Warning: Permanently added '10.128.0.144' (ED25519) to the list of known hosts.
2025/11/29 02:20:53 ignoring optional flag "type"="gce"
2025/11/29 02:20:53 parsed 1 programs
2025/11/29 02:20:53 executed programs: 0
[ 40.861641][ T333] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.869617][ T333] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.877294][ T333] device bridge_slave_0 entered promiscuous mode
[ 40.884155][ T333] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.891227][ T333] bridge0: port 2(bridge_slave_1) entered disabled state
[ 40.899013][ T333] device bridge_slave_1 entered promiscuous mode
[ 40.949232][ T333] bridge0: port 2(bridge_slave_1) entered blocking state
[ 40.956505][ T333] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 40.963777][ T333] bridge0: port 1(bridge_slave_0) entered blocking state
[ 40.970937][ T333] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 40.989581][ T8] bridge0: port 1(bridge_slave_0) entered disabled state
[ 40.996880][ T8] bridge0: port 2(bridge_slave_1) entered disabled state
[ 41.004335][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 41.012009][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 41.020962][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 41.029260][ T8] bridge0: port 1(bridge_slave_0) entered blocking state
[ 41.036319][ T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 41.045003][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 41.053470][ T8] bridge0: port 2(bridge_slave_1) entered blocking state
[ 41.060541][ T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 41.072350][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 41.081814][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 41.095576][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 41.107079][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 41.115209][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 41.123120][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 41.131660][ T333] device veth0_vlan entered promiscuous mode
[ 41.142192][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 41.151506][ T333] device veth1_macvtap entered promiscuous mode
[ 41.161312][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 41.171365][ T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 41.191588][ T344] FAULT_INJECTION: forcing a failure.
[ 41.191588][ T344] name failslab, interval 1, probability 0, space 0, times 1
[ 41.204500][ T344] CPU: 1 PID: 344 Comm: syz-executor.0 Not tainted syzkaller #0
[ 41.212175][ T344] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 41.222248][ T344] Call Trace:
[ 41.225624][ T344]
[ 41.228572][ T344] __dump_stack+0x21/0x30
[ 41.232937][ T344] dump_stack_lvl+0xee/0x150
[ 41.237741][ T344] ? show_regs_print_info+0x20/0x20
[ 41.243035][ T344] dump_stack+0x15/0x20
[ 41.247321][ T344] should_fail+0x3c1/0x510
[ 41.251850][ T344] __should_failslab+0xa4/0xe0
[ 41.257336][ T344] should_failslab+0x9/0x20
[ 41.261990][ T344] slab_pre_alloc_hook+0x3b/0xe0
[ 41.267214][ T344] ? anon_vma_fork+0xf2/0x510
[ 41.272511][ T344] kmem_cache_alloc+0x44/0x260
[ 41.277286][ T344] anon_vma_fork+0xf2/0x510
[ 41.281789][ T344] copy_mm+0x9d1/0x13a0
[ 41.285953][ T344] ? copy_signal+0x600/0x600
[ 41.290551][ T344] ? __init_rwsem+0xfc/0x1d0
[ 41.295249][ T344] ? copy_signal+0x4cb/0x600
[ 41.299844][ T344] copy_process+0x115c/0x3210
[ 41.304569][ T344] ? __kasan_check_write+0x14/0x20
[ 41.309792][ T344] ? __pidfd_prepare+0x150/0x150
[ 41.314742][ T344] ? security_file_permission+0x83/0xa0
[ 41.320313][ T344] kernel_clone+0x23f/0x940
[ 41.324822][ T344] ? create_io_thread+0x130/0x130
[ 41.329929][ T344] ? __kasan_check_write+0x14/0x20
[ 41.335322][ T344] ? mutex_unlock+0x89/0x220
[ 41.339968][ T344] __x64_sys_clone+0x176/0x1d0
[ 41.344744][ T344] ? __kasan_check_write+0x14/0x20
[ 41.349860][ T344] ? __ia32_sys_vfork+0xf0/0xf0
[ 41.354812][ T344] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 41.360879][ T344] x64_sys_call+0x41f/0x9a0
[ 41.365472][ T344] do_syscall_64+0x4c/0xa0
[ 41.369894][ T344] ? clear_bhb_loop+0x50/0xa0
[ 41.374585][ T344] ? clear_bhb_loop+0x50/0xa0
[ 41.379292][ T344] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 41.385182][ T344] RIP: 0033:0x7f75f92bb959
[ 41.389597][ T344] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 41.409618][ T344] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 41.418037][ T344] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 41.426011][ T344] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 41.433976][ T344] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 41.441943][ T344] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 41.450097][ T344] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 41.458068][ T344]
[ 41.469903][ T347] FAULT_INJECTION: forcing a failure.
[ 41.469903][ T347] name failslab, interval 1, probability 0, space 0, times 0
[ 41.482755][ T347] CPU: 0 PID: 347 Comm: syz-executor.0 Not tainted syzkaller #0
[ 41.490484][ T347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 41.500637][ T347] Call Trace:
[ 41.504130][ T347]
[ 41.507121][ T347] __dump_stack+0x21/0x30
[ 41.511691][ T347] dump_stack_lvl+0xee/0x150
[ 41.516299][ T347] ? show_regs_print_info+0x20/0x20
[ 41.521507][ T347] dump_stack+0x15/0x20
[ 41.525670][ T347] should_fail+0x3c1/0x510
[ 41.530099][ T347] __should_failslab+0xa4/0xe0
[ 41.534883][ T347] should_failslab+0x9/0x20
[ 41.539396][ T347] slab_pre_alloc_hook+0x3b/0xe0
[ 41.544375][ T347] ? anon_vma_fork+0xf2/0x510
[ 41.549056][ T347] kmem_cache_alloc+0x44/0x260
[ 41.553916][ T347] anon_vma_fork+0xf2/0x510
[ 41.558437][ T347] copy_mm+0x9d1/0x13a0
[ 41.562596][ T347] ? copy_signal+0x600/0x600
[ 41.567186][ T347] ? __init_rwsem+0xfc/0x1d0
[ 41.571875][ T347] ? copy_signal+0x4cb/0x600
[ 41.576470][ T347] copy_process+0x115c/0x3210
[ 41.581155][ T347] ? __kasan_check_write+0x14/0x20
[ 41.586279][ T347] ? __pidfd_prepare+0x150/0x150
[ 41.591278][ T347] ? security_file_permission+0x83/0xa0
[ 41.596919][ T347] kernel_clone+0x23f/0x940
[ 41.601443][ T347] ? create_io_thread+0x130/0x130
[ 41.606741][ T347] ? __kasan_check_write+0x14/0x20
[ 41.611859][ T347] ? mutex_unlock+0x89/0x220
[ 41.616470][ T347] __x64_sys_clone+0x176/0x1d0
[ 41.621360][ T347] ? __kasan_check_write+0x14/0x20
[ 41.626576][ T347] ? __ia32_sys_vfork+0xf0/0xf0
[ 41.631733][ T347] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 41.638071][ T347] x64_sys_call+0x41f/0x9a0
[ 41.642676][ T347] do_syscall_64+0x4c/0xa0
[ 41.647123][ T347] ? clear_bhb_loop+0x50/0xa0
[ 41.651918][ T347] ? clear_bhb_loop+0x50/0xa0
[ 41.657335][ T347] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 41.663554][ T347] RIP: 0033:0x7f75f92bb959
[ 41.668068][ T347] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 41.689594][ T347] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 41.698230][ T347] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 41.706403][ T347] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 41.714674][ T347] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 41.723020][ T347] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 41.731003][ T347] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 41.739193][ T347]
[ 41.750944][ T349] FAULT_INJECTION: forcing a failure.
