Warning: Permanently added '10.128.10.22' (ED25519) to the list of known hosts.
2024/03/14 05:17:03 ignoring optional flag "sandboxArg"="0"
2024/03/14 05:17:04 parsed 1 programs
2024/03/14 05:17:04 executed programs: 0
[ 88.563913][ T4467] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 88.571689][ T4467] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 88.579729][ T4467] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 88.588374][ T4467] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 88.596071][ T4467] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 88.603428][ T4467] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 88.722075][ T5425] chnl_net:caif_netlink_parms(): no params data found
[ 88.771382][ T5425] bridge0: port 1(bridge_slave_0) entered blocking state
[ 88.778737][ T5425] bridge0: port 1(bridge_slave_0) entered disabled state
[ 88.785985][ T5425] bridge_slave_0: entered allmulticast mode
[ 88.792670][ T5425] bridge_slave_0: entered promiscuous mode
[ 88.801111][ T5425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 88.809531][ T5425] bridge0: port 2(bridge_slave_1) entered disabled state
[ 88.817163][ T5425] bridge_slave_1: entered allmulticast mode
[ 88.824000][ T5425] bridge_slave_1: entered promiscuous mode
[ 88.847610][ T5425] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 88.859838][ T5425] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 88.886080][ T5425] team0: Port device team_slave_0 added
[ 88.894712][ T5425] team0: Port device team_slave_1 added
[ 88.916386][ T5425] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 88.923388][ T5425] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.949930][ T5425] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 88.962984][ T5425] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 88.970088][ T5425] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 88.996785][ T5425] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 89.030823][ T5425] hsr_slave_0: entered promiscuous mode
[ 89.037270][ T5425] hsr_slave_1: entered promiscuous mode
[ 89.653032][ T5425] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 89.664857][ T5425] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 89.675747][ T5425] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 89.689432][ T5425] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 89.721115][ T5425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.728350][ T5425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 89.735949][ T5425] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.743114][ T5425] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.766067][ T1548] bridge0: port 1(bridge_slave_0) entered disabled state
[ 89.773841][ T1548] bridge0: port 2(bridge_slave_1) entered disabled state
[ 89.871440][ T5425] 8021q: adding VLAN 0 to HW filter on device bond0
[ 89.901009][ T5425] 8021q: adding VLAN 0 to HW filter on device team0
[ 89.915407][ T7] bridge0: port 1(bridge_slave_0) entered blocking state
[ 89.923330][ T7] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 89.950809][ T7] bridge0: port 2(bridge_slave_1) entered blocking state
[ 89.958010][ T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 90.168622][ T5425] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 90.222213][ T5425] veth0_vlan: entered promiscuous mode
[ 90.237573][ T5425] veth1_vlan: entered promiscuous mode
[ 90.270087][ T5425] veth0_macvtap: entered promiscuous mode
[ 90.281753][ T5425] veth1_macvtap: entered promiscuous mode
[ 90.302917][ T5425] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 90.319058][ T5425] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 90.334193][ T5425] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.344163][ T5425] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.354848][ T5425] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.363960][ T5425] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 90.445834][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.454813][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.491746][ T2525] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 90.501333][ T2525] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 90.578944][ T5494] FAULT_INJECTION: forcing a failure.
