Warning: Permanently added '10.128.1.241' (ED25519) to the list of known hosts.
2024/07/22 16:39:16 ignoring optional flag "sandboxArg"="0"
2024/07/22 16:39:16 parsed 1 programs
[ 100.157596][ T5514] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 103.214167][ T5181] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 103.223699][ T5181] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 103.232341][ T5181] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 103.240917][ T5181] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 103.250935][ T5181] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 103.258974][ T5181] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 103.544455][ T53] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.552651][ T53] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.591777][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.600006][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.007349][ T5586] chnl_net:caif_netlink_parms(): no params data found
[ 105.057969][ T5586] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.066381][ T5586] bridge0: port 1(bridge_slave_0) entered disabled state
[ 105.074222][ T5586] bridge_slave_0: entered allmulticast mode
[ 105.081552][ T5586] bridge_slave_0: entered promiscuous mode
[ 105.089338][ T5586] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.096478][ T5586] bridge0: port 2(bridge_slave_1) entered disabled state
[ 105.103705][ T5586] bridge_slave_1: entered allmulticast mode
[ 105.111001][ T5586] bridge_slave_1: entered promiscuous mode
[ 105.155782][ T5586] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 105.167016][ T5586] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 105.194288][ T5586] team0: Port device team_slave_0 added
[ 105.203999][ T5586] team0: Port device team_slave_1 added
[ 105.230708][ T5586] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 105.237678][ T5586] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 105.263850][ T5586] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 105.276856][ T5586] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 105.283885][ T5586] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 105.310777][ T5586] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 105.351633][ T5586] hsr_slave_0: entered promiscuous mode
[ 105.357960][ T5586] hsr_slave_1: entered promiscuous mode
[ 106.024223][ T5586] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 106.041436][ T5586] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 106.052306][ T5586] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 106.062851][ T5586] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 106.171986][ T5586] 8021q: adding VLAN 0 to HW filter on device bond0
[ 106.205584][ T5586] 8021q: adding VLAN 0 to HW filter on device team0
[ 106.219941][ T1162] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.227101][ T1162] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 106.255562][ T1162] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.262769][ T1162] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 106.475144][ T5586] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 106.533064][ T5586] veth0_vlan: entered promiscuous mode
[ 106.547973][ T5586] veth1_vlan: entered promiscuous mode
[ 106.592776][ T5586] veth0_macvtap: entered promiscuous mode
[ 106.606299][ T5586] veth1_macvtap: entered promiscuous mode
[ 106.635294][ T5586] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 106.657456][ T5586] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 106.674581][ T5586] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.684921][ T5586] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.696430][ T5586] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 106.705746][ T5586] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
