Warning: Permanently added '[localhost]:44848' (ED25519) to the list of known hosts.
1970/01/01 00:03:59 ignoring optional flag "sandboxArg"="0"
1970/01/01 00:04:01 parsed 1 programs
1970/01/01 00:04:02 executed programs: 0
[  245.673238][ T3410] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  245.695686][ T3410] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  247.624012][ T3410] hsr_slave_0: entered promiscuous mode
[  247.666608][ T3410] hsr_slave_1: entered promiscuous mode
[  249.261650][ T3410] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  249.300592][ T3410] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  249.335644][ T3410] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  249.372125][ T3410] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  250.672750][ T3410] 8021q: adding VLAN 0 to HW filter on device bond0
[  255.407657][ T3410] veth0_vlan: entered promiscuous mode
[  255.471923][ T3410] veth1_vlan: entered promiscuous mode
[  255.708205][ T3410] veth0_macvtap: entered promiscuous mode
[  255.757453][ T3410] veth1_macvtap: entered promiscuous mode
[  255.993615][ T3410] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  255.997102][ T3410] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  255.998180][ T3410] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  255.999181][ T3410] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  256.977430][    C0] ==================================================================
[  256.985148][    C0] BUG: KASAN: invalid-access in __packet_get_status+0xb8/0x138
[  256.987233][    C0] Read at addr fcff00000b280000 by task syz-executor.0/3520
[  256.988133][    C0] Pointer tag: [fc], memory tag: [f0]
[  256.989008][    C0] 
[  256.990340][    C0] CPU: 0 PID: 3520 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-g0a7b0acecea2 #0
[  256.991919][    C0] Hardware name: linux,dummy-virt (DT)
[  256.992815][    C0] Call trace:
[  256.993709][    C0]  dump_backtrace+0x94/0xec
[  256.995064][    C0]  show_stack+0x18/0x24
[  256.995689][    C0]  dump_stack_lvl+0x78/0x90
[  256.996359][    C0]  print_report+0x108/0x618
[  256.997077][    C0]  kasan_report+0x88/0xac
[  256.997736][    C0]  __do_kernel_fault+0x1a0/0x1dc
[  256.998310][    C0]  do_tag_check_fault+0x78/0x8c
[  256.998919][    C0]  do_mem_abort+0x44/0x94
[  256.999634][    C0]  el1_abort+0x40/0x60
[  257.000186][    C0]  el1h_64_sync_handler+0xd8/0xe4
[  257.000895][    C0]  el1h_64_sync+0x64/0x68
[  257.001550][    C0]  __packet_get_status+0xb8/0x138
[  257.002201][    C0]  tpacket_rcv+0x2b0/0xbd0
[  257.002699][    C0]  dev_queue_xmit_nit+0x27c/0x2c0
[  257.003237][    C0]  dev_hard_start_xmit+0x7c/0x118
[  257.003839][    C0]  __dev_queue_xmit+0x1c0/0xe5c
[  257.004554][    C0]  ip6_finish_output2+0x3ac/0x914
[  257.005218][    C0]  ip6_finish_output+0x228/0x344
[  257.005754][    C0]  ip6_output+0x74/0x1cc
[  257.006295][    C0]  NF_HOOK.constprop.0+0x50/0xe0
[  257.006903][    C0]  ndisc_send_skb+0x1f8/0x3d8
[  257.007521][    C0]  ndisc_send_rs+0x5c/0x1b0
[  257.008096][    C0]  addrconf_rs_timer+0x160/0x2bc
[  257.008668][    C0]  call_timer_fn.constprop.0+0x24/0x80
[  257.009306][    C0]  __run_timers+0x218/0x254
[  257.009854][    C0]  run_timer_softirq+0x8c/0xfc
[  257.010397][    C0]  __do_softirq+0x10c/0x264