[ 90.578944][ T5494] name failslab, interval 1, probability 0, space 0, times 1
[ 90.597240][ T5494] CPU: 1 PID: 5494 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-05210-gd7d75124965a #0
[ 90.607606][ T5494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 90.617689][ T5494] Call Trace:
[ 90.620997][ T5494]
[ 90.623968][ T5494] dump_stack_lvl+0x1e7/0x2e0
[ 90.628701][ T5494] ? __pfx_dump_stack_lvl+0x10/0x10
[ 90.634192][ T5494] ? __pfx__printk+0x10/0x10
[ 90.639128][ T5494] ? __pfx___might_resched+0x10/0x10
[ 90.644724][ T5494] should_fail_ex+0x3b0/0x4e0
[ 90.649862][ T5494] ? dccp_feat_entry_new+0x173/0x3a0
[ 90.655178][ T5494] should_failslab+0x9/0x20
[ 90.657150][ T4467] Bluetooth: hci0: command tx timeout
[ 90.659689][ T5494] kmalloc_trace+0x76/0x360
[ 90.669695][ T5494] ? lockdep_hardirqs_on+0x99/0x150
[ 90.675125][ T5494] dccp_feat_entry_new+0x173/0x3a0
[ 90.680541][ T5494] dccp_feat_parse_options+0xeac/0x2c30
[ 90.686137][ T5494] ? __pfx_dccp_feat_parse_options+0x10/0x10
[ 90.692420][ T5494] ? dccp_ackvec_parsed_add+0x5c/0x1d0
[ 90.698440][ T5494] dccp_parse_options+0x13bd/0x2670
[ 90.703692][ T5494] dccp_rcv_established+0x55/0x320
[ 90.708921][ T5494] dccp_v4_do_rcv+0xff/0x1f0
[ 90.713542][ T5494] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 90.718864][ T5494] __release_sock+0x243/0x350
[ 90.723662][ T5494] release_sock+0x61/0x1f0
[ 90.728106][ T5494] dccp_sendmsg+0x4de/0xb70
[ 90.732687][ T5494] ? __pfx_dccp_sendmsg+0x10/0x10
[ 90.737793][ T5494] ? sock_rps_record_flow+0x1a/0x400
[ 90.743206][ T5494] ? inet_sendmsg+0x330/0x390
[ 90.748255][ T5494] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 90.753560][ T5494] ? security_socket_sendmsg+0x87/0xb0
[ 90.759122][ T5494] __sock_sendmsg+0x1a6/0x270
[ 90.763822][ T5494] ____sys_sendmsg+0x525/0x7d0
[ 90.768624][ T5494] ? __pfx_____sys_sendmsg+0x10/0x10
[ 90.773960][ T5494] __sys_sendmmsg+0x3b2/0x740
[ 90.778690][ T5494] ? __pfx___sys_sendmmsg+0x10/0x10
[ 90.783953][ T5494] ? __pfx_proc_fail_nth_write+0x10/0x10
[ 90.789629][ T5494] ? ksys_write+0x23e/0x2c0
[ 90.794160][ T5494] ? __pfx_lock_release+0x10/0x10
[ 90.799391][ T5494] ? vfs_write+0x786/0xcb0
[ 90.803851][ T5494] ? __mutex_unlock_slowpath+0x21d/0x750
[ 90.809530][ T5494] ? __pfx_vfs_write+0x10/0x10
[ 90.814436][ T5494] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 90.820439][ T5494] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 90.826810][ T5494] ? do_syscall_64+0x10a/0x240
[ 90.831611][ T5494] __x64_sys_sendmmsg+0xa0/0xb0
[ 90.836488][ T5494] do_syscall_64+0xfb/0x240
[ 90.841019][ T5494] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 90.846936][ T5494] RIP: 0033:0x7ff9b7e7ad39
[ 90.851380][ T5494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 90.871100][ T5494] RSP: 002b:00007ff9b90220c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 90.879541][ T5494] RAX: ffffffffffffffda RBX: 00007ff9b7f9bf80 RCX: 00007ff9b7e7ad39
[ 90.887538][ T5494] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 90.895535][ T5494] RBP: 00007ff9b9022120 R08: 0000000000000000 R09: 0000000000000000
[ 90.903620][ T5494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 90.911626][ T5494] R13: 000000000000000b R14: 00007ff9b7f9bf80 R15: 00007ffced7e8658
