Warning: Permanently added '10.128.1.240' (ED25519) to the list of known hosts. 2024/10/16 02:00:42 ignoring optional flag "sandboxArg"="0" 2024/10/16 02:00:42 ignoring optional flag "type"="gce" 2024/10/16 02:00:43 parsed 1 programs 2024/10/16 02:00:43 executed programs: 0 [ 58.622512][ T2487] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 65.120068][ T2499] veth0_vlan: entered promiscuous mode [ 65.172299][ T2500] veth0_vlan: entered promiscuous mode [ 65.293341][ T2507] veth0_vlan: entered promiscuous mode [ 65.308460][ T2504] veth0_vlan: entered promiscuous mode [ 65.588089][ T2498] veth0_vlan: entered promiscuous mode [ 67.560774][ T8] usb 5-1: new high-speed USB device number 2 using dummy_hcd [ 67.650770][ T10] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 67.710796][ T8] usb 5-1: Using ep0 maxpacket: 8 [ 67.717287][ T8] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 67.728596][ T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 67.738724][ T8] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 67.748939][ T8] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 67.762173][ T8] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 67.771239][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 67.780219][ T3625] usb 2-1: new high-speed USB device number 2 using dummy_hcd [ 67.788085][ T663] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 67.831594][ T25] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 67.861502][ T10] usb 4-1: Using ep0 maxpacket: 8 [ 67.867968][ T10] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 67.879164][ T10] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 67.889610][ T10] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 67.899746][ T10] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 67.913175][ T10] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 67.922311][ T10] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 67.950785][ T3625] usb 2-1: Using ep0 maxpacket: 8 [ 67.956017][ T663] usb 1-1: Using ep0 maxpacket: 8 [ 67.962557][ T3625] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 67.974013][ T3625] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 67.984323][ T3625] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 67.995083][ T3625] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 68.001868][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 68.008162][ T3625] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 68.017377][ T3611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.022305][ T3625] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.032863][ T25] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 68.040231][ T663] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 68.050339][ T25] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 68.050352][ T25] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 68.050359][ T25] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 68.061478][ T663] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 68.071601][ T25] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 68.071611][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.122103][ T663] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 68.132247][ T663] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 68.145269][ T663] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 68.148671][ T3624] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.154412][ T663] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.171265][ T8] usb 5-1: usb_control_msg returned -32 [ 68.171422][ T3611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.176807][ T8] usbtmc 5-1:16.0: can't read capabilities [ 68.186821][ T3611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.191273][ T10] usb 4-1: usb_control_msg returned -32 [ 68.201387][ T3624] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.204610][ T10] usbtmc 4-1:16.0: can't read capabilities [ 68.221997][ T3624] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.256365][ T3611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.264751][ T3624] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.275300][ T3611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.284016][ T3624] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.292773][ T3611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.302404][ T25] usb 3-1: usb_control_msg returned -32 [ 68.308149][ T25] usbtmc 3-1:16.0: can't read capabilities [ 68.315446][ T3624] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.317784][ T3611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.334178][ T3624] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.347143][ T3624] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.350214][ T25] usb 3-1: USB disconnect, device number 2 [ 68.356952][ T3624] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.371258][ T3611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.381805][ T3611] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.393642][ T3611] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.400933][ T3624] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.417954][ T1921] usb 5-1: USB disconnect, device number 2 [ 68.429520][ T2462] usb 4-1: USB disconnect, device number 2 [ 68.446995][ T663] usb 1-1: usb_control_msg returned -32 [ 68.452732][ T663] usbtmc 1-1:16.0: can't read capabilities [ 68.463723][ T3625] usb 2-1: usb_control_msg returned -32 [ 68.469324][ T3625] usbtmc 2-1:16.0: can't read capabilities [ 68.470477][ T3635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.485735][ T3635] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.494272][ T3635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.505850][ T3635] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.513791][ T3625] usb 1-1: USB disconnect, device number 2 [ 68.518712][ T3635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.529500][ T3635] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.538393][ T3635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.547397][ T3635] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.556264][ T3635] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 68.565482][ T3635] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 68.579493][ T25] usb 2-1: USB disconnect, device number 2 2024/10/16 02:00:53 executed programs: 5 [ 69.140782][ T25] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 69.170734][ T2462] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 69.190961][ T3625] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 69.280982][ T1921] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 69.310855][ T25] usb 3-1: Using ep0 maxpacket: 8 [ 69.317442][ T25] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.328800][ T25] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.330750][ T663] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 69.338797][ T25] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 69.346671][ T3625] usb 4-1: Using ep0 maxpacket: 8 [ 69.356276][ T25] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.356313][ T25] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.356322][ T25] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.356857][ T2462] usb 5-1: Using ep0 maxpacket: 8 [ 69.385299][ T3625] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.408439][ T3625] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.418573][ T3625] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 69.428620][ T3625] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.432043][ T2462] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.441686][ T3625] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.441700][ T3625] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.470972][ T2462] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.480999][ T2462] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 69.491416][ T2462] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.504701][ T2462] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.513792][ T2462] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.520774][ T663] usb 2-1: Using ep0 maxpacket: 8 [ 69.536406][ T663] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.547817][ T663] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.550727][ T1921] usb 1-1: Using ep0 maxpacket: 8 [ 69.558118][ T663] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 69.564374][ T1921] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 69.573301][ T663] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.584477][ T1921] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 69.597823][ T663] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.607895][ T1921] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 544 [ 69.607911][ T1921] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 69.607930][ T1921] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 69.617268][ T663] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.628021][ T1921] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 