Warning: Permanently added '10.128.1.114' (ECDSA) to the list of known hosts. 2023/04/07 08:29:32 ignoring optional flag "sandboxArg"="0" 2023/04/07 08:29:32 parsed 1 programs 2023/04/07 08:29:32 executed programs: 0 [ 40.245969][ T28] kauditd_printk_skb: 64 callbacks suppressed [ 40.245978][ T28] audit: type=1400 audit(1680856172.359:136): avc: denied { mounton } for pid=456 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 40.277187][ T28] audit: type=1400 audit(1680856172.369:137): avc: denied { mount } for pid=456 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 40.459468][ T471] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.466719][ T471] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.474543][ T471] device bridge_slave_0 entered promiscuous mode [ 40.482840][ T463] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.490023][ T463] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.497247][ T463] device bridge_slave_0 entered promiscuous mode [ 40.505198][ T463] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.512146][ T463] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.519209][ T463] device bridge_slave_1 entered promiscuous mode [ 40.530743][ T466] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.537577][ T466] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.544924][ T466] device bridge_slave_0 entered promiscuous mode [ 40.551420][ T471] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.558333][ T471] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.565584][ T471] device bridge_slave_1 entered promiscuous mode [ 40.578314][ T473] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.585437][ T473] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.592628][ T473] device bridge_slave_0 entered promiscuous mode [ 40.601779][ T466] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.608730][ T466] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.616200][ T466] device bridge_slave_1 entered promiscuous mode [ 40.624490][ T474] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.631382][ T474] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.638403][ T474] device bridge_slave_0 entered promiscuous mode [ 40.649834][ T473] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.656844][ T473] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.664083][ T473] device bridge_slave_1 entered promiscuous mode [ 40.672558][ T475] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.679588][ T475] bridge0: port 1(bridge_slave_0) entered disabled state [ 40.687401][ T475] device bridge_slave_0 entered promiscuous mode [ 40.702310][ T474] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.709152][ T474] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.716510][ T474] device bridge_slave_1 entered promiscuous mode [ 40.727603][ T475] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.734629][ T475] bridge0: port 2(bridge_slave_1) entered disabled state [ 40.741723][ T475] device bridge_slave_1 entered promiscuous mode [ 40.915490][ T471] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.923198][ T471] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.930426][ T471] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.937276][ T471] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.950467][ T473] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.957492][ T473] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.964580][ T473] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.971387][ T473] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.980925][ T463] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.988027][ T463] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.995122][ T463] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.001929][ T463] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.010134][ T475] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.016983][ T475] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.024160][ T475] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.031032][ T475] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.047239][ T474] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.054107][ T474] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.061189][ T474] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.067974][ T474] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.081576][ T466] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.088594][ T466] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.095702][ T466] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.102606][ T466] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.122939][ T29] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.130063][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.138060][ T29] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.145210][ T29] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.152476][ T29] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.159599][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.167699][ T29] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.174787][ T29] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.181936][ T29] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.189102][ T29] bridge0: port 1(bridge_slave_0) entered disabled state [ 41.196350][ T29] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.203424][ T29] bridge0: port 2(bridge_slave_1) entered disabled state [ 41.210955][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.219063][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.226311][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.240311][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.266864][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.274661][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.282671][ T29] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.289502][ T29] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.297545][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.305502][ T29] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.312367][ T29] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.319678][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.350317][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.357615][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.366057][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.375476][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.383344][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.391479][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.398859][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.406689][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.413879][ T418] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.421265][ T475] device veth0_vlan entered promiscuous mode [ 41.429862][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.438084][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.446525][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.453368][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.460732][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.468754][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.476896][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.483731][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.499984][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.507542][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.514825][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.523174][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.531292][ T29] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.538303][ T29] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.545887][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.554414][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.563112][ T29] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.570148][ T29] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.577451][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.585537][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.593323][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.603284][ T463] device veth0_vlan entered promiscuous mode [ 41.617483][ T475] device veth1_macvtap entered promiscuous mode [ 41.628964][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.636969][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.645056][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.653345][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.661662][ T63] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.668489][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.677175][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.685511][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.693557][ T63] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.700931][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.708568][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.716694][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.724939][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.733015][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 41.744196][ T463] device veth1_macvtap entered promiscuous mode [ 41.753253][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 41.761432][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.768570][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.775930][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 41.784132][ T63] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 41.804238][ T474] device veth0_vlan entered promiscuous mode [ 41.821989][ T473] device veth0_vlan entered promiscuous mode [ 41.828574][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.836719][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.844523][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.852156][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 41.860346][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 41.867960][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 41.875196][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 41.882383][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 41.890499][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 41.898766][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 41.906357][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 41.913857][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 41.922079][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 41.930245][ T17] bridge0: port 1(bridge_slave_0) entered blocking state [ 41.937212][ T17] bridge0: port 1(bridge_slave_0) entered forwarding state [ 41.944516][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 41.952989][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 41.961117][ T17] bridge0: port 2(bridge_slave_1) entered blocking state [ 41.967964][ T17] bridge0: port 2(bridge_slave_1) entered forwarding state [ 41.975462][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 41.983374][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 41.991205][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 41.999064][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.006878][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 42.015045][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.023371][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 42.031645][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.055201][ T28] audit: type=1400 audit(1680856174.169:138): avc: denied { mount } for pid=475 comm="syz-executor.3" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 42.081077][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.089324][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 42.097891][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.106324][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 42.114518][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 42.122429][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 42.130604][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 42.143829][ T474] device veth1_macvtap entered promiscuous mode [ 42.152223][ T466] device veth0_vlan entered promiscuous mode [ 42.166249][ T28] audit: type=1400 audit(1680856174.279:139): avc: denied { mounton } for pid=495 comm="syz-executor.3" path="/root/syzkaller-testdir783854293/syzkaller.4NJkRS/0/file0" dev="sda1" ino=1158 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 42.166542][ T473] device veth1_macvtap entered promiscuous mode [ 42.206751][ T417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.214522][ T417] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 42.222211][ T417] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 42.229454][ T417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.237806][ T417] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.249490][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 42.257897][ T17] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.269427][ T466] device veth1_macvtap entered promiscuous mode [ 42.281242][ T471] device veth0_vlan entered promiscuous mode [ 42.291055][ T471] device veth1_macvtap entered promiscuous mode [ 42.303426][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.311705][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 42.320034][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 42.328227][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 42.336277][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 42.344105][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 42.352264][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 42.360427][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 42.367785][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 42.376044][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.384298][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 42.393018][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.401401][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 42.409356][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.429039][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 42.436396][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 42.444195][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 42.452430][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.460529][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 42.468473][ T419] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 42.498007][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 42.510048][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 42.518357][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 42.527699][ T29] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 43.001129][ T28] audit: type=1400 audit(1680856175.119:140): avc: denied { unmount } for pid=475 comm="syz-executor.3" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 45.231309][ T621] ================================================================== [ 45.239394][ T621] BUG: KASAN: use-after-free in fuse_copy_args+0x248/0x630 [ 45.246733][ T621] Read of size 256 at addr ffff888122313010 by task syz-executor.0/621 [ 45.254927][ T621] [ 45.257090][ T621] CPU: 1 PID: 621 Comm: syz-executor.0 Not tainted 5.17.0-syzkaller #0 [ 45.265161][ T621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/30/2023 [ 45.275231][ T621] Call Trace: [ 45.278439][ T621] [ 45.281225][ T621] dump_stack_lvl+0x151/0x1b7 [ 45.285732][ T621] ? bfq_pos_tree_add_move+0x43b/0x43b [ 45.291135][ T621] ? panic+0x728/0x728 [ 45.295277][ T621] print_address_description+0x84/0x360 [ 45.300659][ T621] kasan_report+0x177/0x1c0 [ 45.305099][ T621] ? fuse_copy_args+0x248/0x630 [ 45.309864][ T621] ? fuse_copy_args+0x248/0x630 [ 45.314645][ T621] kasan_check_range+0x294/0x2a0 [ 45.319584][ T621] ? fuse_copy_args+0x248/0x630 [ 45.324615][ T621] memcpy+0x2d/0x70 [ 45.328379][ T621] fuse_copy_args+0x248/0x630 [ 45.332999][ T621] fuse_dev_do_read+0xc87/0x11d0 [ 45.338448][ T621] ? queue_interrupt+0x390/0x390 [ 45.343219][ T621] ? memset+0x35/0x40 [ 45.347296][ T621] ? __fsnotify_parent+0x50b/0x730 [ 45.352245][ T621] fuse_dev_read+0x182/0x210 [ 45.356759][ T621] ? fuse_dev_release+0x5c0/0x5c0 [ 45.361889][ T621] ? fsnotify_perm+0x4ba/0x5d0 [ 45.366481][ T621] ? iov_iter_init+0x53/0x190 [ 45.370991][ T621] vfs_read+0xa97/0xd60 [ 45.375024][ T621] ? kernel_read+0x1f0/0x1f0 [ 45.379600][ T621] ? __fdget_pos+0x209/0x310 [ 45.384007][ T621] ? ksys_read+0x77/0x2c0 [ 45.388272][ T621] ksys_read+0x199/0x2c0 [ 45.392361][ T621] ? vfs_write+0x1050/0x1050 [ 45.396972][ T621] ? __kasan_check_write+0x14/0x20 [ 45.402164][ T621] __x64_sys_read+0x7b/0x90 [ 45.408046][ T621] do_syscall_64+0x44/0xd0 [ 45.412479][ T621] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.418306][ T621] RIP: 0033:0x7f01582ba639 [ 45.422848][ T621] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 45.442367][ T621] RSP: 002b:00007f0157dcb168 EFLAGS: 00000246 ORIG_RAX: 0000000000000000 [ 45.450615][ T621] RAX: ffffffffffffffda RBX: 00007f01583db1f0 RCX: 00007f01582ba639 [ 45.458452][ T621] RDX: 0000000000002020 RSI: 0000000020002140 RDI: 0000000000000003 [ 45.466580][ T621] RBP: 00007f0158315ae9 R08: 0000000000000000 R09: 0000000000000000 [ 45.474567][ T621] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 