Warning: Permanently added '[localhost]:46555' (ED25519) to the list of known hosts.
2024/08/14 09:45:58 ignoring optional flag "sandboxArg"="0"
2024/08/14 09:45:59 parsed 1 programs
[ 104.429409][ T39] audit: type=1400 audit(1723628761.913:142): avc: denied { unlink } for pid=5591 comm="syz-executor" name="swap-file" dev="sda1" ino=1930 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 106.028956][ T5591] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 109.730138][ T4762] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 109.739837][ T4762] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 109.747254][ T4762] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 109.767483][ T4762] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 109.773470][ T4762] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 109.776972][ T4762] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 110.312202][ T5694] chnl_net:caif_netlink_parms(): no params data found
[ 110.437484][ T5694] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.440777][ T5694] bridge0: port 1(bridge_slave_0) entered disabled state
[ 110.444008][ T5694] bridge_slave_0: entered allmulticast mode
[ 110.448203][ T5694] bridge_slave_0: entered promiscuous mode
[ 110.453343][ T5694] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.456703][ T5694] bridge0: port 2(bridge_slave_1) entered disabled state
[ 110.459932][ T5694] bridge_slave_1: entered allmulticast mode
[ 110.463941][ T5694] bridge_slave_1: entered promiscuous mode
[ 110.517515][ T5694] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 110.523996][ T5694] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 110.579399][ T5694] team0: Port device team_slave_0 added
[ 110.584358][ T5694] team0: Port device team_slave_1 added
[ 110.648736][ T5694] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 110.651818][ T5694] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 110.661528][ T5694] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 110.668074][ T5694] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 110.671181][ T5694] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 110.681196][ T5694] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 110.736477][ T5694] hsr_slave_0: entered promiscuous mode
[ 110.739330][ T5694] hsr_slave_1: entered promiscuous mode
[ 111.418524][ T5694] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 111.424724][ T5694] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 111.435928][ T5694] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 111.441850][ T5694] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 111.520699][ T5694] 8021q: adding VLAN 0 to HW filter on device bond0
[ 111.540834][ T5694] 8021q: adding VLAN 0 to HW filter on device team0
[ 111.549611][ T56] bridge0: port 1(bridge_slave_0) entered blocking state
[ 111.552828][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 111.570098][ T25] bridge0: port 2(bridge_slave_1) entered blocking state
[ 111.573155][ T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 111.624231][ T5694] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 111.754642][ T5694] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 111.790752][ T5694] veth0_vlan: entered promiscuous mode
[ 111.806127][ T5694] veth1_vlan: entered promiscuous mode
[ 111.832468][ T5694] veth0_macvtap: entered promiscuous mode
[ 111.839567][ T5694] veth1_macvtap: entered promiscuous mode