[ 41.750944][ T349] name failslab, interval 1, probability 0, space 0, times 0
[ 41.763782][ T349] CPU: 0 PID: 349 Comm: syz-executor.0 Not tainted syzkaller #0
[ 41.771444][ T349] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 41.781525][ T349] Call Trace:
[ 41.785126][ T349]
[ 41.788232][ T349] __dump_stack+0x21/0x30
[ 41.792750][ T349] dump_stack_lvl+0xee/0x150
[ 41.797512][ T349] ? show_regs_print_info+0x20/0x20
[ 41.802832][ T349] dump_stack+0x15/0x20
[ 41.806998][ T349] should_fail+0x3c1/0x510
[ 41.811615][ T349] __should_failslab+0xa4/0xe0
[ 41.816415][ T349] should_failslab+0x9/0x20
[ 41.821106][ T349] slab_pre_alloc_hook+0x3b/0xe0
[ 41.826172][ T349] ? anon_vma_clone+0xc0/0x500
[ 41.831170][ T349] kmem_cache_alloc+0x44/0x260
[ 41.837669][ T349] anon_vma_clone+0xc0/0x500
[ 41.842542][ T349] anon_vma_fork+0x8c/0x510
[ 41.847451][ T349] copy_mm+0x9d1/0x13a0
[ 41.851629][ T349] ? copy_signal+0x600/0x600
[ 41.856806][ T349] ? __init_rwsem+0xfc/0x1d0
[ 41.861633][ T349] ? copy_signal+0x4cb/0x600
[ 41.866715][ T349] copy_process+0x115c/0x3210
[ 41.871821][ T349] ? __kasan_check_write+0x14/0x20
[ 41.877211][ T349] ? __pidfd_prepare+0x150/0x150
[ 41.882407][ T349] ? security_file_permission+0x83/0xa0
[ 41.888185][ T349] kernel_clone+0x23f/0x940
[ 41.892771][ T349] ? create_io_thread+0x130/0x130
[ 41.898201][ T349] ? __kasan_check_write+0x14/0x20
[ 41.903436][ T349] ? mutex_unlock+0x89/0x220
[ 41.908967][ T349] __x64_sys_clone+0x176/0x1d0
[ 41.914054][ T349] ? __kasan_check_write+0x14/0x20
[ 41.919584][ T349] ? __ia32_sys_vfork+0xf0/0xf0
[ 41.924809][ T349] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 41.931299][ T349] x64_sys_call+0x41f/0x9a0
[ 41.936428][ T349] do_syscall_64+0x4c/0xa0
[ 41.941505][ T349] ? clear_bhb_loop+0x50/0xa0
[ 41.946662][ T349] ? clear_bhb_loop+0x50/0xa0
[ 41.951441][ T349] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 41.957614][ T349] RIP: 0033:0x7f75f92bb959
[ 41.962032][ T349] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 41.982735][ T349] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 41.992146][ T349] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 42.000957][ T349] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 42.009396][ T349] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 42.017551][ T349] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 42.026517][ T349] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 42.035265][ T349]
[ 42.049217][ T352] FAULT_INJECTION: forcing a failure.
[ 42.049217][ T352] name failslab, interval 1, probability 0, space 0, times 0
[ 42.064324][ T352] CPU: 0 PID: 352 Comm: syz-executor.0 Not tainted syzkaller #0
[ 42.073158][ T352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 42.083790][ T352] Call Trace:
[ 42.087104][ T352]
[ 42.090361][ T352] __dump_stack+0x21/0x30
[ 42.094711][ T352] dump_stack_lvl+0xee/0x150
[ 42.099596][ T352] ? show_regs_print_info+0x20/0x20
[ 42.105009][ T352] dump_stack+0x15/0x20
[ 42.109479][ T352] should_fail+0x3c1/0x510
[ 42.113908][ T352] __should_failslab+0xa4/0xe0
[ 42.119374][ T352] should_failslab+0x9/0x20
[ 42.124063][ T352] slab_pre_alloc_hook+0x3b/0xe0
[ 42.129401][ T352] ? anon_vma_fork+0xf2/0x510
[ 42.134120][ T352] kmem_cache_alloc+0x44/0x260
[ 42.138907][ T352] anon_vma_fork+0xf2/0x510
[ 42.143466][ T352] copy_mm+0x9d1/0x13a0
[ 42.147644][ T352] ? copy_signal+0x600/0x600
[ 42.152513][ T352] ? __init_rwsem+0xfc/0x1d0
[ 42.157236][ T352] ? copy_signal+0x4cb/0x600
[ 42.161843][ T352] copy_process+0x115c/0x3210
[ 42.166635][ T352] ? __kasan_check_write+0x14/0x20
[ 42.171871][ T352] ? __pidfd_prepare+0x150/0x150
[ 42.176827][ T352] ? security_file_permission+0x83/0xa0
[ 42.182738][ T352] kernel_clone+0x23f/0x940
[ 42.187662][ T352] ? create_io_thread+0x130/0x130
[ 42.192935][ T352] ? __kasan_check_write+0x14/0x20
[ 42.198598][ T352] ? mutex_unlock+0x89/0x220
[ 42.203292][ T352] __x64_sys_clone+0x176/0x1d0
[ 42.208176][ T352] ? __kasan_check_write+0x14/0x20
[ 42.213993][ T352] ? __ia32_sys_vfork+0xf0/0xf0
[ 42.219329][ T352] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 42.226149][ T352] x64_sys_call+0x41f/0x9a0
[ 42.230757][ T352] do_syscall_64+0x4c/0xa0
[ 42.235183][ T352] ? clear_bhb_loop+0x50/0xa0
[ 42.239995][ T352] ? clear_bhb_loop+0x50/0xa0
[ 42.245051][ T352] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 42.250967][ T352] RIP: 0033:0x7f75f92bb959
[ 42.255517][ T352] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 42.275656][ T352] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 42.284081][ T352] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 42.292066][ T352] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 42.300088][ T352] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 42.308783][ T352] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 42.317070][ T352] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 42.325149][ T352]
[ 42.337192][ T354] FAULT_INJECTION: forcing a failure.
[ 42.337192][ T354] name failslab, interval 1, probability 0, space 0, times 0
[ 42.350140][ T354] CPU: 1 PID: 354 Comm: syz-executor.0 Not tainted syzkaller #0
[ 42.360228][ T354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 42.370786][ T354] Call Trace:
[ 42.374077][ T354]
[ 42.377027][ T354] __dump_stack+0x21/0x30
[ 42.381373][ T354] dump_stack_lvl+0xee/0x150
[ 42.386058][ T354] ? show_regs_print_info+0x20/0x20
[ 42.391369][ T354] dump_stack+0x15/0x20
[ 42.395536][ T354] should_fail+0x3c1/0x510
[ 42.399965][ T354] __should_failslab+0xa4/0xe0
[ 42.405459][ T354] should_failslab+0x9/0x20
[ 42.410237][ T354] slab_pre_alloc_hook+0x3b/0xe0
[ 42.415327][ T354] ? anon_vma_fork+0x200/0x510
[ 42.420189][ T354] kmem_cache_alloc+0x44/0x260
[ 42.425145][ T354] anon_vma_fork+0x200/0x510
[ 42.430702][ T354] copy_mm+0x9d1/0x13a0
[ 42.435335][ T354] ? copy_signal+0x600/0x600
[ 42.440268][ T354] ? __init_rwsem+0xfc/0x1d0
[ 42.444999][ T354] ? copy_signal+0x4cb/0x600
[ 42.449684][ T354] copy_process+0x115c/0x3210
[ 42.454477][ T354] ? __kasan_check_write+0x14/0x20
[ 42.459705][ T354] ? __pidfd_prepare+0x150/0x150
[ 42.464935][ T354] ? security_file_permission+0x83/0xa0
[ 42.470594][ T354] kernel_clone+0x23f/0x940
[ 42.475116][ T354] ? create_io_thread+0x130/0x130
[ 42.480257][ T354] ? __kasan_check_write+0x14/0x20
[ 42.485382][ T354] ? mutex_unlock+0x89/0x220
[ 42.489981][ T354] __x64_sys_clone+0x176/0x1d0
[ 42.494754][ T354] ? __kasan_check_write+0x14/0x20
[ 42.499869][ T354] ? __ia32_sys_vfork+0xf0/0xf0
[ 42.504752][ T354] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 42.510831][ T354] x64_sys_call+0x41f/0x9a0
[ 42.515349][ T354] do_syscall_64+0x4c/0xa0
[ 42.519768][ T354] ? clear_bhb_loop+0x50/0xa0
[ 42.524546][ T354] ? clear_bhb_loop+0x50/0xa0
[ 42.529339][ T354] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 42.535589][ T354] RIP: 0033:0x7f75f92bb959
[ 42.540356][ T354] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 42.560364][ T354] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 42.568791][ T354] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 42.577528][ T354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 42.585593][ T354] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 42.593581][ T354] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 42.601554][ T354] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 42.609615][ T354]
[ 42.613253][ T354] ------------[ cut here ]------------
[ 42.618832][ T354] refcount_t: underflow; use-after-free.
