[   44.800614][  T207] bridge0: port 1(bridge_slave_0) entered disabled state
[   44.816720][  T207] device veth1_macvtap left promiscuous mode
[   44.824237][  T207] device veth0_macvtap left promiscuous mode
[   44.830813][  T207] device veth1_vlan left promiscuous mode
[   44.836615][  T207] device veth0_vlan left promiscuous mode
[   44.924698][  T207] team0 (unregistering): Port device team_slave_1 removed
[   44.935518][  T207] team0 (unregistering): Port device team_slave_0 removed
[   44.945941][  T207] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   44.958269][  T207] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   44.994500][  T207] bond0 (unregistering): Released all slaves
Warning: Permanently added '10.128.10.9' (ECDSA) to the list of known hosts.
[   64.043932][ T4109] ==================================================================
[   64.052173][ T4109] BUG: KASAN: slab-out-of-bounds in _copy_to_user+0x9c/0xc0
[   64.059431][ T4109] Read of size 42 at addr ffff88807ecff780 by task syz-executor362/4109
[   64.067728][ T4109] 
[   64.070026][ T4109] CPU: 0 PID: 4109 Comm: syz-executor362 Not tainted 5.18.0-rc3-syzkaller #0
[   64.078755][ T4109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   64.088873][ T4109] Call Trace:
[   64.092126][ T4109]  <TASK>
[   64.095031][ T4109]  dump_stack_lvl+0x57/0x7d
[   64.099941][ T4109]  print_address_description.constprop.0.cold+0xeb/0x495
[   64.106937][ T4109]  ? _copy_to_user+0x9c/0xc0
[   64.111494][ T4109]  kasan_report.cold+0xf4/0x1c6
[   64.116319][ T4109]  ? _copy_to_user+0x9c/0xc0
[   64.120875][ T4109]  kasan_check_range+0x13d/0x180
[   64.125783][ T4109]  _copy_to_user+0x9c/0xc0
[   64.130169][ T4109]  __htab_map_lookup_and_delete_batch+0xb54/0x13f0
[   64.136642][ T4109]  ? __fget_files+0x1b9/0x3c0
[   64.141289][ T4109]  ? htab_of_map_alloc+0xb0/0xb0
[   64.146284][ T4109]  bpf_map_do_batch+0x1ef/0x420
[   64.151119][ T4109]  __sys_bpf+0x1717/0x4360
[   64.155585][ T4109]  ? bpf_perf_link_attach+0x4a0/0x4a0
[   64.161089][ T4109]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   64.167031][ T4109]  ? find_held_lock+0x2d/0x110
[   64.171770][ T4109]  __x64_sys_bpf+0x70/0xb0
[   64.176411][ T4109]  ? syscall_enter_from_user_mode+0x21/0x70
[   64.182267][ T4109]  do_syscall_64+0x35/0x80
[   64.186644][ T4109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   64.192500][ T4109] RIP: 0033:0x7fef56ccdb79
[   64.197315][ T4109] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   64.217318][ T4109] RSP: 002b:00007fef56c5e2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   64.225954][ T4109] RAX: ffffffffffffffda RBX: 00007fef56d563f0 RCX: 00007fef56ccdb79
[   64.233978][ T4109] RDX: 0000000000000038 RSI: 0000000020000080 RDI: 0000000000000019
[   64.242102][ T4109] RBP: 00007fef56d238e0 R08: 00007fef56c5e700 R09: 0000000000000000
[   64.250301][ T4109] R10: 00007fef56c5e700 R11: 0000000000000246 R12: 00000000200031c0
[   64.258418][ T4109] R13: 00007fef56d23068 R14: 00000000200021c0 R15: 00007fef56d563f8
[   64.266623][ T4109]  </TASK>
[   64.269701][ T4109] 
[   64.271995][ T4109] Allocated by task 4109:
[   64.276311][ T4109]  kasan_save_stack+0x1e/0x40
[   64.281042][ T4109]  __kasan_kmalloc+0xa9/0xd0
[   64.285769][ T4109]  __htab_map_lookup_and_delete_batch+0x468/0x13f0
[   64.292231][ T4109]  bpf_map_do_batch+0x1ef/0x420
[   64.297307][ T4109]  __sys_bpf+0x1717/0x4360
[   64.301686][ T4109]  __x64_sys_bpf+0x70/0xb0
[   64.306062][ T4109]  do_syscall_64+0x35/0x80