[ 90.919644][ T5494]
[ 90.932209][ T5494] dccp_parse_options: DCCP(ffff88806a602040): Option 32 (len=7) error=9
[ 90.943036][ T5494] ==================================================================
[ 90.951126][ T5494] BUG: KASAN: slab-use-after-free in ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 90.959820][ T5494] Read of size 1 at addr ffff88807e407494 by task syz-executor.0/5494
[ 90.967984][ T5494]
[ 90.970842][ T5494] CPU: 1 PID: 5494 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-05210-gd7d75124965a #0
[ 90.980838][ T5494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 90.991088][ T5494] Call Trace:
[ 90.994649][ T5494]
[ 90.997598][ T5494] dump_stack_lvl+0x1e7/0x2e0
[ 91.002301][ T5494] ? __pfx_dump_stack_lvl+0x10/0x10
[ 91.007525][ T5494] ? __pfx__printk+0x10/0x10
[ 91.012168][ T5494] ? _printk+0xd5/0x120
[ 91.016347][ T5494] ? __virt_addr_valid+0x183/0x520
[ 91.021486][ T5494] ? __virt_addr_valid+0x183/0x520
[ 91.026626][ T5494] print_report+0x169/0x550
[ 91.031153][ T5494] ? __virt_addr_valid+0x183/0x520
[ 91.036284][ T5494] ? __virt_addr_valid+0x183/0x520
[ 91.041414][ T5494] ? __virt_addr_valid+0x44e/0x520
[ 91.046539][ T5494] ? __phys_addr+0xba/0x170
[ 91.051148][ T5494] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.057039][ T5494] kasan_report+0x143/0x180
[ 91.061544][ T5494] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.067346][ T5494] ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.072983][ T5494] ? lockdep_hardirqs_on+0x99/0x150
[ 91.078183][ T5494] ? dccp_ackvec_clear_state+0x5dd/0x8b0
[ 91.083810][ T5494] ? dccp_ackvec_input+0x1d5/0xf60
[ 91.088909][ T5494] ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[ 91.094523][ T5494] ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[ 91.100491][ T5494] dccp_rcv_established+0x295/0x320
[ 91.105702][ T5494] dccp_v4_do_rcv+0xff/0x1f0
[ 91.110281][ T5494] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 91.115573][ T5494] __release_sock+0x243/0x350
[ 91.120246][ T5494] release_sock+0x61/0x1f0
[ 91.124648][ T5494] dccp_sendmsg+0x4de/0xb70
[ 91.129147][ T5494] ? __pfx_dccp_sendmsg+0x10/0x10
[ 91.134162][ T5494] ? sock_rps_record_flow+0x1a/0x400
[ 91.139436][ T5494] ? inet_sendmsg+0x330/0x390
[ 91.144130][ T5494] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 91.149402][ T5494] ? security_socket_sendmsg+0x87/0xb0
[ 91.154876][ T5494] __sock_sendmsg+0x1a6/0x270
[ 91.159541][ T5494] ____sys_sendmsg+0x525/0x7d0
[ 91.164339][ T5494] ? __pfx_____sys_sendmsg+0x10/0x10
[ 91.169633][ T5494] ? __might_fault+0xaa/0x120
[ 91.174314][ T5494] __sys_sendmmsg+0x3b2/0x740
[ 91.179453][ T5494] ? __pfx___sys_sendmmsg+0x10/0x10
[ 91.184658][ T5494] ? __pfx_proc_fail_nth_write+0x10/0x10
[ 91.190287][ T5494] ? ksys_write+0x23e/0x2c0
[ 91.194778][ T5494] ? __pfx_lock_release+0x10/0x10
[ 91.199876][ T5494] ? vfs_write+0x786/0xcb0
[ 91.204282][ T5494] ? __mutex_unlock_slowpath+0x21d/0x750
[ 91.209910][ T5494] ? __pfx_vfs_write+0x10/0x10
[ 91.214666][ T5494] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 91.220636][ T5494] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 91.226947][ T5494] ? do_syscall_64+0x10a/0x240
[ 91.231698][ T5494] __x64_sys_sendmmsg+0xa0/0xb0
[ 91.236539][ T5494] do_syscall_64+0xfb/0x240