69.670852][ T3625] usb 4-1: usb_control_msg returned -32 [ 69.676550][ T3625] usbtmc 4-1:16.0: can't read capabilities [ 69.677106][ T3662] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.692197][ T3658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.700792][ T25] usb 3-1: usb_control_msg returned -32 [ 69.701995][ T3662] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.706470][ T25] usbtmc 3-1:16.0: can't read capabilities [ 69.717009][ T3662] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.729186][ T3658] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.737434][ T3662] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.740549][ T3658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.760959][ T2462] usb 5-1: usb_control_msg returned -32 [ 69.763976][ T3662] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.766575][ T2462] usbtmc 5-1:16.0: can't read capabilities [ 69.782512][ T3658] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.800991][ C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 69.801690][ T3662] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 69.810506][ C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 69.818093][ T3658] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 69.828274][ C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 69.844671][ C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71 [ 69.853768][ C1] ================================================================== [ 69.862019][ C1] BUG: KASAN: slab-use-after-free in __lock_acquire+0x7c/0xc70 [ 69.869589][ C1] Read of size 8 at addr ffff888120ad4848 by task ksoftirqd/1/24 [ 69.877302][ C1] [ 69.879656][ C1] CPU: 1 UID: 0 PID: 24 Comm: ksoftirqd/1 Not tainted 6.12.0-rc3-syzkaller #0 [ 69.888499][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 69.898555][ C1] Call Trace: [ 69.901838][ C1] [ 69.904752][ C1] dump_stack_lvl+0x108/0x280 [ 69.909422][ C1] ? __pfx_dump_stack_lvl+0x10/0x10 [ 69.914592][ C1] ? __pfx__printk+0x10/0x10 [ 69.919330][ C1] ? lock_acquire+0xc2/0x3a0 [ 69.924187][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 69.929199][ C1] ? __virt_addr_valid+0x141/0x270 [ 69.934286][ C1] ? __virt_addr_valid+0x229/0x270 [ 69.939368][ C1] print_report+0x169/0x550 [ 69.944021][ C1] ? __virt_addr_valid+0x141/0x270 [ 69.949106][ C1] ? __virt_addr_valid+0x229/0x270 [ 69.954193][ C1] ? __lock_acquire+0x7c/0xc70 [ 69.959019][ C1] kasan_report+0x143/0x180 [ 69.963582][ C1] ? __lock_acquire+0x7c/0xc70 [ 69.968321][ C1] __lock_acquire+0x7c/0xc70 [ 69.972891][ C1] lock_acquire+0x1a9/0x3a0 [ 69.977367][ C1] ? usbtmc_read_bulk_cb+0x82/0x3b0 [ 69.982558][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 69.987566][ C1] ? _dev_err+0x11d/0x170 [ 69.991875][ C1] ? __pfx_lock_release+0x10/0x10 [ 69.996873][ C1] _raw_spin_lock_irqsave+0xc8/0x110 [ 70.002220][ C1] ? usbtmc_read_bulk_cb+0x82/0x3b0 [ 70.007394][ C1] ? __pfx__raw_spin_lock_irqsave+0x10/0x10 [ 70.013266][ C1] ? _raw_spin_lock_irqsave+0xd4/0x110 [ 70.018893][ C1] ? _raw_spin_unlock_irqrestore+0xcf/0x130 [ 70.024778][ C1] usbtmc_read_bulk_cb+0x82/0x3b0 [ 70.029777][ C1] ? usb_unanchor_urb+0x72/0xa0 [ 70.034698][ C1] __usb_hcd_giveback_urb+0x22f/0x370 [ 70.040136][ C1] dummy_timer+0x9e9/0x3da0 [ 70.044616][ C1] ? __pfx_dummy_timer+0x10/0x10 [ 70.049616][ C1] ? __pfx_dummy_timer+0x10/0x10 [ 70.054622][ C1] __hrtimer_run_queues+0x410/0x820 [ 70.059797][ C1] ? hrtimer_run_softirq+0x82/0x420 [ 70.065064][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 70.070761][ C1] hrtimer_run_softirq+0x195/0x420 [ 70.075942][ C1] handle_softirqs+0x1b5/0x570 [ 70.080690][ C1] ? __pfx_run_ksoftirqd+0x10/0x10 [ 70.085826][ C1] run_ksoftirqd+0x28/0x40 [ 70.090217][ C1] smpboot_thread_fn+0x578/0x7f0 [ 70.095139][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 70.100601][ C1] kthread+0x268/0x2c0 [ 70.104683][ C1] ? __pfx_smpboot_thread_fn+0x10/0x10 [ 70.110130][ C1] ? __pfx_kthread+0x10/0x10 [ 70.114705][ C1] ret_from_fork+0x32/0x60 [ 70.119098][ C1] ? __pfx_kthread+0x10/0x10 [ 70.123675][ C1] ret_from_fork_asm+0x1a/0x30 [ 70.128416][ C1] [ 70.131416][ C1] [ 70.133722][ C1] Allocated by task 3660: [ 70.138107][ C1] kasan_save_track+0x3f/0x80 [ 70.142758][ C1] __kasan_kmalloc+0x98/0xb0 [ 70.147360][ C1] __kmalloc_cache_noprof+0x19e/0x360 [ 70.152713][ C1] usbtmc_open+0x8e/0x820 [ 70.157039][ C1] usb_open+0x12f/0x180 [ 70.161171][ C1] chrdev_open+0x47d/0x540 [ 70.165569][ C1] do_dentry_open+0x730/0xef0 [ 70.170217][ C1] vfs_open+0x36/0x290 [ 