2024/07/22 16:39:27 executed programs: 0
[ 106.935075][ T4499] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 106.938687][ T2477] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 106.943916][ T4499] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 106.965315][ T4499] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 106.980166][ T4499] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 106.987961][ T4499] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 106.996500][ T4499] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 107.028074][ T2477] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.094324][ T2477] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.177364][ T2477] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 107.318383][ T5658] chnl_net:caif_netlink_parms(): no params data found
[ 107.417028][ T5658] bridge0: port 1(bridge_slave_0) entered blocking state
[ 107.424998][ T5658] bridge0: port 1(bridge_slave_0) entered disabled state
[ 107.433020][ T5658] bridge_slave_0: entered allmulticast mode
[ 107.440461][ T5658] bridge_slave_0: entered promiscuous mode
[ 107.453099][ T5658] bridge0: port 2(bridge_slave_1) entered blocking state
[ 107.460662][ T5658] bridge0: port 2(bridge_slave_1) entered disabled state
[ 107.468167][ T5658] bridge_slave_1: entered allmulticast mode
[ 107.480445][ T5658] bridge_slave_1: entered promiscuous mode
[ 107.520006][ T5658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 107.534433][ T5658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 107.591658][ T5658] team0: Port device team_slave_0 added
[ 107.604008][ T5658] team0: Port device team_slave_1 added
[ 107.646310][ T5658] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 107.653378][ T5658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 107.684119][ T5658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 107.697314][ T5658] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 107.707306][ T5658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 107.736074][ T5658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 107.793785][ T5658] hsr_slave_0: entered promiscuous mode
[ 107.800492][ T5658] hsr_slave_1: entered promiscuous mode
[ 107.806952][ T5658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 107.818349][ T5658] Cannot create hsr debugfs directory
[ 109.059172][ T4499] Bluetooth: hci0: command tx timeout
[ 111.149332][ T4499] Bluetooth: hci0: command tx timeout
[ 111.532878][ T2477] bridge_slave_1: left allmulticast mode
[ 111.538586][ T2477] bridge_slave_1: left promiscuous mode
[ 111.546475][ T2477] bridge0: port 2(bridge_slave_1) entered disabled state
[ 111.556872][ T2477] bridge_slave_0: left allmulticast mode
[ 111.562957][ T2477] bridge_slave_0: left promiscuous mode
[ 111.577485][ T2477] bridge0: port 1(bridge_slave_0) entered disabled state
[ 111.868374][ T2477] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 111.883309][ T2477] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 111.895155][ T2477] bond0 (unregistering): Released all slaves
[ 112.019975][ T2477] hsr_slave_0: left promiscuous mode
[ 112.026120][ T2477] hsr_slave_1: left promiscuous mode
[ 112.037359][ T2477] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 112.045346][ T2477] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 112.059596][ T2477] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 112.067709][ T2477] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 112.088799][ T2477] veth1_macvtap: left promiscuous mode