[ 91.241031][ T5494] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 91.246999][ T5494] RIP: 0033:0x7ff9b7e7ad39
[ 91.251486][ T5494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 91.271351][ T5494] RSP: 002b:00007ff9b90220c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 91.279754][ T5494] RAX: ffffffffffffffda RBX: 00007ff9b7f9bf80 RCX: 00007ff9b7e7ad39
[ 91.287714][ T5494] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 91.295694][ T5494] RBP: 00007ff9b9022120 R08: 0000000000000000 R09: 0000000000000000
[ 91.303757][ T5494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 91.311729][ T5494] R13: 000000000000000b R14: 00007ff9b7f9bf80 R15: 00007ffced7e8658
[ 91.319721][ T5494]
[ 91.322731][ T5494]
[ 91.325045][ T5494] Allocated by task 5494:
[ 91.329357][ T5494] kasan_save_track+0x3f/0x80
[ 91.334050][ T5494] __kasan_kmalloc+0x98/0xb0
[ 91.338636][ T5494] __kmalloc_node_track_caller+0x24c/0x4e0
[ 91.344437][ T5494] kmalloc_reserve+0x111/0x2a0
[ 91.349192][ T5494] __alloc_skb+0x1f3/0x440
[ 91.353594][ T5494] dccp_send_ack+0xaa/0x310
[ 91.358144][ T5494] ccid2_hc_rx_packet_recv+0x10c/0x1c0
[ 91.363606][ T5494] dccp_rcv_established+0x1bb/0x320
[ 91.368805][ T5494] dccp_v4_do_rcv+0xff/0x1f0
[ 91.373392][ T5494] __sk_receive_skb+0x823/0x8a0
[ 91.378244][ T5494] ip_protocol_deliver_rcu+0x2e0/0x430
[ 91.383710][ T5494] ip_local_deliver_finish+0x33f/0x5f0
[ 91.389165][ T5494] NF_HOOK+0x3a4/0x450
[ 91.393314][ T5494] NF_HOOK+0x3a4/0x450
[ 91.397375][ T5494] __netif_receive_skb+0x2bf/0x6a0
[ 91.402491][ T5494] process_backlog+0x39d/0x7a0
[ 91.407504][ T5494] __napi_poll+0xcb/0x490
[ 91.411824][ T5494] net_rx_action+0x7bb/0x1090
[ 91.416487][ T5494] __do_softirq+0x2bc/0x943
[ 91.420978][ T5494]
[ 91.423282][ T5494] Freed by task 5494:
[ 91.427245][ T5494] kasan_save_track+0x3f/0x80
[ 91.431909][ T5494] kasan_save_free_info+0x40/0x50
[ 91.436922][ T5494] poison_slab_object+0xa6/0xe0
[ 91.441757][ T5494] __kasan_slab_free+0x37/0x60
[ 91.446511][ T5494] kfree+0x14a/0x380
[ 91.450487][ T5494] skb_release_data+0x585/0x870
[ 91.455323][ T5494] kfree_skb_reason+0x195/0x390
[ 91.460158][ T5494] dccp_v4_do_rcv+0x143/0x1f0
[ 91.464835][ T5494] __release_sock+0x243/0x350
[ 91.469506][ T5494] release_sock+0x61/0x1f0
[ 91.473912][ T5494] dccp_sendmsg+0x4de/0xb70
[ 91.478414][ T5494] __sock_sendmsg+0x1a6/0x270
[ 91.483078][ T5494] ____sys_sendmsg+0x525/0x7d0
[ 91.487838][ T5494] __sys_sendmmsg+0x3b2/0x740
[ 91.492500][ T5494] __x64_sys_sendmmsg+0xa0/0xb0
[ 91.497343][ T5494] do_syscall_64+0xfb/0x240
[ 91.501839][ T5494] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 91.507726][ T5494]
[ 91.510054][ T5494] The buggy address belongs to the object at ffff88807e407000
[ 91.510054][ T5494] which belongs to the cache kmalloc-2k of size 2048
[ 91.524109][ T5494] The buggy address is located 1172 bytes inside of
[ 91.524109][ T5494] freed 2048-byte region [ffff88807e407000, ffff88807e407800)
[ 91.538060][ T5494]
[ 91.540369][ T5494] The buggy address belongs to the physical page:
[ 91.546781][ T5494] page:ffffea0001f90000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7e400
[ 91.556913][ T5494] head:ffffea0001f90000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 91.566262][ T5494] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 91.574223][ T5494] page_type: 0xffffffff()