[ 42.624617][ T354] WARNING: CPU: 1 PID: 354 at lib/refcount.c:28 refcount_warn_saturate+0x120/0x1a0
[ 42.634061][ T354] Modules linked in:
[ 42.638083][ T354] CPU: 1 PID: 354 Comm: syz-executor.0 Not tainted syzkaller #0
[ 42.645746][ T354] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 42.656016][ T354] RIP: 0010:refcount_warn_saturate+0x120/0x1a0
[ 42.662184][ T354] Code: 04 01 48 c7 c7 40 0f 63 85 e8 9c b6 53 02 0f 0b eb c3 e8 43 98 1c ff c6 05 7e e6 99 04 01 48 c7 c7 a0 0f 63 85 e8 80 b6 53 02 <0f> 0b eb a7 e8 27 98 1c ff c6 05 5f e6 99 04 01 48 c7 c7 e0 0e 63
[ 42.682375][ T354] RSP: 0018:ffffc90000d77928 EFLAGS: 00010246
[ 42.688711][ T354] RAX: 957b52af871dd300 RBX: 0000000000000003 RCX: ffff88810c7113c0
[ 42.696755][ T354] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 42.704743][ T354] RBP: ffffc90000d77938 R08: dffffc0000000000 R09: ffffed103ee24e93
[ 42.713139][ T354] R10: ffffed103ee24e93 R11: 1ffff1103ee24e92 R12: 0000000000000000
[ 42.721161][ T354] R13: ffff88810d0b88b8 R14: 0000000000000003 R15: ffff88810d0cf999
[ 42.729168][ T354] FS: 00007f75f8e3e6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 42.738137][ T354] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 42.744743][ T354] CR2: 00007f75f8e3dff8 CR3: 000000011e6e7000 CR4: 00000000003506a0
[ 42.752758][ T354] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 42.760780][ T354] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 42.769049][ T354] Call Trace:
[ 42.772378][ T354]
[ 42.775322][ T354] vm_area_free_no_check+0x132/0x140
[ 42.780889][ T354] copy_mm+0xe7d/0x13a0
[ 42.785121][ T354] ? copy_signal+0x600/0x600
[ 42.789929][ T354] ? __init_rwsem+0xfc/0x1d0
[ 42.794562][ T354] ? copy_signal+0x4cb/0x600
[ 42.799209][ T354] copy_process+0x115c/0x3210
[ 42.803924][ T354] ? __kasan_check_write+0x14/0x20
[ 42.809076][ T354] ? __pidfd_prepare+0x150/0x150
[ 42.814140][ T354] ? security_file_permission+0x83/0xa0
[ 42.819731][ T354] kernel_clone+0x23f/0x940
[ 42.824254][ T354] ? create_io_thread+0x130/0x130
[ 42.829496][ T354] ? __kasan_check_write+0x14/0x20
[ 42.834732][ T354] ? mutex_unlock+0x89/0x220
[ 42.839357][ T354] __x64_sys_clone+0x176/0x1d0
[ 42.844157][ T354] ? __kasan_check_write+0x14/0x20
[ 42.849543][ T354] ? __ia32_sys_vfork+0xf0/0xf0
[ 42.854453][ T354] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 42.860791][ T354] x64_sys_call+0x41f/0x9a0
[ 42.865383][ T354] do_syscall_64+0x4c/0xa0
[ 42.870091][ T354] ? clear_bhb_loop+0x50/0xa0
[ 42.874793][ T354] ? clear_bhb_loop+0x50/0xa0
[ 42.879514][ T354] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 42.885541][ T354] RIP: 0033:0x7f75f92bb959
[ 42.889964][ T354] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 42.909609][ T354] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 42.918369][ T354] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 42.926473][ T354] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 42.934725][ T354] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 42.942925][ T354] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 42.951311][ T354] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 42.959546][ T354]
[ 42.962731][ T354] ---[ end trace e2d3787d1c71130c ]---
[ 42.975878][ T356] FAULT_INJECTION: forcing a failure.
[ 42.975878][ T356] name failslab, interval 1, probability 0, space 0, times 0
[ 42.989224][ T356] CPU: 0 PID: 356 Comm: syz-executor.0 Tainted: G W syzkaller #0
[ 42.998662][ T356] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 43.008828][ T356] Call Trace:
[ 43.012432][ T356]
[ 43.015391][ T356] __dump_stack+0x21/0x30
[ 43.019897][ T356] dump_stack_lvl+0xee/0x150
[ 43.024582][ T356] ? show_regs_print_info+0x20/0x20
[ 43.029796][ T356] dump_stack+0x15/0x20
[ 43.033963][ T356] should_fail+0x3c1/0x510
[ 43.038513][ T356] __should_failslab+0xa4/0xe0
[ 43.043393][ T356] should_failslab+0x9/0x20
[ 43.047910][ T356] slab_pre_alloc_hook+0x3b/0xe0
[ 43.052869][ T356] ? anon_vma_fork+0xf2/0x510
[ 43.057561][ T356] kmem_cache_alloc+0x44/0x260
[ 43.062344][ T356] anon_vma_fork+0xf2/0x510
[ 43.066856][ T356] copy_mm+0x9d1/0x13a0
[ 43.071036][ T356] ? copy_signal+0x600/0x600
[ 43.075718][ T356] ? __init_rwsem+0xfc/0x1d0
[ 43.080595][ T356] ? copy_signal+0x4cb/0x600
[ 43.085182][ T356] copy_process+0x115c/0x3210
[ 43.089859][ T356] ? __kasan_check_write+0x14/0x20
[ 43.094969][ T356] ? __pidfd_prepare+0x150/0x150
[ 43.099919][ T356] ? security_file_permission+0x83/0xa0
[ 43.105471][ T356] kernel_clone+0x23f/0x940
[ 43.110027][ T356] ? create_io_thread+0x130/0x130
[ 43.115146][ T356] ? __kasan_check_write+0x14/0x20
[ 43.120264][ T356] ? mutex_unlock+0x89/0x220
[ 43.124878][ T356] __x64_sys_clone+0x176/0x1d0
[ 43.129641][ T356] ? __kasan_check_write+0x14/0x20
[ 43.134778][ T356] ? __ia32_sys_vfork+0xf0/0xf0
[ 43.139897][ T356] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 43.146075][ T356] x64_sys_call+0x41f/0x9a0
[ 43.150900][ T356] do_syscall_64+0x4c/0xa0
[ 43.155373][ T356] ? clear_bhb_loop+0x50/0xa0
[ 43.160060][ T356] ? clear_bhb_loop+0x50/0xa0
[ 43.164766][ T356] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 43.170779][ T356] RIP: 0033:0x7f75f92bb959
[ 43.175215][ T356] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 43.194926][ T356] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 43.203500][ T356] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 43.211488][ T356] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 43.219502][ T356] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 43.227502][ T356] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 43.235573][ T356] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 43.243657][ T356]
[ 43.257124][ T358] FAULT_INJECTION: forcing a failure.