[ 112.096627][ T2477] veth0_macvtap: left promiscuous mode
[ 112.104467][ T2477] veth1_vlan: left promiscuous mode
[ 112.112099][ T2477] veth0_vlan: left promiscuous mode
[ 112.499110][ T2477] team0 (unregistering): Port device team_slave_1 removed
[ 112.524297][ T2477] team0 (unregistering): Port device team_slave_0 removed
[ 112.837792][ T5658] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 112.856730][ T5658] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 112.867841][ T5658] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 112.885046][ T5658] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 112.955570][ T5658] 8021q: adding VLAN 0 to HW filter on device bond0
[ 112.976047][ T5658] 8021q: adding VLAN 0 to HW filter on device team0
[ 112.990831][ T5150] bridge0: port 1(bridge_slave_0) entered blocking state
[ 112.997972][ T5150] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 113.023361][ T1162] bridge0: port 2(bridge_slave_1) entered blocking state
[ 113.030536][ T1162] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 113.058371][ T5658] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 113.069576][ T5658] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 113.173166][ T5658] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 113.206830][ T5658] veth0_vlan: entered promiscuous mode
[ 113.217366][ T5658] veth1_vlan: entered promiscuous mode
[ 113.219018][ T4499] Bluetooth: hci0: command tx timeout
[ 113.246433][ T5658] veth0_macvtap: entered promiscuous mode
[ 113.255635][ T5658] veth1_macvtap: entered promiscuous mode
[ 113.272139][ T5658] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 113.285973][ T5658] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 113.297102][ T5658] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.306422][ T5658] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.315452][ T5658] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.324389][ T5658] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 113.377255][ T2477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 113.393748][ T2477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 113.416731][ T53] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
2024/07/22 16:39:34 executed programs: 2
[ 113.424935][ T53] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 115.299041][ T4499] Bluetooth: hci0: command tx timeout
2024/07/22 16:39:39 executed programs: 12
2024/07/22 16:39:44 executed programs: 22
2024/07/22 16:39:49 executed programs: 32
[ 133.221547][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.228017][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
2024/07/22 16:39:54 executed programs: 42
2024/07/22 16:40:00 executed programs: 52
2024/07/22 16:40:05 executed programs: 62
2024/07/22 16:40:10 executed programs: 72
2024/07/22 16:40:15 executed programs: 82
2024/07/22 16:40:21 executed programs: 92
2024/07/22 16:40:26 executed programs: 102
2024/07/22 16:40:31 executed programs: 112
2024/07/22 16:40:36 executed programs: 122
2024/07/22 16:40:42 executed programs: 132
2024/07/22 16:40:47 executed programs: 142
2024/07/22 16:40:52 executed programs: 152
[ 194.660759][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.667125][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
2024/07/22 16:40:57 executed programs: 162
2024/07/22 16:41:02 executed programs: 172
2024/07/22 16:41:08 executed programs: 182
2024/07/22 16:41:13 executed programs: 192
2024/07/22 16:41:18 executed programs: 202
2024/07/22 16:41:23 executed programs: 212
