073][ T5471] ? unmap_single_vma+0x2b0/0x2b0
[ 114.293636][ C0] reiserfs_xattr_init+0x57f/0xbb0
[ 114.298719][ T5471] ? reacquire_held_locks+0x4b0/0x4b0
[ 114.303726][ C0] reiserfs_fill_super+0x2139/0x3150
[ 114.308681][ T5471] ? lru_add_drain_cpu+0x455/0x850
[ 114.313591][ C0] ? reiserfs_remount+0x1640/0x1640
[ 114.318759][ T5471] exit_mmap+0x1ad/0xa60
[ 114.323414][ C0] ? reiserfs_remount+0x1640/0x1640
[ 114.328064][ T5471] ? uprobe_clear_state+0x4b/0x420
[ 114.332886][ C0] ? vsprintf+0x30/0x30
[ 114.337722][ T5471] ? do_vma_munmap+0x70/0x70
[ 114.343957][ C0] ? bit_wait_timeout+0x160/0x160
[ 114.348366][ T5471] __mmput+0x12a/0x4d0
[ 114.354392][ C0] ? preempt_count_sub+0x150/0x150
[ 114.359395][ T5471] mmput+0x62/0x70
[ 114.364476][ C0] ? do_raw_spin_lock+0x12e/0x2b0
[ 114.370123][ T5471] do_exit+0x9ad/0x2ae0
[ 114.375566][ C0] ? down_write+0x14f/0x200
[ 114.380653][ T5471] ? mm_update_next_owner+0x840/0x840
[ 114.385817][ C0] ? setup_bdev_super+0x366/0x6f0
[ 114.390037][ T5471] do_group_exit+0xd4/0x2a0
[ 114.395201][ C0] ? reiserfs_remount+0x1640/0x1640
[ 114.400297][ T5471] get_signal+0x23ba/0x2790
[ 114.404523][ C0] mount_bdev+0x1f3/0x2e0
[ 114.409095][ T5471] ? exit_signals+0x960/0x960
[ 114.414091][ C0] ? sget+0x640/0x640
[ 114.418139][ T5471] arch_do_signal_or_restart+0x90/0x7f0
[ 114.423392][ C0] ? apparmor_capable+0x1da/0x4e0
[ 114.427102][ T5471] ? get_sigframe_size+0x20/0x20
[ 114.432098][ C0] ? reiserfs_kill_sb+0x1e0/0x1e0
[ 114.436318][ T5471] ? exc_general_protection+0x1ba/0x230
[ 114.440872][ C0] legacy_get_tree+0x109/0x220
[ 114.446310][ T5471] exit_to_user_mode_prepare+0x11f/0x240
[ 114.451317][ C0] vfs_get_tree+0x8c/0x370
[ 114.455803][ T5471] irqentry_exit_to_user_mode+0x9/0x40
[ 114.461064][ C0] path_mount+0x1492/0x1ed0
[ 114.465539][ T5471] asm_exc_general_protection+0x26/0x30
[ 114.469843][ C0] ? kmem_cache_free+0xf0/0x480
[ 114.474492][ T5471] RIP: 0033:0x7f1868f6ac88
[ 114.478440][ C0] ? finish_automount+0xa40/0xa40
[ 114.483957][ T5471] Code: Unable to access opcode bytes at 0x7f1868f6ac5e.