45.482375][ T621] R13: 00007ffcd075b48f R14: 00007f0157dcb300 R15: 0000000000022000 [ 45.490286][ T621] [ 45.493138][ T621] [ 45.495308][ T621] Allocated by task 608: [ 45.499387][ T621] ____kasan_kmalloc+0xdb/0x110 [ 45.504073][ T621] __kasan_kmalloc+0x9/0x10 [ 45.508414][ T621] __kmalloc+0x142/0x270 [ 45.512605][ T621] __d_alloc+0xad/0x6c0 [ 45.516794][ T621] d_alloc_parallel+0xe6/0x1360 [ 45.521535][ T621] __lookup_slow+0x154/0x400 [ 45.525972][ T621] lookup_slow+0x5a/0x80 2023/04/07 08:29:37 executed programs: 24 [ 45.530157][ T621] walk_component+0x48c/0x610 [ 45.534659][ T621] path_lookupat+0x16d/0x450 [ 45.539077][ T621] filename_lookup+0x230/0x5c0 [ 45.543690][ T621] user_path_at_empty+0x43/0x1a0 [ 45.548473][ T621] __se_sys_mount+0x285/0x3b0 [ 45.552962][ T621] __x64_sys_mount+0xbf/0xd0 [ 45.557488][ T621] do_syscall_64+0x44/0xd0 [ 45.561821][ T621] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.567551][ T621] [ 45.569714][ T621] Freed by task 418: [ 45.573448][ T621] kasan_set_track+0x4b/0x70 [ 45.577872][ T621] kasan_set_free_info+0x23/0x40 [ 45.582920][ T621] ____kasan_slab_free+0x133/0x170 [ 45.588027][ T621] __kasan_slab_free+0x11/0x20 [ 45.592635][ T621] slab_free_freelist_hook+0xbd/0x190 [ 45.597836][ T621] kmem_cache_free_bulk+0x579/0x730 [ 45.602893][ T621] kfree_rcu_work+0x2b2/0x6a0 [ 45.607562][ T621] process_one_work+0x6b8/0xc00 [ 45.612244][ T621] worker_thread+0xac6/0x1290 [ 45.616756][ T621] kthread+0x26d/0x300 [ 45.620660][ T621] ret_from_fork+0x1f/0x30 [ 45.624946][ T621] [ 45.627088][ T621] Last potentially related work creation: [ 45.632640][ T621] kasan_save_stack+0x3b/0x60 [ 45.637155][ T621] __kasan_record_aux_stack+0xb3/0xc0 [ 45.642365][ T621] kasan_record_aux_stack_noalloc+0xb/0x10 [ 45.648015][ T621] kvfree_call_rcu+0xb2/0x7d0 [ 45.652518][ T621] __d_move+0x86e/0x1370 [ 45.656592][ T621] __d_unalias+0x1cc/0x220 [ 45.660846][ T621] d_splice_alias+0x20a/0x390 [ 45.665360][ T621] fuse_lookup+0x2b9/0x5f0 [ 45.669610][ T621] __lookup_slow+0x2b9/0x400 [ 45.674039][ T621] lookup_slow+0x5a/0x80 [ 45.678120][ T621] walk_component+0x48c/0x610 [ 45.682632][ T621] link_path_walk+0x68c/0xde0 [ 45.687257][ T621] filename_parentat+0x23a/0x650 [ 45.692528][ T621] filename_create+0xf5/0x4e0 [ 45.697060][ T621] do_mkdirat+0xb8/0x3f0 [ 45.701120][ T621] __x64_sys_mkdir+0x6e/0x80 [ 45.705573][ T621] do_syscall_64+0x44/0xd0 [ 45.709801][ T621] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.715621][ T621] [ 45.717781][ T621] The buggy address belongs to the object at ffff888122313000 [ 45.717781][ T621] which belongs to the cache kmalloc-rcl-512 of size 512 [ 45.732805][ T621] The buggy address is located 16 bytes inside of [ 45.732805][ T621] 512-byte region [ffff888122313000, ffff888122313200) [ 45.745911][ T621] The buggy address belongs to the page: [ 45.751378][ T621] page:ffffea000488c400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x122310 [ 45.761447][ T621] head:ffffea000488c400 order:2 compound_mapcount:0 compound_pincount:0 [ 45.769603][ T621] flags: 0x4000000000010200(slab|head|zone=1) [ 45.775817][ T621] raw: 4000000000010200 0000000000000000 dead000000000122 ffff888100042dc0 [ 45.784505][ T621] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000 [ 45.793709][ T621] page dumped because: kasan: bad access detected [ 45.800041][ T621] page_owner tracks the page as allocated [ 45.806374][ T621] page last allocated via order 2, migratetype Reclaimable, gfp_mask 0x1d20d0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL|__GFP_RECLAIMABLE), pid 608, ts 45027574657, free_ts 23371055057 [ 45.831720][ T621] post_alloc_hook+0x1af/0x1c0 [ 45.836318][ T621] get_page_from_freelist+0x33eb/0x34c0 [ 45.841710][ T621] __alloc_pages+0x38a/0x7b0 [ 45.846217][ T621] new_slab+0x96/0x470 [ 45.850300][ T621] ___slab_alloc+0x348/0x7b0 [ 45.854715][ T621] __slab_alloc+0x4a/0x90 [ 45.858882][ T621] __kmalloc+0x175/0x270 [ 45.863051][ T621] __d_alloc+0xad/0x6c0 [ 45.867217][ T621] d_alloc_parallel+0xe6/0x1360 [ 45.872076][ T621] __lookup_slow+0x154/0x400 [ 45.876884][ T621] lookup_slow+0x5a/0x80 [ 45.880965][ T621] walk_component+0x48c/0x610 [ 45.885561][ T621] path_lookupat+0x16d/0x450 [ 45.889988][ T621] filename_lookup+0x230/0x5c0 [ 45.894591][ T621] user_path_at_empty+0x43/0x1a0 [ 45.899361][ T621] __se_sys_mount+0x285/0x3b0 [ 45.903885][ T621] page last free stack trace: [ 45.908567][ T621] __free_pages_ok+0x805/0x880 [ 45.913192][ T621] free_compound_page+0xb0/0xd0 [ 45.917988][ T621] free_transhuge_page+0x2c3/0x2f0 [ 45.922910][ T621] release_pages+0x473/0xc40 [ 45.927332][ T621] free_pages_and_swap_cache+0x8a/0xa0 [ 45.933003][ T621] tlb_finish_mmu+0x177/0x320 [ 45.937493][ T621] exit_mmap+0x412/0x6f0 [ 45.941569][ T621] __mmput+0x95/0x300 [ 45.945502][ T621] mmput+0x59/0x70 [ 45.949036][ T621] do_exit+0xab3/0x2850 [ 45.953028][ T621] do_group_exit+0x255/0x320 [ 45.957568][ T621] __x64_sys_exit_group+0x3f/0x40 [ 45.962429][ T621] do_syscall_64+0x44/0xd0 [ 45.966683][ T621] entry_SYSCALL_64_after_hwframe+0x44/0xae [ 45.972414][ T621] [ 45.974607][ T621] Memory state around the buggy address: [ 45.980059][ T621] ffff888122312f00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 45.987956][ T621] ffff888122312f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc [ 45.995852][ T621] >ffff888122313000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.004185][ T621] ^ [ 46.008611][ T621] ffff888122313080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.016508][ T621] ffff888122313100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 46.024404][ T621] ================================================================== [ 46.032299][ T621] Disabling lock debugging due to kernel taint 2023/04/07 08:29:43 executed programs: 60