[ 43.257124][ T358] name failslab, interval 1, probability 0, space 0, times 0
[ 43.270062][ T358] CPU: 1 PID: 358 Comm: syz-executor.0 Tainted: G W syzkaller #0
[ 43.279108][ T358] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 43.289174][ T358] Call Trace:
[ 43.292465][ T358]
[ 43.295519][ T358] __dump_stack+0x21/0x30
[ 43.299966][ T358] dump_stack_lvl+0xee/0x150
[ 43.304560][ T358] ? show_regs_print_info+0x20/0x20
[ 43.309765][ T358] dump_stack+0x15/0x20
[ 43.313935][ T358] should_fail+0x3c1/0x510
[ 43.318785][ T358] __should_failslab+0xa4/0xe0
[ 43.323715][ T358] should_failslab+0x9/0x20
[ 43.328485][ T358] slab_pre_alloc_hook+0x3b/0xe0
[ 43.333430][ T358] ? anon_vma_clone+0xc0/0x500
[ 43.338193][ T358] kmem_cache_alloc+0x44/0x260
[ 43.342976][ T358] anon_vma_clone+0xc0/0x500
[ 43.347568][ T358] anon_vma_fork+0x8c/0x510
[ 43.352097][ T358] copy_mm+0x9d1/0x13a0
[ 43.356324][ T358] ? copy_signal+0x600/0x600
[ 43.360933][ T358] ? __init_rwsem+0xfc/0x1d0
[ 43.365580][ T358] ? copy_signal+0x4cb/0x600
[ 43.370259][ T358] copy_process+0x115c/0x3210
[ 43.374945][ T358] ? __kasan_check_write+0x14/0x20
[ 43.380309][ T358] ? __pidfd_prepare+0x150/0x150
[ 43.385272][ T358] ? security_file_permission+0x83/0xa0
[ 43.390842][ T358] kernel_clone+0x23f/0x940
[ 43.395700][ T358] ? create_io_thread+0x130/0x130
[ 43.400743][ T358] ? __kasan_check_write+0x14/0x20
[ 43.405880][ T358] ? mutex_unlock+0x89/0x220
[ 43.410765][ T358] __x64_sys_clone+0x176/0x1d0
[ 43.415548][ T358] ? __kasan_check_write+0x14/0x20
[ 43.420869][ T358] ? __ia32_sys_vfork+0xf0/0xf0
[ 43.425906][ T358] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 43.432022][ T358] x64_sys_call+0x41f/0x9a0
[ 43.436528][ T358] do_syscall_64+0x4c/0xa0
[ 43.440993][ T358] ? clear_bhb_loop+0x50/0xa0
[ 43.445766][ T358] ? clear_bhb_loop+0x50/0xa0
[ 43.450473][ T358] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 43.456556][ T358] RIP: 0033:0x7f75f92bb959
[ 43.460974][ T358] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 43.480678][ T358] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 43.489171][ T358] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 43.497159][ T358] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 43.505159][ T358] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 43.513263][ T358] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 43.521449][ T358] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 43.529435][ T358]
[ 43.539761][ T361] FAULT_INJECTION: forcing a failure.
[ 43.539761][ T361] name failslab, interval 1, probability 0, space 0, times 0
[ 43.552468][ T361] CPU: 1 PID: 361 Comm: syz-executor.0 Tainted: G W syzkaller #0
[ 43.561705][ T361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 43.571781][ T361] Call Trace:
[ 43.575063][ T361]
[ 43.578299][ T361] __dump_stack+0x21/0x30
[ 43.582638][ T361] dump_stack_lvl+0xee/0x150
[ 43.587230][ T361] ? show_regs_print_info+0x20/0x20
[ 43.592529][ T361] dump_stack+0x15/0x20
[ 43.596694][ T361] should_fail+0x3c1/0x510
[ 43.601325][ T361] __should_failslab+0xa4/0xe0
[ 43.606115][ T361] should_failslab+0x9/0x20
[ 43.610629][ T361] slab_pre_alloc_hook+0x3b/0xe0
[ 43.615980][ T361] ? anon_vma_fork+0xf2/0x510
[ 43.620688][ T361] kmem_cache_alloc+0x44/0x260
[ 43.625473][ T361] anon_vma_fork+0xf2/0x510
[ 43.630116][ T361] copy_mm+0x9d1/0x13a0
[ 43.634286][ T361] ? copy_signal+0x600/0x600
[ 43.639008][ T361] ? __init_rwsem+0xfc/0x1d0
[ 43.643816][ T361] ? copy_signal+0x4cb/0x600
[ 43.648516][ T361] copy_process+0x115c/0x3210
[ 43.653247][ T361] ? __kasan_check_write+0x14/0x20
[ 43.658463][ T361] ? __pidfd_prepare+0x150/0x150
[ 43.663404][ T361] ? security_file_permission+0x83/0xa0
[ 43.669209][ T361] kernel_clone+0x23f/0x940
[ 43.673732][ T361] ? create_io_thread+0x130/0x130
[ 43.678765][ T361] ? __kasan_check_write+0x14/0x20
[ 43.683994][ T361] ? mutex_unlock+0x89/0x220
[ 43.688703][ T361] __x64_sys_clone+0x176/0x1d0
[ 43.693740][ T361] ? __kasan_check_write+0x14/0x20
[ 43.698864][ T361] ? __ia32_sys_vfork+0xf0/0xf0
[ 43.703839][ T361] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 43.710201][ T361] x64_sys_call+0x41f/0x9a0
[ 43.714885][ T361] do_syscall_64+0x4c/0xa0
[ 43.719458][ T361] ? clear_bhb_loop+0x50/0xa0
[ 43.724254][ T361] ? clear_bhb_loop+0x50/0xa0
[ 43.728955][ T361] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 43.735319][ T361] RIP: 0033:0x7f75f92bb959
[ 43.740008][ T361] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 43.759806][ T361] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 43.768512][ T361] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 43.776684][ T361] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 43.784657][ T361] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 43.793001][ T361] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 43.801193][ T361] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 43.809477][ T361]
[ 43.820897][ T363] FAULT_INJECTION: forcing a failure.