[ 91.578543][ T5494] raw: 00fff00000000840 ffff888014c42000 dead000000000122 0000000000000000
[ 91.587138][ T5494] raw: 0000000000000000 0000000000080008 00000001ffffffff 0000000000000000
[ 91.595703][ T5494] page dumped because: kasan: bad access detected
[ 91.602096][ T5494] page_owner tracks the page as allocated
[ 91.607792][ T5494] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d2820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 5494, tgid 5492 (syz-executor.0), ts 90553104816, free_ts 90436851157
[ 91.630720][ T5494] post_alloc_hook+0x1ea/0x210
[ 91.635487][ T5494] get_page_from_freelist+0x33ea/0x3580
[ 91.641029][ T5494] __alloc_pages+0x256/0x680
[ 91.645668][ T5494] alloc_slab_page+0x5f/0x160
[ 91.650332][ T5494] new_slab+0x84/0x2f0
[ 91.654385][ T5494] ___slab_alloc+0xd1b/0x13e0
[ 91.659074][ T5494] __kmalloc_node_track_caller+0x2d4/0x4e0
[ 91.664965][ T5494] kmalloc_reserve+0x111/0x2a0
[ 91.669712][ T5494] __alloc_skb+0x1f3/0x440
[ 91.674119][ T5494] sock_wmalloc+0xab/0x120
[ 91.678522][ T5494] dccp_make_response+0x37/0x1040
[ 91.683552][ T5494] dccp_v4_send_response+0xbc/0x6a0
[ 91.688746][ T5494] dccp_v4_conn_request+0x8dd/0xe90
[ 91.693931][ T5494] dccp_rcv_state_process+0x4bd/0x910
[ 91.699378][ T5494] dccp_v4_do_rcv+0x11a/0x1f0
[ 91.704134][ T5494] __sk_receive_skb+0x823/0x8a0
[ 91.708967][ T5494] page last free pid 5442 tgid 5442 stack trace:
[ 91.715274][ T5494] free_unref_page_prepare+0x968/0xa90
[ 91.720725][ T5494] free_unref_page+0x37/0x3f0
[ 91.725391][ T5494] __put_partials+0xeb/0x130
[ 91.729965][ T5494] put_cpu_partial+0x17c/0x250
[ 91.734712][ T5494] __slab_free+0x302/0x410
[ 91.739110][ T5494] qlist_free_all+0x5e/0xc0
[ 91.743598][ T5494] kasan_quarantine_reduce+0x14f/0x170
[ 91.749128][ T5494] __kasan_slab_alloc+0x23/0x80
[ 91.753964][ T5494] kmem_cache_alloc+0x172/0x350
[ 91.758801][ T5494] getname_flags+0xbd/0x4f0
[ 91.763292][ T5494] __x64_sys_unlink+0x3c/0x60
[ 91.767956][ T5494] do_syscall_64+0xfb/0x240
[ 91.772450][ T5494] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 91.778344][ T5494]
[ 91.780654][ T5494] Memory state around the buggy address:
[ 91.786265][ T5494] ffff88807e407380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 91.794483][ T5494] ffff88807e407400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 91.802528][ T5494] >ffff88807e407480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 91.810655][ T5494] ^
[ 91.815224][ T5494] ffff88807e407500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 91.823354][ T5494] ffff88807e407580: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 91.831393][ T5494] ==================================================================
[ 91.868708][ T5494] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 91.875946][ T5494] CPU: 0 PID: 5494 Comm: syz-executor.0 Not tainted 6.8.0-syzkaller-05210-gd7d75124965a #0
[ 91.885935][ T5494] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/29/2024
[ 91.896006][ T5494] Call Trace:
[ 91.899296][ T5494]
[ 91.902244][ T5494] dump_stack_lvl+0x1e7/0x2e0
[ 91.906954][ T5494] ? __pfx_dump_stack_lvl+0x10/0x10
[ 91.912171][ T5494] ? __pfx__printk+0x10/0x10
[ 91.916874][ T5494] ? vscnprintf+0x5d/0x90