[  257.011097][    C0]  ____do_softirq+0x10/0x1c
[  257.011656][    C0]  call_on_irq_stack+0x24/0x4c
[  257.012236][    C0]  do_softirq_own_stack+0x1c/0x28
[  257.012819][    C0]  irq_exit_rcu+0xb8/0xd4
[  257.013432][    C0]  el1_interrupt+0x38/0x64
[  257.013928][    C0]  el1h_64_irq_handler+0x18/0x24
[  257.014659][    C0]  el1h_64_irq+0x64/0x68
[  257.015343][    C0]  caches_clean_inval_pou+0x68/0x84
[  257.015970][    C0]  __sync_icache_dcache+0xc4/0x114
[  257.016518][    C0]  insert_page_into_pte_locked+0x1cc/0x1fc
[  257.017157][    C0]  vm_insert_page+0x11c/0x198
[  257.017680][    C0]  packet_mmap+0xec/0x200
[  257.018264][    C0]  sock_mmap+0x20/0x2c
[  257.018771][    C0]  mmap_region+0x218/0x8cc
[  257.019334][    C0]  do_mmap+0x374/0x4b8
[  257.019855][    C0]  vm_mmap_pgoff+0xf0/0x134
[  257.020497][    C0]  ksys_mmap_pgoff+0x184/0x204
[  257.021107][    C0]  __arm64_sys_mmap+0x30/0x44
[  257.021683][    C0]  invoke_syscall+0x48/0x114
[  257.022257][    C0]  el0_svc_common.constprop.0+0x40/0xe0
[  257.022846][    C0]  do_el0_svc+0x1c/0x28
[  257.023370][    C0]  el0_svc+0x34/0xf8
[  257.023828][    C0]  el0t_64_sync_handler+0x100/0x12c
[  257.024495][    C0]  el0t_64_sync+0x19c/0x1a0
[  257.025354][    C0] 
[  257.025917][    C0] The buggy address belongs to the physical page:
[  257.026752][    C0] page: refcount:9 mapcount:1 mapping:0000000000000000 index:0x0 pfn:0x4b280
[  257.027594][    C0] head: order:3 entire_mapcount:0 nr_pages_mapped:8 pincount:0
[  257.028358][    C0] flags: 0x1ffe06006000040(head|arch_2|arch_3|node=0|zone=0|lastcpupid=0xfff|kasantag=0x3)
[  257.029748][    C0] page_type: 0x0()
[  257.030857][    C0] raw: 01ffe06006000040 0000000000000000 dead000000000122 0000000000000000
[  257.031618][    C0] raw: 0000000000000000 0000000000000000 0000000900000000 0000000000000000
[  257.032413][    C0] head: 01ffe06006000040 0000000000000000 dead000000000122 0000000000000000
[  257.033157][    C0] head: 0000000000000000 0000000000000000 0000000900000000 0000000000000000
[  257.033879][    C0] head: 01ffe06006000003 fffffdffc02ca001 dead000000000122 00000008ffffffff
[  257.034742][    C0] head: 0000000800000000 0000000000000000 0000000000000000 0000000000000000
[  257.035540][    C0] page dumped because: kasan: bad access detected
[  257.036115][    C0] 
[  257.036502][    C0] Memory state around the buggy address:
[  257.037263][    C0]  ffff00000b27fe00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  257.037942][    C0]  ffff00000b27ff00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe
[  257.038595][    C0] >ffff00000b280000: f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0
[  257.039246][    C0]                    ^
[  257.039950][    C0]  ffff00000b280100: f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0
[  257.040628][    C0]  ffff00000b280200: f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0 f0
[  257.041352][    C0] ==================================================================
[  257.042788][    C0] Disabling lock debugging due to kernel taint
1970/01/01 00:04:17 executed programs: 1
1970/01/01 00:04:23 executed programs: 8
1970/01/01 00:04:28 executed programs: 16
1970/01/01 00:04:33 executed programs: 25
1970/01/01 00:04:38 executed programs: 33
1970/01/01 00:04:44 executed programs: 42