[ 43.820897][ T363] name failslab, interval 1, probability 0, space 0, times 0
[ 43.833932][ T363] CPU: 0 PID: 363 Comm: syz-executor.0 Tainted: G W syzkaller #0
[ 43.843182][ T363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 43.853250][ T363] Call Trace:
[ 43.856723][ T363]
[ 43.859708][ T363] __dump_stack+0x21/0x30
[ 43.864135][ T363] dump_stack_lvl+0xee/0x150
[ 43.868911][ T363] ? show_regs_print_info+0x20/0x20
[ 43.874113][ T363] dump_stack+0x15/0x20
[ 43.878360][ T363] should_fail+0x3c1/0x510
[ 43.882898][ T363] __should_failslab+0xa4/0xe0
[ 43.887674][ T363] should_failslab+0x9/0x20
[ 43.892210][ T363] slab_pre_alloc_hook+0x3b/0xe0
[ 43.897239][ T363] ? anon_vma_fork+0x200/0x510
[ 43.902006][ T363] kmem_cache_alloc+0x44/0x260
[ 43.906770][ T363] anon_vma_fork+0x200/0x510
[ 43.911362][ T363] copy_mm+0x9d1/0x13a0
[ 43.915538][ T363] ? copy_signal+0x600/0x600
[ 43.920128][ T363] ? __init_rwsem+0xfc/0x1d0
[ 43.924721][ T363] ? copy_signal+0x4cb/0x600
[ 43.929314][ T363] copy_process+0x115c/0x3210
[ 43.934004][ T363] ? __kasan_check_write+0x14/0x20
[ 43.939113][ T363] ? __pidfd_prepare+0x150/0x150
[ 43.944058][ T363] ? security_file_permission+0x83/0xa0
[ 43.949917][ T363] kernel_clone+0x23f/0x940
[ 43.954431][ T363] ? create_io_thread+0x130/0x130
[ 43.959456][ T363] ? __kasan_check_write+0x14/0x20
[ 43.964671][ T363] ? mutex_unlock+0x89/0x220
[ 43.969289][ T363] __x64_sys_clone+0x176/0x1d0
[ 43.974076][ T363] ? __kasan_check_write+0x14/0x20
[ 43.979307][ T363] ? __ia32_sys_vfork+0xf0/0xf0
[ 43.984337][ T363] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 43.990406][ T363] x64_sys_call+0x41f/0x9a0
[ 43.994913][ T363] do_syscall_64+0x4c/0xa0
[ 43.999336][ T363] ? clear_bhb_loop+0x50/0xa0
[ 44.004010][ T363] ? clear_bhb_loop+0x50/0xa0
[ 44.008686][ T363] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.014593][ T363] RIP: 0033:0x7f75f92bb959
[ 44.019096][ T363] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 44.039086][ T363] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 44.047650][ T363] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 44.055624][ T363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 44.063690][ T363] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 44.071835][ T363] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 44.079961][ T363] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 44.087978][ T363]
[ 44.091825][ T363] ==================================================================
[ 44.100093][ T363] BUG: KASAN: double-free or invalid-free in kfree+0xc4/0x270
[ 44.107647][ T363]
[ 44.110064][ T363] CPU: 0 PID: 363 Comm: syz-executor.0 Tainted: G W syzkaller #0
[ 44.119103][ T363] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 44.129164][ T363] Call Trace:
[ 44.132448][ T363]
[ 44.135379][ T363] __dump_stack+0x21/0x30
[ 44.140094][ T363] dump_stack_lvl+0xee/0x150
[ 44.144785][ T363] ? show_regs_print_info+0x20/0x20
[ 44.149988][ T363] ? load_image+0x3a0/0x3a0
[ 44.154512][ T363] ? kmem_cache_free+0x100/0x320
[ 44.159455][ T363] print_address_description+0x7f/0x2c0
[ 44.165120][ T363] ? kfree+0xc4/0x270
[ 44.169119][ T363] kasan_report_invalid_free+0x58/0x90
[ 44.174674][ T363] ? kfree+0xc4/0x270
[ 44.178815][ T363] ____kasan_slab_free+0x13d/0x160
[ 44.183952][ T363] __kasan_slab_free+0x11/0x20
[ 44.188725][ T363] slab_free_freelist_hook+0xc2/0x190
[ 44.194139][ T363] ? anon_vma_name_free+0x15/0x20
[ 44.199163][ T363] kfree+0xc4/0x270
[ 44.202971][ T363] ? anon_vma_name_free+0x15/0x20
[ 44.208007][ T363] anon_vma_name_free+0x15/0x20
[ 44.212961][ T363] vm_area_free_no_check+0xa9/0x140
[ 44.218398][ T363] copy_mm+0xe7d/0x13a0
[ 44.222637][ T363] ? copy_signal+0x600/0x600
[ 44.227228][ T363] ? __init_rwsem+0xfc/0x1d0
[ 44.231920][ T363] ? copy_signal+0x4cb/0x600
[ 44.236523][ T363] copy_process+0x115c/0x3210
[ 44.241297][ T363] ? __kasan_check_write+0x14/0x20
[ 44.246495][ T363] ? __pidfd_prepare+0x150/0x150
[ 44.251437][ T363] ? security_file_permission+0x83/0xa0
[ 44.257000][ T363] kernel_clone+0x23f/0x940
[ 44.261517][ T363] ? create_io_thread+0x130/0x130
[ 44.266659][ T363] ? __kasan_check_write+0x14/0x20
[ 44.271877][ T363] ? mutex_unlock+0x89/0x220
[ 44.276480][ T363] __x64_sys_clone+0x176/0x1d0
[ 44.281747][ T363] ? __kasan_check_write+0x14/0x20
[ 44.287072][ T363] ? __ia32_sys_vfork+0xf0/0xf0
[ 44.292024][ T363] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 44.298119][ T363] x64_sys_call+0x41f/0x9a0
[ 44.302657][ T363] do_syscall_64+0x4c/0xa0
[ 44.307167][ T363] ? clear_bhb_loop+0x50/0xa0
[ 44.312034][ T363] ? clear_bhb_loop+0x50/0xa0
[ 44.316724][ T363] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.322799][ T363] RIP: 0033:0x7f75f92bb959
[ 44.327217][ T363] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 44.347006][ T363] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 44.355544][ T363] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 44.363532][ T363] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 44.371509][ T363] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 44.379490][ T363] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 44.387572][ T363] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 44.395554][ T363]
[ 44.398683][ T363]
[ 44.401023][ T363] Allocated by task 332:
[ 44.405519][ T363] __kasan_slab_alloc+0xbd/0xf0
[ 44.410412][ T363] slab_post_alloc_hook+0x4f/0x2b0
[ 44.415622][ T363] kmem_cache_alloc+0xf7/0x260
[ 44.420385][ T363] vm_area_alloc+0x24/0x130
[ 44.424897][ T363] mmap_region+0xa54/0x1800
[ 44.429407][ T363] do_mmap+0x812/0xf10
[ 44.433489][ T363] vm_mmap_pgoff+0x1ce/0x410
[ 44.438365][ T363] vm_mmap+0x87/0xb0
[ 44.442266][ T363] elf_map+0x190/0x230
[ 44.446427][ T363] load_elf_binary+0x1082/0x2890
[ 44.451536][ T363] bprm_execve+0x795/0x1480
[ 44.456159][ T363] do_execveat_common+0x923/0xa80
[ 44.461286][ T363] __x64_sys_execve+0x92/0xb0
[ 44.465971][ T363] x64_sys_call+0x919/0x9a0
[ 44.470477][ T363] do_syscall_64+0x4c/0xa0
[ 44.474896][ T363] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.480896][ T363]
[ 44.483232][ T363] Last potentially related work creation:
[ 44.489027][ T363] kasan_save_stack+0x3a/0x60
[ 44.493749][ T363] __kasan_record_aux_stack+0xd2/0x100
[ 44.499296][ T363] kasan_record_aux_stack_noalloc+0xb/0x10
[ 44.505109][ T363] call_rcu+0x105/0xfe0
[ 44.509269][ T363] vm_area_free_no_check+0x10e/0x140
[ 44.514579][ T363] vm_area_free+0x56/0x60
[ 44.518943][ T363] __do_munmap+0xc26/0xfe0
[ 44.523460][ T363] mmap_region+0x8cf/0x1800
[ 44.528329][ T363] do_mmap+0x812/0xf10
[ 44.532436][ T363] vm_mmap_pgoff+0x1ce/0x410
[ 44.537052][ T363] ksys_mmap_pgoff+0x161/0x1d0
[ 44.542020][ T363] __x64_sys_mmap+0xfa/0x110
[ 44.546620][ T363] x64_sys_call+0x83/0x9a0
[ 44.551261][ T363] do_syscall_64+0x4c/0xa0
[ 44.555880][ T363] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 44.562226][ T363]