2024/07/22 16:41:29 executed programs: 222
[ 232.581065][ T5181] Bluetooth: hci0: command 0x0406 tx timeout
2024/07/22 16:41:34 executed programs: 232
2024/07/22 16:41:39 executed programs: 242
2024/07/22 16:41:44 executed programs: 252
2024/07/22 16:41:50 executed programs: 262
2024/07/22 16:41:55 executed programs: 272
[ 256.102290][ T1246] ieee802154 phy0 wpan0: encryption failed: -22
[ 256.108859][ T1246] ieee802154 phy1 wpan1: encryption failed: -22
2024/07/22 16:42:00 executed programs: 282
2024/07/22 16:42:05 executed programs: 292
[ 265.629601][ C0] ==================================================================
[ 265.637690][ C0] BUG: KASAN: slab-out-of-bounds in bq_xmit_all+0x134/0x11d0
[ 265.645063][ C0] Read of size 8 at addr ffff88807a2f03a0 by task syz.0.305/6537
[ 265.652845][ C0]
[ 265.655161][ C0] CPU: 0 UID: 0 PID: 6537 Comm: syz.0.305 Not tainted 6.10.0-syzkaller-11840-g933069701c1b-dirty #0
[ 265.665984][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 265.676024][ C0] Call Trace:
[ 265.679287][ C0]
[ 265.682112][ C0] dump_stack_lvl+0x241/0x360
[ 265.686775][ C0] ? __pfx_dump_stack_lvl+0x10/0x10
[ 265.692039][ C0] ? __pfx__printk+0x10/0x10
[ 265.696636][ C0] ? _printk+0xd5/0x120
[ 265.701051][ C0] ? __virt_addr_valid+0x183/0x530
[ 265.706181][ C0] ? __virt_addr_valid+0x183/0x530
[ 265.711997][ C0] print_report+0x169/0x550
[ 265.716845][ C0] ? __virt_addr_valid+0x183/0x530
[ 265.722569][ C0] ? __virt_addr_valid+0x183/0x530
[ 265.727957][ C0] ? __virt_addr_valid+0x45f/0x530
[ 265.733114][ C0] ? __phys_addr+0xba/0x170
[ 265.737606][ C0] ? bq_xmit_all+0x134/0x11d0
[ 265.742391][ C0] kasan_report+0x143/0x180
[ 265.747011][ C0] ? bq_xmit_all+0x134/0x11d0
[ 265.751705][ C0] bq_xmit_all+0x134/0x11d0
[ 265.756221][ C0] ? virtnet_poll+0x2f35/0x3870
[ 265.761196][ C0] ? validate_chain+0x11e/0x5900
[ 265.766214][ C0] ? __pfx_virtnet_poll+0x10/0x10
[ 265.771222][ C0] ? validate_chain+0x11e/0x5900
[ 265.776139][ C0] ? __pfx_bq_xmit_all+0x10/0x10
[ 265.781091][ C0] ? mark_lock+0x9a/0x350
[ 265.785425][ C0] __dev_flush+0x81/0x160
[ 265.789754][ C0] xdp_do_check_flushed+0x129/0x240
[ 265.795342][ C0] __napi_poll+0xe4/0x490
[ 265.799836][ C0] net_rx_action+0x89b/0x1240
[ 265.804532][ C0] ? __pfx_net_rx_action+0x10/0x10
[ 265.810342][ C0] ? sched_clock+0x4a/0x70
[ 265.814833][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 265.821240][ C0] handle_softirqs+0x2c4/0x970
[ 265.826260][ C0] ? __irq_exit_rcu+0xf4/0x1c0
[ 265.831010][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 265.836637][ C0] ? irqtime_account_irq+0xd4/0x1e0
[ 265.842374][ C0] __irq_exit_rcu+0xf4/0x1c0
[ 265.847071][ C0] ? __pfx___irq_exit_rcu+0x10/0x10
[ 265.852257][ C0] irq_exit_rcu+0x9/0x30
[ 265.857024][ C0] common_interrupt+0xaa/0xd0
[ 265.862421][ C0]
[ 265.865494][ C0]
[ 265.868481][ C0] asm_common_interrupt+0x26/0x40
[ 265.873686][ C0] RIP: 0010:__sanitizer_cov_trace_switch+0x110/0x120
[ 265.880371][ C0] Code: 43 28 4c 39 f8 77 a3 49 ff c4 4c 89 21 4c 89 44 0b 08 4c 89 74 0b 10 48 89 7c 0b 18 4c 89 4c 0b 20 eb 87 5b 41 5c 41 5e 41 5f cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[ 265.900021][ C0] RSP: 0018:ffffc90002de6ec0 EFLAGS: 00000246
[ 265.906095][ C0] RAX: 0000000000000000 RBX: 0000000000000002 RCX: ffff88801cb4da00
[ 265.914259][ C0] RDX: 0000000000000003 RSI: ffffffff8e1a32f0 RDI: 0000000000000002
[ 265.922222][ C0] RBP: ffffffff9033a231 R08: 0000000000000005 R09: ffffffff81411746
[ 265.930193][ C0] R10: 0000000000000003 R11: ffff88801cb4da00 R12: ffffffff9033a230
[ 265.938153][ C0] R13: dffffc0000000000 R14: ffffc90002de6ff0 R15: 1ffff920005bcdf4