[ 114.488956][ C0] ? putname+0x101/0x140
[ 114.493862][ T5471] RSP: 002b:00007ffff17d0bf8 EFLAGS: 00010246
[ 114.498953][ C0] __x64_sys_mount+0x293/0x310
[ 114.504725][ T5471]
[ 114.504731][ T5471] RAX: 6965722e00007669 RBX: 0000000000000001 RCX: 00007f1868e24476
[ 114.509463][ C0] ? copy_mnt_ns+0xb60/0xb60
[ 114.515062][ T5471] RDX: 00007ffff17d0c00 RSI: 00007ffff17d0d30 RDI: 0000000000000011
[ 114.519451][ C0] ? syscall_enter_from_user_mode+0x26/0x80
[ 114.524879][ T5471] RBP: 00005573aaa2ab70 R08: 0000000000001560 R09: 0000000000000000
[ 114.529357][ C0] do_syscall_64+0x38/0xb0
[ 114.534875][ T5471] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 114.539709][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 114.544451][ T5471] R13: 00005573aaa29910 R14: 00007f1868fea470 R15: 0000000000000000
[ 114.549462][ C0] RIP: 0033:0x7efc7aa7e1ea
[ 114.556561][ T5471]
[ 114.560767][ C0] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 09 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 114.566800][ T5471] Modules linked in:
[ 114.571535][ C0] RSP: 002b:00007efc7b800ee8 EFLAGS: 00000246
[ 114.577456][ T5471] ---[ end trace 0000000000000000 ]---
[ 114.581786][ C0] ORIG_RAX: 00000000000000a5
[ 114.581795][ C0] RAX: ffffffffffffffda RBX: 00007efc7b800f80 RCX: 00007efc7aa7e1ea
[ 114.581809][ C0] RDX: 0000000020001100 RSI: 0000000020000040 RDI: 00007efc7b800f40
[ 114.581826][ C0] RBP: 0000000020001100 R08: 00007efc7b800f80 R09: 0000000000000080
[ 114.581839][ C0] R10: 0000000000000080 R11: 0000000000000246 R12: 0000000020000040
[ 114.581852][ C0] R13: 00007efc7b800f40 R14: 0000000000001101 R15: 00000000200000c0
[ 114.586422][ T5471] RIP: 0010:__split_huge_pud+0x414/0x4d0
[ 114.594380][ C0]
[ 114.594388][ C0]
[ 114.594395][ C0] The buggy address belongs to the virtual mapping at
[ 114.594395][ C0] [ffffc90005560000, ffffc90005569000) created by:
[ 114.594395][ C0] kernel_clone+0xfd/0x920
[ 114.600274][ T5471] Code: a6 ff 83 4c 24 60 01 48 8d 7c 24 48 e8 65 e2 f9 ff e9 69 fd ff ff e8 8b b3 a6 ff 0f 0b e8 84 b3 a6 ff 48 89 df e8 5c cc e4 ff <0f> 0b e8 75 b3 a6 ff 48 89 df e8 4d cc e4 ff 0f 0b e8 66 b3 a6 ff
[ 114.608205][ C0]
[ 114.608211][ C0] The buggy address belongs to the physical page:
[ 114.612610][ T5471] RSP: 0000:ffffc900051bf668 EFLAGS: 00010286
[ 114.620557][ C0] page:ffffea0000a5cc00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888029731e00 pfn:0x29730
[ 114.620581][ C0] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 114.626436][ T5471]
[ 114.626442][ T5471] RAX: 000000000000011c RBX: ffff888025531d00 RCX: 0000000000000000
[ 114.634469][ C0] page_type: 0xffffffff()
[ 114.634487][ C0] raw: 00fff00000000000 0000000000000000 dead000000000122 0000000000000000
[ 114.638907][ T5471] RDX: 0000000000000000 RSI: ffffffff816ba802 RDI: 0000000000000005