[ 44.564555][ T363] The buggy address belongs to the object at ffff88810d0cf940
[ 44.564555][ T363] which belongs to the cache vm_area_struct of size 232
[ 44.578872][ T363] The buggy address is located 88 bytes inside of
[ 44.578872][ T363] 232-byte region [ffff88810d0cf940, ffff88810d0cfa28)
[ 44.592181][ T363] The buggy address belongs to the page:
[ 44.597830][ T363] page:ffffea00043433c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88810d0cf6f0 pfn:0x10d0cf
[ 44.609475][ T363] flags: 0x4000000000000200(slab|zone=1)
[ 44.615378][ T363] raw: 4000000000000200 ffffea0004343588 ffffea0004343248 ffff888100186180
[ 44.623967][ T363] raw: ffff88810d0cf6f0 00000000000d0005 00000001ffffffff 0000000000000000
[ 44.632670][ T363] page dumped because: kasan: bad access detected
[ 44.639097][ T363] page_owner tracks the page as allocated
[ 44.645057][ T363] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12cc0(GFP_KERNEL|__GFP_NOWARN|__GFP_NORETRY), pid 80, ts 5474476960, free_ts 5473570429
[ 44.660796][ T363] post_alloc_hook+0x192/0x1b0
[ 44.665570][ T363] prep_new_page+0x1c/0x110
[ 44.670088][ T363] get_page_from_freelist+0x2cc5/0x2d50
[ 44.675665][ T363] __alloc_pages+0x18f/0x440
[ 44.680258][ T363] new_slab+0xa1/0x4d0
[ 44.684336][ T363] ___slab_alloc+0x381/0x810
[ 44.688942][ T363] __slab_alloc+0x49/0x90
[ 44.693274][ T363] kmem_cache_alloc+0x138/0x260
[ 44.698137][ T363] vm_area_alloc+0x24/0x130
[ 44.702653][ T363] mmap_region+0xa54/0x1800
[ 44.707162][ T363] do_mmap+0x812/0xf10
[ 44.711330][ T363] vm_mmap_pgoff+0x1ce/0x410
[ 44.715930][ T363] ksys_mmap_pgoff+0x161/0x1d0
[ 44.720702][ T363] __x64_sys_mmap+0xfa/0x110
[ 44.725310][ T363] x64_sys_call+0x83/0x9a0
[ 44.729828][ T363] do_syscall_64+0x4c/0xa0
[ 44.734365][ T363] page last free stack trace:
[ 44.739048][ T363] free_unref_page_prepare+0x542/0x550
[ 44.744514][ T363] free_unref_page_list+0x134/0x9d0
[ 44.749800][ T363] release_pages+0xfda/0x1030
[ 44.754492][ T363] free_pages_and_swap_cache+0x86/0xa0
[ 44.760311][ T363] tlb_finish_mmu+0x175/0x300
[ 44.765092][ T363] exit_mmap+0x40f/0x860
[ 44.769365][ T363] __mmput+0x93/0x320
[ 44.773365][ T363] mmput+0x50/0x150
[ 44.777358][ T363] exec_mmap+0x422/0x4e0
[ 44.781604][ T363] begin_new_exec+0xa8b/0x1ea0
[ 44.786370][ T363] load_elf_binary+0x98e/0x2890
[ 44.791222][ T363] bprm_execve+0x795/0x1480
[ 44.795743][ T363] do_execveat_common+0x923/0xa80
[ 44.800789][ T363] __x64_sys_execve+0x92/0xb0
[ 44.805508][ T363] x64_sys_call+0x919/0x9a0
[ 44.810104][ T363] do_syscall_64+0x4c/0xa0
[ 44.814525][ T363]
[ 44.816853][ T363] Memory state around the buggy address:
[ 44.822504][ T363] ffff88810d0cf880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 44.830587][ T363] ffff88810d0cf900: fc fc fc fc fc fc fc fc 00 00 00 00 00 00 00 00
[ 44.838735][ T363] >ffff88810d0cf980: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 44.846904][ T363] ^
[ 44.851841][ T363] ffff88810d0cfa00: 00 00 00 00 00 fc fc fc fc fc fc fc fc fb fb fb
[ 44.860086][ T363] ffff88810d0cfa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 44.868145][ T363] ==================================================================
[ 44.876232][ T363] Disabling lock debugging due to kernel taint
[ 44.886704][ T30] kauditd_printk_skb: 14 callbacks suppressed
[ 44.886718][ T30] audit: type=1400 audit(1764382857.224:88): avc: denied { read } for pid=83 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
[ 44.917198][ T365] FAULT_INJECTION: forcing a failure.
[ 44.917198][ T365] name failslab, interval 1, probability 0, space 0, times 0
[ 44.930214][ T365] CPU: 0 PID: 365 Comm: syz-executor.0 Tainted: G B W syzkaller #0
[ 44.935929][ T30] audit: type=1400 audit(1764382857.224:89): avc: denied { search } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 44.939435][ T365] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 44.939448][ T365] Call Trace:
[ 44.961215][ T30] audit: type=1400 audit(1764382857.224:90): avc: denied { write } for pid=83 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 44.971303][ T365]
[ 44.971313][ T365] __dump_stack+0x21/0x30
[ 44.974626][ T30] audit: type=1400 audit(1764382857.224:91): avc: denied { add_name } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1
[ 44.995685][ T365] dump_stack_lvl+0xee/0x150
[ 44.995710][ T365] ? show_regs_print_info+0x20/0x20
[ 44.998730][ T30] audit: type=1400 audit(1764382857.224:92): avc: denied { create } for pid=83 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 45.003146][ T365] dump_stack+0x15/0x20
[ 45.023733][ T30] audit: type=1400 audit(1764382857.224:93): avc: denied { append open } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 45.028282][ T365] should_fail+0x3c1/0x510
[ 45.028305][ T365] __should_failslab+0xa4/0xe0
[ 45.028326][ T365] should_failslab+0x9/0x20
[ 45.028343][ T365] slab_pre_alloc_hook+0x3b/0xe0
[ 45.028363][ T365] ? anon_vma_fork+0xf2/0x510
[ 45.028379][ T365] kmem_cache_alloc+0x44/0x260
[ 45.028397][ T365] anon_vma_fork+0xf2/0x510
[ 45.028415][ T365] copy_mm+0x9d1/0x13a0
[ 45.028435][ T365] ? copy_signal+0x600/0x600
[ 45.028450][ T365] ? __init_rwsem+0xfc/0x1d0
[ 45.028469][ T365] ? copy_signal+0x4cb/0x600
[ 45.034280][ T30] audit: type=1400 audit(1764382857.224:94): avc: denied { getattr } for pid=83 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[ 45.054537][ T365] copy_process+0x115c/0x3210
[ 45.054576][ T365] ? __kasan_check_write+0x14/0x20
[ 45.165041][ T365] ? __pidfd_prepare+0x150/0x150
[ 45.170082][ T365] ? security_file_permission+0x83/0xa0
[ 45.175636][ T365] kernel_clone+0x23f/0x940
[ 45.180139][ T365] ? create_io_thread+0x130/0x130
[ 45.185467][ T365] ? __kasan_check_write+0x14/0x20
[ 45.190581][ T365] ? mutex_unlock+0x89/0x220
[ 45.195171][ T365] __x64_sys_clone+0x176/0x1d0
[ 45.199929][ T365] ? __kasan_check_write+0x14/0x20
[ 45.205034][ T365] ? __ia32_sys_vfork+0xf0/0xf0
[ 45.209998][ T365] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 45.216061][ T365] x64_sys_call+0x41f/0x9a0
[ 45.220573][ T365] do_syscall_64+0x4c/0xa0
[ 45.225086][ T365] ? clear_bhb_loop+0x50/0xa0
[ 45.229844][ T365] ? clear_bhb_loop+0x50/0xa0
[ 45.234600][ T365] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 45.240609][ T365] RIP: 0033:0x7f75f92bb959
[ 45.245022][ T365] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 45.264887][ T365] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 45.273300][ T365] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 45.281455][ T365] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 45.289424][ T365] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 45.297574][ T365] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 45.305548][ T365] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 45.313522][ T365]
[ 45.325099][ T367] FAULT_INJECTION: forcing a failure.