70.174258][ C1] path_openat+0x233f/0x29f0 [ 70.178819][ C1] do_filp_open+0x22b/0x440 [ 70.183313][ C1] do_sys_openat2+0xf6/0x180 [ 70.187905][ C1] __x64_sys_openat+0x20d/0x260 [ 70.192737][ C1] do_syscall_64+0x8d/0x190 [ 70.197216][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.203117][ C1] [ 70.205448][ C1] Freed by task 3660: [ 70.209505][ C1] kasan_save_track+0x3f/0x80 [ 70.214259][ C1] kasan_save_free_info+0x40/0x50 [ 70.219270][ C1] __kasan_slab_free+0x59/0x70 [ 70.224012][ C1] kfree+0x186/0x3e0 [ 70.227965][ C1] usbtmc_release+0x21d/0x250 [ 70.232711][ C1] __fput+0x1a4/0x660 [ 70.236695][ C1] task_work_run+0x20f/0x290 [ 70.241433][ C1] syscall_exit_to_user_mode+0xb5/0x1e0 [ 70.247144][ C1] do_syscall_64+0x9a/0x190 [ 70.251633][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 70.257519][ C1] [ 70.259825][ C1] The buggy address belongs to the object at ffff888120ad4800 [ 70.259825][ C1] which belongs to the cache kmalloc-1k of size 1024 [ 70.274140][ C1] The buggy address is located 72 bytes inside of [ 70.274140][ C1] freed 1024-byte region [ffff888120ad4800, ffff888120ad4c00) [ 70.288000][ C1] [ 70.290305][ C1] The buggy address belongs to the physical page: [ 70.296786][ C1] page: refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x120ad0 [ 70.305874][ C1] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0 [ 70.314351][ C1] flags: 0x200000000000040(head|node=0|zone=2) [ 70.320942][ C1] page_type: f5(slab) [ 70.324918][ C1] raw: 0200000000000040 ffff888100041dc0 ffffea0004937600 0000000000000002 [ 70.333746][ C1] raw: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 70.342392][ C1] head: 0200000000000040 ffff888100041dc0 ffffea0004937600 0000000000000002 [ 70.351036][ C1] head: 0000000000000000 0000000000100010 00000001f5000000 0000000000000000 [ 70.359796][ C1] head: 0200000000000003 ffffea000482b401 ffffffffffffffff 0000000000000000 [ 70.368542][ C1] head: 0000000000000008 0000000000000000 00000000ffffffff 0000000000000000 [ 70.377388][ C1] page dumped because: kasan: bad access detected [ 70.383793][ C1] page_owner tracks the page as allocated [ 70.389482][ C1] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3257, tgid 3257 (kworker/u8:8), ts 64483157091, free_ts 64427670572 [ 70.411168][ C1] post_alloc_hook+0x10f/0x130 [ 70.415929][ C1] get_page_from_freelist+0x2ce4/0x2e30 [ 70.421539][ C1] __alloc_pages_noprof+0x256/0x650 [ 70.426896][ C1] alloc_pages_mpol_noprof+0x143/0x330 [ 70.432707][ C1] alloc_slab_page+0x6a/0x120 [ 70.437359][ C1] allocate_slab+0x5d/0x290 [ 70.441836][ C1] ___slab_alloc+0xa7f/0x11e0 [ 70.446486][ C1] __kmalloc_noprof+0x25a/0x440 [ 70.451395][ C1] load_elf_phdrs+0xe1/0x1f0 [ 70.455978][ C1] load_elf_binary+0x862/0x2520 [ 70.460805][ C1] bprm_execve+0x898/0x12b0 [ 70.465283][ C1] kernel_execve+0x51d/0x610 [ 70.469851][ C1] call_usermodehelper_exec_async+0x204/0x320 [ 70.476062][ C1] ret_from_fork+0x32/0x60 [ 70.480478][ C1] ret_from_fork_asm+0x1a/0x30 [ 70.485230][ C1] page last free pid 3248 tgid 3248 stack trace: [ 70.491531][ C1] free_unref_page+0xaa6/0xc60 [ 70.496454][ C1] __put_partials+0x18e/0x1d0 [ 70.501216][ C1] put_cpu_partial+0x151/0x1b0 [ 70.506133][ C1] __slab_free+0x2b8/0x3a0 [ 70.510609][ C1] qlist_free_all+0x9a/0x140 [ 70.515273][ C1] kasan_quarantine_reduce+0x14f/0x170 [ 70.520709][ C1] __kasan_slab_alloc+0x23/0x80 [ 70.525627][ C1] kmem_cache_alloc_noprof+0x12b/0x350 [ 70.531160][ C1] vm_area_dup+0x21/0x130 [ 70.535467][ C1] __split_vma+0x101/0xa00 [ 70.539856][ C1] vms_gather_munmap_vmas+0x460/0x1210 [ 70.545298][ C1] mmap_region+0x853/0x22c0 [ 70.549777][ C1] do_mmap+0x700/0xc70 [ 70.553815][ C1] vm_mmap_pgoff+0x1b2/0x340 [ 70.558397][ C1] ksys_mmap_pgoff+0x2cc/0x3f0 [ 70.563220][ C1] do_syscall_64+0x8d/0x190 [ 70.567817][ C1] [ 70.570232][ C1] Memory state around the buggy address: [ 70.575930][ C1] ffff888120ad4700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 70.584136][ C1] ffff888120ad4780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 70.592445][ C1] >ffff888120ad4800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 70.601197][ C1] ^ [ 70.607764][ C1] ffff888120ad4880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 70.615894][ C1] ffff888120ad4900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 70.624170][ C1] ================================================================== [ 70.632205][ C1] Kernel panic - not syncing: KASAN: panic_on_warn set ... [ 70.639703][ C1] Kernel Offset: disabled [ 70.644009][ C1] Rebooting in 86400 seconds..