[ 114.641921][ C0] raw: ffff888029731e00 0000000000000000 00000001ffffffff 0000000000000000
[ 114.641933][ C0] page dumped because: kasan: bad access detected
[ 114.662195][ T5471] RBP: 1ffff92000a37ed0 R08: 0000000000000005 R09: 0000000000000000
[ 114.665478][ C0] page_owner tracks the page as allocated
[ 114.671581][ T5471] R10: 0000000000000001 R11: 000000000000010a R12: 0200000000000000
[ 114.676949][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x102dc2(GFP_HIGHUSER|__GFP_NOWARN|__GFP_ZERO), pid 5394, tgid 5394 (syz-executor), ts 108953552863, free_ts 92384061957
[ 114.681725][ T5471] R13: ffff888067870308 R14: 00007f1840000000 R15: 72705f7366726573
[ 114.689566][ C0] post_alloc_hook+0x2cf/0x340
[ 114.697554][ T5471] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 114.705474][ C0] get_page_from_freelist+0xdcd/0x2d10
[ 114.705497][ C0] __alloc_pages+0x1d0/0x4a0
[ 114.713454][ T5471] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.721388][ C0] alloc_pages+0x1a9/0x270
[ 114.727011][ T5471] CR2: 00007ffff17d0fc0 CR3: 0000000076db8000 CR4: 00000000003506e0
[ 114.730006][ C0] __vmalloc_node_range+0xa6e/0x1540
[ 114.732500][ C1] general protection fault, probably for non-canonical address 0xee4e07ee6cce4caf: 0000 [#2] PREEMPT SMP KASAN
[ 114.749977][ C0] copy_process+0x13e3/0x74b0
[ 114.769667][ C1] KASAN: maybe wild-memory-access in range [0x72705f7366726578-0x72705f736672657f]
[ 114.771977][ C0] kernel_clone+0xfd/0x920
[ 114.778372][ C1] CPU: 1 PID: 5471 Comm: dhcpcd-run-hook Tainted: G D 6.6.0-rc1-next-20230915-syzkaller-05666-gdfa449a58323 #0
[ 114.784406][ C0] __do_sys_clone3+0x1f1/0x260
[ 114.795827][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023
[ 114.802916][ C0] do_syscall_64+0x38/0xb0
[ 114.805235][ C1] RIP: 0010:__run_timers+0x6bc/0xb10
[ 114.813182][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 114.817583][ C1] Code: 89 e2 48 c1 ea 03 42 80 3c 32 00 0f 85 d5 02 00 00 48 85 ed 49 89 2c 24 74 1f e8 5f 67 11 00 48 8d 7d 08 48 89 fa 48 c1 ea 03 <42> 80 3c 32 00 0f 85 df 02 00 00 4c 89 65 08 e8 40 67 11 00 48 8d
[ 114.826139][ C0] page last free stack trace:
[ 114.826148][ C0] free_unref_page+0x554/0xd70
[ 114.834096][ C1] RSP: 0000:ffffc900001f0d88 EFLAGS: 00010006
[ 114.842665][ C0] qlist_free_all+0x6a/0x170
[ 114.849057][ C1]
[ 114.849064][ C1] RAX: 0000000000000000 RBX: ffff888067868c08 RCX: 0000000000000100
[ 114.857004][ C0] kasan_quarantine_reduce+0x18e/0x1d0
[ 114.862695][ C1] RDX: 0e4e0bee6cce4caf RSI: ffffffff81767f01 RDI: 72705f736672657b
[ 114.870640][ C0] __kasan_slab_alloc+0x65/0x90
[ 114.889005][ C1] RBP: 72705f7366726573 R08: 0000000000000001 R09: 0000000000000000
[ 114.896957][ C0] kmem_cache_alloc_node+0x180/0x3f0
[ 114.901693][ C1] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc900001f0e60
[ 114.910591][ C0] __alloc_skb+0x287/0x330