[ 111.858751][ T5694] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 111.869697][ T5694] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 111.877884][ T5694] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.881678][ T5694] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.885410][ T5694] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 111.889366][ T5694] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 112.014244][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.095267][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.172257][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.225854][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.230892][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.295796][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 112.323187][ T1215] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 112.329599][ T1215] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.788628][ T39] audit: type=1401 audit(1723628770.263:143): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2024/08/14 09:46:10 executed programs: 0
[ 112.839524][ T66] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 112.843873][ T66] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 112.855031][ T66] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 112.868556][ T66] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 112.872531][ T66] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 112.875792][ T66] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 113.060070][ T5786] chnl_net:caif_netlink_parms(): no params data found
[ 113.192260][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state
[ 113.195661][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state
[ 113.199332][ T5786] bridge_slave_0: entered allmulticast mode
[ 113.203858][ T5786] bridge_slave_0: entered promiscuous mode
[ 113.210352][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.213733][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state
[ 113.218803][ T5786] bridge_slave_1: entered allmulticast mode
[ 113.223219][ T5786] bridge_slave_1: entered promiscuous mode
[ 113.286415][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 113.292699][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 113.365214][ T5786] team0: Port device team_slave_0 added
[ 113.375539][ T5786] team0: Port device team_slave_1 added
[ 113.435541][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 113.439643][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 113.450430][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 113.457656][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 113.460909][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 113.472093][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 113.532370][ T5786] hsr_slave_0: entered promiscuous mode
[ 113.536970][ T5786] hsr_slave_1: entered promiscuous mode
[ 113.540413][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 113.543571][ T5786] Cannot create hsr debugfs directory
[ 114.916741][ T4762] Bluetooth: hci0: command tx timeout
[ 116.996901][ T4762] Bluetooth: hci0: command tx timeout
[ 117.319784][ T12] bridge_slave_1: left allmulticast mode
[ 117.322470][ T12] bridge_slave_1: left promiscuous mode
[ 117.324887][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 117.331155][ T12] bridge_slave_0: left allmulticast mode
[ 117.333564][ T12] bridge_slave_0: left promiscuous mode
[ 117.335780][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 117.665785][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 117.673113][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 117.680349][ T12] bond0 (unregistering): Released all slaves
[ 117.884295][ T12] hsr_slave_0: left promiscuous mode
[ 117.889114][ T12] hsr_slave_1: left promiscuous mode
[ 117.892823][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 117.896144][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 117.901499][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 117.904501][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 117.930510][ T12] veth1_macvtap: left promiscuous mode
[ 117.932992][ T12] veth0_macvtap: left promiscuous mode
[ 117.935424][ T12] veth1_vlan: left promiscuous mode
[ 117.937943][ T12] veth0_vlan: left promiscuous mode
[ 118.505098][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 118.562785][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 119.076529][ T4762] Bluetooth: hci0: command tx timeout