[   64.310454][ T4109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   64.316309][ T4109] 
[   64.318688][ T4109] The buggy address belongs to the object at ffff88807ecff780
[   64.318688][ T4109]  which belongs to the cache kmalloc-64 of size 64
[   64.332527][ T4109] The buggy address is located 0 bytes inside of
[   64.332527][ T4109]  64-byte region [ffff88807ecff780, ffff88807ecff7c0)
[   64.345498][ T4109] 
[   64.347787][ T4109] The buggy address belongs to the physical page:
[   64.354166][ T4109] page:ffffea0001fb3fc0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x7ecff
[   64.364279][ T4109] flags: 0xfff00000000200(slab|node=0|zone=1|lastcpupid=0x7ff)
[   64.371968][ T4109] raw: 00fff00000000200 ffffea0000882c00 dead000000000005 ffff888010041640
[   64.380515][ T4109] raw: 0000000000000000 0000000080200020 00000001ffffffff 0000000000000000
[   64.389066][ T4109] page dumped because: kasan: bad access detected
[   64.395440][ T4109] page_owner tracks the page as allocated
[   64.401117][ T4109] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x12c40(GFP_NOFS|__GFP_NOWARN|__GFP_NORETRY), pid 2947, tgid 2947 (S02acpid), ts 7197165044, free_ts 7195302794
[   64.419059][ T4109]  get_page_from_freelist+0x178d/0x3dc0
[   64.424570][ T4109]  __alloc_pages+0x1b2/0x500
[   64.429119][ T4109]  allocate_slab+0x26c/0x3c0
[   64.433668][ T4109]  ___slab_alloc+0x8e1/0xf20
[   64.438236][ T4109]  __slab_alloc.constprop.0+0x4d/0xa0
[   64.443567][ T4109]  __kmalloc+0x318/0x350
[   64.447770][ T4109]  tomoyo_supervisor+0xa4b/0xc40
[   64.452672][ T4109]  tomoyo_path_permission+0x252/0x380
[   64.458005][ T4109]  tomoyo_check_open_permission+0x290/0x2c0
[   64.463863][ T4109]  security_file_open+0x34/0x80
[   64.468673][ T4109]  do_dentry_open+0x300/0xfd0
[   64.473314][ T4109]  path_openat+0x9cf/0x2360
[   64.477782][ T4109]  do_filp_open+0x199/0x3d0
[   64.482244][ T4109]  do_sys_openat2+0x11e/0x3f0
[   64.486882][ T4109]  __x64_sys_openat+0x11b/0x1d0
[   64.491692][ T4109]  do_syscall_64+0x35/0x80
[   64.496072][ T4109] page last free stack trace:
[   64.500710][ T4109]  free_pcp_prepare+0x549/0xd20
[   64.505523][ T4109]  free_unref_page_list+0x16f/0xf80
[   64.510686][ T4109]  release_pages+0x6f1/0x1780
[   64.515322][ T4109]  tlb_finish_mmu+0x127/0x790
[   64.519956][ T4109]  exit_mmap+0x19d/0x3f0
[   64.524164][ T4109]  __mmput+0xed/0x430
[   64.528110][ T4109]  begin_new_exec+0xda0/0x29d0
[   64.532833][ T4109]  load_elf_binary+0xf64/0x4180
[   64.537646][ T4109]  bprm_execve+0x669/0x14e0
[   64.542195][ T4109]  do_execveat_common+0x5fd/0x7b0
[   64.547272][ T4109]  __x64_sys_execve+0x8a/0xb0
[   64.552182][ T4109]  do_syscall_64+0x35/0x80
[   64.556564][ T4109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   64.562425][ T4109] 
[   64.564716][ T4109] Memory state around the buggy address:
[   64.570308][ T4109]  ffff88807ecff680: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   64.579112][ T4109]  ffff88807ecff700: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   64.587134][ T4109] >ffff88807ecff780: 00 00 00 00 03 fc fc fc fc fc fc fc fc fc fc fc
[   64.595154][ T4109]                                ^
[   64.600226][ T4109]  ffff88807ecff800: 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc fc
[   64.608269][ T4109]  ffff88807ecff880: 00 00 00 00 00 00 00 00 fc fc fc fc fc fc fc fc
[   64.616295][ T4109] ==================================================================
[   66.402374][ T4109] Kernel panic - not syncing: panic_on_warn set ...