[ 114.916020][ C1] R13: ffffc900001f0e60 R14: dffffc0000000000 R15: ffff8880b99297c0
[ 114.920587][ C0] alloc_skb_with_frags+0xe4/0x710
[ 114.927143][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 114.931528][ C0] sock_alloc_send_pskb+0x7e4/0x970
[ 114.939486][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 114.944750][ C0] unix_dgram_sendmsg+0x455/0x1c30
[ 114.956886][ C1] CR2: 00007ffff17d0fc0 CR3: 0000000076db8000 CR4: 00000000003506e0
[ 114.961546][ C0] sock_sendmsg+0xd9/0x180
[ 114.970808][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 114.975211][ C0] sock_write_iter+0x29b/0x3d0
[ 114.988342][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 114.993084][ C0] do_iter_readv_writev+0x21e/0x3c0
[ 115.003114][ C1] Call Trace:
[ 115.003126][ C1]
[ 115.007514][ C0] do_iter_write+0x17f/0x830
[ 115.012872][ C1] ? show_regs+0x8f/0xa0
[ 115.018744][ C0] vfs_writev+0x221/0x700
[ 115.038856][ C1] ? die_addr+0x4f/0xd0
[ 115.043506][ C0] do_writev+0x285/0x370
[ 115.048260][ C1] ? exc_general_protection+0x154/0x230
[ 115.054305][ C0] do_syscall_64+0x38/0xb0
[ 115.058882][ C1] ? asm_exc_general_protection+0x26/0x30
[ 115.061186][ C0]
[ 115.061190][ C0] Memory state around the buggy address:
[ 115.069138][ C1] ? __run_timers+0x6b1/0xb10
[ 115.074574][ C0] ffffc90005567c80: 69 76 00 00 2e 72 65 69 73 65 72 66 73 5f 70 72
[ 115.082613][ C1] ? __run_timers+0x6bc/0xb10
[ 115.087458][ C0] ffffc90005567d00: 69 76 00 00 2e 72 65 69 73 65 72 66 73 5f 70 72
[ 115.095409][ C1] ? __run_timers+0x6b1/0xb10
[ 115.100667][ C0] >ffffc90005567d80: 69 76 00 00 2e 72 65 69 73 65 72 66 73 5f 70 72
[ 115.108617][ C1] ? call_timer_fn+0x580/0x580
[ 115.112999][ C0] ^
[ 115.113011][ C0] ffffc90005567e00: 69 76 00 00 2e 72 65 69 73 65 72 66 73 5f 70 72
[ 115.121036][ C1] ? kvm_sched_clock_read+0x11/0x20
[ 115.126123][ C0] ffffc90005567e80: 69 76 00 00 2e 72 65 69 73 65 72 66 73 5f 70 72
[ 115.135025][ C1] ? sched_clock_cpu+0x6d/0x4c0
[ 115.140192][ C0] ==================================================================
[ 115.140203][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 115.146767][ C1] run_timer_softirq+0x58/0xd0
[ 115.146801][ C1] __do_softirq+0x218/0x965
[ 115.146834][ C1] ? __lock_text_end+0x5/0x5
[ 115.146861][ C1] irq_exit_rcu+0xb7/0x120
[ 115.146882][ C1] sysvec_apic_timer_interrupt+0x93/0xc0
[ 115.146904][ C1]
[ 115.146910][ C1]
[ 115.146916][ C1] asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 115.146949][ C1] RIP: 0010:console_flush_all+0x9e0/0xfb0
[ 115.146980][ C1] Code: e6 5c 23 00 9c 5b 81 e3 00 02 00 00 31 ff 48 89 de e8 14 a4 1c 00 48 85 db 0f 85 97 03 00 00 e8 76 a8 1c 00 fb 48 8b 44 24 08 <48> 8b 14 24 0f b6 00 83 e2 07 38 d0 7f 08 84 c0 0f 85 08 05 00 00
[ 115.147013][ C1] RSP: 0000:ffffc900051bf140 EFLAGS: 00000293