[ 119.259000][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 119.283096][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 119.291461][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 119.302537][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 119.376242][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0
[ 119.394759][ T5786] 8021q: adding VLAN 0 to HW filter on device team0
[ 119.417606][ T5395] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.421428][ T5395] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 119.448833][ T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.451558][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 119.473620][ T5786] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 119.479905][ T5786] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 119.713384][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 119.751054][ T5786] veth0_vlan: entered promiscuous mode
[ 119.761910][ T5786] veth1_vlan: entered promiscuous mode
[ 119.792264][ T5786] veth0_macvtap: entered promiscuous mode
[ 119.806127][ T5786] veth1_macvtap: entered promiscuous mode
[ 119.824564][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 119.837742][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 119.850780][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.854454][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.858385][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.863420][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.975989][ T1215] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.980191][ T1215] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 120.011961][ T1215] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 120.017816][ T1215] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2024/08/14 09:46:17 executed programs: 2
[ 120.088246][ T39] audit: type=1400 audit(1723628777.573:144): avc: denied { write } for pid=5894 comm="syz.0.15" name="/" dev="9p" ino=26219304 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 120.097689][ T39] audit: type=1400 audit(1723628777.573:145): avc: denied { add_name } for pid=5894 comm="syz.0.15" name="blkio.bfq.io_serviced" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[ 120.112152][ T39] audit: type=1400 audit(1723628777.573:146): avc: denied { create } for pid=5894 comm="syz.0.15" name="blkio.bfq.io_serviced" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1
[ 120.121885][ T39] audit: type=1400 audit(1723628777.573:147): avc: denied { associate } for pid=5894 comm="syz.0.15" name="blkio.bfq.io_serviced" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[ 120.131779][ T39] audit: type=1400 audit(1723628777.583:148): avc: denied { read append open } for pid=5894 comm="syz.0.15" path="/0/file0/blkio.bfq.io_serviced" dev="9p" ino=26219319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 120.142070][ T39] audit: type=1400 audit(1723628777.583:149): avc: denied { map } for pid=5894 comm="syz.0.15" path="/0/file0/blkio.bfq.io_serviced" dev="9p" ino=26219319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 120.144056][ T5895] fid: ffff88801e607e80, v9fs_dir_release
[ 120.152643][ T39] audit: type=1400 audit(1723628777.583:150): avc: denied { write } for pid=5894 comm="syz.0.15" path="/0/file0/blkio.bfq.io_serviced" dev="9p" ino=26219319 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1
[ 120.152691][ T39] audit: type=1400 audit(1723628777.593:151): avc: denied { read write } for pid=5894 comm="syz.0.15" name="vmci" dev="devtmpfs" ino=694 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 120.152734][ T39] audit: type=1400 audit(1723628777.593:152): avc: denied { open } for pid=5894 comm="syz.0.15" path="/dev/vmci" dev="devtmpfs" ino=694 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 120.152775][ T39] audit: type=1400 audit(1723628777.593:153): avc: denied { ioctl } for pid=5894 comm="syz.0.15" path="/dev/vmci" dev="devtmpfs" ino=694 ioctlcmd=0x7a7 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 120.261342][ T5897] fid: 0000000000000000, v9fs_file_open