[ 265.946305][ C0] ? unwind_next_frame+0xff6/0x2a00
[ 265.951564][ C0] unwind_next_frame+0xff6/0x2a00
[ 265.956610][ C0] ? do_exit+0x9b2/0x27f0
[ 265.960930][ C0] ? do_exit+0x9b2/0x27f0
[ 265.965516][ C0] ? __kernel_text_address+0xd/0x40
[ 265.970699][ C0] ? do_exit+0x9b2/0x27f0
[ 265.975099][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 265.981250][ C0] arch_stack_walk+0x151/0x1b0
[ 265.986003][ C0] ? do_exit+0x9b2/0x27f0
[ 265.990412][ C0] stack_trace_save+0x118/0x1d0
[ 265.995374][ C0] ? __pfx_stack_trace_save+0x10/0x10
[ 266.000770][ C0] save_stack+0xfb/0x1f0
[ 266.005128][ C0] ? __pfx_lock_acquire+0x10/0x10
[ 266.010147][ C0] ? __pfx_save_stack+0x10/0x10
[ 266.015426][ C0] ? free_unref_folios+0x103a/0x1b00
[ 266.020820][ C0] ? folios_put_refs+0x76e/0x860
[ 266.025786][ C0] ? free_pages_and_swap_cache+0x5c8/0x690
[ 266.031690][ C0] ? tlb_flush_mmu+0x3a3/0x680
[ 266.036526][ C0] ? tlb_finish_mmu+0xd4/0x200
[ 266.041393][ C0] ? exit_mmap+0x44f/0xc80
[ 266.045990][ C0] ? __mmput+0x115/0x390
[ 266.050680][ C0] ? exit_mm+0x220/0x310
[ 266.054920][ C0] ? do_exit+0x9b2/0x27f0
[ 266.059528][ C0] ? page_ext_get+0x20/0x2a0
[ 266.064146][ C0] __reset_page_owner+0x75/0x3f0
[ 266.069102][ C0] free_unref_folios+0x103a/0x1b00
[ 266.074250][ C0] folios_put_refs+0x76e/0x860
[ 266.079029][ C0] ? __pfx_folios_put_refs+0x10/0x10
[ 266.084333][ C0] ? free_swap_cache+0xb3/0x880
[ 266.089184][ C0] free_pages_and_swap_cache+0x5c8/0x690
[ 266.094897][ C0] ? __pfx_free_pages_and_swap_cache+0x10/0x10
[ 266.101057][ C0] ? tlb_table_flush+0x143/0x410
[ 266.105992][ C0] tlb_flush_mmu+0x3a3/0x680
[ 266.110584][ C0] ? __pfx_down_write+0x10/0x10
[ 266.115604][ C0] tlb_finish_mmu+0xd4/0x200
[ 266.120622][ C0] exit_mmap+0x44f/0xc80
[ 266.124857][ C0] ? __pfx_exit_mmap+0x10/0x10
[ 266.129610][ C0] ? __asan_memset+0x23/0x50
[ 266.134223][ C0] ? uprobe_clear_state+0x277/0x290
[ 266.139453][ C0] ? mm_update_next_owner+0xa4/0x810
[ 266.144742][ C0] ? do_raw_spin_unlock+0x13c/0x8b0
[ 266.150024][ C0] __mmput+0x115/0x390
[ 266.154087][ C0] exit_mm+0x220/0x310
[ 266.158173][ C0] ? __pfx_exit_mm+0x10/0x10
[ 266.162798][ C0] ? taskstats_exit+0x326/0xa60
[ 266.167665][ C0] do_exit+0x9b2/0x27f0
[ 266.171920][ C0] ? __pfx_do_exit+0x10/0x10
[ 266.176693][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 266.182235][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 266.188298][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 266.194634][ C0] ? _raw_spin_lock_irq+0xdf/0x120
[ 266.199749][ C0] do_group_exit+0x207/0x2c0
[ 266.204330][ C0] ? _raw_spin_unlock_irq+0x23/0x50
[ 266.209530][ C0] ? lockdep_hardirqs_on+0x99/0x150
[ 266.214719][ C0] get_signal+0x16a1/0x1740
[ 266.219217][ C0] ? __pfx_get_signal+0x10/0x10
[ 266.224088][ C0] arch_do_signal_or_restart+0x96/0x860
[ 266.229658][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 266.235875][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 266.241875][ C0] ? syscall_exit_to_user_mode+0xa3/0x370
[ 266.247596][ C0] syscall_exit_to_user_mode+0xc9/0x370
[ 266.253390][ C0] do_syscall_64+0x100/0x230
[ 266.258075][ C0] ? clear_bhb_loop+0x35/0x90
[ 266.262835][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 266.269270][ C0] RIP: 0033:0x7faf1cf75bd9
[ 266.273699][ C0] Code: Unable to access opcode bytes at 0x7faf1cf75baf.
[ 266.280876][ C0] RSP: 002b:00007faf1dd780f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 266.289301][ C0] RAX: fffffffffffffe00 RBX: 00007faf1d103f68 RCX: 00007faf1cf75bd9
[ 266.297349][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007faf1d103f68
[ 266.305347][ C0] RBP: 00007faf1d103f60 R08: 00007faf1dd786c0 R09: 00007faf1dd786c0