[ 115.147030][ C1] RAX: fffff52000a37e53 RBX: 0000000000000000 RCX: 0000000000000000
[ 115.147043][ C1] RDX: ffff88801e0b0000 RSI: ffffffff816b3dea RDI: 0000000000000007
[ 115.147056][ C1] RBP: dffffc0000000000 R08: 0000000000000007 R09: 0000000000000000
[ 115.147069][ C1] R10: 0000000000000000 R11: 205d304320202020 R12: ffffffff8d6df160
[ 115.147082][ C1] R13: 0000000000000001 R14: ffffffff8d6df1b8 R15: 0000000000000001
[ 115.147100][ C1] ? console_flush_all+0x9da/0xfb0
[ 115.147132][ C1] ? console_flush_all+0x5ac/0xfb0
[ 115.147161][ C1] ? rcu_is_watching+0x12/0xb0
[ 115.147182][ C1] ? devkmsg_read+0x550/0x550
[ 115.147211][ C1] ? rcu_is_watching+0x12/0xb0
[ 115.147230][ C1] ? lock_acquire+0x464/0x510
[ 115.147258][ C1] console_unlock+0x10c/0x260
[ 115.147286][ C1] ? console_flush_all+0xfb0/0xfb0
[ 115.147314][ C1] ? spin_bug+0x141/0x1d0
[ 115.147341][ C1] ? trace_irq_enable.constprop.0+0xd0/0x100
[ 115.147369][ C1] vprintk_emit+0x17f/0x5f0
[ 115.147399][ C1] vprintk+0x7b/0x90
[ 115.147428][ C1] _printk+0xc8/0x100
[ 115.147453][ C1] ? syslog_print_all+0x3f0/0x3f0
[ 115.147480][ C1] ? show_opcodes+0xd1/0x140
[ 115.147507][ C1] __show_regs+0x419/0x730
[ 115.147537][ C1] oops_end+0xea/0x1e0
[ 115.147559][ C1] do_trap+0x22b/0x420
[ 115.147584][ C1] ? __split_huge_pud+0x414/0x4d0
[ 115.147608][ C1] ? __split_huge_pud+0x414/0x4d0
[ 115.147628][ C1] do_error_trap+0xf4/0x230
[ 115.147654][ C1] ? __split_huge_pud+0x414/0x4d0
[ 115.147676][ C1] handle_invalid_op+0x34/0x40
[ 115.147702][ C1] ? __split_huge_pud+0x414/0x4d0
[ 115.147722][ C1] exc_invalid_op+0x2d/0x40
[ 115.147749][ C1] asm_exc_invalid_op+0x1a/0x20
[ 115.147781][ C1] RIP: 0010:__split_huge_pud+0x414/0x4d0
[ 115.147804][ C1] Code: a6 ff 83 4c 24 60 01 48 8d 7c 24 48 e8 65 e2 f9 ff e9 69 fd ff ff e8 8b b3 a6 ff 0f 0b e8 84 b3 a6 ff 48 89 df e8 5c cc e4 ff <0f> 0b e8 75 b3 a6 ff 48 89 df e8 4d cc e4 ff 0f 0b e8 66 b3 a6 ff
[ 115.147822][ C1] RSP: 0000:ffffc900051bf668 EFLAGS: 00010286
[ 115.147837][ C1] RAX: 000000000000011c RBX: ffff888025531d00 RCX: 0000000000000000
[ 115.147850][ C1] RDX: 0000000000000000 RSI: ffffffff816ba802 RDI: 0000000000000005
[ 115.147863][ C1] RBP: 1ffff92000a37ed0 R08: 0000000000000005 R09: 0000000000000000
[ 115.147875][ C1] R10: 0000000000000001 R11: 000000000000010a R12: 0200000000000000
[ 115.147888][ C1] R13: ffff888067870308 R14: 00007f1840000000 R15: 72705f7366726573
[ 115.147907][ C1] ? vprintk+0x82/0x90
[ 115.147937][ C1] ? __split_huge_pud+0x414/0x4d0
[ 115.147958][ C1] ? zap_huge_pud+0x390/0x390
[ 115.147980][ C1] ? percpu_counter_add_batch+0x112/0x1f0
[ 115.148003][ C1] ? preempt_count_sub+0x150/0x150
[ 115.148037][ C1] unmap_page_range+0x562/0x2c00
[ 115.148068][ C1] ? vm_normal_page_pmd+0x5a0/0x5a0
[ 115.148091][ C1] ? uprobe_munmap+0x20/0x570
[ 115.148120][ C1] unmap_single_vma+0x194/0x2b0
[ 115.148144][ C1] unmap_vmas+0x1e2/0x330