[   66.409063][ T4109] CPU: 0 PID: 4109 Comm: syz-executor362 Not tainted 5.18.0-rc3-syzkaller #0
[   66.417790][ T4109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011
[   66.427818][ T4109] Call Trace:
[   66.431074][ T4109]  <TASK>
[   66.433981][ T4109]  dump_stack_lvl+0x57/0x7d
[   66.438456][ T4109]  panic+0x227/0x466
[   66.442321][ T4109]  ? panic_print_sys_info.part.0+0x69/0x69
[   66.448090][ T4109]  ? preempt_schedule_common+0x59/0xc0
[   66.453513][ T4109]  ? _copy_to_user+0x9c/0xc0
[   66.458070][ T4109]  ? preempt_schedule_thunk+0x16/0x18
[   66.463403][ T4109]  ? _copy_to_user+0x9c/0xc0
[   66.467952][ T4109]  end_report.part.0+0x3f/0x7c
[   66.472766][ T4109]  kasan_report.cold+0x93/0x1c6
[   66.477584][ T4109]  ? _copy_to_user+0x9c/0xc0
[   66.482132][ T4109]  kasan_check_range+0x13d/0x180
[   66.487035][ T4109]  _copy_to_user+0x9c/0xc0
[   66.491412][ T4109]  __htab_map_lookup_and_delete_batch+0xb54/0x13f0
[   66.497878][ T4109]  ? __fget_files+0x1b9/0x3c0
[   66.502523][ T4109]  ? htab_of_map_alloc+0xb0/0xb0
[   66.507429][ T4109]  bpf_map_do_batch+0x1ef/0x420
[   66.512339][ T4109]  __sys_bpf+0x1717/0x4360
[   66.516722][ T4109]  ? bpf_perf_link_attach+0x4a0/0x4a0
[   66.522057][ T4109]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[   66.527998][ T4109]  ? find_held_lock+0x2d/0x110
[   66.532726][ T4109]  __x64_sys_bpf+0x70/0xb0
[   66.537110][ T4109]  ? syscall_enter_from_user_mode+0x21/0x70
[   66.542964][ T4109]  do_syscall_64+0x35/0x80
[   66.547344][ T4109]  entry_SYSCALL_64_after_hwframe+0x44/0xae
[   66.553459][ T4109] RIP: 0033:0x7fef56ccdb79
[   66.557841][ T4109] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 11 15 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[   66.577410][ T4109] RSP: 002b:00007fef56c5e2f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[   66.585869][ T4109] RAX: ffffffffffffffda RBX: 00007fef56d563f0 RCX: 00007fef56ccdb79
[   66.593891][ T4109] RDX: 0000000000000038 RSI: 0000000020000080 RDI: 0000000000000019
[   66.601827][ T4109] RBP: 00007fef56d238e0 R08: 00007fef56c5e700 R09: 0000000000000000
[   66.609935][ T4109] R10: 00007fef56c5e700 R11: 0000000000000246 R12: 00000000200031c0
[   66.617872][ T4109] R13: 00007fef56d23068 R14: 00000000200021c0 R15: 00007fef56d563f8
[   66.625896][ T4109]  </TASK>
[   66.629507][ T4109] Kernel Offset: disabled
[   66.633814][ T4109] Rebooting in 86400 seconds..