[ 266.313310][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf1d103f6c
[ 266.321299][ C0] R13: 000000000000000b R14: 00007fff7453a500 R15: 00007fff7453a5e8
[ 266.329359][ C0]
[ 266.332524][ C0]
[ 266.334835][ C0] Allocated by task 5658:
[ 266.339321][ C0] kasan_save_track+0x3f/0x80
[ 266.344015][ C0] __kasan_slab_alloc+0x66/0x80
[ 266.348885][ C0] kmem_cache_alloc_noprof+0x135/0x2a0
[ 266.354431][ C0] vm_area_dup+0x27/0x290
[ 266.358848][ C0] copy_mm+0xc7b/0x1f30
[ 266.363001][ C0] copy_process+0x187a/0x3dc0
[ 266.367667][ C0] kernel_clone+0x226/0x8f0
[ 266.372163][ C0] __x64_sys_clone+0x258/0x2a0
[ 266.377003][ C0] do_syscall_64+0xf3/0x230
[ 266.381507][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 266.387487][ C0]
[ 266.389804][ C0] The buggy address belongs to the object at ffff88807a2f02e8
[ 266.389804][ C0] which belongs to the cache vm_area_struct of size 184
[ 266.404518][ C0] The buggy address is located 0 bytes to the right of
[ 266.404518][ C0] allocated 184-byte region [ffff88807a2f02e8, ffff88807a2f03a0)
[ 266.419277][ C0]
[ 266.421603][ C0] The buggy address belongs to the physical page:
[ 266.428184][ C0] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7a2f0
[ 266.437042][ C0] memcg:ffff88802c3dca01
[ 266.441268][ C0] anon flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 266.448890][ C0] page_type: 0xfdffffff(slab)
[ 266.453645][ C0] raw: 00fff00000000000 ffff888015eefb40 ffffea0001e7a400 0000000000000009
[ 266.462214][ C0] raw: 0000000000000000 0000000000100010 00000001fdffffff ffff88802c3dca01
[ 266.470785][ C0] page dumped because: kasan: bad access detected
[ 266.477298][ C0] page_owner tracks the page as allocated
[ 266.483018][ C0] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x152cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP), pid 5933, tgid 5933 (dhcpcd-run-hook), ts 112186336296, free_ts 112182429345
[ 266.502636][ C0] post_alloc_hook+0x1f3/0x230
[ 266.507402][ C0] get_page_from_freelist+0x2e4c/0x2f10
[ 266.512941][ C0] __alloc_pages_noprof+0x256/0x6c0
[ 266.518129][ C0] alloc_slab_page+0x5f/0x120
[ 266.522800][ C0] allocate_slab+0x5a/0x2f0
[ 266.527379][ C0] ___slab_alloc+0xcd1/0x14b0
[ 266.532047][ C0] __slab_alloc+0x58/0xa0
[ 266.536622][ C0] kmem_cache_alloc_noprof+0x1c1/0x2a0
[ 266.542157][ C0] vm_area_dup+0x27/0x290
[ 266.546495][ C0] copy_mm+0xc7b/0x1f30
[ 266.550725][ C0] copy_process+0x187a/0x3dc0
[ 266.555395][ C0] kernel_clone+0x226/0x8f0
[ 266.559893][ C0] __x64_sys_clone+0x258/0x2a0
[ 266.564679][ C0] do_syscall_64+0xf3/0x230
[ 266.569543][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 266.575445][ C0] page last free pid 5935 tgid 5935 stack trace:
[ 266.581767][ C0] free_unref_folios+0x103a/0x1b00
[ 266.586973][ C0] folios_put_refs+0x76e/0x860
[ 266.591809][ C0] free_pages_and_swap_cache+0x5c8/0x690
[ 266.597443][ C0] tlb_flush_mmu+0x3a3/0x680
[ 266.602205][ C0] tlb_finish_mmu+0xd4/0x200
[ 266.606783][ C0] exit_mmap+0x44f/0xc80
[ 266.611024][ C0] __mmput+0x115/0x390
[ 266.615164][ C0] exit_mm+0x220/0x310
[ 266.619216][ C0] do_exit+0x9b2/0x27f0
[ 266.623356][ C0] do_group_exit+0x207/0x2c0
[ 266.627970][ C0] __x64_sys_exit_group+0x3f/0x40
[ 266.633151][ C0] x64_sys_call+0x26c3/0x26d0
[ 266.637905][ C0] do_syscall_64+0xf3/0x230
[ 266.642401][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 266.648381][ C0]
[ 266.650687][ C0] Memory state around the buggy address:
[ 266.656296][ C0] ffff88807a2f0280: 00 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00
[ 266.664457][ C0] ffff88807a2f0300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 266.672848][ C0] >ffff88807a2f0380: 00 00 00 00 fc fc fc fc fc fc fc fc 00 00 00 00