[ 120.299503][ T5897] fid: ffff88801e607480, v9fs_dir_release
[ 120.401411][ T5899] fid: 0000000000000000, v9fs_file_open
[ 120.429124][ T5899] fid: ffff88802411d500, v9fs_dir_release
[ 120.481966][ T5901] fid: 0000000000000000, v9fs_file_open
[ 120.519426][ T5901] fid: ffff888022923380, v9fs_dir_release
[ 120.592182][ T5903] fid: 0000000000000000, v9fs_file_open
[ 120.639505][ T5903] fid: ffff88802411d980, v9fs_dir_release
[ 120.693290][ T5905] fid: 0000000000000000, v9fs_file_open
[ 120.741498][ T5905] fid: ffff888022923e00, v9fs_dir_release
[ 120.784227][ T5907] fid: 0000000000000000, v9fs_file_open
[ 120.816096][ T5907] fid: ffff888037a39c00, v9fs_dir_release
[ 120.847292][ T5909] fid: 0000000000000000, v9fs_file_open
[ 120.877538][ T5909] fid: ffff88801c3e5680, v9fs_dir_release
[ 120.927247][ T5911] fid: 0000000000000000, v9fs_file_open
[ 120.957349][ T5911] fid: ffff8880243c7b80, v9fs_dir_release
[ 121.007158][ T5913] fid: 0000000000000000, v9fs_file_open
[ 121.035494][ T5913] fid: ffff88802ff6d300, v9fs_dir_release
[ 121.077386][ T5915] fid: 0000000000000000, v9fs_file_open
[ 121.106093][ T5915] fid: ffff88802ff6d600, v9fs_dir_release
[ 121.162929][ T4762] Bluetooth: hci0: command tx timeout
[ 121.171114][ T5917] fid: 0000000000000000, v9fs_file_open
[ 121.195791][ T5917] fid: ffff8880205d2c00, v9fs_dir_release
[ 121.241271][ T5919] fid: 0000000000000000, v9fs_file_open
[ 121.277120][ T5919] fid: ffff88801f0f3600, v9fs_dir_release
[ 121.305316][ T5921] fid: 0000000000000000, v9fs_file_open
[ 121.332989][ T5921] fid: ffff88802c002b00, v9fs_dir_release
[ 121.361966][ T5923] fid: 0000000000000000, v9fs_file_open
[ 121.390191][ T5923] fid: ffff88802c002900, v9fs_dir_release
[ 121.418477][ T5925] fid: 0000000000000000, v9fs_file_open
[ 121.452213][ T5925] fid: ffff88802c002e00, v9fs_dir_release
[ 121.484313][ T5927] fid: 0000000000000000, v9fs_file_open
[ 121.508600][ T5927] fid: ffff88802c002580, v9fs_dir_release
[ 121.542550][ T5929] fid: 0000000000000000, v9fs_file_open
[ 121.566201][ T5928] fid: ffff88802478f900, v9fs_dir_release
[ 121.610309][ T5931] fid: 0000000000000000, v9fs_file_open
[ 121.630651][ T5931] fid: ffff8880243c7680, v9fs_dir_release
[ 121.655498][ T5933] fid: 0000000000000000, v9fs_file_open
[ 121.680644][ T5933] fid: ffff888037a39680, v9fs_dir_release
[ 121.735521][ T5935] fid: 0000000000000000, v9fs_file_open
[ 121.762703][ T5935] fid: ffff88802ad64b00, v9fs_dir_release
[ 121.822647][ T5937] fid: 0000000000000000, v9fs_file_open
[ 121.849928][ T5937] fid: ffff88802a445000, v9fs_dir_release
[ 121.883877][ T5939] fid: 0000000000000000, v9fs_file_open
[ 121.932351][ T5939] fid: ffff88802a445380, v9fs_dir_release
[ 121.959569][ T5941] fid: 0000000000000000, v9fs_file_open
[ 121.990780][ T5941] fid: ffff88802b004700, v9fs_dir_release
[ 122.027999][ T5943] fid: 0000000000000000, v9fs_file_open
[ 122.057885][ T5943] fid: ffff888029352b00, v9fs_dir_release
[ 122.136015][ T5945] fid: 0000000000000000, v9fs_file_open
[ 122.159495][ T5945] fid: ffff888029352e80, v9fs_dir_release
[ 122.191602][ T5947] fid: 0000000000000000, v9fs_file_open
[ 122.222968][ T5947] fid: ffff888026822d80, v9fs_dir_release
[ 122.290008][ T5949] fid: 0000000000000000, v9fs_file_open
[ 122.320441][ T5949] fid: ffff88801ef88780, v9fs_dir_release
[ 122.354290][ T5951] fid: 0000000000000000, v9fs_file_open
[ 122.379327][ T5951] fid: ffff88801ef88000, v9fs_dir_release
[ 122.415754][ T5953] fid: 0000000000000000, v9fs_file_open
[ 122.440897][ T5953] fid: ffff88801ef88300, v9fs_dir_release
[ 122.471145][ T5955] fid: 0000000000000000, v9fs_file_open
[ 122.502053][ T5954] fid: ffff88801ef88800, v9fs_dir_release
[ 122.509689][ T1215] ==================================================================