[ 91.921230][ T5494] panic+0x349/0x860
[ 91.925149][ T5494] ? check_panic_on_warn+0x21/0xb0
[ 91.930372][ T5494] ? __pfx_panic+0x10/0x10
[ 91.935014][ T5494] ? _raw_spin_unlock_irqrestore+0x130/0x140
[ 91.941021][ T5494] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 91.947377][ T5494] ? print_report+0x502/0x550
[ 91.952165][ T5494] check_panic_on_warn+0x86/0xb0
[ 91.957124][ T5494] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.962929][ T5494] end_report+0x6e/0x140
[ 91.967165][ T5494] kasan_report+0x154/0x180
[ 91.971658][ T5494] ? ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.977804][ T5494] ccid2_hc_tx_packet_recv+0x1902/0x2070
[ 91.983457][ T5494] ? lockdep_hardirqs_on+0x99/0x150
[ 91.988666][ T5494] ? dccp_ackvec_clear_state+0x5dd/0x8b0
[ 91.994477][ T5494] ? dccp_ackvec_input+0x1d5/0xf60
[ 91.999590][ T5494] ? ccid2_hc_rx_packet_recv+0x12e/0x1c0
[ 92.005211][ T5494] ? __pfx_ccid2_hc_tx_packet_recv+0x10/0x10
[ 92.011195][ T5494] dccp_rcv_established+0x295/0x320
[ 92.016412][ T5494] dccp_v4_do_rcv+0xff/0x1f0
[ 92.021035][ T5494] ? __pfx_dccp_v4_do_rcv+0x10/0x10
[ 92.026226][ T5494] __release_sock+0x243/0x350
[ 92.030940][ T5494] release_sock+0x61/0x1f0
[ 92.035346][ T5494] dccp_sendmsg+0x4de/0xb70
[ 92.039843][ T5494] ? __pfx_dccp_sendmsg+0x10/0x10
[ 92.044875][ T5494] ? sock_rps_record_flow+0x1a/0x400
[ 92.050189][ T5494] ? inet_sendmsg+0x330/0x390
[ 92.054998][ T5494] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 92.060281][ T5494] ? security_socket_sendmsg+0x87/0xb0
[ 92.065738][ T5494] __sock_sendmsg+0x1a6/0x270
[ 92.070403][ T5494] ____sys_sendmsg+0x525/0x7d0
[ 92.075334][ T5494] ? __pfx_____sys_sendmsg+0x10/0x10
[ 92.080613][ T5494] ? __might_fault+0xaa/0x120
[ 92.085275][ T5494] __sys_sendmmsg+0x3b2/0x740
[ 92.089944][ T5494] ? __pfx___sys_sendmmsg+0x10/0x10
[ 92.095147][ T5494] ? __pfx_proc_fail_nth_write+0x10/0x10
[ 92.101131][ T5494] ? ksys_write+0x23e/0x2c0
[ 92.105625][ T5494] ? __pfx_lock_release+0x10/0x10
[ 92.110775][ T5494] ? vfs_write+0x786/0xcb0
[ 92.115204][ T5494] ? __mutex_unlock_slowpath+0x21d/0x750
[ 92.120860][ T5494] ? __pfx_vfs_write+0x10/0x10
[ 92.125645][ T5494] ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 92.131659][ T5494] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 92.138000][ T5494] ? do_syscall_64+0x10a/0x240
[ 92.142782][ T5494] __x64_sys_sendmmsg+0xa0/0xb0
[ 92.147639][ T5494] do_syscall_64+0xfb/0x240
[ 92.152148][ T5494] entry_SYSCALL_64_after_hwframe+0x6d/0x75
[ 92.158043][ T5494] RIP: 0033:0x7ff9b7e7ad39
[ 92.162458][ T5494] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[ 92.182060][ T5494] RSP: 002b:00007ff9b90220c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[ 92.190461][ T5494] RAX: ffffffffffffffda RBX: 00007ff9b7f9bf80 RCX: 00007ff9b7e7ad39
[ 92.198604][ T5494] RDX: 04000000000001e6 RSI: 0000000020000c00 RDI: 0000000000000005
[ 92.206566][ T5494] RBP: 00007ff9b9022120 R08: 0000000000000000 R09: 0000000000000000
[ 92.214609][ T5494] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[ 92.222651][ T5494] R13: 000000000000000b R14: 00007ff9b7f9bf80 R15: 00007ffced7e8658
[ 92.230613][ T5494]
[ 92.233887][ T5494] Kernel Offset: disabled
[ 92.238194][ T5494] Rebooting in 86400 seconds..