[ 266.680893][ C0] ^
[ 266.686168][ C0] ffff88807a2f0400: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 266.694261][ C0] ffff88807a2f0480: 00 00 00 fc fc fc fc fc fc fc fc fa fb fb fb fb
[ 266.702423][ C0] ==================================================================
[ 266.710557][ C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 266.717931][ C0] CPU: 0 UID: 0 PID: 6537 Comm: syz.0.305 Not tainted 6.10.0-syzkaller-11840-g933069701c1b-dirty #0
[ 266.728683][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[ 266.738760][ C0] Call Trace:
[ 266.742047][ C0]
[ 266.744891][ C0] dump_stack_lvl+0x241/0x360
[ 266.749579][ C0] ? __pfx_dump_stack_lvl+0x10/0x10
[ 266.754951][ C0] ? __pfx__printk+0x10/0x10
[ 266.759705][ C0] ? vscnprintf+0x5d/0x90
[ 266.764027][ C0] panic+0x349/0x860
[ 266.767937][ C0] ? check_panic_on_warn+0x21/0xb0
[ 266.773051][ C0] ? __pfx_panic+0x10/0x10
[ 266.777461][ C0] ? mark_lock+0x9a/0x350
[ 266.781793][ C0] ? _raw_spin_unlock_irqrestore+0xd8/0x140
[ 266.787680][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 266.793567][ C0] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 266.799972][ C0] ? print_report+0x502/0x550
[ 266.804822][ C0] check_panic_on_warn+0x86/0xb0
[ 266.809751][ C0] ? bq_xmit_all+0x134/0x11d0
[ 266.814414][ C0] end_report+0x77/0x160
[ 266.818835][ C0] kasan_report+0x154/0x180
[ 266.823332][ C0] ? bq_xmit_all+0x134/0x11d0
[ 266.828084][ C0] bq_xmit_all+0x134/0x11d0
[ 266.832586][ C0] ? virtnet_poll+0x2f35/0x3870
[ 266.837438][ C0] ? validate_chain+0x11e/0x5900
[ 266.842409][ C0] ? __pfx_virtnet_poll+0x10/0x10
[ 266.847509][ C0] ? validate_chain+0x11e/0x5900
[ 266.852431][ C0] ? __pfx_bq_xmit_all+0x10/0x10
[ 266.857360][ C0] ? mark_lock+0x9a/0x350
[ 266.861691][ C0] __dev_flush+0x81/0x160
[ 266.866007][ C0] xdp_do_check_flushed+0x129/0x240
[ 266.871204][ C0] __napi_poll+0xe4/0x490
[ 266.875614][ C0] net_rx_action+0x89b/0x1240
[ 266.880346][ C0] ? __pfx_net_rx_action+0x10/0x10
[ 266.885449][ C0] ? sched_clock+0x4a/0x70
[ 266.889861][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 266.896184][ C0] handle_softirqs+0x2c4/0x970
[ 266.900940][ C0] ? __irq_exit_rcu+0xf4/0x1c0
[ 266.905702][ C0] ? __pfx_handle_softirqs+0x10/0x10
[ 266.911151][ C0] ? irqtime_account_irq+0xd4/0x1e0
[ 266.916428][ C0] __irq_exit_rcu+0xf4/0x1c0
[ 266.921010][ C0] ? __pfx___irq_exit_rcu+0x10/0x10
[ 266.926199][ C0] irq_exit_rcu+0x9/0x30
[ 266.930431][ C0] common_interrupt+0xaa/0xd0
[ 266.935188][ C0]
[ 266.938127][ C0]
[ 266.941046][ C0] asm_common_interrupt+0x26/0x40
[ 266.946248][ C0] RIP: 0010:__sanitizer_cov_trace_switch+0x110/0x120
[ 266.953005][ C0] Code: 43 28 4c 39 f8 77 a3 49 ff c4 4c 89 21 4c 89 44 0b 08 4c 89 74 0b 10 48 89 7c 0b 18 4c 89 4c 0b 20 eb 87 5b 41 5c 41 5e 41 5f cc cc cc cc 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90
[ 266.972807][ C0] RSP: 0018:ffffc90002de6ec0 EFLAGS: 00000246
[ 266.978959][ C0] RAX: 0000000000000000 RBX: 0000000000000002 RCX: ffff88801cb4da00
[ 266.987039][ C0] RDX: 0000000000000003 RSI: ffffffff8e1a32f0 RDI: 0000000000000002
[ 266.995098][ C0] RBP: ffffffff9033a231 R08: 0000000000000005 R09: ffffffff81411746
[ 267.003065][ C0] R10: 0000000000000003 R11: ffff88801cb4da00 R12: ffffffff9033a230
[ 267.011022][ C0] R13: dffffc0000000000 R14: ffffc90002de6ff0 R15: 1ffff920005bcdf4
[ 267.019007][ C0] ? unwind_next_frame+0xff6/0x2a00
[ 267.024234][ C0] unwind_next_frame+0xff6/0x2a00
[ 267.029256][ C0] ? do_exit+0x9b2/0x27f0
[ 267.033582][ C0] ? do_exit+0x9b2/0x27f0
[ 267.037993][ C0] ? __kernel_text_address+0xd/0x40
[ 267.043181][ C0] ? do_exit+0x9b2/0x27f0