[ 45.325099][ T367] name failslab, interval 1, probability 0, space 0, times 0
[ 45.338337][ T367] CPU: 1 PID: 367 Comm: syz-executor.0 Tainted: G B W syzkaller #0
[ 45.347390][ T367] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 45.357558][ T367] Call Trace:
[ 45.360951][ T367]
[ 45.363891][ T367] __dump_stack+0x21/0x30
[ 45.368234][ T367] dump_stack_lvl+0xee/0x150
[ 45.372840][ T367] ? show_regs_print_info+0x20/0x20
[ 45.378159][ T367] dump_stack+0x15/0x20
[ 45.382322][ T367] should_fail+0x3c1/0x510
[ 45.386743][ T367] __should_failslab+0xa4/0xe0
[ 45.391601][ T367] should_failslab+0x9/0x20
[ 45.396122][ T367] slab_pre_alloc_hook+0x3b/0xe0
[ 45.401350][ T367] ? anon_vma_fork+0xf2/0x510
[ 45.406573][ T367] kmem_cache_alloc+0x44/0x260
[ 45.411452][ T367] anon_vma_fork+0xf2/0x510
[ 45.415982][ T367] copy_mm+0x9d1/0x13a0
[ 45.420162][ T367] ? copy_signal+0x600/0x600
[ 45.424781][ T367] ? __init_rwsem+0xfc/0x1d0
[ 45.429562][ T367] ? copy_signal+0x4cb/0x600
[ 45.434253][ T367] copy_process+0x115c/0x3210
[ 45.438969][ T367] ? __kasan_check_write+0x14/0x20
[ 45.444117][ T367] ? __pidfd_prepare+0x150/0x150
[ 45.449059][ T367] ? security_file_permission+0x83/0xa0
[ 45.454620][ T367] kernel_clone+0x23f/0x940
[ 45.459222][ T367] ? create_io_thread+0x130/0x130
[ 45.464340][ T367] ? __kasan_check_write+0x14/0x20
[ 45.469553][ T367] ? mutex_unlock+0x89/0x220
[ 45.474333][ T367] __x64_sys_clone+0x176/0x1d0
[ 45.479108][ T367] ? __kasan_check_write+0x14/0x20
[ 45.484262][ T367] ? __ia32_sys_vfork+0xf0/0xf0
[ 45.489339][ T367] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 45.495458][ T367] x64_sys_call+0x41f/0x9a0
[ 45.500122][ T367] do_syscall_64+0x4c/0xa0
[ 45.504761][ T367] ? clear_bhb_loop+0x50/0xa0
[ 45.509538][ T367] ? clear_bhb_loop+0x50/0xa0
[ 45.514238][ T367] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 45.520135][ T367] RIP: 0033:0x7f75f92bb959
[ 45.524553][ T367] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 45.544796][ T367] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 45.553672][ T367] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 45.561735][ T367] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 45.569815][ T367] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 45.577898][ T367] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 45.585955][ T367] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 45.594069][ T367]
[ 45.606053][ T369] FAULT_INJECTION: forcing a failure.
[ 45.606053][ T369] name failslab, interval 1, probability 0, space 0, times 0
[ 45.619924][ T369] CPU: 0 PID: 369 Comm: syz-executor.0 Tainted: G B W syzkaller #0
[ 45.629065][ T369] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 45.639608][ T369] Call Trace:
[ 45.642920][ T369]
[ 45.645895][ T369] __dump_stack+0x21/0x30
[ 45.650254][ T369] dump_stack_lvl+0xee/0x150
[ 45.654850][ T369] ? show_regs_print_info+0x20/0x20
[ 45.660064][ T369] dump_stack+0x15/0x20
[ 45.664324][ T369] should_fail+0x3c1/0x510
[ 45.668786][ T369] __should_failslab+0xa4/0xe0
[ 45.673671][ T369] should_failslab+0x9/0x20
[ 45.678267][ T369] slab_pre_alloc_hook+0x3b/0xe0
[ 45.683676][ T369] ? anon_vma_fork+0xf2/0x510
[ 45.689878][ T369] kmem_cache_alloc+0x44/0x260
[ 45.694750][ T369] anon_vma_fork+0xf2/0x510
[ 45.699280][ T369] copy_mm+0x9d1/0x13a0
[ 45.703491][ T369] ? copy_signal+0x600/0x600
[ 45.708430][ T369] ? __init_rwsem+0xfc/0x1d0
[ 45.713210][ T369] ? copy_signal+0x4cb/0x600
[ 45.717993][ T369] copy_process+0x115c/0x3210
[ 45.722711][ T369] ? __kasan_check_write+0x14/0x20
[ 45.727972][ T369] ? __pidfd_prepare+0x150/0x150
[ 45.732924][ T369] ? security_file_permission+0x83/0xa0
[ 45.738483][ T369] kernel_clone+0x23f/0x940
[ 45.743010][ T369] ? create_io_thread+0x130/0x130
[ 45.748037][ T369] ? __kasan_check_write+0x14/0x20
[ 45.753611][ T369] ? mutex_unlock+0x89/0x220
[ 45.758219][ T369] __x64_sys_clone+0x176/0x1d0
[ 45.763000][ T369] ? __kasan_check_write+0x14/0x20
[ 45.768136][ T369] ? __ia32_sys_vfork+0xf0/0xf0
[ 45.773022][ T369] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 45.779112][ T369] x64_sys_call+0x41f/0x9a0
[ 45.783772][ T369] do_syscall_64+0x4c/0xa0
[ 45.790117][ T369] ? clear_bhb_loop+0x50/0xa0
[ 45.795214][ T369] ? clear_bhb_loop+0x50/0xa0
[ 45.799924][ T369] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 45.805861][ T369] RIP: 0033:0x7f75f92bb959
[ 45.810290][ T369] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 45.830122][ T369] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 45.839185][ T369] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 45.847262][ T369] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 45.855532][ T369] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 45.863526][ T369] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 45.871693][ T369] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
2025/11/29 02:20:58 executed programs: 12
[ 45.880019][ T369]
[ 45.906755][ T371] FAULT_INJECTION: forcing a failure.