[ 122.513250][ T1215] BUG: KASAN: slab-use-after-free in v9fs_fid_find_inode+0x2e9/0x320
[ 122.517564][ T1215] Read of size 4 at addr ffff88801ef88810 by task kworker/u32:10/1215
[ 122.536020][ T1215]
[ 122.537137][ T1215] CPU: 1 UID: 0 PID: 1215 Comm: kworker/u32:10 Not tainted 6.11.0-rc1-syzkaller-00154-gc0ecd6388360-dirty #0
[ 122.542271][ T1215] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 122.546399][ T1215] Workqueue: writeback wb_workfn (flush-9p-31)
[ 122.548754][ T1215] Call Trace:
[ 122.550078][ T1215]
[ 122.551305][ T1215] dump_stack_lvl+0x116/0x1f0
[ 122.553329][ T1215] print_report+0xc3/0x620
[ 122.555297][ T1215] ? __virt_addr_valid+0x5e/0x590
[ 122.557505][ T1215] ? __phys_addr+0xc6/0x150
[ 122.559461][ T1215] kasan_report+0xd9/0x110
[ 122.561392][ T1215] ? v9fs_fid_find_inode+0x2e9/0x320
[ 122.563661][ T1215] ? v9fs_fid_find_inode+0x2e9/0x320
[ 122.565995][ T1215] v9fs_fid_find_inode+0x2e9/0x320
[ 122.568053][ T1215] ? __pfx_v9fs_fid_find_inode+0x10/0x10
[ 122.570153][ T1215] ? lockdep_init_map_type+0x16d/0x7d0
[ 122.572230][ T1215] v9fs_begin_writeback+0x49/0x280
[ 122.574173][ T1215] netfs_writepages+0x656/0xde0
[ 122.576021][ T1215] ? __pfx_netfs_writepages+0x10/0x10
[ 122.578016][ T1215] ? __pfx_netfs_writepages+0x10/0x10
[ 122.580223][ T1215] do_writepages+0x1a3/0x7f0
[ 122.582151][ T1215] ? __pfx_do_writepages+0x10/0x10
[ 122.584319][ T1215] ? reacquire_held_locks+0x20b/0x4c0
[ 122.586445][ T1215] ? writeback_sb_inodes+0x3b5/0x1150
[ 122.588714][ T1215] ? find_held_lock+0x2d/0x110
[ 122.590659][ T1215] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 122.593214][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.595386][ T1215] __writeback_single_inode+0x163/0xf90
[ 122.597752][ T1215] ? __pfx___writeback_single_inode+0x10/0x10
[ 122.600236][ T1215] ? _raw_spin_unlock+0x28/0x50
[ 122.602178][ T1215] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 122.604710][ T1215] writeback_sb_inodes+0x611/0x1150
[ 122.606948][ T1215] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 122.609281][ T1215] ? find_held_lock+0x2d/0x110
[ 122.611181][ T1215] ? do_raw_spin_lock+0x12d/0x2c0
[ 122.613146][ T1215] ? rcu_is_watching+0x12/0xc0
[ 122.614991][ T1215] ? queue_io+0x3f8/0x520
[ 122.616769][ T1215] wb_writeback+0x199/0xb50
[ 122.618502][ T1215] ? __pfx_wb_writeback+0x10/0x10
[ 122.620363][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.622168][ T1215] ? mark_held_locks+0x9f/0xe0
[ 122.624316][ T1215] wb_workfn+0x28d/0xf40
[ 122.626160][ T1215] ? __pfx_wb_workfn+0x10/0x10
[ 122.628217][ T1215] ? __pfx_lock_acquire+0x10/0x10
[ 122.630379][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.632591][ T1215] process_one_work+0x9c5/0x1b40
[ 122.634476][ T1215] ? __pfx_lock_acquire+0x10/0x10
[ 122.636540][ T1215] ? __pfx_process_one_work+0x10/0x10
[ 122.638757][ T1215] ? assign_work+0x1a0/0x250
[ 122.640713][ T1215] worker_thread+0x6c8/0xf20
[ 122.642768][ T1215] ? __kthread_parkme+0x148/0x220
[ 122.645022][ T1215] ? __pfx_worker_thread+0x10/0x10
[ 122.647316][ T1215] kthread+0x2c1/0x3a0
[ 122.649130][ T1215] ? _raw_spin_unlock_irq+0x23/0x50
[ 122.651414][ T1215] ? __pfx_kthread+0x10/0x10
[ 122.653367][ T1215] ret_from_fork+0x45/0x80
[ 122.655284][ T1215] ? __pfx_kthread+0x10/0x10
[ 122.657213][ T1215] ret_from_fork_asm+0x1a/0x30
[ 122.659272][ T1215]
[ 122.660573][ T1215]
[ 122.661589][ T1215] Allocated by task 5955:
[ 122.663312][ T1215] kasan_save_stack+0x33/0x60
[ 122.665367][ T1215] kasan_save_track+0x14/0x30
[ 122.667392][ T1215] __kasan_kmalloc+0xaa/0xb0
[ 122.669376][ T1215] p9_fid_create+0x45/0x470
[ 122.671133][ T1215] p9_client_walk+0xc6/0x550
[ 122.672905][ T1215] v9fs_file_open+0x63d/0xbb0
[ 122.674703][ T1215] do_dentry_open+0x91f/0x15f0
[ 122.676532][ T1215] vfs_open+0x82/0x3f0
[ 122.678175][ T1215] path_openat+0x2141/0x2d20
[ 122.679986][ T1215] do_filp_open+0x1dc/0x430