[ 267.047502][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 267.053655][ C0] arch_stack_walk+0x151/0x1b0
[ 267.058494][ C0] ? do_exit+0x9b2/0x27f0
[ 267.062810][ C0] stack_trace_save+0x118/0x1d0
[ 267.067672][ C0] ? __pfx_stack_trace_save+0x10/0x10
[ 267.073043][ C0] save_stack+0xfb/0x1f0
[ 267.077377][ C0] ? __pfx_lock_acquire+0x10/0x10
[ 267.082569][ C0] ? __pfx_save_stack+0x10/0x10
[ 267.087413][ C0] ? free_unref_folios+0x103a/0x1b00
[ 267.092698][ C0] ? folios_put_refs+0x76e/0x860
[ 267.097637][ C0] ? free_pages_and_swap_cache+0x5c8/0x690
[ 267.103436][ C0] ? tlb_flush_mmu+0x3a3/0x680
[ 267.108280][ C0] ? tlb_finish_mmu+0xd4/0x200
[ 267.113037][ C0] ? exit_mmap+0x44f/0xc80
[ 267.117458][ C0] ? __mmput+0x115/0x390
[ 267.121721][ C0] ? exit_mm+0x220/0x310
[ 267.125977][ C0] ? do_exit+0x9b2/0x27f0
[ 267.130311][ C0] ? page_ext_get+0x20/0x2a0
[ 267.134941][ C0] __reset_page_owner+0x75/0x3f0
[ 267.140180][ C0] free_unref_folios+0x103a/0x1b00
[ 267.145303][ C0] folios_put_refs+0x76e/0x860
[ 267.150070][ C0] ? __pfx_folios_put_refs+0x10/0x10
[ 267.155435][ C0] ? free_swap_cache+0xb3/0x880
[ 267.160305][ C0] free_pages_and_swap_cache+0x5c8/0x690
[ 267.165960][ C0] ? __pfx_free_pages_and_swap_cache+0x10/0x10
[ 267.172215][ C0] ? tlb_table_flush+0x143/0x410
[ 267.177151][ C0] tlb_flush_mmu+0x3a3/0x680
[ 267.181933][ C0] ? __pfx_down_write+0x10/0x10
[ 267.186797][ C0] tlb_finish_mmu+0xd4/0x200
[ 267.192005][ C0] exit_mmap+0x44f/0xc80
[ 267.196272][ C0] ? __pfx_exit_mmap+0x10/0x10
[ 267.201133][ C0] ? __asan_memset+0x23/0x50
[ 267.205737][ C0] ? uprobe_clear_state+0x277/0x290
[ 267.210930][ C0] ? mm_update_next_owner+0xa4/0x810
[ 267.216321][ C0] ? do_raw_spin_unlock+0x13c/0x8b0
[ 267.222466][ C0] __mmput+0x115/0x390
[ 267.226527][ C0] exit_mm+0x220/0x310
[ 267.230586][ C0] ? __pfx_exit_mm+0x10/0x10
[ 267.235161][ C0] ? taskstats_exit+0x326/0xa60
[ 267.240010][ C0] do_exit+0x9b2/0x27f0
[ 267.244157][ C0] ? __pfx_do_exit+0x10/0x10
[ 267.248732][ C0] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 267.254096][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 267.260068][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 267.266382][ C0] ? _raw_spin_lock_irq+0xdf/0x120
[ 267.271499][ C0] do_group_exit+0x207/0x2c0
[ 267.276088][ C0] ? _raw_spin_unlock_irq+0x23/0x50
[ 267.281281][ C0] ? lockdep_hardirqs_on+0x99/0x150
[ 267.286489][ C0] get_signal+0x16a1/0x1740
[ 267.290989][ C0] ? __pfx_get_signal+0x10/0x10
[ 267.295858][ C0] arch_do_signal_or_restart+0x96/0x860
[ 267.301399][ C0] ? __pfx_arch_do_signal_or_restart+0x10/0x10
[ 267.307629][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 267.313618][ C0] ? syscall_exit_to_user_mode+0xa3/0x370
[ 267.319332][ C0] syscall_exit_to_user_mode+0xc9/0x370
[ 267.324873][ C0] do_syscall_64+0x100/0x230
[ 267.329458][ C0] ? clear_bhb_loop+0x35/0x90
[ 267.334190][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 267.340104][ C0] RIP: 0033:0x7faf1cf75bd9
[ 267.344514][ C0] Code: Unable to access opcode bytes at 0x7faf1cf75baf.
[ 267.351724][ C0] RSP: 002b:00007faf1dd780f8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 267.360173][ C0] RAX: fffffffffffffe00 RBX: 00007faf1d103f68 RCX: 00007faf1cf75bd9
[ 267.368154][ C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007faf1d103f68
[ 267.376403][ C0] RBP: 00007faf1d103f60 R08: 00007faf1dd786c0 R09: 00007faf1dd786c0
[ 267.384458][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 00007faf1d103f6c
[ 267.392684][ C0] R13: 000000000000000b R14: 00007fff7453a500 R15: 00007fff7453a5e8
[ 267.400660][ C0]
[ 267.404024][ C0] Kernel Offset: disabled
[ 267.408432][ C0] Rebooting in 86400 seconds..