[ 45.906755][ T371] name failslab, interval 1, probability 0, space 0, times 0
[ 45.919669][ T371] CPU: 1 PID: 371 Comm: syz-executor.0 Tainted: G B W syzkaller #0
[ 45.928722][ T371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 45.938921][ T371] Call Trace:
[ 45.942388][ T371]
[ 45.945329][ T371] __dump_stack+0x21/0x30
[ 45.949686][ T371] dump_stack_lvl+0xee/0x150
[ 45.954376][ T371] ? show_regs_print_info+0x20/0x20
[ 45.959719][ T371] dump_stack+0x15/0x20
[ 45.963891][ T371] should_fail+0x3c1/0x510
[ 45.968318][ T371] __should_failslab+0xa4/0xe0
[ 45.973224][ T371] should_failslab+0x9/0x20
[ 45.977740][ T371] slab_pre_alloc_hook+0x3b/0xe0
[ 45.982688][ T371] ? anon_vma_clone+0xc0/0x500
[ 45.987548][ T371] kmem_cache_alloc+0x44/0x260
[ 45.992319][ T371] anon_vma_clone+0xc0/0x500
[ 45.997053][ T371] anon_vma_fork+0x8c/0x510
[ 46.001558][ T371] copy_mm+0x9d1/0x13a0
[ 46.005722][ T371] ? copy_signal+0x600/0x600
[ 46.010570][ T371] ? __init_rwsem+0xfc/0x1d0
[ 46.015191][ T371] ? copy_signal+0x4cb/0x600
[ 46.019938][ T371] copy_process+0x115c/0x3210
[ 46.024644][ T371] ? __kasan_check_write+0x14/0x20
[ 46.030306][ T371] ? __pidfd_prepare+0x150/0x150
[ 46.035359][ T371] ? security_file_permission+0x83/0xa0
[ 46.040921][ T371] kernel_clone+0x23f/0x940
[ 46.045532][ T371] ? create_io_thread+0x130/0x130
[ 46.050582][ T371] ? __kasan_check_write+0x14/0x20
[ 46.055713][ T371] ? mutex_unlock+0x89/0x220
[ 46.060312][ T371] __x64_sys_clone+0x176/0x1d0
[ 46.065088][ T371] ? __kasan_check_write+0x14/0x20
[ 46.070291][ T371] ? __ia32_sys_vfork+0xf0/0xf0
[ 46.075164][ T371] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 46.081269][ T371] x64_sys_call+0x41f/0x9a0
[ 46.085781][ T371] do_syscall_64+0x4c/0xa0
[ 46.090197][ T371] ? clear_bhb_loop+0x50/0xa0
[ 46.094973][ T371] ? clear_bhb_loop+0x50/0xa0
[ 46.099653][ T371] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.105819][ T371] RIP: 0033:0x7f75f92bb959
[ 46.110248][ T371] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 46.130054][ T371] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 46.138576][ T371] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 46.146554][ T371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 46.154532][ T371] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 46.162625][ T371] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 46.170609][ T371] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 46.178684][ T371]
[ 46.182535][ T371] general protection fault, probably for non-canonical address 0xdffffc1818000001: 0000 [#1] PREEMPT SMP KASAN
[ 46.194521][ T371] KASAN: probably user-memory-access in range [0x000000c0c0000008-0x000000c0c000000f]
[ 46.204060][ T371] CPU: 1 PID: 371 Comm: syz-executor.0 Tainted: G B W syzkaller #0
[ 46.213871][ T371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 46.224142][ T371] RIP: 0010:__rb_insert_augmented+0xa9/0x720
[ 46.230223][ T371] Code: 3a ff 49 8b 07 a8 01 0f 85 53 06 00 00 4c 89 65 c8 48 89 45 d0 4c 8d 70 08 4c 89 f3 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 f7 e8 49 9d 3a ff 4d 8b 26 4d 39 fc 74 34
[ 46.250010][ T371] RSP: 0018:ffffc90000e778c0 EFLAGS: 00010202
[ 46.256111][ T371] RAX: dffffc0000000000 RBX: 0000001818000001 RCX: dffffc0000000000
[ 46.264187][ T371] RDX: ffffffff819b06e0 RSI: ffff88810992bdb8 RDI: ffff88810c4c9870
[ 46.272165][ T371] RBP: ffffc90000e77920 R08: dffffc0000000000 R09: ffff88810c4c9878
[ 46.280310][ T371] R10: ffffed1021899311 R11: 1ffff1102189930f R12: ffff88810d92bbe8
[ 46.288374][ T371] R13: 1ffff11021a19f33 R14: 000000c0c0000008 R15: ffff88810d0cf998
[ 46.296858][ T371] FS: 00007f75f8e3e6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 46.305957][ T371] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 46.312680][ T371] CR2: 000055559330f430 CR3: 000000011e048000 CR4: 00000000003506a0
[ 46.320694][ T371] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 46.328767][ T371] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 46.336771][ T371] Call Trace:
[ 46.340066][ T371]
[ 46.343008][ T371] ? clear_nonspinnable+0x60/0x60
[ 46.348385][ T371] ? anon_vma_interval_tree_iter_next+0x380/0x380
[ 46.355519][ T371] vma_interval_tree_insert_after+0x2a1/0x2b0
[ 46.361791][ T371] copy_mm+0xb20/0x13a0
[ 46.366136][ T371] ? copy_signal+0x600/0x600
[ 46.370824][ T371] ? __init_rwsem+0xfc/0x1d0
[ 46.375512][ T371] ? copy_signal+0x4cb/0x600
[ 46.380220][ T371] copy_process+0x115c/0x3210
[ 46.384914][ T371] ? __kasan_check_write+0x14/0x20
[ 46.390062][ T371] ? __pidfd_prepare+0x150/0x150
[ 46.395094][ T371] ? security_file_permission+0x83/0xa0
[ 46.400913][ T371] kernel_clone+0x23f/0x940
[ 46.405501][ T371] ? create_io_thread+0x130/0x130
[ 46.410634][ T371] ? __kasan_check_write+0x14/0x20
[ 46.415762][ T371] ? mutex_unlock+0x89/0x220
[ 46.420390][ T371] __x64_sys_clone+0x176/0x1d0
[ 46.425246][ T371] ? __kasan_check_write+0x14/0x20
[ 46.430466][ T371] ? __ia32_sys_vfork+0xf0/0xf0
[ 46.435428][ T371] ? fpregs_assert_state_consistent+0xb1/0xe0
[ 46.441512][ T371] x64_sys_call+0x41f/0x9a0
[ 46.446027][ T371] do_syscall_64+0x4c/0xa0
[ 46.450544][ T371] ? clear_bhb_loop+0x50/0xa0
[ 46.455342][ T371] ? clear_bhb_loop+0x50/0xa0
[ 46.460121][ T371] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 46.466329][ T371] RIP: 0033:0x7f75f92bb959
[ 46.470748][ T371] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 46.490537][ T371] RSP: 002b:00007f75f8e3e078 EFLAGS: 00000206 ORIG_RAX: 0000000000000038
[ 46.498956][ T371] RAX: ffffffffffffffda RBX: 00007f75f93daf80 RCX: 00007f75f92bb959
[ 46.507404][ T371] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000022002000
[ 46.515392][ T371] RBP: 00007f75f8e3e120 R08: 0000000000000000 R09: 0000000000000000
[ 46.523504][ T371] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000002
[ 46.531581][ T371] R13: 000000000000000b R14: 00007f75f93daf80 R15: 00007ffedd9fb158
[ 46.539771][ T371]
[ 46.543191][ T371] Modules linked in:
[ 46.548155][ T371] ---[ end trace e2d3787d1c71130d ]---
[ 46.553650][ T371] RIP: 0010:__rb_insert_augmented+0xa9/0x720
[ 46.559794][ T371] Code: 3a ff 49 8b 07 a8 01 0f 85 53 06 00 00 4c 89 65 c8 48 89 45 d0 4c 8d 70 08 4c 89 f3 48 c1 eb 03 48 b8 00 00 00 00 00 fc ff df <80> 3c 03 00 74 08 4c 89 f7 e8 49 9d 3a ff 4d 8b 26 4d 39 fc 74 34
[ 46.579587][ T371] RSP: 0018:ffffc90000e778c0 EFLAGS: 00010202
[ 46.585840][ T371] RAX: dffffc0000000000 RBX: 0000001818000001 RCX: dffffc0000000000
[ 46.593921][ T371] RDX: ffffffff819b06e0 RSI: ffff88810992bdb8 RDI: ffff88810c4c9870
[ 46.602236][ T371] RBP: ffffc90000e77920 R08: dffffc0000000000 R09: ffff88810c4c9878
[ 46.610249][ T371] R10: ffffed1021899311 R11: 1ffff1102189930f R12: ffff88810d92bbe8
[ 46.618432][ T371] R13: 1ffff11021a19f33 R14: 000000c0c0000008 R15: ffff88810d0cf998
[ 46.626444][ T371] FS: 00007f75f8e3e6c0(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 46.635383][ T371] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 46.642019][ T371] CR2: 000055559330f430 CR3: 000000011e048000 CR4: 00000000003506a0
[ 46.650143][ T371] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 46.658413][ T371] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 46.666747][ T371] Kernel panic - not syncing: Fatal exception
[ 46.673579][ T371] Kernel Offset: disabled
[ 46.678168][ T371] Rebooting in 86400 seconds..