[ 122.681894][ T1215] do_sys_openat2+0x17a/0x1e0
[ 122.684000][ T1215] __x64_sys_openat+0x175/0x210
[ 122.686061][ T1215] do_syscall_64+0xcd/0x250
[ 122.687978][ T1215] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 122.690445][ T1215]
[ 122.691470][ T1215] Freed by task 1215:
[ 122.693160][ T1215] kasan_save_stack+0x33/0x60
[ 122.695094][ T1215] kasan_save_track+0x14/0x30
[ 122.697017][ T1215] kasan_save_free_info+0x3b/0x60
[ 122.699081][ T1215] poison_slab_object+0xf7/0x160
[ 122.701221][ T1215] __kasan_slab_free+0x32/0x50
[ 122.702847][ T1215] kfree+0x12a/0x3b0
[ 122.704369][ T1215] p9_client_clunk+0x12a/0x170
[ 122.706279][ T1215] v9fs_free_request+0xdc/0x110
[ 122.708127][ T1215] netfs_free_request+0x257/0x720
[ 122.710018][ T1215] netfs_put_request+0x19b/0x1f0
[ 122.712163][ T1215] netfs_write_collection_worker+0x1a1d/0x5a10
[ 122.714722][ T1215] process_one_work+0x9c5/0x1b40
[ 122.716906][ T1215] worker_thread+0x6c8/0xf20
[ 122.718902][ T1215] kthread+0x2c1/0x3a0
[ 122.720680][ T1215] ret_from_fork+0x45/0x80
[ 122.722434][ T1215] ret_from_fork_asm+0x1a/0x30
[ 122.724542][ T1215]
[ 122.725598][ T1215] The buggy address belongs to the object at ffff88801ef88800
[ 122.725598][ T1215] which belongs to the cache kmalloc-96 of size 96
[ 122.731428][ T1215] The buggy address is located 16 bytes inside of
[ 122.731428][ T1215] freed 96-byte region [ffff88801ef88800, ffff88801ef88860)
[ 122.736867][ T1215]
[ 122.737904][ T1215] The buggy address belongs to the physical page:
[ 122.740737][ T1215] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1ef88
[ 122.744613][ T1215] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 122.747858][ T1215] page_type: 0xfdffffff(slab)
[ 122.749918][ T1215] raw: 00fff00000000000 ffff888015842280 0000000000000000 dead000000000001
[ 122.753662][ T1215] raw: 0000000000000000 0000000000200020 00000001fdffffff 0000000000000000
[ 122.757310][ T1215] page dumped because: kasan: bad access detected
[ 122.759731][ T1215] page_owner tracks the page as allocated
[ 122.761873][ T1215] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 4829, tgid 4829 (udevd), ts 32699297341, free_ts 30639630227
[ 122.769014][ T1215] post_alloc_hook+0x2d1/0x350
[ 122.771122][ T1215] get_page_from_freelist+0x1351/0x2e50
[ 122.773510][ T1215] __alloc_pages_noprof+0x22b/0x2460
[ 122.775790][ T1215] alloc_slab_page+0x4e/0xf0
[ 122.777780][ T1215] new_slab+0x84/0x260
[ 122.779595][ T1215] ___slab_alloc+0xdac/0x1870
[ 122.781748][ T1215] __slab_alloc.constprop.0+0x56/0xb0
[ 122.784077][ T1215] __kmalloc_noprof+0x367/0x400
[ 122.786174][ T1215] tomoyo_encode2+0x100/0x3e0
[ 122.788208][ T1215] tomoyo_encode+0x29/0x50
[ 122.790136][ T1215] tomoyo_realpath_from_path+0x19d/0x720
[ 122.792591][ T1215] tomoyo_path_perm+0x273/0x450
[ 122.794711][ T1215] security_inode_getattr+0xf4/0x160
[ 122.796974][ T1215] vfs_fstat+0x53/0xd0
[ 122.798743][ T1215] vfs_fstatat+0x146/0x160
[ 122.800644][ T1215] __do_sys_newfstatat+0xa2/0x130
[ 122.802801][ T1215] page last free pid 4837 tgid 4837 stack trace:
[ 122.805498][ T1215] free_unref_page+0x64a/0xe40
[ 122.807540][ T1215] __put_partials+0x14c/0x170
[ 122.809561][ T1215] qlist_free_all+0x4e/0x140
[ 122.811574][ T1215] kasan_quarantine_reduce+0x192/0x1e0
[ 122.813865][ T1215] __kasan_slab_alloc+0x69/0x90
[ 122.815963][ T1215] __kmalloc_noprof+0x199/0x400
[ 122.818025][ T1215] tomoyo_realpath_from_path+0xb9/0x720
[ 122.820407][ T1215] tomoyo_check_open_permission+0x2a7/0x3b0
[ 122.822643][ T1215] tomoyo_file_open+0x71/0x90
[ 122.824702][ T1215] security_file_open+0x78/0x8b0
[ 122.826821][ T1215] do_dentry_open+0x5c7/0x15f0
[ 122.828868][ T1215] vfs_open+0x82/0x3f0
[ 122.830599][ T1215] path_openat+0x2141/0x2d20
[ 122.832396][ T1215] do_filp_open+0x1dc/0x430
[ 122.834121][ T1215] do_sys_openat2+0x17a/0x1e0
[ 122.835921][ T1215] __x64_sys_openat+0x175/0x210
[ 122.837777][ T1215]
[ 122.838752][ T1215] Memory state around the buggy address:
[ 122.841060][ T1215] ffff88801ef88700: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 122.844077][ T1215] ffff88801ef88780: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 122.847111][ T1215] >ffff88801ef88800: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 122.850498][ T1215] ^
[ 122.852282][ T1215] ffff88801ef88880: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 122.855516][ T1215] ffff88801ef88900: fa fb fb fb fb fb fb fb fb fb fb fb fc fc fc fc
[ 122.858927][ T1215] ==================================================================
[ 122.862834][ T1215] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 122.865609][ T1215] CPU: 1 UID: 0 PID: 1215 Comm: kworker/u32:10 Not tainted 6.11.0-rc1-syzkaller-00154-gc0ecd6388360-dirty #0
[ 122.870404][ T1215] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 122.874981][ T1215] Workqueue: writeback wb_workfn (flush-9p-31)
[ 122.877673][ T1215] Call Trace:
[ 122.879135][ T1215]
[ 122.880431][ T1215] dump_stack_lvl+0x3d/0x1f0
[ 122.882424][ T1215] panic+0x6f5/0x7a0
[ 122.884286][ T1215] ? __pfx_panic+0x10/0x10
[ 122.886240][ T1215] ? check_panic_on_warn+0x1f/0xb0
[ 122.888446][ T1215] check_panic_on_warn+0xab/0xb0
[ 122.890747][ T1215] end_report+0x117/0x180
[ 122.892614][ T1215] kasan_report+0xe9/0x110
[ 122.894535][ T1215] ? v9fs_fid_find_inode+0x2e9/0x320
[ 122.896803][ T1215] ? v9fs_fid_find_inode+0x2e9/0x320
[ 122.898843][ T1215] v9fs_fid_find_inode+0x2e9/0x320
[ 122.900803][ T1215] ? __pfx_v9fs_fid_find_inode+0x10/0x10
[ 122.902948][ T1215] ? lockdep_init_map_type+0x16d/0x7d0
[ 122.905062][ T1215] v9fs_begin_writeback+0x49/0x280
[ 122.907168][ T1215] netfs_writepages+0x656/0xde0
[ 122.909271][ T1215] ? __pfx_netfs_writepages+0x10/0x10
[ 122.911581][ T1215] ? __pfx_netfs_writepages+0x10/0x10
[ 122.913891][ T1215] do_writepages+0x1a3/0x7f0
[ 122.915890][ T1215] ? __pfx_do_writepages+0x10/0x10
[ 122.918078][ T1215] ? reacquire_held_locks+0x20b/0x4c0
[ 122.920365][ T1215] ? writeback_sb_inodes+0x3b5/0x1150
[ 122.922717][ T1215] ? find_held_lock+0x2d/0x110
[ 122.924758][ T1215] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 122.927050][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.929237][ T1215] __writeback_single_inode+0x163/0xf90
[ 122.931662][ T1215] ? __pfx___writeback_single_inode+0x10/0x10
[ 122.934264][ T1215] ? _raw_spin_unlock+0x28/0x50
[ 122.936369][ T1215] ? wbc_attach_and_unlock_inode+0x597/0x940
[ 122.938925][ T1215] writeback_sb_inodes+0x611/0x1150
[ 122.940895][ T1215] ? __pfx_writeback_sb_inodes+0x10/0x10
[ 122.943008][ T1215] ? find_held_lock+0x2d/0x110
[ 122.944834][ T1215] ? do_raw_spin_lock+0x12d/0x2c0
[ 122.946809][ T1215] ? rcu_is_watching+0x12/0xc0
[ 122.948892][ T1215] ? queue_io+0x3f8/0x520
[ 122.950780][ T1215] wb_writeback+0x199/0xb50
[ 122.952754][ T1215] ? __pfx_wb_writeback+0x10/0x10
[ 122.954943][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.957128][ T1215] ? mark_held_locks+0x9f/0xe0
[ 122.959190][ T1215] wb_workfn+0x28d/0xf40
[ 122.961028][ T1215] ? __pfx_wb_workfn+0x10/0x10
[ 122.962921][ T1215] ? __pfx_lock_acquire+0x10/0x10
[ 122.965000][ T1215] ? __pfx_lock_release+0x10/0x10
[ 122.967170][ T1215] process_one_work+0x9c5/0x1b40
[ 122.969287][ T1215] ? __pfx_lock_acquire+0x10/0x10
[ 122.971436][ T1215] ? __pfx_process_one_work+0x10/0x10
[ 122.973749][ T1215] ? assign_work+0x1a0/0x250
[ 122.975743][ T1215] worker_thread+0x6c8/0xf20
[ 122.977737][ T1215] ? __kthread_parkme+0x148/0x220
[ 122.979878][ T1215] ? __pfx_worker_thread+0x10/0x10
[ 122.982100][ T1215] kthread+0x2c1/0x3a0
[ 122.983822][ T1215] ? _raw_spin_unlock_irq+0x23/0x50
[ 122.986003][ T1215] ? __pfx_kthread+0x10/0x10
[ 122.987970][ T1215] ret_from_fork+0x45/0x80
[ 122.989897][ T1215] ? __pfx_kthread+0x10/0x10
[ 122.991863][ T1215] ret_from_fork_asm+0x1a/0x30
[ 122.993705][ T1215]
[ 122.995520][ T1215] Kernel Offset: disabled
[ 122.997165][ T1215] Rebooting in 86400 seconds..