[ 115.148165][ C1] ? unmap_single_vma+0x2b0/0x2b0
[ 115.148186][ C1] ? reacquire_held_locks+0x4b0/0x4b0
[ 115.148215][ C1] ? lru_add_drain_cpu+0x455/0x850
[ 115.148245][ C1] exit_mmap+0x1ad/0xa60
[ 115.148274][ C1] ? uprobe_clear_state+0x4b/0x420
[ 115.148300][ C1] ? do_vma_munmap+0x70/0x70
[ 115.148341][ C1] __mmput+0x12a/0x4d0
[ 115.148362][ C1] mmput+0x62/0x70
[ 115.148382][ C1] do_exit+0x9ad/0x2ae0
[ 115.148412][ C1] ? mm_update_next_owner+0x840/0x840
[ 115.148446][ C1] do_group_exit+0xd4/0x2a0
[ 115.148475][ C1] get_signal+0x23ba/0x2790
[ 115.148500][ C1] ? exit_signals+0x960/0x960
[ 115.148525][ C1] arch_do_signal_or_restart+0x90/0x7f0
[ 115.148553][ C1] ? get_sigframe_size+0x20/0x20
[ 115.148582][ C1] ? exc_general_protection+0x1ba/0x230
[ 115.148613][ C1] exit_to_user_mode_prepare+0x11f/0x240
[ 115.148637][ C1] irqentry_exit_to_user_mode+0x9/0x40
[ 115.148657][ C1] asm_exc_general_protection+0x26/0x30
[ 115.148686][ C1] RIP: 0033:0x7f1868f6ac88
[ 115.148700][ C1] Code: Unable to access opcode bytes at 0x7f1868f6ac5e.
[ 115.148708][ C1] RSP: 002b:00007ffff17d0bf8 EFLAGS: 00010246
[ 115.148723][ C1] RAX: 6965722e00007669 RBX: 0000000000000001 RCX: 00007f1868e24476
[ 115.148736][ C1] RDX: 00007ffff17d0c00 RSI: 00007ffff17d0d30 RDI: 0000000000000011
[ 115.148749][ C1] RBP: 00005573aaa2ab70 R08: 0000000000001560 R09: 0000000000000000
[ 115.148762][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 115.148774][ C1] R13: 00005573aaa29910 R14: 00007f1868fea470 R15: 0000000000000000
[ 115.148799][ C1]
[ 115.148805][ C1] Modules linked in:
[ 115.148815][ C1] ---[ end trace 0000000000000000 ]---
[ 115.148822][ C1] RIP: 0010:__split_huge_pud+0x414/0x4d0
[ 115.148844][ C1] Code: a6 ff 83 4c 24 60 01 48 8d 7c 24 48 e8 65 e2 f9 ff e9 69 fd ff ff e8 8b b3 a6 ff 0f 0b e8 84 b3 a6 ff 48 89 df e8 5c cc e4 ff <0f> 0b e8 75 b3 a6 ff 48 89 df e8 4d cc e4 ff 0f 0b e8 66 b3 a6 ff
[ 115.148862][ C1] RSP: 0000:ffffc900051bf668 EFLAGS: 00010286
[ 115.148877][ C1] RAX: 000000000000011c RBX: ffff888025531d00 RCX: 0000000000000000
[ 115.148890][ C1] RDX: 0000000000000000 RSI: ffffffff816ba802 RDI: 0000000000000005
[ 115.148902][ C1] RBP: 1ffff92000a37ed0 R08: 0000000000000005 R09: 0000000000000000
[ 115.148915][ C1] R10: 0000000000000001 R11: 000000000000010a R12: 0200000000000000
[ 115.148928][ C1] R13: ffff888067870308 R14: 00007f1840000000 R15: 72705f7366726573
[ 115.148942][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[ 115.148962][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 115.148976][ C1] CR2: 00007ffff17d0fc0 CR3: 0000000076db8000 CR4: 00000000003506e0
[ 115.148997][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 115.149009][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 116.240841][ C0] Kernel Offset: disabled
[ 117.050706][ C0] Rebooting in 86400 seconds..